From 39937f6966ea7a95361e0b9d3e6ddf4a8be89099 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Mon, 1 Apr 2024 22:14:09 +0000
Subject: [PATCH] fix: requirements_dev.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6514866
---
 requirements_dev.txt | 1 +
 1 file changed, 1 insertion(+)

diff --git a/requirements_dev.txt b/requirements_dev.txt
index 5a728014e..529d9640f 100644
--- a/requirements_dev.txt
+++ b/requirements_dev.txt
@@ -14,3 +14,4 @@ rqrisk >=0.0.9
 h5py
 matplotlib >=1.5.1 ; python_version >= '3.6'
 matplotlib >=1.5.1,<=3.0.3 ; python_version == '3.5'
+pillow>=10.3.0 # not directly required, pinned by Snyk to avoid a vulnerability