Merge pull request #1441 from GSA/update-gunicorn

Update gunicorn and its-dangerous to latest releases
GSA · Apr 18, 2024 · 4f77171 · 4f77171
2 parents 4579d88 + 2484ea0
commit 4f77171
Show file tree

Hide file tree

Showing 3 changed files with 15 additions and 22 deletions.
diff --git a/.github/workflows/checks.yml b/.github/workflows/checks.yml
@@ -160,8 +160,6 @@ jobs:
       - uses: pypa/[email protected]
         with:
           inputs: requirements.txt
-          ignore-vulns: |
-            GHSA-w3h3-4rj7-4ph4
       - name: Run npm audit
         run: make npm-audit
 

diff --git a/poetry.lock b/poetry.lock
diff --git a/pyproject.toml b/pyproject.toml
@@ -18,9 +18,9 @@ flask-login = "^0.6"
 flask-talisman = "*"
 flask-wtf = "^1.2"
 govuk-bank-holidays = "^0.14"
-gunicorn = {version = "==21.2.0", extras = ["eventlet"]}
+gunicorn = {version = "==22.0.0", extras = ["eventlet"]}
 humanize = "~=4.9"
-itsdangerous = "~=2.1"
+itsdangerous = "~=2.2"
 jinja2 = "~=3.1"
 newrelic = "*"
 notifications-python-client = "==9.0.0"