From 4aaddbba0740e512f76b6f0c662d7f2470c12bfe Mon Sep 17 00:00:00 2001
From: Knut Ahlers <knut@ahlers.me>
Date: Wed, 10 Apr 2019 20:22:24 +0200
Subject: [PATCH] Fix: Vulnerabilities in Jinja2 <2.8.1 and PyYAML <4.2b1

Signed-off-by: Knut Ahlers <knut@ahlers.me>
---
 generate.py      | 2 +-
 requirements.txt | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/generate.py b/generate.py
index c30ad71..e2bf603 100755
--- a/generate.py
+++ b/generate.py
@@ -3,7 +3,7 @@
 import yaml
 from jinja2 import Environment, FileSystemLoader
 
-config = yaml.load(open('config.yml', 'r').read())
+config = yaml.load(open('config.yml', 'r').read(), Loader=yaml.SafeLoader)
 
 env = Environment(loader=FileSystemLoader('./'))
 template = env.get_template('index.html')
diff --git a/requirements.txt b/requirements.txt
index 1fb2fa1..6bd1644 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -1,3 +1,3 @@
-Jinja2==2.8
+Jinja2==2.10.1
 jsmin==2.2.1
-PyYAML==3.12
+PyYAML==5.1