fix: dev-requirements.txt to reduce vulnerabilitiessnyk-fix-3a9af49ce5f9976e3d530f42509537fb

The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-FONTTOOLS-6133203
author: snyk-bot <snyk-bot@snyk.io> 2023-12-21 17:52:39 +0000
committer: snyk-bot <snyk-bot@snyk.io> 2023-12-21 17:52:39 +0000
commit: 4fb7044ba29ac7d815a53b7b3c6cba794bff8577 (patch)
tree: 0a84e3325ba9562840c35fe1e984fb61b954c6d3
parent: 380888a5648d914439f9b221dfd5ce589b2ffd54 (diff)
1 files changed, 2 insertions, 1 deletions
diff --git a/dev-requirements.txt b/dev-requirements.txt
index e0757fdc..a93efd06 100644
--- a/dev-requirements.txt
+++ b/dev-requirements.txt
@@ -12,4 +12,5 @@ matplotlib
 semgrep
 setuptools>=65.5.1 # not directly required, pinned by Snyk to avoid a vulnerability
 numpy>=1.22.2 # not directly required, pinned by Snyk to avoid a vulnerability
-pillow>=10.0.1 # not directly required, pinned by Snyk to avoid a vulnerability
-\ No newline at end of file
+pillow>=10.0.1 # not directly required, pinned by Snyk to avoid a vulnerability
+fonttools>=4.43.0 # not directly required, pinned by Snyk to avoid a vulnerability
+\ No newline at end of file
author	snyk-bot <snyk-bot@snyk.io>	2023-12-21 17:52:39 +0000
committer	snyk-bot <snyk-bot@snyk.io>	2023-12-21 17:52:39 +0000
commit	4fb7044ba29ac7d815a53b7b3c6cba794bff8577 (patch)
tree	0a84e3325ba9562840c35fe1e984fb61b954c6d3
parent	380888a5648d914439f9b221dfd5ce589b2ffd54 (diff)