From 6ea850f88e590093d0d006f16a80610cc80d3bc1 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 31 Oct 2024 05:58:50 +0000
Subject: [PATCH] fix: requirements/development.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-8309091
- https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-8309092
---
 requirements/development.txt | 1 +
 1 file changed, 1 insertion(+)

diff --git a/requirements/development.txt b/requirements/development.txt
index b2ed1b8b3a1cc..37f9850a57060 100644
--- a/requirements/development.txt
+++ b/requirements/development.txt
@@ -267,3 +267,4 @@ zope-interface==5.4.0
 # The following packages are considered to be unsafe in a requirements file:
 # pip
 # setuptools
+werkzeug>=3.0.6 # not directly required, pinned by Snyk to avoid a vulnerability