From 03dfaea92fe9a6a6ffa66f8915a17712e139ec98 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 30 Dec 2022 22:30:57 +0000 Subject: [PATCH] fix: requirements-dev.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-GITPYTHON-3113858 --- requirements-dev.txt | 1 + 1 file changed, 1 insertion(+) diff --git a/requirements-dev.txt b/requirements-dev.txt index 2d1d7df1ef..f0b80b953c 100644 --- a/requirements-dev.txt +++ b/requirements-dev.txt @@ -7,3 +7,4 @@ sphinx>=1.6 sphinx-intl tabulate transifex-client +gitpython>=3.1.30 # not directly required, pinned by Snyk to avoid a vulnerability