From b40f3220622c92d54d34cb4fee933c807ed47a96 Mon Sep 17 00:00:00 2001 From: Marti Raudsepp Date: Wed, 11 Sep 2024 22:17:56 +0300 Subject: [PATCH] Update Django 4.2 LTS version to 4.2.16 This solves GitHub's Dependabot security alerts. The alerts are created because we still have old Django version in `requirements.txt`. But there is no actual security impact, because Django is only used in CI and not exposed as a web service. --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 6357d0185..1cc72eb02 100644 --- a/requirements.txt +++ b/requirements.txt @@ -8,7 +8,7 @@ pytest-shard==0.1.2 # Django deps: psycopg2-binary -Django==4.2.13; python_version < '3.10' +Django==4.2.16; python_version < '3.10' Django==5.1.1; python_version >= '3.10' -e ./ext -e .[redis,compatible-mypy,oracle]