From 07738ce67fe9eb8101ecbafee66f703bf3fd3aba Mon Sep 17 00:00:00 2001
From: "snyk-io[bot]" <141718529+snyk-io[bot]@users.noreply.github.com>
Date: Thu, 22 Aug 2024 00:06:29 +0000
Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-PILLOW-5918878
- https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6182918
---
 requirements.txt | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/requirements.txt b/requirements.txt
index a1ee4ed325..b021ba3920 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -29,7 +29,7 @@ pyodbc==4.0.39
 RDFLib==5.0.0
 # other
 graphviz==0.20.1
-Pillow==9.5.0
+Pillow==10.2.0
 pywin32==306 ; sys_platform == "win32"
 tinycss2==1.2.1
 setuptools>=70.0.0 # not directly required, pinned by Snyk to avoid a vulnerability