fix: Update vulnerable dependencies

[adityahase]

Before:
https://app.snyk.io/org/frappe-scl/project/efbfce74-a4d4-420a-bc23-ef57fccf2607/history/08b78c15-ea22-4eaa-93cd-9cbfea0a5546
After:
https://app.snyk.io/org/adityahase/project/c77719fb-1318-4604-baab-da944fed51fe/history/9f5a63e2-c7d4-4dad-9e33-6e8a6e4ee49b

[adityahase]

Some problem with PyYaml==4.1

[Thunderbottom]

there's no PyYAML 4.1 according to PyPI: https://pypi.org/project/PyYAML/#history

[AdamN1]

Hi,
after marge there is dependency conflict with frontmatter==3.0.5 which has requirement PyYAML==3.13.

[Thunderbottom]

@AdamN1 there's a pull request to update PyYAML to 5.1 on the frontmatter repository: jonbeebe/frontmatter#8

[AdamN1]

@AdamN1 there's a pull request to update PyYAML to 5.1 on the frontmatter repository: jonbeebe/frontmatter#8

Unfortunately until PR is accepted manual installation of frappe isn't possible.
Maybe postpone version change until PR is accepted or change wiki instruction to use stable frape branch?

[Thunderbottom]

@AdamN1 the existing installation for frontmatter should work just fine, it's just that Python won't install it again because of dependency pinning.