From 167ef0eb13017629b835adb50bcd1d2886b1e76c Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sun, 23 Jun 2024 21:34:17 +0000
Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6091621
- https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6091622
- https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6209406
- https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6209407
- https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6645291
- https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6808823
- https://snyk.io/vuln/SNYK-PYTHON-HTTPX-2772742
- https://snyk.io/vuln/SNYK-PYTHON-HTTPX-2805813
- https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-7267250
---
 requirements.txt | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/requirements.txt b/requirements.txt
index 7100e34..090aadc 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -1,6 +1,8 @@
 attrs~=20.3.0
-httpx==0.18.1
+httpx==0.23.0
 beautifulsoup4~=4.9.3
 aiogram==2.13
 sentry-sdk==1.0.0
 cytoolz~=0.11.0
+aiohttp>=3.9.4 # not directly required, pinned by Snyk to avoid a vulnerability
+urllib3>=2.2.2 # not directly required, pinned by Snyk to avoid a vulnerability