fix: requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6043904
geekjr · Nov 3, 2023 · ac1a56b · ac1a56b
1 parent 75edb11
commit ac1a56b
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/requirements.txt b/requirements.txt
@@ -5,7 +5,7 @@ numpy~=1.22.0rc1
 scikit-learn~=0.24.1
 matplotlib~=3.4.1
 coremltools
-pillow>=8.3.2 # not directly required, pinned by Snyk to avoid a vulnerability
+pillow>=10.0.0 # not directly required, pinned by Snyk to avoid a vulnerability
 protobuf>=3.20.2 # not directly required, pinned by Snyk to avoid a vulnerability
 wheel>=0.38.0 # not directly required, pinned by Snyk to avoid a vulnerability
 setuptools>=65.5.1 # not directly required, pinned by Snyk to avoid a vulnerability