From 7578904dd774c61c7ddbe8db3671ab67ab29e13b Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sat, 20 Dec 2025 08:23:04 +0000
Subject: [PATCH] fix: requirements/ci.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-FILELOCK-14458335
---
 requirements/ci.txt | 1 +
 1 file changed, 1 insertion(+)

diff --git a/requirements/ci.txt b/requirements/ci.txt
index 8c7da7e5f87..4424cfd7122 100644
--- a/requirements/ci.txt
+++ b/requirements/ci.txt
@@ -4,3 +4,4 @@ six==1.14.0
 pluggy==0.13.1
 tox==3.19.0
 tox-pip-extensions==1.6.0
+filelock>=3.20.1 # not directly required, pinned by Snyk to avoid a vulnerability