From 4b2564341c8a31a4eb8e837c314d079f4745078c Mon Sep 17 00:00:00 2001
From: "whitesource-bolt-for-github[bot]"
 <whitesource-bolt-for-github[bot]@users.noreply.github.com>
Date: Tue, 28 May 2019 20:32:02 +0000
Subject: [PATCH 1/2] Initial WhiteSource configuration file

---
 .whitesource | 8 ++++++++
 1 file changed, 8 insertions(+)
 create mode 100644 .whitesource

diff --git a/.whitesource b/.whitesource
new file mode 100644
index 00000000..f0569521
--- /dev/null
+++ b/.whitesource
@@ -0,0 +1,8 @@
+{
+  "generalSettings": {
+    "shouldScanRepo": true
+  },
+  "checkRunSettings": {
+    "vulnerableCheckRunConclusionLevel": "failure"
+  }
+}
\ No newline at end of file

From 935e6ec8cefc121a94813f6e2dcf9ee664421592 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Wed, 2 Nov 2022 21:12:11 +0000
Subject: [PATCH 2/2] fix: python3/requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-PYJWT-2840625
---
 python3/requirements.txt | 1 +
 1 file changed, 1 insertion(+)

diff --git a/python3/requirements.txt b/python3/requirements.txt
index d7b6c42f..1b184e82 100644
--- a/python3/requirements.txt
+++ b/python3/requirements.txt
@@ -2,3 +2,4 @@ dotenv
 twilio
 yagmail
 git+https://github.com/charlierguo/gmail
+pyjwt>=2.4.0 # not directly required, pinned by Snyk to avoid a vulnerability