From 20f6621a5cfe60d8daddb7bb776c035e64dc7ac6 Mon Sep 17 00:00:00 2001
From: Dan King <dking@broadinstitute.org>
Date: Wed, 19 Jul 2023 10:40:49 -0400
Subject: [PATCH] [security] update scipy pin to 1.11.1

Supersedes https://github.com/hail-is/hail/pull/13228 . Resolves [CVE-2023-25399](https://nvd.nist.gov/vuln/detail/CVE-2023-25399).
---
 hail/python/pinned-requirements.txt | 2 +-
 hail/python/requirements.txt        | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/hail/python/pinned-requirements.txt b/hail/python/pinned-requirements.txt
index e432e69eb5c..14882613831 100644
--- a/hail/python/pinned-requirements.txt
+++ b/hail/python/pinned-requirements.txt
@@ -317,7 +317,7 @@ s3transfer==0.6.1
     # via
     #   -c hail/hail/python/hailtop/pinned-requirements.txt
     #   boto3
-scipy==1.9.3
+scipy==1.11.1
     # via -r hail/hail/python/requirements.txt
 six==1.16.0
     # via
diff --git a/hail/python/requirements.txt b/hail/python/requirements.txt
index 0674fefa847..cf20015331f 100644
--- a/hail/python/requirements.txt
+++ b/hail/python/requirements.txt
@@ -15,4 +15,4 @@ plotly>=5.5.0,<6
 protobuf==3.20.2
 pyspark>=3.3.0,<3.4
 requests>=2.25.1,<3
-scipy>1.2,<1.10
+scipy>1.2,<1.12