From cf807c6b7879f690a717c3497bc4602128e5575c Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sat, 6 Dec 2025 09:24:21 +0000
Subject: [PATCH] fix: ckan/requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-SQLPARSE-14157217
- https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-14151620
---
 ckan/requirements.txt | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/ckan/requirements.txt b/ckan/requirements.txt
index 4f613cab..0e6c9411 100644
--- a/ckan/requirements.txt
+++ b/ckan/requirements.txt
@@ -95,7 +95,7 @@ simplejson==3.19.2
 six==1.17.0
 SQLAlchemy==1.4.52
 sqlalchemy2-stubs==0.0.2a38
-sqlparse==0.5.0
+sqlparse==0.5.4
 tomli==2.3.0
 typing_extensions==4.12.2
 tzlocal==5.2
@@ -103,7 +103,7 @@ urllib3==2.5.0
 watchdog==6.0.0
 webassets==2.0
 webencodings==0.5.1
-Werkzeug==3.0.6
+Werkzeug==3.1.4
 WTForms==3.2.1
 xlrd==2.0.1
 xmlschema==4.2.0