From a3d7ec2f8beda1b17b9fae3643fd0adf3f10ae01 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sat, 17 May 2025 06:48:11 +0000
Subject: [PATCH] fix: requirements-dev.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-TORNADO-10176059
---
 requirements-dev.txt | 1 +
 1 file changed, 1 insertion(+)

diff --git a/requirements-dev.txt b/requirements-dev.txt
index 60dd738e43..b6a5811ddc 100644
--- a/requirements-dev.txt
+++ b/requirements-dev.txt
@@ -101,3 +101,4 @@ jupyterlab >=3.4,<4
 jupyterlite==0.1.0b10
 sphinx-toggleprompt
 setuptools>=51.0.0
+tornado>=6.5 # not directly required, pinned by Snyk to avoid a vulnerability