From 7628df2b4008b85ee00a33a713200e6eb7bd726c Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sat, 8 Jun 2024 02:53:06 +0000
Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-JUPYTERSERVER-7217832
- https://snyk.io/vuln/SNYK-PYTHON-TORNADO-7217828
- https://snyk.io/vuln/SNYK-PYTHON-TORNADO-7217829
---
 requirements.txt | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/requirements.txt b/requirements.txt
index b0ba752..8220fe3 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -118,3 +118,5 @@ webencodings==0.5.1
 websocket-client==1.5.0
 widgetsnbextension==4.0.5
 XlsxWriter==3.0.8
+jupyter-server>=2.14.1 # not directly required, pinned by Snyk to avoid a vulnerability
+tornado>=6.4.1 # not directly required, pinned by Snyk to avoid a vulnerability