From 0573b9830c82b54ced5ed9aac017a0029fafbf6a Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 5 Mar 2024 15:36:42 +0000
Subject: [PATCH] fix: docker/kubedash/requirements.txt to reduce
 vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-CERTIFI-3164749
- https://snyk.io/vuln/SNYK-PYTHON-CERTIFI-5805047
- https://snyk.io/vuln/SNYK-PYTHON-REQUESTS-5595532
- https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-3180412
---
 docker/kubedash/requirements.txt | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/docker/kubedash/requirements.txt b/docker/kubedash/requirements.txt
index 94534086..038f9367 100644
--- a/docker/kubedash/requirements.txt
+++ b/docker/kubedash/requirements.txt
@@ -9,7 +9,7 @@ pytz==2023.3.post1
 psycopg2==2.9.7
 SQLAlchemy==2.0.17
 sqlalchemy_utils==0.41.1
-flask_migrate==4.0.5
+flask_migrate==4.0.4
 flask_sqlalchemy==3.0.5
 # login
 flask_login==0.6.2
@@ -42,6 +42,7 @@ gunicorn==21.2.0
 certifi==2024.2.2
 setuptools==67.8.0
 pyOpenSSL==24.0.0
-cryptography==42.0.5
+cryptography==42.0.4
 ipython==8.14.0 # not directly required, pinned by Snyk to avoid a vulnerability
 gevent>=23.9.0 # not directly required, pinned by Snyk to avoid a vulnerability
+requests>=2.31.0 # not directly required, pinned by Snyk to avoid a vulnerability