Crown-Commercial-Service · ccs-snyk · Jul 25, 2024
diff --git a/requirements-dev.txt b/requirements-dev.txt
@@ -29,7 +29,7 @@ click==7.1.2
     # via flask
 contextlib2==0.6.0.post1
     # via digitalmarketplace-utils
-cryptography==36.0.1
+cryptography==42.0.8
     # via digitalmarketplace-utils
 deepmerge==0.2.1
     # via -r requirements-dev.in
@@ -49,7 +49,7 @@ docopt==0.6.2
     #   notifications-python-client
 flake8==3.9.1
     # via -r requirements-dev.in
-flask==1.0.4
+flask==2.2.5
     # via
     #   digitalmarketplace-content-loader
     #   digitalmarketplace-utils
@@ -86,7 +86,7 @@ itsdangerous==1.1.0
     # via
     #   flask
     #   flask-wtf
-jinja2==2.11.3
+jinja2==3.1.4
     # via
     #   digitalmarketplace-content-loader
     #   flask
@@ -150,7 +150,7 @@ pyyaml==5.4.1
     # via
     #   -r requirements-dev.in
     #   digitalmarketplace-content-loader
-redis==4.1.4
+redis==4.3.6
     # via digitalmarketplace-utils
 requests==2.25.1
     # via
@@ -173,7 +173,7 @@ urllib3==1.26.5
     # via
     #   botocore
     #   requests
-werkzeug==1.0.1
+werkzeug==3.0.3
     # via flask
 workdays==1.4
     # via digitalmarketplace-utils
@@ -184,3 +184,4 @@ wtforms==2.3.3
 
 # The following packages are considered to be unsafe in a requirements file:
 # setuptools
+zipp>=3.19.1 # not directly required, pinned by Snyk to avoid a vulnerability