From 35471ba9b673842aa2f997e03211baf80c3c1e8b Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Mon, 22 Jun 2026 05:33:28 +0000 Subject: [PATCH] fix: requirements-dev.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-JUPYTERSERVER-17152947 - https://snyk.io/vuln/SNYK-PYTHON-JUPYTERSERVER-17391532 - https://snyk.io/vuln/SNYK-PYTHON-TORNADO-17356157 --- requirements-dev.txt | 2 ++ 1 file changed, 2 insertions(+) diff --git a/requirements-dev.txt b/requirements-dev.txt index b2a2fea42e..09f9e4fe15 100644 --- a/requirements-dev.txt +++ b/requirements-dev.txt @@ -42,3 +42,5 @@ sphinx-autodoc-typehints pickleshare jupyterlab>=4.4.8 # not directly required, pinned by Snyk to avoid a vulnerability zipp>=3.19.1 # not directly required, pinned by Snyk to avoid a vulnerability +jupyter-server>=2.20.0 # not directly required, pinned by Snyk to avoid a vulnerability +tornado>=6.5.7 # not directly required, pinned by Snyk to avoid a vulnerability