[PR #340] [MERGED] [Snyk] Security upgrade django from 3.0.3 to 3.0.4 #933

New issue

Closed

opened 2026-02-25 23:44:11 +03:00 by kerem · 0 comments

kerem commented 2026-02-25 23:44:11 +03:00

Owner

Copy link

📋 Pull Request Information

Original PR: https://github.com/healthchecks/healthchecks/pull/340
Author: @snyk-bot
Created: 3/5/2020
Status: ✅ Merged
Merged: 3/9/2020
Merged by: @cuu508

Base: master ← Head: snyk-fix-51c0d13c6d0c4055f57c0eb711c34f20

---

📝 Commits (1)

• 75cb95f fix: requirements.txt to reduce vulnerabilities

📊 Changes

1 file changed (+1 additions, -1 deletions)

View changed files

📝 requirements.txt (+1 -1)

📄 Description

Snyk has created this PR to fix one or more vulnerable packages in the `pip` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • requirements.txt

Vulnerabilities that will be fixed

By pinning:

Severity	Issue	Upgrade	Breaking Change	Exploit Maturity
	SQL Injection SNYK-PYTHON-DJANGO-559326	django: 3.0.3 -> 3.0.4	No	No Known Exploit

Note that some vulnerabilities couldn’t be fully fixed, and so will still fail the Snyk test report.

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:

🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

_{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

## 📋 Pull Request Information **Original PR:** https://github.com/healthchecks/healthchecks/pull/340 **Author:** [@snyk-bot](https://github.com/snyk-bot) **Created:** 3/5/2020 **Status:** ✅ Merged **Merged:** 3/9/2020 **Merged by:** [@cuu508](https://github.com/cuu508) **Base:** `master` ← **Head:** `snyk-fix-51c0d13c6d0c4055f57c0eb711c34f20` --- ### 📝 Commits (1) - [`75cb95f`](https://github.com/healthchecks/healthchecks/commit/75cb95ffece8021d3185ddd819429ed74cadb7dd) fix: requirements.txt to reduce vulnerabilities ### 📊 Changes **1 file changed** (+1 additions, -1 deletions) <details> <summary>View changed files</summary> 📝 `requirements.txt` (+1 -1) </details> ### 📄 Description <h3>Snyk has created this PR to fix one or more vulnerable packages in the `pip` dependencies of this project.</h3> #### Changes included in this PR - Changes to the following files to upgrade the vulnerable dependencies to a fixed version: - requirements.txt #### Vulnerabilities that will be fixed ##### By pinning: Severity | Issue | Upgrade | Breaking Change | Exploit Maturity :-------------------------:|:-------------------------|:-------------------------|:-------------------------|:-------------------------  | SQL Injection <br/>[SNYK-PYTHON-DJANGO-559326](https://snyk.io/vuln/SNYK-PYTHON-DJANGO-559326) | `django:` <br> `3.0.3 -> 3.0.4` <br> | No | No Known Exploit Note that some vulnerabilities couldn’t be fully fixed, and so will still fail the Snyk test report. Check the changes in this PR to ensure they won't cause issues with your project. ------------ **Note:** *You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.* For more information: 🧐 [View latest project report](https://app.snyk.io/org/cuu508/project/a62de668-9be4-47cc-b926-fa169a96d983) 🛠 [Adjust project settings](https://app.snyk.io/org/cuu508/project/a62de668-9be4-47cc-b926-fa169a96d983/settings) 📚 [Read more about Snyk's upgrade and patch logic](https://snyk.io/docs/fixing-vulnerabilities/) [//]: # (snyk:metadata:{"dependencies":[{"name":"django","from":"3.0.3","to":"3.0.4"}],"packageManager":"pip","projectPublicId":"a62de668-9be4-47cc-b926-fa169a96d983","projectUrl":"https://app.snyk.io/org/cuu508/project/a62de668-9be4-47cc-b926-fa169a96d983?utm_source=github&utm_medium=fix-pr","type":"auto","patch":[],"vulns":["SNYK-PYTHON-DJANGO-559326"],"upgrade":[],"isBreakingChange":false,"env":"prod","prType":"fix","templateVariants":["updated-fix-title"]}) --- _{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

kerem 2026-02-25 23:44:11 +03:00

• closed this issue
• added the
  pull-request
  label

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

py2

v4.1.1

v4.1

v4.0

v3.13

v3.12

v3.11.2

v3.11.1

v3.11

v3.10

v3.9

v3.8.2

v3.8.1

v3.8

v3.7

v3.6

v3.5.2

v3.5.1

v3.5

v3.4

v3.3

v3.2

v3.1

v3.0.1

v3.0

v2.10

v2.9.2

v2.9.1

v2.9

v2.8.1

v2.8

v2.7

v2.6.1

v2.6

v2.5

v2.4.1

v2.4

v2.3

v2.2.1

v2.2

v2.1

v2.0.1

v2.0

v1.25.0

v1.24.1

v1.24.0

v1.23.1

v1.23.0

v1.22.0

v1.21.0

v1.20.0

v1.19.0

v1.18.0

v1.17.0

v1.16.0

v1.15.0

v1.14.0

v1.13.0

v1.12.0

v1.11.0

v1.10.0

v1.9.0

v1.8.0

v1.7.0

v1.6.0

v1.5.0

v1.4.0

v1.3.0

v1.2.0

v1.1.0

v1.0.4

v1.0.3

v1.0.2

1.0.2

v1.0.1

v1.0

Labels

Clear labels   

bug

  

bug

  

bug

  

feature

  

good-first-issue

  

new integration

  

pull-request

Mirrored from GitHub Pull Request

  

question

No labels

bug

bug

bug

feature

good-first-issue

new integration

pull-request

question

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/healthchecks#933

No description provided.