From afbf6fe99838add5fe277738deeb66c3e7c61013 Mon Sep 17 00:00:00 2001
From: kira-offgrid <kira@offgridsec.com>
Date: Thu, 24 Apr 2025 13:33:57 +0000
Subject: [PATCH] fix:
 python.lang.security.use-defused-xml-parse.use-defused-xml-parse--tmp-c83c1369-f7f5-4288-aea7-04caa47d28e4-packages-markitdown-src-markitdown-converter_utils-docx-math-omml.py

---
 packages/markitdown/pyproject.toml | 6 ++++++
 requirements.txt                   | 1 +
 2 files changed, 7 insertions(+)
 create mode 100644 requirements.txt

diff --git a/packages/markitdown/pyproject.toml b/packages/markitdown/pyproject.toml
index 79f67d2..46ebb8b 100644
--- a/packages/markitdown/pyproject.toml
+++ b/packages/markitdown/pyproject.toml
@@ -29,6 +29,8 @@ dependencies = [
   "markdownify",
   "magika~=0.6.1",
   "charset-normalizer",
+
+    "defusedxml>=0.7.1",
 ]
 
 [project.optional-dependencies]
@@ -75,6 +77,8 @@ features = ["all"]
 features = ["all"]
 extra-dependencies = [
   "openai",
+
+    "defusedxml>=0.7.1",
 ]
 
 [tool.hatch.envs.types]
@@ -82,6 +86,8 @@ features = ["all"]
 extra-dependencies = [
   "openai",
   "mypy>=1.0.0",
+
+    "defusedxml>=0.7.1",
 ]
 
 [tool.hatch.envs.types.scripts]
diff --git a/requirements.txt b/requirements.txt
new file mode 100644
index 0000000..c19d53e
--- /dev/null
+++ b/requirements.txt
@@ -0,0 +1 @@
+defusedxml>=0.7.1