From b8511a4f0285a455f87f738f569f0d03d2126bdf Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Mon, 8 Dec 2025 10:47:42 +0000
Subject: [PATCH] fix: services/workshop/requirements.txt to reduce
 vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-14157807
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-14157810
- https://snyk.io/vuln/SNYK-PYTHON-SQLPARSE-14157217
- https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-14192442
- https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-14192443
---
 services/workshop/requirements.txt | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/services/workshop/requirements.txt b/services/workshop/requirements.txt
index c10137dd..ca2f352c 100644
--- a/services/workshop/requirements.txt
+++ b/services/workshop/requirements.txt
@@ -1,5 +1,5 @@
 bcrypt==4.1.2
-Django~=4.1.13
+Django~=4.2.27
 cryptography==40.0.2
 django-cors-headers==4.0.0
 django-db-cascade-2==0.3.5
@@ -10,7 +10,7 @@ django-health-check==3.17.0
 djangorestframework==3.14.0
 django-sslserver==0.22
 djongo==1.3.6 #max version for django 4.1.13
-sqlparse==0.2.4 #djongo-dependency
+sqlparse==0.5.4 #djongo-dependency
 psycopg2==2.9.9
 PyJWT==2.7.0
 pymongo==3.13.0
@@ -22,4 +22,5 @@ gunicorn==21.2.0
 coverage==7.4.1
 unittest-xml-reporting==3.2.0
 black==24.4.2
-xhtml2pdf==0.2.17
\ No newline at end of file
+xhtml2pdf==0.2.17
+urllib3>=2.6.0 # not directly required, pinned by Snyk to avoid a vulnerability
\ No newline at end of file