Update jinja2 directly in requirements

mckinsey · Jan 8, 2025 · 0ad0ebb · 0ad0ebb
1 parent 5db6a6b
commit 0ad0ebb
Show file tree

Hide file tree

Showing 6 changed files with 23 additions and 11 deletions.
diff --git a/vizro-ai/examples/dashboard_ui/requirements.in b/vizro-ai/examples/dashboard_ui/requirements.in
@@ -5,4 +5,4 @@ black
 openpyxl
 langchain_anthropic
 langchain_mistralai
-dash>=2.18.2  # To fix dependabot vulnerability on jinja2
+jinja2>=3.1.5  # To fix dependabot vulnerability on jinja2
diff --git a/vizro-ai/examples/dashboard_ui/requirements.txt b/vizro-ai/examples/dashboard_ui/requirements.txt
@@ -47,7 +47,6 @@ click==8.1.7
     #   flask
 dash==2.18.2
     # via
-    #   -r requirements.in
     #   dash-ag-grid
     #   dash-bootstrap-components
     #   vizro
@@ -117,8 +116,10 @@ importlib-metadata==8.5.0
     #   flask
 itsdangerous==2.2.0
     # via flask
-jinja2==3.1.4
-    # via flask
+jinja2==3.1.5
+    # via
+    #   -r requirements.in
+    #   flask
 jiter==0.5.0
     # via
     #   anthropic

diff --git a/vizro-core/examples/dev/requirements.in b/vizro-core/examples/dev/requirements.in
@@ -2,4 +2,4 @@
 gunicorn
 openpyxl
 vizro==0.1.28
-dash>=2.18.2  # To fix dependabot vulnerability on jinja2
+jinja2>=3.1.5  # To fix dependabot vulnerability on jinja2
diff --git a/vizro-core/examples/dev/requirements.txt b/vizro-core/examples/dev/requirements.txt
@@ -18,7 +18,6 @@ click==8.1.7
     #   flask
 dash==2.18.2
     # via
-    #   -r requirements.in
     #   dash-ag-grid
     #   dash-bootstrap-components
     #   vizro
@@ -53,7 +52,9 @@ importlib-metadata==8.5.0
 itsdangerous==2.2.0
     # via flask
 jinja2==3.1.5
-    # via flask
+    # via
+    #   -r requirements.in
+    #   flask
 markupsafe==3.0.2
     # via
     #   jinja2

diff --git a/vizro-core/examples/visual-vocabulary/requirements.in b/vizro-core/examples/visual-vocabulary/requirements.in
@@ -5,4 +5,4 @@ isort==5.13.2
 plotly==5.24.1
 vizro==0.1.28
 gunicorn
-dash>=2.18.2  # To fix dependabot vulnerability on jinja2
+jinja2>=3.1.5  # To fix dependabot vulnerability on jinja2
diff --git a/vizro-core/examples/visual-vocabulary/requirements.txt b/vizro-core/examples/visual-vocabulary/requirements.txt
@@ -24,7 +24,6 @@ click==8.1.7
     #   flask
 dash==2.18.2
     # via
-    #   -r requirements.in
     #   dash-ag-grid
     #   dash-bootstrap-components
     #   vizro
@@ -51,13 +50,17 @@ gunicorn==23.0.0
 idna==3.10
     # via requests
 importlib-metadata==8.5.0
-    # via dash
+    # via
+    #   dash
+    #   flask
 isort==5.13.2
     # via -r requirements.in
 itsdangerous==2.2.0
     # via flask
 jinja2==3.1.5
-    # via flask
+    # via
+    #   -r requirements.in
+    #   flask
 markupsafe==3.0.2
     # via
     #   jinja2
@@ -98,14 +101,21 @@ requests==2.32.3
     # via dash
 retrying==1.3.4
     # via dash
+setuptools==75.7.0
+    # via dash
 six==1.16.0
     # via
     #   python-dateutil
     #   retrying
 tenacity==9.0.0
     # via plotly
+tomli==2.2.1
+    # via
+    #   autoflake
+    #   black
 typing-extensions==4.12.2
     # via
+    #   black
     #   dash
     #   pydantic
     #   pydantic-core