diff options
author | snyk-bot <snyk-bot@snyk.io> | 2023-12-21 17:52:39 +0000 |
---|---|---|
committer | snyk-bot <snyk-bot@snyk.io> | 2023-12-21 17:52:39 +0000 |
commit | 4fb7044ba29ac7d815a53b7b3c6cba794bff8577 (patch) | |
tree | 0a84e3325ba9562840c35fe1e984fb61b954c6d3 | |
parent | 380888a5648d914439f9b221dfd5ce589b2ffd54 (diff) |
fix: dev-requirements.txt to reduce vulnerabilitiessnyk-fix-3a9af49ce5f9976e3d530f42509537fb
The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-FONTTOOLS-6133203
-rw-r--r-- | dev-requirements.txt | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/dev-requirements.txt b/dev-requirements.txt index e0757fdc..a93efd06 100644 --- a/dev-requirements.txt +++ b/dev-requirements.txt @@ -12,4 +12,5 @@ matplotlib semgrep setuptools>=65.5.1 # not directly required, pinned by Snyk to avoid a vulnerability numpy>=1.22.2 # not directly required, pinned by Snyk to avoid a vulnerability -pillow>=10.0.1 # not directly required, pinned by Snyk to avoid a vulnerability
\ No newline at end of file +pillow>=10.0.1 # not directly required, pinned by Snyk to avoid a vulnerability +fonttools>=4.43.0 # not directly required, pinned by Snyk to avoid a vulnerability
\ No newline at end of file |