bump lxml to fix security warning

two vulnerabilities in <4.6.5 (GHSL-2021-1037 and GHSL-2021-1038) https://github.com/lxml/lxml/blob/master/CHANGES.txt also removes docopt as we don't use it except for a dev script (which we might not need anyway)
2026-02-04 10:21:14 -05:00 · 2021-12-14 13:47:38 +00:00
parent a9306c4557
commit b7c1fcb66d
2 changed files with 4 additions and 7 deletions
--- a/requirements.txt
+++ b/requirements.txt
@@ -73,12 +73,10 @@ cryptography==3.3.2
 dnspython==1.16.0
    # via eventlet
 docopt==0.6.2
-    # via
-    #   -r requirements.in
-    #   notifications-python-client
+    # via notifications-python-client
 docutils==0.15.2
    # via awscli
-eventlet==0.30.2 # pyup: ignore
+eventlet==0.30.2
    # via -r requirements.in
 flask==1.1.2
    # via
@@ -134,7 +132,7 @@ jsonschema==3.2.0
    # via -r requirements.in
 kombu==5.2.1
    # via celery
-lxml==4.6.3
+lxml==4.7.1
    # via -r requirements.in
 mako==1.1.5
    # via alembic