From caa782770967a186e04a4203cb0043c918373ccb Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Mon, 20 Sep 2021 00:18:03 -0700 Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-1066259 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-1279042 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-1290072 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-1298665 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-40339 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-40340 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-40359 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-40382 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-40383 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-40403 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-40434 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-40439 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-40440 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-40460 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-40461 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-40778 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-40779 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-42178 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-559326 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-72888 - https://snyk.io/vuln/SNYK-PYTHON-GUNICORN-1090281 - https://snyk.io/vuln/SNYK-PYTHON-GUNICORN-42097 - https://snyk.io/vuln/SNYK-PYTHON-GUNICORN-541164 - https://snyk.io/vuln/SNYK-PYTHON-HTTPLIB2-1065795 - https://snyk.io/vuln/SNYK-PYTHON-HTTPLIB2-569758 - https://snyk.io/vuln/SNYK-PYTHON-HTTPLIB2-570767 - https://snyk.io/vuln/SNYK-PYTHON-PY-1049546 --- requirements.txt | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/requirements.txt b/requirements.txt index 8b6dde9..2931a41 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,11 +1,11 @@ coverage==3.7.1 -Django==1.8.3 +Django==2.2.18 django-environ==0.3.0 -gunicorn==19.3.0 -httplib2==0.9.1 +gunicorn==19.4.0 +httplib2==0.19.0 pbr==1.3.0 psycopg2==2.6.1 -py==1.4.30 +py==1.10.0 pytest==2.7.2 pytest-cov==2.0.0 pytest-django==2.8.0