From dc57a9307066b0323771541464b48ee6b11e032c Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 29 Aug 2023 14:24:38 +0000
Subject: [PATCH] fix: binder/requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-JUPYTERSERVER-5862881
- https://snyk.io/vuln/SNYK-PYTHON-JUPYTERSERVER-5862882
---
 binder/requirements.txt | 1 +
 1 file changed, 1 insertion(+)

diff --git a/binder/requirements.txt b/binder/requirements.txt
index 897fb21..1aedb2d 100644
--- a/binder/requirements.txt
+++ b/binder/requirements.txt
@@ -15,3 +15,4 @@ black
 
 # To remove the output from the notebooks
 nbstripout
+jupyter-server>=2.7.2 # not directly required, pinned by Snyk to avoid a vulnerability