From f3cab73727d0d68fdf9d753baf20dc62b17e4659 Mon Sep 17 00:00:00 2001
From: "snyk-io[bot]" <141718529+snyk-io[bot]@users.noreply.github.com>
Date: Mon, 30 Mar 2026 18:37:30 +0000
Subject: [PATCH] fix: requirements-dev.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-PYGMENTS-15746419
---
 requirements-dev.txt | 1 +
 1 file changed, 1 insertion(+)

diff --git a/requirements-dev.txt b/requirements-dev.txt
index c04accc3f..2d93793e7 100644
--- a/requirements-dev.txt
+++ b/requirements-dev.txt
@@ -22,3 +22,4 @@ requests==2.7.0
 # Pinned because latest version requires Python 2.7+ (https://github.com/sphinx-doc/sphinx/issues/2919).
 sphinx==1.5.6
 sphinx-rtd-theme==0.1.8
+pygments>=2.20.0 # not directly required, pinned by Snyk to avoid a vulnerability