From af3fcf246696f31e85514c5d965c689a339c1fe7 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 24 Feb 2026 09:44:31 +0000 Subject: [PATCH] Bump jinja2 from 2.11.0 to 3.1.6 in /apps/securetrails-vulnerable Bumps [jinja2](https://github.com/pallets/jinja) from 2.11.0 to 3.1.6. - [Release notes](https://github.com/pallets/jinja/releases) - [Changelog](https://github.com/pallets/jinja/blob/main/CHANGES.rst) - [Commits](https://github.com/pallets/jinja/compare/2.11.0...3.1.6) --- updated-dependencies: - dependency-name: jinja2 dependency-version: 3.1.6 dependency-type: direct:production ... Signed-off-by: dependabot[bot] --- apps/securetrails-vulnerable/requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/apps/securetrails-vulnerable/requirements.txt b/apps/securetrails-vulnerable/requirements.txt index 298b6ec..dee345c 100644 --- a/apps/securetrails-vulnerable/requirements.txt +++ b/apps/securetrails-vulnerable/requirements.txt @@ -2,7 +2,7 @@ Flask==1.1.0 requests==2.24.0 SQLAlchemy==1.3.0 Werkzeug==1.0.0 -Jinja2==2.11.0 +Jinja2==3.1.6 MarkupSafe==1.1.0 click==7.1.0 itsdangerous==1.1.0