PyPI: dbt-coverage

CVE-2023-37920

Safety vulnerability ID: SFTY-20230725-66658

Safety legacy ID: pyup.io-68469

Dbt-coverage version 0.3.7 has updated its certifi dependency from version 2023.7.22 to 2024.2.2 to address the security vulnerability identified in CVE-2023-37920.

PythonPyPINVDNVD
Created at: Nov 5, 2025Updated at: Nov 5, 2025

Overview

Dbt-coverage version 0.3.7 has updated its certifi dependency from version 2023.7.22 to 2024.2.2 to address the security vulnerability identified in CVE-2023-37920.

Advisory

Dbt-coverage version 0.3.7 has updated its certifi dependency from version 2023.7.22 to 2024.2.2 to address the security vulnerability identified in CVE-2023-37920.

Affected Package

Affecting dbt-coverage package, versions
<0.3.7

Also affects

---

How to Fix

Upgrade
dbt-coverage
to
0.3.7
or higher.

Mitigation and Workarounds

---

Vulnerable Functions

Functions linked to known vulnerabilities.

Vulnerable function data is available for Enterprise customers

Book a call with us to see Safety in action.

References

Safety

Verified by Safety

Our Cybersecurity Intelligence Team reviewed this vulnerability. We combine public data with our own research to find issues not yet reported to public sources.

Learn more