From b61271409ece0ecb8519084c73b6ec56e91d2d96 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Fri, 9 Aug 2024 05:48:11 +0000
Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-1298666
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-1315688
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-3039675
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-3266406
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-6230369
- https://snyk.io/vuln/SNYK-PYTHON-SQLPARSE-6615674
- https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-7267250
---
 requirements.txt | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/requirements.txt b/requirements.txt
index c946498..8203480 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -4,7 +4,7 @@
 flake8==3.7.8
 
 # Django Framework
-Django==3.2.0
+Django==3.2.24
 
 # Third-party app dependencies
 twilio==6.30.0
@@ -21,3 +21,5 @@ mock==3.0.5
 model-mommy==1.6.0
 xmlunittest==0.5.0
 vcrpy==2.1.0
+sqlparse>=0.5.0 # not directly required, pinned by Snyk to avoid a vulnerability
+urllib3>=2.2.2 # not directly required, pinned by Snyk to avoid a vulnerability