Skip to content

Commit b98cf56

Browse files
johngrimesjohngrimes
committed
fix: Upgrade flask-cors to 6.x to resolve CVEs
Addresses CVE-2024-6839, CVE-2024-6844, and CVE-2024-6866 which were failing the Trivy security scan.
1 parent f7bb604 commit b98cf56

File tree

2 files changed

+5
-5
lines changed

2 files changed

+5
-5
lines changed

fhirpath-lab-api/pyproject.toml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -11,7 +11,7 @@ description = "A FHIRPath Lab server backed by the Pathling FHIRPath engine"
1111
requires-python = ">=3.9"
1212
dependencies = [
1313
"flask>=3.1,<4",
14-
"flask-cors>=5.0,<6",
14+
"flask-cors>=6.0,<7",
1515
"pathling>=9.3.1,<10",
1616
]
1717

fhirpath-lab-api/uv.lock

Lines changed: 4 additions & 4 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

0 commit comments

Comments
 (0)