From 3c3f754f3fdbfb700c863b308f86168dd9a5ae6a Mon Sep 17 00:00:00 2001 From: stevenhorsman Date: Fri, 12 Jun 2026 13:28:51 +0100 Subject: [PATCH] fix: pin idna and pymdown-extensions to remediate CVEs Pin idna to 3.15 and pymdown-extensions to 10.21.3 to address security vulnerabilities: - GHSA-65pc-fj4g-8rjx (idna, severity 6.9) - GHSA-62q4-447f-wv8h (pymdown-extensions, severity 4.3) - GHSA-r6h4-mm7h-8pmq (pymdown-extensions, severity 2.7) These dependencies were previously transitive and vulnerable. They are now explicitly pinned to secure versions. Generated-by: IBM Bob Signed-off-by: stevenhorsman --- docs/requirements.txt | 2 ++ 1 file changed, 2 insertions(+) diff --git a/docs/requirements.txt b/docs/requirements.txt index 26d4a1e669..ef9c05fe4e 100644 --- a/docs/requirements.txt +++ b/docs/requirements.txt @@ -7,3 +7,5 @@ mkdocs-redirects==1.2.2 CairoSVG==2.9.0 pillow==12.2.0 click==8.3.3 +idna==3.15 +pymdown-extensions==10.21.3