From eeb6913022c04a61a0159aabf8eff6baaaab1f93 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sun, 28 Jun 2026 20:55:21 +0000 Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-5918878 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6182918 --- requirements.txt | 1 + 1 file changed, 1 insertion(+) diff --git a/requirements.txt b/requirements.txt index 8428704..cdb79ea 100644 --- a/requirements.txt +++ b/requirements.txt @@ -24,3 +24,4 @@ idna>=3.15 # not directly required, pinned by Snyk to avoid a vulnerability # weasyprint>=60.0 # PDF report export (--pdf) # rq>=1.16.0 # Redis job queue (optional upgrade from threading queue) # redis>=5.0.0 # Redis backend for rq +pillow>=10.2.0 # not directly required, pinned by Snyk to avoid a vulnerability