From b8982546f8d776bb3e88c07a5aa8dca1c17f5943 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sat, 2 Sep 2023 14:47:37 +0000
Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-GITPYTHON-5871282
---
 requirements.txt | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/requirements.txt b/requirements.txt
index 9e644234e..673d83377 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -20,7 +20,7 @@ dicttoxml==1.7.4
 
 # fails on requiring newer version of setuptools
 #Flask==0.10.1
-GitPython==2.1.15
+GitPython==3.1.33
 
 # this GCP API is surprisingly awful, not using
 #google-api-python-client==1.11.0