UW-GAC · amstilp · Jun 25, 2024 · Jun 25, 2024 · Jun 25, 2024 · Jun 25, 2024
diff --git a/requirements/dev-requirements.txt b/requirements/dev-requirements.txt
@@ -64,7 +64,7 @@ filelock==3.13.1
     # via virtualenv
 identify==2.5.35
     # via pre-commit
-idna==3.6
+idna==3.7
     # via
     #   -c requirements/requirements.txt
     #   -c requirements/test-requirements.txt
@@ -144,7 +144,7 @@ pyyaml==6.0.1
     # via
     #   -c requirements/test-requirements.txt
     #   pre-commit
-requests==2.31.0
+requests==2.32.3
     # via
     #   -c requirements/requirements.txt
     #   -c requirements/test-requirements.txt
@@ -215,7 +215,7 @@ typing-extensions==4.8.0
     #   ipython
     #   mypy
     #   pylint
-urllib3==2.1.0
+urllib3==2.2.2
     # via
     #   -c requirements/requirements.txt
     #   -c requirements/test-requirements.txt

diff --git a/requirements/requirements.in b/requirements/requirements.in
@@ -45,11 +45,13 @@ mysqlclient # https://github.com/PyMySQL/mysqlclient
 # See issue https://github.com/jazzband/django-simple-history/issues/1255
 asgiref>=3.6
 
-# Temporary fixes to handle dependabot not reading django-anvil-consortium-manager dependencies
+# Temporary fixes to handle security vulnerabilities
 certifi>=2023.7.22
 pyjwt>=2.4.0
-urllib3>=1.26.18
 sqlparse>=0.4.4
+idna>=3.7
+urllib3>=2.2.2
+requests>=2.32.0
 
 # Dynamic settings
 django-constance

diff --git a/requirements/requirements.txt b/requirements/requirements.txt
@@ -96,8 +96,10 @@ fontawesomefree==6.5.1
     # via django-anvil-consortium-manager
 google-auth==2.11.0
     # via django-anvil-consortium-manager
-idna==3.6
-    # via requests
+idna==3.7
+    # via
+    #   -r requirements/requirements.in
+    #   requests
 importlib-metadata==6.8.0
     # via build
 mysqlclient==2.2.4
@@ -142,8 +144,9 @@ pytz==2023.4
     # via
     #   django-anvil-consortium-manager
     #   django-dbbackup
-requests==2.31.0
+requests==2.32.3
     # via
+    #   -r requirements/requirements.in
     #   django-allauth
     #   django-anvil-consortium-manager
     #   requests-oauthlib
@@ -166,7 +169,7 @@ tomli==2.0.1
     #   pyproject-hooks
 typing-extensions==4.8.0
     # via asgiref
-urllib3==2.1.0
+urllib3==2.2.2
     # via
     #   -r requirements/requirements.in
     #   requests

diff --git a/requirements/test-requirements.txt b/requirements/test-requirements.txt
@@ -29,7 +29,7 @@ factory-boy==3.3.0
     # via -r requirements/test-requirements.in
 faker==23.2.1
     # via factory-boy
-idna==3.6
+idna==3.7
     # via
     #   -c requirements/requirements.txt
     #   requests
@@ -61,7 +61,7 @@ python-dateutil==2.8.2
     # via faker
 pyyaml==6.0.1
     # via responses
-requests==2.31.0
+requests==2.32.3
     # via
     #   -c requirements/requirements.txt
     #   responses
@@ -85,7 +85,7 @@ typing-extensions==4.8.0
     #   -c requirements/requirements.txt
     #   django-test-migrations
     #   faker
-urllib3==2.1.0
+urllib3==2.2.2
     # via
     #   -c requirements/requirements.txt
     #   requests