From da6752f05fda3f3a48c17bf0abe6bc9fbd67ed09 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 14 Oct 2025 10:19:28 +0000
Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-SOCIALAUTHAPPDJANGO-13512562
---
 requirements.txt | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/requirements.txt b/requirements.txt
index aa99543d..f55a97fb 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -4,7 +4,7 @@ git+https://github.com/django-oscar/django-oscar.git@8a3288da439cc2a878f44ae5c51
 git+https://github.com/xzzy/django_crispy_jcaptcha.git#egg=django_crispy_jcaptcha
 #git+https://github.com/dbca-wa/ledger#egg=ledger
 git+https://github.com/xzzy/ledger@master2#egg=ledger
-social-auth-app-django==2.1.0
+social-auth-app-django==5.6.0
 git+https://github.com/scottp-dpaw/social-core.git@email_fix#egg=social-auth-core
 django-model-utils==2.6.1
 webtemplate-dbca==0.6.0