From d08d17cf61a60941dc762c1106c83f54fb73ad5d Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sat, 22 Oct 2022 00:33:13 +0000
Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-PYYAML-42159
- https://snyk.io/vuln/SNYK-PYTHON-PYYAML-559098
- https://snyk.io/vuln/SNYK-PYTHON-PYYAML-590151
- https://snyk.io/vuln/SNYK-PYTHON-REQUESTS-72435
- https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-1014645
- https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-1533435
- https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-174323
- https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-174464
- https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-72681
---
 requirements.txt | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)
 mode change 100755 => 100644 requirements.txt

diff --git a/requirements.txt b/requirements.txt
old mode 100755
new mode 100644
index 8e548a6..5425f8c
--- a/requirements.txt
+++ b/requirements.txt
@@ -26,8 +26,8 @@ pyasn1-modules==0.2.5
 python-dateutil==2.6.1
 python-json-logger==0.1.11
 pytz==2019.1
-PyYAML==3.12
-requests==2.18.4
+PyYAML==5.4
+requests==2.20
 rm==2019.4.13
 rsa==3.4.2
 s3transfer==0.1.10
@@ -35,7 +35,7 @@ six==1.12.0
 termcolor==1.1.0
 tinydb==3.6.0
 uritemplate==3.0.0
-urllib3==1.22
+urllib3==1.26.5
 values==2019.4.13
 zope.interface==4.6.0
 pathlib