diff --git a/.whitesource b/.whitesource
new file mode 100644
index 00000000..f0569521
--- /dev/null
+++ b/.whitesource
@@ -0,0 +1,8 @@
+{
+  "generalSettings": {
+    "shouldScanRepo": true
+  },
+  "checkRunSettings": {
+    "vulnerableCheckRunConclusionLevel": "failure"
+  }
+}
\ No newline at end of file
diff --git a/python3/requirements.txt b/python3/requirements.txt
index d7b6c42f..1b184e82 100644
--- a/python3/requirements.txt
+++ b/python3/requirements.txt
@@ -2,3 +2,4 @@ dotenv
 twilio
 yagmail
 git+https://github.com/charlierguo/gmail
+pyjwt>=2.4.0 # not directly required, pinned by Snyk to avoid a vulnerability