chore(deps): bump the pip group across 1 directory with 3 updates

dependabot[bot] · web-flow · commit a6602a393c3d · 2025-01-28T23:34:55.000Z
Bumps the pip group with 3 updates in the /internal/image/fixtures/python-fixture directory: [flask](https://github.com/pallets/flask), [django](https://github.com/django/django) and [requests](https://github.com/psf/requests). Updates `flask` from 0.12.2 to 2.2.5 - [Release notes](https://github.com/pallets/flask/releases) - [Changelog](https://github.com/pallets/flask/blob/main/CHANGES.rst) - [Commits](pallets/flask@0.12.2...2.2.5) Updates `django` from 1.11.29 to 4.2.18 - [Commits](django/django@1.11.29...4.2.18) Updates `requests` from 2.20.0 to 2.32.2 - [Release notes](https://github.com/psf/requests/releases) - [Changelog](https://github.com/psf/requests/blob/main/HISTORY.md) - [Commits](psf/requests@v2.20.0...v2.32.2) --- updated-dependencies: - dependency-name: flask dependency-type: direct:production dependency-group: pip - dependency-name: django dependency-type: direct:production dependency-group: pip - dependency-name: requests dependency-type: direct:production dependency-group: pip ... Signed-off-by: dependabot[bot] <support@github.com>
diff --git a/internal/image/fixtures/python-fixture/requirements.txt b/internal/image/fixtures/python-fixture/requirements.txt
@@ -1,3 +1,3 @@
-flask==0.12.2  # Vulnerable to CVE-2019-1010083
-django==1.11.29  # Vulnerable to CVE-2021-35042
-requests==2.20.0  # Vulnerable to CVE-2018-18074
+flask==2.2.5  # Vulnerable to CVE-2019-1010083
+django==4.2.18  # Vulnerable to CVE-2021-35042
+requests==2.32.2  # Vulnerable to CVE-2018-18074
