From 9dd8a9a6f0d11daa565e0297e236035b227de7a9 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Mon, 1 Apr 2024 18:24:28 +0000
Subject: [PATCH] fix: ci/requirements-3.4_32.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6514866
---
 ci/requirements-3.4_32.txt | 1 +
 1 file changed, 1 insertion(+)

diff --git a/ci/requirements-3.4_32.txt b/ci/requirements-3.4_32.txt
index f2a364ed64311..a4e149fe9c7cf 100644
--- a/ci/requirements-3.4_32.txt
+++ b/ci/requirements-3.4_32.txt
@@ -8,3 +8,4 @@ scipy
 numexpr
 pytables
 matplotlib
+pillow>=10.3.0 # not directly required, pinned by Snyk to avoid a vulnerability