From 34a77f80a0d548ef6c56c0620e6f87ec400c9af6 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Wed, 17 Dec 2025 03:59:16 +0000
Subject: [PATCH] fix: doc/requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-FONTTOOLS-14151621
- https://snyk.io/vuln/SNYK-PYTHON-TORNADO-14400977
- https://snyk.io/vuln/SNYK-PYTHON-TORNADO-14400978
- https://snyk.io/vuln/SNYK-PYTHON-TORNADO-14400979
---
 doc/requirements.txt | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/doc/requirements.txt b/doc/requirements.txt
index 43a4b80665..934e4ad585 100644
--- a/doc/requirements.txt
+++ b/doc/requirements.txt
@@ -12,4 +12,6 @@ matplotlib
 seaborn
 mypy_extensions>=0.4
 # mistune<2
-jupyterlab>=4.4.8 # not directly required, pinned by Snyk to avoid a vulnerability
\ No newline at end of file
+jupyterlab>=4.4.8 # not directly required, pinned by Snyk to avoid a vulnerability
+fonttools>=4.61.0 # not directly required, pinned by Snyk to avoid a vulnerability
+tornado>=6.5.3 # not directly required, pinned by Snyk to avoid a vulnerability
\ No newline at end of file