python-projects icon indicating copy to clipboard operation
python-projects copied to clipboard

Published 20 hours ago β€’ verified publisher icon mrayanasim09

[Snyk] Security upgrade nltk from 3.8.1 to 3.8.2

Open mrayanasim09 opened this issue 1 year ago β€’ 4 comments

snyk-top-banner

Snyk has created this PR to fix 1 vulnerabilities in the pip dependencies of this project.

Snyk changed the following file(s):

  • requirements.txt
⚠️ Warning 
textblob 0.17.1 requires nltk, which is not installed.
PyQtWebEngine 5.15.6 requires PyQt5, which is not installed.
prophet 1.1.5 requires holidays, which is not installed.
matplotlib 3.5.3 requires fonttools, which is not installed.

[!IMPORTANT]

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • Max score is 1000. Note that the real score may have changed since the PR was raised.
  • This PR was automatically created by Snyk using the credentials of a real user.
  • Some vulnerabilities couldn't be fully fixed and so Snyk will still find them when the project is tested again. This may be because the vulnerability existed within more than one direct dependency, but not all of the affected dependencies could be upgraded.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report πŸ“œ Customise PR templates πŸ›  Adjust project settings πŸ“š Read about Snyk's upgrade logic

Learn how to fix vulnerabilities with free interactive lessons:

πŸ¦‰ Remote Code Execution (RCE)

This change is Reviewable

mrayanasim09 avatar Aug 12 '24 02:08 mrayanasim09

Review or Edit in CodeSandbox

Open the branch in Web Editor β€’ VS Code β€’ Insiders
Open Preview

codesandbox[bot] avatar Aug 12 '24 02:08 codesandbox[bot]

Deploy Preview for joyful-gelato-ff27ed failed.

Name Link
Latest commit f373306a122aa74861f725f392fafe02ebd92ef1
Latest deploy log https://app.netlify.com/sites/joyful-gelato-ff27ed/deploys/66b970aeac04080008b394f8

netlify[bot] avatar Aug 12 '24 02:08 netlify[bot]

New and removed dependencies detected. Learn more about Socket for GitHub β†—οΈŽ

Package New capabilities Transitives Size Publisher
pypi/[email protected] environment, eval, filesystem, network, shell, unsafe +10 23.5 MB alvations, iliakur, stevenbird, ...1 more

View full reportβ†—οΈŽ

socket-security[bot] avatar Aug 12 '24 02:08 socket-security[bot]

Deploy Preview for heroic-strudel-239c3c failed.

Name Link
Latest commit f373306a122aa74861f725f392fafe02ebd92ef1
Latest deploy log https://app.netlify.com/sites/heroic-strudel-239c3c/deploys/66b970ae23df0c0008c7fb29

netlify[bot] avatar Aug 12 '24 02:08 netlify[bot]