From 3904de47f5dc6afd6ed94100e63c0217ef8f8c8a Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sun, 25 Jan 2026 11:29:26 +0000
Subject: [PATCH] fix: requirements/base.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-10074036
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-10302884
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-12485156
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-13836728
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-13837025
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-14157807
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-14157810
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-7435780
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-7436273
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-7436514
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-7436646
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-7642790
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-7642791
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-7642813
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-7642814
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-7886958
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-7886959
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-8456315
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-8456316
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-9296408
- https://snyk.io/vuln/SNYK-PYTHON-SQLPARSE-14157217
- https://snyk.io/vuln/SNYK-PYTHON-SQLPARSE-6615674
---
 requirements/base.txt | 1 +
 1 file changed, 1 insertion(+)

diff --git a/requirements/base.txt b/requirements/base.txt
index 436faeb4..5dc48ece 100644
--- a/requirements/base.txt
+++ b/requirements/base.txt
@@ -145,3 +145,4 @@ feedparser==6.0.12
 # Xlwt
 # ------------------------------------------------------------------------------
 xlwt==1.3.0
+sqlparse>=0.5.4 # not directly required, pinned by Snyk to avoid a vulnerability