From 6f0c051e579b7cd28bfcf8d7221026196e802aa3 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Fri, 2 Feb 2024 05:27:37 +0000
Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6091621
- https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6091622
- https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6209406
- https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6209407
- https://snyk.io/vuln/SNYK-PYTHON-HTTPX-2772742
- https://snyk.io/vuln/SNYK-PYTHON-HTTPX-2805813
---
 requirements.txt | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/requirements.txt b/requirements.txt
index 7100e34..e1713d6 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -1,6 +1,7 @@
 attrs~=20.3.0
-httpx==0.18.1
+httpx==0.23.0
 beautifulsoup4~=4.9.3
 aiogram==2.13
 sentry-sdk==1.0.0
 cytoolz~=0.11.0
+aiohttp>=3.9.2 # not directly required, pinned by Snyk to avoid a vulnerability