[Snyk] Security upgrade werkzeug from 2.2.3 to 3.0.3

[naiba4]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `pip` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • requirements.txt

⚠️ Warning

Flask 2.0.3 requires Werkzeug, which is not installed.

Vulnerabilities that will be fixed

By pinning:

Severity	Priority Score (*)	Issue	Upgrade	Breaking Change	Exploit Maturity
	661/1000 Why? Recently disclosed, Has a fix available, CVSS 7.5	Remote Code Execution (RCE) SNYK-PYTHON-WERKZEUG-6808933	werkzeug: 2.2.3 -> 3.0.3	No	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Some vulnerabilities couldn't be fully fixed and so Snyk will still find them when the project is tested again. This may be because the vulnerability existed within more than one direct dependency, but not all of the affected dependencies could be upgraded.

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Remote Code Execution (RCE)

[codesandbox]

Review or Edit in CodeSandbox

Open the branch in Web Editor • VS Code • Insiders

Open Preview

[guardrails]

⚠️ We detected 1 security issue in this pull request:

Vulnerable Libraries (1)

Severity	Details
Medium	pkg:pypi/pygments@2.12.0 (t) upgrade to: 2.15.0

More info on how to fix Vulnerable Libraries in Python.

---

👉 Go to the dashboard for detailed results.

📥 Happy? Share your feedback with us.

[socket-security]

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/react-swipeable-views@0.14.0	environment	0	60.9 kB	oliviertassinari
npm/readable-stream@3.6.2	environment	0	124 kB	matteo.collina
npm/regenerate@1.4.2	None	0	49.2 kB	mathias
npm/regenerator-runtime@0.13.11	None	0	27.8 kB	benjamn
npm/regexp.prototype.flags@1.5.0	None	0	38.5 kB	ljharb
npm/resolve-url-loader@4.0.0	environment, filesystem	+3	271 kB	bholloway
npm/resolve@1.22.2	environment, filesystem	+2	158 kB	ljharb
npm/rollup@2.47.0	environment, filesystem	0	4.46 MB	lukastaegert
npm/safe-buffer@5.2.1	None	0	32.1 kB	feross
npm/safer-buffer@2.1.2	None	0	42.3 kB	chalker
npm/sass-loader@12.1.0	environment	+2	370 kB	evilebottnawi
npm/schema-utils@2.7.1	None	+1	150 kB	evilebottnawi
npm/semver@6.3.0	None	0	67.1 kB	isaacs
npm/set-blocking@2.0.0	None	0	4.22 kB	bcoe
npm/sha.js@2.4.11	None	0	31.1 kB	dcousens
npm/signal-exit@3.0.7	None	0	9.96 kB	isaacs
npm/source-map-js@1.0.2	None	0	148 kB	7rulnik
npm/source-map-support@0.5.21	filesystem	+1	90.2 kB	linusu
npm/source-map@0.5.7	None	0	766 kB	tromey
npm/ssri@8.0.1	None	0	46.9 kB	nlf
npm/start-server-and-test@1.14.0	environment	0	27.9 kB	bahmutov
npm/string-width@4.2.3	None	+2	58.4 kB	sindresorhus
npm/strip-ansi@6.0.1	None	+1	9.64 kB	sindresorhus
npm/strip-json-comments@3.1.1	None	0	6.96 kB	sindresorhus
npm/svgo-loader@3.0.0	None	+3	179 kB	pozadi
npm/svgo@2.7.0	filesystem Transitive: shell	+11	1.35 MB	trysound
npm/tapable@2.2.1	None	0	46.9 kB	sokra
npm/tar@6.1.15	environment, filesystem	+4	268 kB	isaacs
npm/through@2.3.8	None	0	12.5 kB	dominictarr
npm/tslib@2.2.0	None	0	38.3 kB	typescript-bot
npm/type-check@0.4.0	None	+1	57.9 kB	gkz
npm/typescript@4.6.3	None	0	64.7 MB	typescript-bot
npm/unpipe@1.0.0	None	0	4.31 kB	dougwilson
npm/url-loader@4.1.1	None	+4	256 kB	evilebottnawi
npm/use-match-media-hook@1.0.1	None	0	18.1 kB	jepser
npm/util-deprecate@1.0.2	None	0	5.48 kB	tootallnate
npm/validator@13.7.0	None	0	646 kB	profnandaa
npm/webpack-cli@5.1.4	environment, filesystem, unsafe Transitive: shell	+3	277 kB	evilebottnawi
npm/webpack-dev-server@4.3.1	environment, network Transitive: filesystem, shell	+4	560 kB	evilebottnawi
npm/webpack-sources@1.4.3	None	0	36.7 kB	sokra
npm/webpack@5.76.0	environment, filesystem, network, unsafe	+5	5.41 MB	evilebottnawi
npm/whatwg-fetch@2.0.2	None	0	22.7 kB	mislav
npm/which@2.0.2	environment Transitive: filesystem	+1	20.9 kB	isaacs
npm/wide-align@1.1.5	None	0	4.47 kB	iarna
npm/yaml-loader@0.7.0	Transitive: environment	+4	608 kB	eemeli

🚮 Removed packages: npm/@ampproject/remapping@2.2.1, npm/assert-plus@1.0.0, npm/domhandler@4.3.1, npm/execa@5.1.1, npm/extsprintf@1.3.0, npm/follow-redirects@1.15.2, npm/fsevents@2.3.2, npm/mkdirp-classic@0.5.3, npm/obuf@1.1.2, npm/punycode@2.3.0

View full report↗︎

[socket-security]

🚨 Potential security issues detected. Learn more about Socket for GitHub ↗︎

To accept the risk, merge this PR and you will not be notified again.

Alert	Package	Note	Source
Environment variable access	npm/which@2.0.2	Env Vars: PATH Location: Package overview	Source
Environment variable access	npm/which@2.0.2	Env Vars: OSTYPE Location: Package overview	Source
Environment variable access	npm/which@2.0.2	Env Vars: PATHEXT Location: Package overview	Source
Filesystem access	npm/resolve-from@5.0.0	Module: fs Location: Package overview	orphan: npm/resolve-from@5.0.0
Unmaintained	npm/resolve-from@5.0.0	Last Publish: 4/15/2019, 4:06:25 AM	orphan: npm/resolve-from@5.0.0
Debug access	npm/resolve-from@5.0.0	Module: module Location: Package overview	orphan: npm/resolve-from@5.0.0
Trivial Package	npm/has-flag@3.0.0	Location: Package overview	Source
Filesystem access	npm/rimraf@3.0.2	Module: fs Location: Package overview	package.json
Unmaintained	npm/text-table@0.2.0	Last Publish: 10/5/2013, 3:51:26 AM	package.json
Environment variable access	npm/supports-color@5.5.0	Env Vars: Location: Package overview	Source
New author	npm/estraverse@4.3.0	New Author: michaelficarra Previous Author: nzakas	orphan: npm/estraverse@4.3.0
Debug access	npm/resolve-from@4.0.0	Module: module Location: Package overview	Source
Filesystem access	npm/resolve-from@4.0.0	Module: fs Location: Package overview	Source
Unmaintained	npm/resolve-from@4.0.0	Last Publish: 4/15/2019, 4:06:25 AM	Source
New author	npm/wrappy@1.0.2	New Author: zkat Previous Author: isaacs	package.json
Unmaintained	npm/through@2.3.8	Last Publish: 7/3/2015, 1:38:39 PM	Source
Unmaintained	npm/safer-buffer@2.1.2	Last Publish: 4/8/2018, 10:42:42 AM	Source
Environment variable access	npm/request@2.88.2	Env Vars: NODE_DEBUG Location: Package overview	package.json
Network access	npm/request@2.88.2	Module: http-signature Location: Package overview	package.json
Network access	npm/request@2.88.2	Module: https Location: Package overview	package.json
Network access	npm/request@2.88.2	Module: http Location: Package overview	package.json
Filesystem access	npm/request@2.88.2	Module: fs Location: Package overview	package.json
Deprecated	npm/request@2.88.2	Reason: request has been deprecated, see https://github.com/Request’s Past, Present and Future request/request#3142	package.json
Unmaintained	npm/to-regex-range@5.0.1	Last Publish: 4/7/2019, 6:04:37 AM	Source
Unmaintained	npm/validate-npm-package-license@3.0.4	Last Publish: 8/5/2018, 4:59:03 PM	package.json
Unmaintained	npm/util-deprecate@1.0.2	Last Publish: 10/7/2015, 6:37:40 PM	Source
Debug access	npm/require-from-string@2.0.2	Module: module Location: Package overview	orphan: npm/require-from-string@2.0.2
Unmaintained	npm/require-from-string@2.0.2	Last Publish: 4/9/2018, 9:49:47 AM	orphan: npm/require-from-string@2.0.2
Unmaintained	npm/reusify@1.0.4	Last Publish: 1/26/2018, 9:28:18 AM	Source
Filesystem access	npm/require-directory@2.1.1	Module: fs Location: Package overview	orphan: npm/require-directory@2.1.1
Unmaintained	npm/require-directory@2.1.1	Last Publish: 5/28/2015, 8:31:04 AM	orphan: npm/require-directory@2.1.1
Filesystem access	npm/y18n@5.0.8	Module: fs Location: Package overview	orphan: npm/y18n@5.0.8
Environment variable access	npm/yargs-parser@21.1.1	Env Vars: Location: Package overview	orphan: npm/yargs-parser@21.1.1
Dynamic require	npm/yargs-parser@21.1.1	Location: Package overview	orphan: npm/yargs-parser@21.1.1
Filesystem access	npm/yargs-parser@21.1.1	Module: fs Location: Package overview	orphan: npm/yargs-parser@21.1.1
Environment variable access	npm/yargs-parser@21.1.1	Env Vars: YARGS_MIN_NODE_VERSION Location: Package overview	orphan: npm/yargs-parser@21.1.1
New author	npm/source-map@0.5.7	New Author: tromey Previous Author: nickfitzgerald	Source
Unmaintained	npm/set-blocking@2.0.0	Last Publish: 5/17/2016, 10:59:27 PM	Source
Trivial Package	npm/set-blocking@2.0.0	Location: Package overview	Source
Minified code	npm/json5@1.0.2	Confidence: 1.00 Location: Package overview	orphan: npm/json5@1.0.2
Minified code	npm/json5@1.0.2	Confidence: 0.97 Location: Package overview	orphan: npm/json5@1.0.2
Minified code	npm/json5@1.0.2	Confidence: 1.00 Location: Package overview	orphan: npm/json5@1.0.2
Minified code	npm/json5@1.0.2	Confidence: 0.99 Location: Package overview	orphan: npm/json5@1.0.2
Unmaintained	npm/simple-swizzle@0.2.2	Last Publish: 11/16/2016, 2:32:21 AM	orphan: npm/simple-swizzle@0.2.2
Dynamic require	npm/tsconfig-paths@3.14.2	Location: Package overview	package.json
Filesystem access	npm/tsconfig-paths@3.14.2	Module: fs Location: Package overview	package.json
Debug access	npm/tsconfig-paths@3.14.2	Module: module Location: Package overview	package.json
Environment variable access	npm/tsconfig-paths@3.14.2	Env Vars: key Location: Package overview	package.json
Unmaintained	npm/requires-port@1.0.0	Last Publish: 10/30/2015, 2:42:33 PM	orphan: npm/requires-port@1.0.0
Unmaintained	npm/shallow-clone@3.0.1	Last Publish: 4/16/2019, 12:06:42 AM	package.json
New author	npm/ssri@8.0.1	New Author: nlf Previous Author: isaacs	Source
Filesystem access	npm/tar@6.1.15	Module: fs-minipass Location: Package overview	Source
Filesystem access	npm/tar@6.1.15	Module: fs Location: Package overview	Source
Environment variable access	npm/tar@6.1.15	Env Vars: FAKE_PLATFORM Location: Package overview	Source
Environment variable access	npm/tar@6.1.15	Env Vars: TESTING_TAR_FAKE_PLATFORM Location: Package overview	Source
Environment variable access	npm/tar@6.1.15	Env Vars: USER Location: Package overview	Source
New author	npm/unicode-canonical-property-names-ecmascript@2.0.0	New Author: google-wombot Previous Author: mathias	package.json
New author	npm/unicode-match-property-ecmascript@2.0.0	New Author: google-wombot Previous Author: mathias	Source
New author	npm/unique-slug@2.0.2	New Author: zkat Previous Author: iarna	package.json
Unmaintained	npm/unpipe@1.0.0	Last Publish: 6/14/2015, 8:30:19 PM	Source
Filesystem access	npm/update-browserslist-db@1.0.11	Module: fs Location: Package overview	Source
Shell access	npm/update-browserslist-db@1.0.11	Module: child_process Location: Package overview	Source
Unmaintained	npm/utils-merge@1.0.1	Last Publish: 9/20/2017, 12:18:39 AM	orphan: npm/utils-merge@1.0.1
Unmaintained	npm/vary@1.1.2	Last Publish: 9/24/2017, 1:47:11 AM	orphan: npm/vary@1.1.2
Environment variable access	npm/yaml@1.10.2	Env Vars: Location: Package overview	package.json
Dynamic require	npm/yargs-parser@20.2.9	Location: Package overview	package.json