build(deps): 2024-01-11 address vulnerabilities in docs (#386)

dependabot[bot] · abmusse · web-flow · commit 5b46888ac954 · 2024-01-12T00:01:40.000Z
* build(deps): bump jinja2 from 2.11.3 to 3.1.3 in /docs Bumps [jinja2](https://github.com/pallets/jinja) from 2.11.3 to 3.1.3. - [Release notes](https://github.com/pallets/jinja/releases) - [Changelog](https://github.com/pallets/jinja/blob/main/CHANGES.rst) - [Commits](pallets/jinja@2.11.3...3.1.3) --- updated-dependencies: - dependency-name: jinja2 dependency-type: direct:production ... UPDATE After dependabot opened PR to bump Jinja the build broke due to other dependencies. I ended up bumping: - sphinx-js - parsimonious - Sphinx To get readthedocs building successfully again --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Abdirahim Musse <33973272+abmusse@users.noreply.github.com>
diff --git a/docs/requirements.txt b/docs/requirements.txt
@@ -16,19 +16,19 @@ idna==3.4
 imagesize==1.4.1
 # Pin Jinja2 and markupsafe versions
 # https://github.com/mozilla/sphinx-js/issues/190
-Jinja2==2.11.3
+Jinja2==3.1.3
 MarkupSafe==2.0.1
 packaging==21.3
-parsimonious==0.7.0
+parsimonious>=0.10.0,<0.11.0
 Pygments==2.16.1
 pyparsing==3.0.9
 pytz==2022.5
 requests==2.31.0
 six==1.16.0
 snowballstemmer==2.2.0
-# Use same sphinx version required by sphinx-js 3.1.2
-Sphinx==3.5.4
-sphinx-js==3.1.2
+# Use same sphinx version required by sphinx-js 3.2.1
+Sphinx<6.0.0,>=4.1.0
+sphinx-js==3.2.1
 sphinx-rtd-theme==1.0.0
 sphinxcontrib-applehelp==1.0.2
 sphinxcontrib-devhelp==1.0.2
