From 8a3fcacf5f619ed09b1e15a63058b76b5c8c9ce5 Mon Sep 17 00:00:00 2001
From: clearml <>
Date: Wed, 4 Jun 2025 11:49:15 +0300
Subject: [PATCH] Fixed requirements vulnerabilities

---
 apiserver/requirements.txt  | 3 ++-
 fileserver/requirements.txt | 2 +-
 2 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/apiserver/requirements.txt b/apiserver/requirements.txt
index 7ade75e..4451e80 100644
--- a/apiserver/requirements.txt
+++ b/apiserver/requirements.txt
@@ -22,6 +22,7 @@ luqum>=0.10.0
 mongoengine==0.29.1
 nested_dict>=1.61
 packaging==20.3
+pillow>=10.3.0  # fix vulnerability derived from clearml 1.18.0
 psutil>=5.6.5
 pyhocon>=0.3.35r
 pyjwt>=2.4.0
@@ -30,7 +31,7 @@ python-rapidjson>=0.6.3
 redis==5.2.1
 requests>=2.13.0
 semantic_version>=2.8.3,<3
-setuptools>=65.5.1
+setuptools>=70.0.0
 six
 validators>=0.12.4
 urllib3>=1.26.18
diff --git a/fileserver/requirements.txt b/fileserver/requirements.txt
index 20f4985..6f936ea 100644
--- a/fileserver/requirements.txt
+++ b/fileserver/requirements.txt
@@ -6,6 +6,6 @@ flask>=2.3.3
 gunicorn>=23.0.0
 pyhocon>=0.3.35
 redis==5.2.1
-setuptools>=65.5.1
+setuptools>=70.0.0
 urllib3>=1.26.18
 werkzeug>=3.0.1
\ No newline at end of file