From e69add63a70bda4d8a1d96c09872ac493c3db56b Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 1 Oct 2024 06:39:37 +0000
Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-ANYIO-7361842
- https://snyk.io/vuln/SNYK-PYTHON-CERTIFI-5805047
- https://snyk.io/vuln/SNYK-PYTHON-CERTIFI-7430173
- https://snyk.io/vuln/SNYK-PYTHON-GITPYTHON-5840584
- https://snyk.io/vuln/SNYK-PYTHON-GITPYTHON-5871282
- https://snyk.io/vuln/SNYK-PYTHON-GITPYTHON-5876644
- https://snyk.io/vuln/SNYK-PYTHON-GITPYTHON-6150683
- https://snyk.io/vuln/SNYK-PYTHON-IDNA-6597975
- https://snyk.io/vuln/SNYK-PYTHON-IPYTHON-3318382
- https://snyk.io/vuln/SNYK-PYTHON-JINJA2-6150717
- https://snyk.io/vuln/SNYK-PYTHON-JINJA2-6809379
- https://snyk.io/vuln/SNYK-PYTHON-JUPYTERSERVER-5862881
- https://snyk.io/vuln/SNYK-PYTHON-JUPYTERSERVER-5862882
- https://snyk.io/vuln/SNYK-PYTHON-JUPYTERSERVER-6099119
- https://snyk.io/vuln/SNYK-PYTHON-JUPYTERSERVER-7217832
- https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321964
- https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321966
- https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321970
- https://snyk.io/vuln/SNYK-PYTHON-PILLOW-5918878
- https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6043904
- https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6182918
- https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6219984
- https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6219986
- https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6514866
- https://snyk.io/vuln/SNYK-PYTHON-PYARROW-6052811
- https://snyk.io/vuln/SNYK-PYTHON-REQUESTS-5595532
- https://snyk.io/vuln/SNYK-PYTHON-REQUESTS-6928867
- https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-3180412
- https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-7448482
- https://snyk.io/vuln/SNYK-PYTHON-STREAMLIT-5880413
- https://snyk.io/vuln/SNYK-PYTHON-STREAMLIT-6156621
- https://snyk.io/vuln/SNYK-PYTHON-STREAMLIT-7676257
- https://snyk.io/vuln/SNYK-PYTHON-TORNADO-5537286
- https://snyk.io/vuln/SNYK-PYTHON-TORNADO-5840803
- https://snyk.io/vuln/SNYK-PYTHON-TORNADO-6041512
- https://snyk.io/vuln/SNYK-PYTHON-TORNADO-7217828
- https://snyk.io/vuln/SNYK-PYTHON-TORNADO-7217829
- https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-5926907
- https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-6002459
- https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-7267250
- https://snyk.io/vuln/SNYK-PYTHON-VALIDATORS-6008990
- https://snyk.io/vuln/SNYK-PYTHON-ZIPP-7430899
---
 requirements.txt | 29 +++++++++++++++--------------
 1 file changed, 15 insertions(+), 14 deletions(-)

diff --git a/requirements.txt b/requirements.txt
index e96ccee..e27921e 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -2,7 +2,7 @@
 # Please do not edit it manually.
 
 altair==4.2.2
-anyio==3.6.2
+anyio==4.4.0
 appnope==0.1.3
 argon2-cffi==21.3.0
 argon2-cffi-bindings==21.2.0
@@ -15,7 +15,7 @@ bleach==6.0.0
 blinker==1.6.2
 branca==0.6.0
 cachetools==5.3.0
-certifi==2023.5.7
+certifi==2024.7.4
 cffi==1.15.1
 charset-normalizer==3.1.0
 click==8.1.3
@@ -29,21 +29,21 @@ fastjsonschema==2.16.3
 folium==0.14.0
 fqdn==1.5.1
 gitdb==4.0.10
-gitpython==3.1.31
-idna==3.4
+gitpython==3.1.41
+idna==3.7
 importlib-metadata==6.6.0
 ipykernel==6.23.0
 ipython==8.13.2
 ipython-genutils==0.2.0
 isoduration==20.11.0
 jedi==0.18.2
-jinja2==3.1.2
+jinja2==3.1.4
 jsonpointer==2.3
 jsonschema==4.17.3
 jupyter-client==8.2.0
 jupyter-core==5.3.0
 jupyter-events==0.6.3
-jupyter-server==2.5.0
+jupyter-server==2.14.1
 jupyter-server-terminals==0.4.4
 jupyterlab-pygments==0.2.2
 markdown-it-py==2.2.0
@@ -65,7 +65,7 @@ pandocfilters==1.5.0
 parso==0.8.3
 pexpect==4.8.0
 pickleshare==0.7.5
-Pillow==9.5.0
+Pillow==10.3.0
 platformdirs==3.5.1
 prometheus-client==0.16.0
 prompt-toolkit==3.0.38
@@ -73,7 +73,7 @@ protobuf==3.20.3
 psutil==5.9.5
 ptyprocess==0.7.0
 pure-eval==0.2.2
-pyarrow==12.0.0
+pyarrow==14.0.1
 pycparser==2.21
 pydeck==0.8.1b0
 pygments==2.15.1
@@ -84,7 +84,7 @@ python-json-logger==2.0.7
 pytz==2023.3
 pyyaml==6.0
 pyzmq==25.0.2
-requests==2.30.0
+requests==2.32.2
 rfc3339-validator==0.1.4
 rfc3986-validator==0.1.1
 rich==13.3.5
@@ -94,7 +94,7 @@ smmap==5.0.0
 sniffio==1.3.0
 soupsieve==2.4.1
 stack-data==0.6.2
-streamlit==1.22.0
+streamlit==1.37.0
 streamlit-folium==0.11.1
 tenacity==8.2.2
 terminado==0.17.1
@@ -102,17 +102,18 @@ tinycss2==1.2.1
 toml==0.10.2
 tomli==2.0.1
 toolz==0.12.0
-tornado==6.3.2
+tornado==6.4.1
 traitlets==5.9.0
 typing-extensions==4.5.0
 tzdata==2023.3
 tzlocal==5.0
 uri-template==1.2.0
-urllib3==2.0.2
-validators==0.20.0
+urllib3==2.2.2
+validators==0.21.0
 watchdog==3.0.0
 wcwidth==0.2.6
 webcolors==1.13
 webencodings==0.5.1
 websocket-client==1.5.1
-zipp==3.15.0
+zipp==3.19.1
+setuptools>=70.0.0 # not directly required, pinned by Snyk to avoid a vulnerability