From c469675dea5cfcfe54f597cf69176283aa08370f Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Mon, 14 Nov 2022 17:23:46 +0000
Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-JINJA2-1012994
- https://snyk.io/vuln/SNYK-PYTHON-JINJA2-174126
- https://snyk.io/vuln/SNYK-PYTHON-JINJA2-455616
- https://snyk.io/vuln/SNYK-PYTHON-PY-1049546
- https://snyk.io/vuln/SNYK-PYTHON-PYGMENTS-1086606
- https://snyk.io/vuln/SNYK-PYTHON-PYGMENTS-1088505
- https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-3113904
- https://snyk.io/vuln/SNYK-PYTHON-SPHINX-570772
- https://snyk.io/vuln/SNYK-PYTHON-SPHINX-570773
---
 requirements.txt | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/requirements.txt b/requirements.txt
index 3fd9782..80e25bb 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -1,11 +1,11 @@
 CouchDB==1.0
-Jinja2==2.7.3
+Jinja2==2.11.3
 LEPL==5.1.3
 MarkupSafe==0.23
 PasteDeploy==1.5.2
 PyYAML==3.11
-Pygments==2.0.2
-Sphinx==1.3.1
+Pygments==2.7.4
+Sphinx==3.0.4
 WebOb==1.4.1
 WebTest==2.0.18
 beautifulsoup4==4.3.2
@@ -22,7 +22,7 @@ jsonpointer==1.9
 mock==1.0.1
 nose==1.3.4
 pbkdf2==1.3
-py==1.4.26
+py==1.10.0
 pycrypto==2.6.1
 pyramid-exclog==0.7
 pyramid==1.5.7
@@ -32,7 +32,7 @@ pytz==2014.10
 repoze.lru==0.6
 requests==2.7.0
 schematics==1.1.0
-setuptools==7.0
+setuptools==65.5.1
 sh==1.11
 simplejson==3.6.5
 six==1.9.0