localstack
Chainguard
6.1
CVSS V3
Status
Impact
The urllib3 package at version 1.26.20 is currently vendored within the Python 3.12 package. Upstream intervention is required to update this dependency and address the associated CVE. In the meantime, we have proactively updated the version in package requirements and pyproject configurations to fixed 2.5.0 version.
Status