From 99c964fff0b425e8c23b081cd4baed07261cd10a Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 26 Sep 2023 21:58:29 +0000 Subject: [PATCH] fix: requirements/base.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-5918878 --- requirements/base.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements/base.txt b/requirements/base.txt index 1d60d0d8..50a7200c 100644 --- a/requirements/base.txt +++ b/requirements/base.txt @@ -1,7 +1,7 @@ # https://github.com/stub42/pytz pytz==2022.7 # https://github.com/python-pillow/Pillow -Pillow==9.3.0 +Pillow==10.0.1 # https://github.com/hynek/argon2_cffi argon2-cffi==21.3.0 # https://github.com/evansd/whitenoise