From 296362bb723e65c8ad1136587b095d5b2b160c13 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Fri, 7 Oct 2022 02:18:53 +0000
Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-JWCRYPTO-3030035
- https://snyk.io/vuln/SNYK-PYTHON-PROTOBUF-3031740
- https://snyk.io/vuln/SNYK-PYTHON-PYTHONJWT-3017172
- https://snyk.io/vuln/SNYK-PYTHON-PYTHONJWT-3029892
---
 requirements.txt | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/requirements.txt b/requirements.txt
index 9b743a9..a8949a3 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -53,7 +53,7 @@ isort==5.10.1
 itsdangerous==2.1.2
 jedi==0.18.1
 Jinja2==3.1.1
-jwcrypto==1.0
+jwcrypto==1.4
 kiwisolver==1.4.2
 lazy-object-proxy==1.7.1
 line-profiler==3.5.1
@@ -78,7 +78,7 @@ platformdirs==2.5.1
 plotly==5.7.0
 proglog==0.1.9
 prompt-toolkit==3.0.29
-protobuf==3.20.0
+protobuf==3.20.2
 pure-eval==0.2.2
 pyasn1==0.4.8
 pyasn1-modules==0.2.8
@@ -98,7 +98,7 @@ PyQt5-Qt5==5.15.2
 PyQt5-sip==12.9.1
 Pyrebase4==4.5.0
 python-dateutil==2.8.2
-python-jwt==3.3.2
+python-jwt==3.3.4
 # python-magic-bin==0.4.14
 pytube==12.0.0
 pytz==2022.1