From 9edf076d647e37fe90ce720cadfe0328c84c34ec Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 15 Nov 2022 03:40:28 +0000
Subject: [PATCH] fix: OJExec-Python/requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-1066259
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-1076802
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-1090612
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-1279042
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-1290072
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-1298665
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-1298666
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-1315688
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-2312875
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-2329158
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-2329159
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-2329160
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-2389002
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-2389021
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-2606966
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-2606969
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-2940618
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-2968205
- https://snyk.io/vuln/SNYK-PYTHON-JINJA2-1012994
- https://snyk.io/vuln/SNYK-PYTHON-PYLINT-1089548
- https://snyk.io/vuln/SNYK-PYTHON-PYLINT-609883
- https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-3113904
- https://snyk.io/vuln/SNYK-PYTHON-SQLPARSE-1584201
---
 OJExec-Python/requirements.txt | 9 +++++----
 1 file changed, 5 insertions(+), 4 deletions(-)
 mode change 100755 => 100644 OJExec-Python/requirements.txt

diff --git a/OJExec-Python/requirements.txt b/OJExec-Python/requirements.txt
old mode 100755
new mode 100644
index cc61fd7..d16a45e
--- a/OJExec-Python/requirements.txt
+++ b/OJExec-Python/requirements.txt
@@ -9,7 +9,7 @@ click==7.1.2
 click-didyoumean==0.0.3
 click-plugins==1.1.1
 click-repl==0.1.6
-Django==3.1.4
+Django==3.2.15
 django-celery-results==2.0.0
 django-tinymce==3.2.0
 Flask==1.1.2
@@ -19,7 +19,7 @@ flower==0.9.5
 humanize==3.2.0
 isort==5.6.4
 itsdangerous==1.1.0
-Jinja2==2.11.2
+Jinja2==2.11.3
 kombu==5.0.2
 lazy-object-proxy==1.4.3
 Mako==1.1.3
@@ -29,7 +29,7 @@ prometheus-client==0.8.0
 prompt-toolkit==3.0.8
 psycopg2-binary
 pycodestyle==2.6.0
-pylint==2.6.0
+pylint==2.7.0
 pylint-flask-sqlalchemy==0.2.0
 python-dateutil==2.8.1
 python-decouple==3.3
@@ -39,10 +39,11 @@ redis==3.5.3
 requests==2.25.1
 six==1.15.0
 SQLAlchemy==1.3.20
-sqlparse==0.4.1
+sqlparse==0.4.2
 toml==0.10.2
 tornado==6.1
 vine==5.0.0
 wcwidth==0.2.5
 Werkzeug==1.0.1
 wrapt==1.12.1
+setuptools>=65.5.1 # not directly required, pinned by Snyk to avoid a vulnerability