From a824d578360b16146ac0c9808e26ec954c066bd8 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 4 Dec 2025 04:43:58 +0000
Subject: [PATCH] fix:
 resources/projects/dockerfile-double-components/python/requirements.txt to
 reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-14157807
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-14157810
- https://snyk.io/vuln/SNYK-PYTHON-SQLPARSE-14157217
---
 .../dockerfile-double-components/python/requirements.txt       | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/resources/projects/dockerfile-double-components/python/requirements.txt b/resources/projects/dockerfile-double-components/python/requirements.txt
index 0d8440df..14a6fd86 100644
--- a/resources/projects/dockerfile-double-components/python/requirements.txt
+++ b/resources/projects/dockerfile-double-components/python/requirements.txt
@@ -1,5 +1,6 @@
-django>=3.2.14,<1.12
+django>=4.2.27
 django-debug-toolbar==1.8
 gunicorn==19.5.0
 psycopg2-binary==2.8.5
 whitenoise==3.3.1
+sqlparse>=0.5.4 # not directly required, pinned by Snyk to avoid a vulnerability