From cd69cb3471a4f5f0f15bcd0a411f0350baadc11c Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sun, 7 Sep 2025 06:15:21 +0000
Subject: [PATCH] build(deps): bump the pip group across 1 directory with 4
 updates

Bumps the pip group with 4 updates in the / directory: [django](https://github.com/django/django), [urllib3](https://github.com/urllib3/urllib3), [requests](https://github.com/psf/requests) and [jinja2](https://github.com/pallets/jinja).


Updates `django` from 2.0.1 to 4.2.22
- [Commits](https://github.com/django/django/compare/2.0.1...4.2.22)

Updates `urllib3` from 1.24.1 to 2.5.0
- [Release notes](https://github.com/urllib3/urllib3/releases)
- [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst)
- [Commits](https://github.com/urllib3/urllib3/compare/1.24.1...2.5.0)

Updates `requests` from 2.6.0 to 2.32.4
- [Release notes](https://github.com/psf/requests/releases)
- [Changelog](https://github.com/psf/requests/blob/main/HISTORY.md)
- [Commits](https://github.com/psf/requests/compare/v2.6.0...v2.32.4)

Updates `jinja2` from 2.8 to 3.1.6
- [Release notes](https://github.com/pallets/jinja/releases)
- [Changelog](https://github.com/pallets/jinja/blob/main/CHANGES.rst)
- [Commits](https://github.com/pallets/jinja/compare/2.8...3.1.6)

---
updated-dependencies:
- dependency-name: django
  dependency-version: 4.2.22
  dependency-type: direct:production
  dependency-group: pip
- dependency-name: urllib3
  dependency-version: 2.5.0
  dependency-type: direct:production
  dependency-group: pip
- dependency-name: requests
  dependency-version: 2.32.4
  dependency-type: direct:production
  dependency-group: pip
- dependency-name: jinja2
  dependency-version: 3.1.6
  dependency-type: direct:production
  dependency-group: pip
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 pyproject.toml | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/pyproject.toml b/pyproject.toml
index 81ecff1..6e68375 100644
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -17,10 +17,10 @@ dependencies = [
     "pydantic>=2.5.0",
     "python-multipart>=0.0.6",
     # 脆弱性テスト用 - CRITICAL脆弱性を含む古いバージョン
-    "django==2.0.1",     # CVE-2018-7536, CVE-2018-7537 (CRITICAL)
-    "urllib3==1.24.1",   # CVE-2019-11324 (HIGH)
-    "requests==2.6.0",   # CVE-2018-18074 (HIGH)
-    "jinja2==2.8",       # CVE-2016-10745 (CRITICAL)
+    "django==4.2.22",     # CVE-2018-7536, CVE-2018-7537 (CRITICAL)
+    "urllib3==2.5.0",   # CVE-2019-11324 (HIGH)
+    "requests==2.32.4",   # CVE-2018-18074 (HIGH)
+    "jinja2==3.1.6",       # CVE-2016-10745 (CRITICAL)
 ]
 
 [tool.hatch.build.targets.wheel]