From e93ca6f3e5a19067f5bdae2ac01f79a62dfda4ef Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 26 Sep 2023 17:16:35 +0000 Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-5918878 --- requirements.txt | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index e6b0a23..13abba1 100644 --- a/requirements.txt +++ b/requirements.txt @@ -8,4 +8,5 @@ Shapely # Packaging setuptools>=40.6.3 -wheel>=0.32.3 \ No newline at end of file +wheel>=0.32.3 +pillow>=10.0.1 # not directly required, pinned by Snyk to avoid a vulnerability \ No newline at end of file