From f4c2bd646ab8691b18064adde8d5c634f25a063c Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 28 Sep 2022 00:49:15 +0000 Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-1066259 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-1279042 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-1290072 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-1298665 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-173679 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-174885 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-2312875 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-2329158 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-2329159 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-2329160 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-2389002 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-2389021 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-2606966 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-2606969 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-2940618 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-2968205 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-40626 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-40778 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-40779 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-42178 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-451300 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-456540 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-456541 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-456542 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-456566 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-538244 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-543998 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-559326 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-72888 - https://snyk.io/vuln/SNYK-PYTHON-DJANGORESTFRAMEWORK-1090569 - https://snyk.io/vuln/SNYK-PYTHON-DJANGORESTFRAMEWORK-450194 - https://snyk.io/vuln/SNYK-PYTHON-GITPYTHON-2407255 - https://snyk.io/vuln/SNYK-PYTHON-IPYTHON-2348630 - https://snyk.io/vuln/SNYK-PYTHON-LXML-1047473 - https://snyk.io/vuln/SNYK-PYTHON-LXML-1047474 - https://snyk.io/vuln/SNYK-PYTHON-LXML-1088006 - https://snyk.io/vuln/SNYK-PYTHON-LXML-2316995 - https://snyk.io/vuln/SNYK-PYTHON-LXML-2940874 - https://snyk.io/vuln/SNYK-PYTHON-LXML-72651 - https://snyk.io/vuln/SNYK-PYTHON-NETWORKX-1062709 - https://snyk.io/vuln/SNYK-PYTHON-PYGMENTS-1086606 - https://snyk.io/vuln/SNYK-PYTHON-PYGMENTS-1088505 - https://snyk.io/vuln/SNYK-PYTHON-REQUESTS-72435 - https://snyk.io/vuln/SNYK-PYTHON-REQUESTSCACHE-1089050 --- requirements.txt | 18 +++++++++--------- 1 file changed, 9 insertions(+), 9 deletions(-) diff --git a/requirements.txt b/requirements.txt index a8401b8b..91933a43 100644 --- a/requirements.txt +++ b/requirements.txt @@ -15,30 +15,30 @@ decorator==4.0.11 # via ipython, networkx, traitlets dj-database-url==0.4.1 django-click==1.2.0 django-rq==0.9.1 -django==1.11 -djangorestframework==3.4 +django==3.2.15 +djangorestframework==3.11.2 gitdb==0.6.4 # via gitpython -gitpython==2.0.2 +gitpython==3.1.27 humanfriendly==2.4 # via coloredlogs inflection==0.3.1 ipdb==0.10.0 ipython-genutils==0.2.0 # via traitlets -ipython==5.3.0 # via ipdb +ipython==7.16.3 # via ipdb jedi==0.10.2 # via ipython json-delta==2.0 -lxml==3.6.0 -networkx==1.11 +lxml==4.9.1 +networkx==2.6 pbr==3.0.0 # via stevedore pexpect==4.2.1 # via ipython pickleshare==0.7.4 # via ipython prompt-toolkit==1.0.14 # via ipython ptyprocess==0.5.1 # via pexpect -pygments==2.2.0 # via ipython +pygments==2.7.4 # via ipython pyparsing==2.1.4 pytz==2017.2 # via django redis==2.10.5 # via rq -requests-cache==0.4.12 -requests==2.10.0 +requests-cache==0.6.0.dev1 +requests==2.20 roman==2.0.0 rq==0.7.1 # via django-rq simplegeneric==0.8.1 # via ipython