From 292baf43727cbf52a164b553599fb9896f6ad3ac Mon Sep 17 00:00:00 2001
From: Freddy Daniel Alvarez <user01.eaglerw@gmail.com>
Date: Sat, 1 Nov 2025 01:03:04 -0400
Subject: [PATCH] fix(security): pin GitPython to 3.1.27
 (SNYK-PYTHON-GITPYTHON-2407255) and verify locally

---
 requirements.txt | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/requirements.txt b/requirements.txt
index 05d204c5..bf01f33a 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -20,7 +20,7 @@ dicttoxml==1.7.4
 
 # fails on requiring newer version of setuptools
 #Flask==0.10.1
-GitPython==2.1.15
+gitpython==3.1.27
 
 # this GCP API is surprisingly awful, not using
 #google-api-python-client==1.11.0