[Snyk] Security upgrade pillow from 9.5.0 to 10.0.1 (cvat-ai#6909)

Co-authored-by: snyk-bot <[email protected]> Co-authored-by: Roman Donchenko <[email protected]>
retailnext · Sep 27, 2023 · 2451f63 · 2451f63
1 parent f47f1a3
commit 2451f63
Show file tree

Hide file tree

Showing 3 changed files with 3 additions and 3 deletions.
diff --git a/cvat-cli/requirements/base.txt b/cvat-cli/requirements/base.txt
@@ -1,3 +1,3 @@
 cvat-sdk~=2.8.0
-Pillow>=6.2.0
+Pillow>=10.0.1
 setuptools>=65.5.1 # not directly required, pinned by Snyk to avoid a vulnerability
diff --git a/cvat-sdk/requirements/base.txt b/cvat-sdk/requirements/base.txt
@@ -2,7 +2,7 @@
 
 attrs >= 21.4.0
 packaging >= 21.3
-Pillow >= 9.0.1
+Pillow >= 10.0.1
 platformdirs >= 2.1.0
 tqdm >= 4.64.0
 tuspy == 0.2.5 # have it pinned, because SDK has lots of patched TUS code

diff --git a/tests/python/requirements.txt b/tests/python/requirements.txt
@@ -5,6 +5,6 @@ pytest-cov==4.1.0
 requests==2.31.0
 deepdiff==5.6.0
 boto3==1.17.61
-Pillow==9.3.0
+Pillow==10.0.1
 pyyaml==6.0.0
 numpy==1.22.0