From bc011b31efda73e8668e7992a95d5f7012d0a3d7 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 18 Apr 2024 03:06:02 +0000
Subject: [PATCH] fix: server/requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-GUNICORN-6615672
- https://snyk.io/vuln/SNYK-PYTHON-SQLPARSE-6615674
---
 server/requirements.txt | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/server/requirements.txt b/server/requirements.txt
index 33df5f4..1f15533 100644
--- a/server/requirements.txt
+++ b/server/requirements.txt
@@ -1,5 +1,5 @@
 Django==2.2.8
-gunicorn==19.9.0
+gunicorn==22.0.0
 django-rest-framework
 django-cors-headers==2.5.2
 Pillow==6.2.1
@@ -13,4 +13,5 @@ xlwt
 openpyxl
 odfpy
 pyyaml
-MarkupPy
\ No newline at end of file
+MarkupPy
+sqlparse>=0.5.0 # not directly required, pinned by Snyk to avoid a vulnerability
\ No newline at end of file