From 05125b996245a856bf1c3570f24db6c3ff104b89 Mon Sep 17 00:00:00 2001
From: Kirill Sizov <sizow.k.d@gmail.com>
Date: Fri, 22 Jul 2022 22:29:48 +0300
Subject: [PATCH] [Snyk] Security upgrade azure-storage-blob from 12.8.1 to
 12.13.0 (#26)

fix: cvat/requirements/base.txt to reduce vulnerabilities


The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-AZURESTORAGEBLOB-2949173

Co-authored-by: snyk-bot <snyk-bot@snyk.io>
---
 cvat/requirements/base.txt | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/cvat/requirements/base.txt b/cvat/requirements/base.txt
index 0b9949a5..b35e8984 100644
--- a/cvat/requirements/base.txt
+++ b/cvat/requirements/base.txt
@@ -43,7 +43,7 @@ tensorflow==2.8.1 # Optional requirement of Datumaro. Use tensorflow-macos==2.8.
 patool==1.12
 diskcache==5.0.2
 boto3==1.17.61
-azure-storage-blob==12.8.1
+azure-storage-blob==12.13.0
 google-cloud-storage==1.42.0
 # --no-binary=datumaro: workaround for pip to install
 # opencv-headless instead of regular opencv, to actually run setup script