From 8f869778f40d3bbfca13553cbefd1d10d25a80c2 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sat, 18 May 2024 22:23:48 +0000
Subject: [PATCH] fix: Commander/requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-FLASK-5490129
- https://snyk.io/vuln/SNYK-PYTHON-GUNICORN-6615672
- https://snyk.io/vuln/SNYK-PYTHON-PYMONGO-6370597
- https://snyk.io/vuln/SNYK-PYTHON-REDIS-5291195
- https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-3180412
- https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-6035177
- https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-6808933
---
 Commander/requirements.txt | 12 +++++++-----
 1 file changed, 7 insertions(+), 5 deletions(-)

diff --git a/Commander/requirements.txt b/Commander/requirements.txt
index facdf46..a4d308b 100644
--- a/Commander/requirements.txt
+++ b/Commander/requirements.txt
@@ -1,16 +1,18 @@
 bcrypt==3.2.0
-Flask==2.0.3
+Flask==2.2.5
 Flask-JWT-Extended==4.3.1
 flask-sock==0.5.2
 gevent==21.8.0
-gunicorn==20.1.0
+gunicorn==22.0.0
 hiredis==2.0.0
 mongoengine==0.24.1
 mongomock==4.0.0
 NamedAtomicLock==1.1.3
-pymongo==4.1.1
+pymongo==4.6.3
 pytest==6.2.5
 pytest-cov==3.0.0
 pytest-redis==2.4.0
-redis==4.3.1
-requests==2.23.0
\ No newline at end of file
+redis==4.3.6
+requests==2.23.0
+setuptools>=65.5.1 # not directly required, pinned by Snyk to avoid a vulnerability
+werkzeug>=3.0.3 # not directly required, pinned by Snyk to avoid a vulnerability
\ No newline at end of file