From 15f485ae628dd342c87a96b76d5a8b2827a30bc0 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 3 Aug 2023 02:41:04 +0000
Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-5813745
- https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-5813746
- https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-5813750
---
 requirements.txt | 1 +
 1 file changed, 1 insertion(+)

diff --git a/requirements.txt b/requirements.txt
index 3e7f314..779002a 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -9,3 +9,4 @@ hca >= 6.3.0, <7
 psycopg2-binary==2.7.5
 dcplib >= 3.2.1, < 4
 PyGithub
+cryptography>=41.0.3 # not directly required, pinned by Snyk to avoid a vulnerability