fix: requirements.txt to reduce vulnerabilities

snyk-bot · snyk-bot · commit 3bd7c0ae5b09 · 2025-09-07T09:21:13.000Z
The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-XMLTODICT-12427118
diff --git a/requirements.txt b/requirements.txt
@@ -8,7 +8,7 @@ pyquaternion==0.9.5
 pyvoro-mmalahe==1.3.4
 scipy>=1.10.1
 setuptools>=70.0.0 
-xmltodict==0.12.0
+xmltodict==0.15.0
 tox==3.14.0
 lsq-ellipse==2.0.1
 zipp>=3.19.1 # not directly required, pinned by Snyk to avoid a vulnerability
