From c220afa32a41365c3bb0a8afb0029b6eaf8f1dfe Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sat, 19 Nov 2022 07:57:12 +0000 Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-1070544 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-1066259 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-1076802 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-1090612 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-1279042 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-1290072 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-1298665 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-1298666 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-2312875 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-2329158 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-2329159 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-2329160 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-2389002 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-2389021 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-2606966 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-2606969 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-2940618 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-2968205 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-536439 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-538244 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-543998 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-559326 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-571013 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-571014 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-609368 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-609369 - https://snyk.io/vuln/SNYK-PYTHON-DJANGORESTFRAMEWORK-1090569 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1055461 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1055462 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1059090 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1080635 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1080654 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1081494 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1081501 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1081502 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1082329 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1082750 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1090584 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1090586 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1090587 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1090588 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1292150 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1292151 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1316216 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1319443 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1727377 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-2329135 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-2331901 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-2331905 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-2331907 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-2397241 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-3113875 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-3113876 - https://snyk.io/vuln/SNYK-PYTHON-SQLPARSE-1584201 --- requirements.txt | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/requirements.txt b/requirements.txt index f2ae9919..c4b39b1c 100644 --- a/requirements.txt +++ b/requirements.txt @@ -6,15 +6,15 @@ certifi==2019.6.16 cffi==1.14.4 chardet==3.0.4 Click==7.0 -cryptography==3.3.1 -Django==2.2.4 +cryptography==3.3.2 +Django==3.2.15 django-cors-headers==3.0.2 django-grappelli==2.13.1 django-rest-knox==4.1.0 -djangorestframework==3.10.3 +djangorestframework==3.11.2 google-auth==1.6.3 idna==2.8 -Pillow==8.0.1 +Pillow==9.2.0 psycopg2-binary==2.8.3 pyasn1==0.4.6 pyasn1-modules==0.2.6 @@ -24,6 +24,6 @@ pytz==2019.2 requests==2.22.0 rsa==4.0 six==1.12.0 -sqlparse==0.3.0 +sqlparse==0.4.2 toml==0.10.0 urllib3==1.25.3