From 6a3dab81bebac37c40c044b02603d1a13392d461 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 4 Feb 2025 20:17:50 +0000
Subject: [PATCH] fix: requirements/dev.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-3180412
- https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-7448482
---
 requirements/dev.txt | 1 +
 1 file changed, 1 insertion(+)

diff --git a/requirements/dev.txt b/requirements/dev.txt
index a920601b7c..f865e3be11 100644
--- a/requirements/dev.txt
+++ b/requirements/dev.txt
@@ -15,3 +15,4 @@ pathlib2==2.3.2; python_version<"3.4"
 futures==3.2.0; python_version<"3.2.3"
 # Py3.2 backport
 backports.tempfile==1.0
+setuptools>=70.0.0 # not directly required, pinned by Snyk to avoid a vulnerability