From 85259a5b4101507574cd496e52a2e291adeb87a8 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sat, 19 Nov 2022 04:26:24 +0000
Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-2968205
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-3039675
- https://snyk.io/vuln/SNYK-PYTHON-DPARSE-3013430
- https://snyk.io/vuln/SNYK-PYTHON-DPARSE-3034821
- https://snyk.io/vuln/SNYK-PYTHON-DPARSE-3040999
- https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-3113904
- https://snyk.io/vuln/SNYK-PYTHON-UAPARSER-1298047
---
 requirements.txt | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/requirements.txt b/requirements.txt
index ea0f2a7c..d45cdd15 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -22,7 +22,7 @@ coreschema==0.0.4
 coverage==6.3.2
 Deprecated==1.2.13
 dill==0.3.4
-Django==3.2.14
+Django==3.2.16
 django-autocomplete-light==3.9.4
 django-axes==5.32.0
 django-background-tasks==1.2.5
@@ -45,7 +45,7 @@ django-timezone-utils==0.13
 django-user-agents==0.4.0
 djangorestframework==3.13.1
 docutils==0.18
-dparse==0.5.1
+dparse==0.5.2
 drf-yasg==1.20.0
 flake8==4.0.1
 gprof2dot==2021.2.21
@@ -97,7 +97,7 @@ toml==0.10.2
 tomli==2.0.1
 typed-ast==1.5.1
 typing-extensions==4.0.1
-ua-parser==0.10.0
+ua-parser==0.15.0
 uritemplate==4.1.1
 urllib3==1.26.7
 user-agents==2.2.0
@@ -105,3 +105,4 @@ vine==5.0.0
 wcwidth==0.2.5
 whitenoise==5.3.0
 wrapt==1.13.3
+setuptools>=65.5.1 # not directly required, pinned by Snyk to avoid a vulnerability