From ab715f85277234ad51ca5cb48b0cf09074c49758 Mon Sep 17 00:00:00 2001
From: Tom Hu <tomhu1096@gmail.com>
Date: Thu, 26 Feb 2026 06:30:15 +0900
Subject: [PATCH] fix(security): bump Django 5.0.14 -> 5.1.15, certifi,
 django-csp

- Django 5.0.14 -> 5.1.15: 5.0 is EOL, fixes CVE-2025-64459 and CVE-2026-1207
- certifi 2024.7.4 -> 2025.1.31: updated CA certificate bundle
- django-csp 3.7 -> 3.8: required for Django 5.1 compatibility

Made-with: Cursor
---
 requirements.in  | 4 ++--
 requirements.txt | 6 +++---
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/requirements.in b/requirements.in
index bc0a431..4991d09 100644
--- a/requirements.in
+++ b/requirements.in
@@ -1,6 +1,6 @@
-Django
+Django>=5.1,<5.2
 asgiref
-django-csp
+django-csp>=3.8
 djangorestframework
 gunicorn
 httpx
diff --git a/requirements.txt b/requirements.txt
index 750b88e..6b5dc01 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -10,7 +10,7 @@ asgiref==3.7.2
     # via
     #   -r requirements.in
     #   django
-certifi==2024.7.4
+certifi==2025.1.31
     # via
     #   httpcore
     #   httpx
@@ -18,12 +18,12 @@ certifi==2024.7.4
     #   sentry-sdk
 charset-normalizer==3.1.0
     # via requests
-django==5.0.14
+django==5.1.15
     # via
     #   -r requirements.in
     #   django-csp
     #   djangorestframework
-django-csp==3.7
+django-csp==3.8
     # via -r requirements.in
 djangorestframework==3.15.2
     # via -r requirements.in