From b082f48acf27bc78ae7fa6ec1791a6f078cde56f Mon Sep 17 00:00:00 2001
From: Tomas Z <93541722+tznamena@users.noreply.github.com>
Date: Tue, 22 Oct 2024 17:39:16 +0200
Subject: [PATCH] Upgrade django based on dependabot security alerts (#605)

This PR upgrades Django to address following dependabot alerts:

**Critical:**
https://github.com/ansible/django-ansible-base/security/dependabot/21
**High:**
https://github.com/ansible/django-ansible-base/security/dependabot/18
https://github.com/ansible/django-ansible-base/security/dependabot/16
https://github.com/ansible/django-ansible-base/security/dependabot/15
**Moderate:**
https://github.com/ansible/django-ansible-base/security/dependabot/17
https://github.com/ansible/django-ansible-base/security/dependabot/22
https://github.com/ansible/django-ansible-base/security/dependabot/20
https://github.com/ansible/django-ansible-base/security/dependabot/19
---
 requirements/requirements.in      | 2 +-
 requirements/requirements_all.txt | 2 +-
 requirements/requirements_dev.txt | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/requirements/requirements.in b/requirements/requirements.in
index b9fb9be12..47a1a50c0 100644
--- a/requirements/requirements.in
+++ b/requirements/requirements.in
@@ -3,7 +3,7 @@
 # if you are add a new feature which requires dependencies they should be in a separate requirements_<feature>.in file
 #
 cryptography
-Django>=4.2.5,<4.3.0
+Django>=4.2.16,<4.3.0 # CVE-2024-45230
 djangorestframework
 django-crum
 django-split-settings
diff --git a/requirements/requirements_all.txt b/requirements/requirements_all.txt
index 35b72970a..d1581d087 100644
--- a/requirements/requirements_all.txt
+++ b/requirements/requirements_all.txt
@@ -24,7 +24,7 @@ defusedxml==0.8.0rc2
     # via
     #   python3-openid
     #   social-auth-core
-django==4.2.11
+django==4.2.16
     # via
     #   -r requirements/requirements.in
     #   channels
diff --git a/requirements/requirements_dev.txt b/requirements/requirements_dev.txt
index 275d152f2..d6451ae3a 100644
--- a/requirements/requirements_dev.txt
+++ b/requirements/requirements_dev.txt
@@ -1,6 +1,6 @@
 ansible  # Used in build process to generate some configs
 build
-Django>=4.2.5,<4.3.0
+Django==4.2.16
 django-debug-toolbar
 django-extensions
 djangorestframework