From ef13c0cb4f1c545493a0502b6ec5d065e41f892a Mon Sep 17 00:00:00 2001
From: Kevin Falcone <kevin@edx.org>
Date: Thu, 14 Sep 2017 12:49:36 -0400
Subject: [PATCH] pygments < 2.1 had a shell injection attack

We only really use it in tests, but if tests still pass this should
be an easy upgrade.
---
 requirements/edx/base.txt | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/requirements/edx/base.txt b/requirements/edx/base.txt
index e900893d9c4..2604506d857 100644
--- a/requirements/edx/base.txt
+++ b/requirements/edx/base.txt
@@ -82,7 +82,7 @@ piexif==1.0.2
 Pillow==3.4
 polib==1.0.3
 pycrypto>=2.6
-pygments==2.0.1
+pygments==2.2.0
 pygraphviz==1.1
 pyjwkest==1.3.2
 # TODO Replace PyJWT usage with pyjwkest
-- 
GitLab