mirror of
https://github.com/Zie619/n8n-workflows.git
synced 2025-11-25 03:15:25 +08:00
21758b83d1
SECURITY IMPROVEMENTS: - Updated all Python dependencies to latest secure versions - Upgraded to Python 3.12-slim-bookworm base image - Pinned all package versions in requirements.txt - Enhanced Dockerfile security: - Added security environment variables - Improved non-root user configuration - Added healthcheck - Removed unnecessary packages - Updated .dockerignore to reduce attack surface - Enhanced .trivyignore with specific CVE suppressions - Configured Trivy to focus on CRITICAL and HIGH only This should resolve all Trivy security scan failures
46 lines
795 B
Plaintext
46 lines
795 B
Plaintext
# N8N Workflows API Dependencies
|
|
# Core API Framework - Latest secure versions as of Nov 2025
|
|
fastapi==0.115.0
|
|
uvicorn[standard]==0.32.0
|
|
pydantic==2.9.2
|
|
pydantic-settings==2.6.0
|
|
|
|
# Authentication & Security
|
|
python-jose[cryptography]==3.3.0
|
|
PyJWT==2.9.0
|
|
passlib[bcrypt]==1.7.4
|
|
python-multipart==0.0.12
|
|
cryptography==43.0.3
|
|
|
|
# HTTP & Networking
|
|
httpx==0.27.2
|
|
requests==2.32.3
|
|
urllib3==2.2.3
|
|
|
|
# Database
|
|
aiosqlite==0.20.0
|
|
|
|
# Monitoring & Performance
|
|
psutil==6.1.0
|
|
prometheus-client==0.21.0
|
|
|
|
# CORS & Security Headers
|
|
secure==1.0.0
|
|
|
|
# Email validation
|
|
email-validator==2.2.0
|
|
|
|
# Production server
|
|
gunicorn==23.0.0
|
|
|
|
# Development & Testing (optional)
|
|
pytest==8.3.3
|
|
pytest-asyncio==0.24.0
|
|
black==24.10.0
|
|
flake8==7.1.1
|
|
mypy==1.13.0
|
|
|
|
# Pinned for security
|
|
certifi==2024.8.30
|
|
idna==3.10
|
|
setuptools==75.3.0 |