From 226df97934b432f1f07c005e8b2b38a1d52c852b Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sat, 8 Nov 2025 08:03:57 +0000
Subject: [PATCH] fix: requirements/production.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-13836728
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-13837025
---
 requirements/production.txt | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/requirements/production.txt b/requirements/production.txt
index d1119b5ff..e6da74fd3 100644
--- a/requirements/production.txt
+++ b/requirements/production.txt
@@ -41,4 +41,5 @@ elastic-apm==6.21.4.post8347027212  # https://pypi.org/project/elastic-apm/
 # SECURITY UPDATES
 # ==============================================================================
 
-setuptools>=68.2.2  # not directly required, pinned by Snyk to avoid a vulnerability
\ No newline at end of file
+setuptools>=68.2.2  # not directly required, pinned by Snyk to avoid a vulnerability
+django>=4.2.26 # not directly required, pinned by Snyk to avoid a vulnerability
\ No newline at end of file