From 12890c2a3f98395deea73142b89973ef81bf0584 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Mon, 9 Dec 2024 05:42:57 +0000
Subject: [PATCH] fix: requirements/production.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-8456315
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-8456316
---
 requirements/production.txt | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/requirements/production.txt b/requirements/production.txt
index a7f3fed8..79496e28 100644
--- a/requirements/production.txt
+++ b/requirements/production.txt
@@ -15,4 +15,5 @@ setuptools>=68.2.2 # not directly required, pinned by Snyk to avoid a vulnerabil
 
 # Elastic-APM  # https://pypi.org/project/elastic-apm/
 # ------------------------------------------------------------------------------
-elastic-apm==6.21.4.post8347027212
\ No newline at end of file
+elastic-apm==6.21.4.post8347027212
+django>=4.2.17 # not directly required, pinned by Snyk to avoid a vulnerability
\ No newline at end of file