diff --git a/poetry.lock b/poetry.lock
index d2266c5cb..573fb0f49 100644
--- a/poetry.lock
+++ b/poetry.lock
@@ -746,14 +746,14 @@ smmap = ">=3.0.1,<4"
 
 [[package]]
 name = "gitpython"
-version = "3.1.30"
-description = "GitPython is a python library used to interact with Git repositories"
+version = "3.1.31"
+description = "GitPython is a Python library used to interact with Git repositories"
 category = "dev"
 optional = false
 python-versions = ">=3.7"
 files = [
-    {file = "GitPython-3.1.30-py3-none-any.whl", hash = "sha256:cd455b0000615c60e286208ba540271af9fe531fa6a87cc590a7298785ab2882"},
-    {file = "GitPython-3.1.30.tar.gz", hash = "sha256:769c2d83e13f5d938b7688479da374c4e3d49f71549aaf462b646db9602ea6f8"},
+    {file = "GitPython-3.1.31-py3-none-any.whl", hash = "sha256:f04893614f6aa713a60cbbe1e6a97403ef633103cdd0ef5eb6efe0deb98dbe8d"},
+    {file = "GitPython-3.1.31.tar.gz", hash = "sha256:8ce3bcf69adfdf7c7d503e78fd3b1c492af782d58893b650adb2ac8912ddd573"},
 ]
 
 [package.dependencies]
@@ -2252,4 +2252,4 @@ cli = ["click", "tabulate", "dateparser"]
 [metadata]
 lock-version = "2.0"
 python-versions = ">=3.7.1,<4.0"
-content-hash = "2d89dc2a71e50f114a0f50e621d92891d89704b832d40b567583554c67333edd"
+content-hash = "b82547566cf7cec8cafe41760c1dd675dbd05c78b5c6a79f537827d720f1b83e"
diff --git a/pyproject.toml b/pyproject.toml
index 43238406d..d496c3d70 100644
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -60,7 +60,7 @@ urllib3 = "^1.26.14"
 #ensure certifi (for requests/sphinx) is greater than 2022.12.07 to account for CVE-2022-23491
 certifi = "^2022.12.07"
 #ensure gitpython (for bandit/flake8-bandit) is greater than 3.1.30 to account for CVE-2022-24439
-gitpython = "^3.1.30"
+gitpython = "^3.1.31"
 #ensure setuptools (for safety) is greater than 65.5.1 to account for CVE-2022-40897
 setuptools = "^67.2.0"