From 178af0dee84e22becb9eec8f81f343b9f2022630 Mon Sep 17 00:00:00 2001
From: allegroai <>
Date: Wed, 25 May 2022 16:41:26 +0300
Subject: [PATCH] Bump PyJWT version due to "Key confusion through
 non-blocklisted public key formats" vulnerability

---
 requirements.txt | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/requirements.txt b/requirements.txt
index e45f30b..379500c 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -8,7 +8,7 @@ psutil>=3.4.2,<5.9.0
 pyhocon>=0.3.38,<0.4.0
 pyparsing>=2.0.3,<2.5.0
 python-dateutil>=2.4.2,<2.9.0
-pyjwt>=1.6.4,<2.1.0
+pyjwt>=2.4.0,<2.5.0
 PyYAML>=3.12,<5.5.0
 requests>=2.20.0,<2.26.0
 six>=1.13.0,<1.16.0