From 9470f45aa47154bf8b36c810d6e2232aba1c9133 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 26 Dec 2023 17:05:38 +0000
Subject: [PATCH] fix: Commander/requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-FLASK-5490129
- https://snyk.io/vuln/SNYK-PYTHON-REDIS-5291195
- https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-3180412
- https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-6035177
---
 Commander/requirements.txt | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/Commander/requirements.txt b/Commander/requirements.txt
index facdf46..2114e0c 100644
--- a/Commander/requirements.txt
+++ b/Commander/requirements.txt
@@ -1,5 +1,5 @@
 bcrypt==3.2.0
-Flask==2.0.3
+Flask==2.2.5
 Flask-JWT-Extended==4.3.1
 flask-sock==0.5.2
 gevent==21.8.0
@@ -12,5 +12,7 @@ pymongo==4.1.1
 pytest==6.2.5
 pytest-cov==3.0.0
 pytest-redis==2.4.0
-redis==4.3.1
-requests==2.23.0
\ No newline at end of file
+redis==4.3.6
+requests==2.23.0
+setuptools>=65.5.1 # not directly required, pinned by Snyk to avoid a vulnerability
+werkzeug>=2.3.8 # not directly required, pinned by Snyk to avoid a vulnerability
\ No newline at end of file