From 50a2954807993836e0ea1b3658335077c52ebd84 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sat, 14 Oct 2023 22:26:22 +0000
Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321964
- https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321966
- https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321970
- https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-3180412
---
 requirements.txt | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/requirements.txt b/requirements.txt
index ab3ac15..dd35364 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -1,7 +1,7 @@
 catboost>=0.25.1
 category-encoders>=2.2.2
 matplotlib>=3.4.1
-numpy>=1.20.2
+numpy>=1.22.2
 pandas>=1.2.4
 pandas-profiling>=2.13.0
 pyrasgo>=0.1.0a10
@@ -11,3 +11,4 @@ statsmodels>=0.12.2
 sweetviz>=2.1.0
 xgboost>=1.4.1
 
+setuptools>=65.5.1 # not directly required, pinned by Snyk to avoid a vulnerability