From 54aa0a775d628191cec271c0a877566cf269d982 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sun, 23 Mar 2025 07:18:45 +0000
Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-FLASKSECURITY-1293234
- https://snyk.io/vuln/SNYK-PYTHON-FLASKSECURITY-2420091
- https://snyk.io/vuln/SNYK-PYTHON-FLASKSECURITY-6140501
---
 requirements.txt | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/requirements.txt b/requirements.txt
index 3a2b46084..01785841c 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -33,7 +33,7 @@ Flask-Migrate==2.6.0
 flask-mongoengine==1.0.0
 Flask-Principal==0.4.0
 Flask-Script==2.0.5
-Flask-Security==3.0.0
+Flask-Security==5.5.1
 Flask-SQLAlchemy==3.0.2
 Flask-WTF==1.1.1
 gevent==24.11.1