From cdf79e7314a96334a0e0f8d35f364658671aa1a4 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Fri, 30 Dec 2022 20:15:01 +0000
Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-GITPYTHON-3113858
---
 requirements.txt | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/requirements.txt b/requirements.txt
index 6060cbe23..bd85d709b 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -20,7 +20,7 @@ dicttoxml==1.7.4
 
 # fails on requiring newer version of setuptools
 #Flask==0.10.1
-GitPython==2.1.15
+GitPython==3.1.30
 
 # this GCP API is surprisingly awful, not using
 #google-api-python-client==1.11.0