From af31ed98a1bdf0ad515816da5cf46ce38d8ce97e Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 27 Oct 2022 19:40:03 +0000
Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321964
- https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321966
- https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321969
- https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321970
- https://snyk.io/vuln/SNYK-PYTHON-THRIFT-474615
- https://snyk.io/vuln/SNYK-PYTHON-THRIFT-564126
---
 requirements.txt | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/requirements.txt b/requirements.txt
index 6060cbe23..e0631820d 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -36,7 +36,7 @@ ldif3==3.2.2
 
 # Python 3.5+
 #numpy==1.17.2
-numpy==1.16.5
+numpy==1.22.2
 
 # requires pg_config to build from source
 #psycopg2==2.8.4
@@ -72,7 +72,7 @@ selenium==3.141.0
 #snakebite==2.11.0
 
 thrift-sasl==0.2.1
-thrift==0.9.3
+thrift==0.13.0
 thriftpy==0.3.9
 toml==0.10.0
 xmltodict==0.10.2