From 00aec731b12e654c3e4709a6083ebc7e94aeacd2 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 4 Jun 2026 17:23:20 +0000
Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-17151726
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-17151727
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-17151728
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-17151772
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-17151780
---
 requirements.txt | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/requirements.txt b/requirements.txt
index bf7d1d26e0..c18a3b4406 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -13,7 +13,7 @@ botocore>=1.39.15
 celery>=5.5.3
 coverage>=7.9.2
 defusedxml>=0.7.1    # for TastyPie when using xml; not a declared dependency
-Django>=4.2.30,<5
+Django>=5.2.15
 django-admin-rangefilter>=0.13.3
 django-analytical>=3.2.0
 django-bootstrap5>=25.1