From 12aca775adf78f14d633cfcb2e668a92c2b1de79 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Wed, 26 Feb 2025 05:27:10 +0000
Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-GITPYTHON-2407255
- https://snyk.io/vuln/SNYK-PYTHON-GITPYTHON-3113858
- https://snyk.io/vuln/SNYK-PYTHON-GITPYTHON-5840584
- https://snyk.io/vuln/SNYK-PYTHON-GITPYTHON-5871282
- https://snyk.io/vuln/SNYK-PYTHON-GITPYTHON-5876644
- https://snyk.io/vuln/SNYK-PYTHON-GITPYTHON-6150683
- https://snyk.io/vuln/SNYK-PYTHON-IPYTHON-2348630
- https://snyk.io/vuln/SNYK-PYTHON-IPYTHON-3318382
- https://snyk.io/vuln/SNYK-PYTHON-ORJSON-6276643
- https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-3180412
- https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-7448482
- https://snyk.io/vuln/SNYK-PYTHON-ZIPP-7430899
---
 requirements.txt | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/requirements.txt b/requirements.txt
index 565bee00..24526d3c 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -1,5 +1,5 @@
 radish-bdd==0.13.1
-gitpython==3.1.20
+gitpython==3.1.41
 netaddr==0.8.0
 colorful==0.5.4
 filetype==1.2.0
@@ -7,6 +7,8 @@ junit-xml==1.9
 emoji==2.2.0
 lxml==4.9.2
 semver==3.0.2
-IPython==7.16.1
-orjson==3.8.8
+IPython==8.10.0
+orjson==3.9.15
 diskcache==5.6.3
+setuptools>=70.0.0 # not directly required, pinned by Snyk to avoid a vulnerability
+zipp>=3.19.1 # not directly required, pinned by Snyk to avoid a vulnerability