From 837fd602665965064fb5e7b7f6b4921442ef2963 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sat, 8 Nov 2025 07:55:34 +0000 Subject: [PATCH] fix: requirements/production.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-13836728 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-13837025 --- requirements/production.txt | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/requirements/production.txt b/requirements/production.txt index e73ec4bd..18dcd5e2 100644 --- a/requirements/production.txt +++ b/requirements/production.txt @@ -16,4 +16,5 @@ django-anymail # https://github.com/anymail/django-anymail # Elastic-APM # https://pypi.org/project/elastic-apm/ # ------------------------------------------------------------------------------ -elastic-apm==6.15.1 \ No newline at end of file +elastic-apm==6.15.1 +django>=4.2.26 # not directly required, pinned by Snyk to avoid a vulnerability \ No newline at end of file