Fix: Vulnerabilities in Jinja2 <2.8.1 and PyYAML <4.2b1

Signed-off-by: Knut Ahlers <knut@ahlers.me>
2024-11-09 16:30:01 +00:00 · 2019-04-10 20:22:24 +02:00 · 2019-04-10 20:22:24 +02:00 · 4aaddbba07
commit 4aaddbba07
parent 0b94dd9c3b
2 changed files with 3 additions and 3 deletions
--- a/generate.py
+++ b/generate.py
@ -3,7 +3,7 @@
 import yaml
 from jinja2 import Environment, FileSystemLoader
-config = yaml.load(open('config.yml', 'r').read())
+config = yaml.load(open('config.yml', 'r').read(), Loader=yaml.SafeLoader)
 env = Environment(loader=FileSystemLoader('./'))
 template = env.get_template('index.html')
--- a/requirements.txt
+++ b/requirements.txt
@ -1,3 +1,3 @@
-Jinja2==2.8
+Jinja2==2.10.1
 jsmin==2.2.1
-PyYAML==3.12
+PyYAML==5.1