updated version of pygments because of security vulnerability

hyperledger / indy-plenum

Plenum Byzantine Fault Tolerant Protocol

https://wiki.hyperledger.org/display/indy

Apache License 2.0

215 stars 370 forks source link

Closed udosson closed 3 years ago

udosson commented 3 years ago

This PR updates the version of pygments to v.2.7.4 to fix the following CVEs (Issue #1540): CVE-2021-20270 CVE-2021-27291

Signed-off-by: udosson r.klemens@yahoo.de

sovbot commented 3 years ago

Can one of the admins verify this patch?

WadeBarnes commented 3 years ago

(ci) test this please

udosson commented 3 years ago

Included in #1569