From 38d7e565355424fd88b7b714186d6540a0672a97 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 8 May 2025 07:04:17 +0000
Subject: [PATCH] fix: benchmarks/requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-GEVENT-9919772
- https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-9964606
---
 benchmarks/requirements.txt | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/benchmarks/requirements.txt b/benchmarks/requirements.txt
index 5dc157c..e4ae2b3 100644
--- a/benchmarks/requirements.txt
+++ b/benchmarks/requirements.txt
@@ -1,2 +1,4 @@
 locust==1.4.1
 redis==3.5.3
+gevent>=25.4.1 # not directly required, pinned by Snyk to avoid a vulnerability
+setuptools>=78.1.1 # not directly required, pinned by Snyk to avoid a vulnerability