From 57080b549e7f5c00a2a3f6bb16943db9ab1b9687 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 1 Oct 2024 09:27:17 +0000
Subject: [PATCH] fix: tob-api/requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-1079232
- https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-1584144
- https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-5798483
- https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6057352
- https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6057353
- https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6091621
- https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6091622
- https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6091623
- https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6209406
- https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6209407
- https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6645291
- https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6808823
- https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-7675597
- https://snyk.io/vuln/SNYK-PYTHON-SQLPARSE-6615674
- https://snyk.io/vuln/SNYK-PYTHON-ZIPP-7430899
---
 tob-api/requirements.txt | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/tob-api/requirements.txt b/tob-api/requirements.txt
index 4a2af89a2..c980b9dc9 100644
--- a/tob-api/requirements.txt
+++ b/tob-api/requirements.txt
@@ -47,7 +47,9 @@ asyncio>=3.4.3,<4
 ptvsd==4.1.1a1
 
 # aiohttp
-aiohttp~=3.4.0
+aiohttp~=3.10.2
 aiohttp-wsgi~=0.8.1
 
-asgiref~=3.1.2
\ No newline at end of file
+asgiref~=3.1.2
+sqlparse>=0.5.0 # not directly required, pinned by Snyk to avoid a vulnerability
+zipp>=3.19.1 # not directly required, pinned by Snyk to avoid a vulnerability
\ No newline at end of file