# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
version: v1.12.0
# ignores vulnerabilities until expiry date; change duration by modifying expiry date
ignore:
  SNYK-PYTHON-REQUESTS-72435:
    - '*':
        reason: 'unaffected, only affects https->http authorization header redirection.'
        expires: 2019-11-05T00:00:00.000Z
  SNYK-PYTHON-REQUESTS-40470:
    - '*':
        reason: 'patched in latest python versions: https://bugs.python.org/issue27568'
  "snyk:lic:pip:certifi:MPL-2.0":
    - '*':
        reason: "Accepting certifi’s MPL-2.0 license for now"
        expires: "2030-12-31T23:59:59Z"
patch: {}
