From 90249e06040596a0b29c236f8225b89210d2d1dd Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Fri, 2 Feb 2024 02:29:32 +0000
Subject: [PATCH] fix: requirements/testing.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-GRPCIO-5834443
- https://snyk.io/vuln/SNYK-PYTHON-IPYTHON-2348630
- https://snyk.io/vuln/SNYK-PYTHON-IPYTHON-3318382
- https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321964
- https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321966
- https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321970
- https://snyk.io/vuln/SNYK-PYTHON-OAUTHLIB-3021142
- https://snyk.io/vuln/SNYK-PYTHON-PROTOBUF-3031740
- https://snyk.io/vuln/SNYK-PYTHON-PYGMENTS-5750273
- https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-3180412
---
 requirements/testing.txt | 12 +++++++-----
 1 file changed, 7 insertions(+), 5 deletions(-)

diff --git a/requirements/testing.txt b/requirements/testing.txt
index ef84e6973c4ea..b70bdaf39ce43 100644
--- a/requirements/testing.txt
+++ b/requirements/testing.txt
@@ -67,7 +67,7 @@ googleapis-common-protos==1.53.0
     # via
     #   google-api-core
     #   grpcio-status
-grpcio==1.41.1
+grpcio==1.53.2
     # via
     #   google-api-core
     #   google-cloud-bigquery
@@ -78,7 +78,7 @@ iniconfig==1.1.1
     # via pytest
 ipdb==0.13.9
     # via -r requirements/testing.in
-ipython==7.26.0
+ipython==8.10.0
     # via
     #   -r requirements/testing.in
     #   ipdb
@@ -98,7 +98,7 @@ mccabe==0.6.1
     # via pylint
 mypy-extensions==0.4.3
     # via typing-inspect
-oauthlib==3.1.1
+oauthlib==3.2.2
     # via requests-oauthlib
 openapi-schema-validator==0.1.5
     # via openapi-spec-validator
@@ -122,7 +122,7 @@ proto-plus==1.19.7
     # via
     #   google-cloud-bigquery
     #   google-cloud-bigquery-storage
-protobuf==3.19.1
+protobuf==3.19.5
     # via
     #   google-api-core
     #   google-cloud-bigquery
@@ -145,7 +145,7 @@ pydata-google-auth==1.2.0
     # via pandas-gbq
 pyfakefs==4.5.0
     # via -r requirements/testing.in
-pygments==2.9.0
+pygments==2.15.0
     # via ipython
 pyhive[hive,presto]==0.6.4
     # via
@@ -184,3 +184,5 @@ wrapt==1.12.1
 # The following packages are considered to be unsafe in a requirements file:
 # pip
 # setuptools
+numpy>=1.22.2 # not directly required, pinned by Snyk to avoid a vulnerability
+setuptools>=65.5.1 # not directly required, pinned by Snyk to avoid a vulnerability