The first RESTful API for the Federal Election Commission. We're aiming to make campaign finance more accessible for journalists, academics, developers, and other transparency seekers.
How to fix?
Upgrade certifi to version 2024.7.4 or higher.
Overview
Affected versions of this package are vulnerable to Insufficient Verification of Data Authenticity due to the presence of the root certificate for GLOBALTRUST in the root store. The root certificates are being removed pursuant to an investigation into non-compliance.
Completion Criteria
[ ] Upgrade certifi to version 2024.7.4 or higher.
INTRODUCED: 5 JUL 2024
CVE-2024-39689OPEN THIS LINK IN A NEW TAB CWE-345OPEN THIS LINK IN A NEW TAB
How to fix? Upgrade certifi to version 2024.7.4 or higher.
Overview Affected versions of this package are vulnerable to Insufficient Verification of Data Authenticity due to the presence of the root certificate for GLOBALTRUST in the root store. The root certificates are being removed pursuant to an investigation into non-compliance.
Completion Criteria