Major upgrade for GitPython (Critical) #3
Description
Find more live information in Aikido here: https://app.aikido.dev/queue?sidebarIssue=2217889&groupId=6189&sidebarIssueTask=53189&sidebarTab=tasks
==== Scope ====
This task includes issues in the following code repository:
- kubebot:
tools/trufflehog/requirements.txt
tools/gitallsecrets/thog/requirements.txt
==== TLDR ====
GitPython is affected by 5 unique vulnerabilities. 2 are critical, 2 are high and 1 is medium.
==== How to fix ====
In order to fix all of these vulnerabilities, update GitPython to 3.1.41. In order to solve only the critical issues, update to 3.1.32 or upgrade one at a time.