
Testing pip-app-transitive-vuln...

✗ Medium severity vulnerability found in Jinja2
  Description: Sandbox Escape
  Info: https://security.snyk.io/vuln/SNYK-PYTHON-JINJA2-174126
  Introduced through: flask@0.12.2
  From: flask@0.12.2 > Jinja2@2.9.6
  Remediation:
    Pin the transitive dependency Jinja2 to version 2.10.1

✗ High severity vulnerability found in flask
  Description: Improper Input Validation
  Info: https://security.snyk.io/vuln/SNYK-PYTHON-FLASK-42185
  Introduced through: flask@0.12.2
  From: flask@0.12.2
  Remediation:
    Upgrade direct dependency flask@0.12.2 to flask@0.12.3

✗ High severity vulnerability found in flask
  Description: Denial of Service (DOS)
  Info: https://security.snyk.io/vuln/SNYK-PYTHON-FLASK-451637
  Introduced through: flask@0.12.2
  From: flask@0.12.2
  Remediation:
    Upgrade direct dependency flask@0.12.2 to flask@1.0

✗ High severity vulnerability found in Werkzeug
  Description: Insufficient Randomness
  Info: https://security.snyk.io/vuln/SNYK-PYTHON-WERKZEUG-458931
  Introduced through: flask@0.12.2
  From: flask@0.12.2 > Werkzeug@0.12.2
  Remediation:
    Pin the transitive dependency Werkzeug to version 0.15.3



Organization:      kyegupov
Package manager:   pip
Target file:       requirements.txt
Project name:      pip-app-transitive-vuln
Open source:       no
Project path:      pip-app-transitive-vuln

Tested 6 dependencies for known vulnerabilities, found 4 vulnerabilities, 4 vulnerable paths.

