fix: requirements-dev.txt to reduce vulnerabilities

snyk-bot · beeme1mr · commit dbf5a71996b7 · 2022-11-15T08:04:47.000-05:00
The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-3113904 Signed-off-by: Michael Beemer <beeme1mr@users.noreply.github.com>
diff --git a/requirements-dev.txt b/requirements-dev.txt
@@ -102,3 +102,4 @@ wrapt==1.14.1
 # The following packages are considered to be unsafe in a requirements file:
 # pip
 # setuptools
+setuptools>=65.5.1 # not directly required, pinned by Snyk to avoid a vulnerability
