From 1b07e47fab6074519a8de00501a3388dbe2f3a5a Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 1 Apr 2026 02:24:35 +0000 Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-15809188 - https://snyk.io/vuln/SNYK-PYTHON-PYGMENTS-15746419 --- requirements.txt | 2 ++ 1 file changed, 2 insertions(+) diff --git a/requirements.txt b/requirements.txt index 66b5e150..b9a1947f 100644 --- a/requirements.txt +++ b/requirements.txt @@ -49,3 +49,5 @@ elastic-transport==8.17 litellm==1.77.0 strawberry-graphql==0.285.0 strawberry-graphql-django==0.67.0 +cryptography>=46.0.6 # not directly required, pinned by Snyk to avoid a vulnerability +pygments>=2.20.0 # not directly required, pinned by Snyk to avoid a vulnerability