From f816e7f44539b3a5d8d824f087633fbf6b7752ef Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 1 Feb 2024 22:02:43 +0000
Subject: [PATCH] fix: predict_requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6219984
- https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6219986
---
 predict_requirements.txt | 1 +
 1 file changed, 1 insertion(+)

diff --git a/predict_requirements.txt b/predict_requirements.txt
index 15893e5..abbf851 100644
--- a/predict_requirements.txt
+++ b/predict_requirements.txt
@@ -11,3 +11,4 @@ setuptools-git>=1.2
 python-dateutil>=2.8.1  
 tqdm>=4.54.0
 fbprophet>=0.7.1
+pillow>=10.2.0 # not directly required, pinned by Snyk to avoid a vulnerability