From b7db7380be0cbb9a2192fc2e92fc4f8d74be6d2f Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 19 May 2022 19:41:35 +0000
Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-BOTO-40479
- https://snyk.io/vuln/SNYK-PYTHON-PARAMIKO-2429583
- https://snyk.io/vuln/SNYK-PYTHON-PARAMIKO-42086
- https://snyk.io/vuln/SNYK-PYTHON-PARAMIKO-455391
- https://snyk.io/vuln/SNYK-PYTHON-PYCRYPTO-40008
---
 requirements.txt | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/requirements.txt b/requirements.txt
index 9b3e38090..268288a00 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -3,9 +3,9 @@ Flask==0.10.1
 Jinja2==2.7
 MarkupSafe==0.18
 Werkzeug==0.9.3
-boto==2.13.3
+boto==2.39.0
 itsdangerous==0.22
-paramiko==1.10.1
+paramiko==2.10.1
 ply==3.4
-pycrypto==2.6
+pycrypto==2.6.1
 wsgiref==0.1.2