From 7794e0a47c686307685d886ab290f03d1360fde7 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Wed, 27 Jan 2021 12:43:43 +0000
Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-1022152
- https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-42164
- https://snyk.io/vuln/SNYK-PYTHON-PYXDG-174562
- https://snyk.io/vuln/SNYK-PYTHON-PYYAML-42159
- https://snyk.io/vuln/SNYK-PYTHON-PYYAML-559098
- https://snyk.io/vuln/SNYK-PYTHON-PYYAML-590151
---
 requirements.txt | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/requirements.txt b/requirements.txt
index 6efb4e4..cf324f7 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -2,7 +2,7 @@ asn1crypto==0.24.0
 certifi==2019.6.16
 chardet==3.0.4
 Click==7.0
-cryptography==2.1.4
+cryptography==3.2
 Flask==1.1.1
 idna==2.8
 itsdangerous==1.1.0
@@ -19,8 +19,8 @@ pycrypto==2.6.1
 pygobject==3.26.1
 python-apt==1.6.5+ubuntu0.4
 python-magic==0.4.16
-pyxdg==0.25
-PyYAML==3.12
+pyxdg==0.26
+PyYAML==4.2b1
 requests==2.22.0
 SecretStorage==2.3.1
 six==1.12.0