[Snyk] Fix for 19 vulnerabilities

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `pip` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • big/requirements.txt

Vulnerabilities that will be fixed

By pinning:

Severity	Priority Score (*)	Issue	Upgrade	Breaking Change	Exploit Maturity
	704/1000 Why? Has a fix available, CVSS 9.8	SQL Injection SNYK-PYTHON-DJANGO-2606966	django: 1.6.1 -> 3.2.18	No	No Known Exploit
	811/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 9.8	SQL Injection SNYK-PYTHON-DJANGO-2606969	django: 1.6.1 -> 3.2.18	No	Proof of Concept
	776/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 9.1	SQL Injection SNYK-PYTHON-DJANGO-2940618	django: 1.6.1 -> 3.2.18	No	Proof of Concept
	564/1000 Why? Has a fix available, CVSS 7	Reflected File Download (RFD) SNYK-PYTHON-DJANGO-2968205	django: 1.6.1 -> 3.2.18	No	No Known Exploit
	589/1000 Why? Has a fix available, CVSS 7.5	Denial of Service (DoS) SNYK-PYTHON-DJANGO-3319450	django: 1.6.1 -> 3.2.18	No	No Known Exploit
	494/1000 Why? Has a fix available, CVSS 5.6	Arbitrary Code Execution SNYK-PYTHON-DJANGO-40025	django: 1.6.1 -> 3.2.18	No	No Known Exploit
	479/1000 Why? Has a fix available, CVSS 5.3	Cross-site Request Forgery (CSRF) SNYK-PYTHON-DJANGO-40026	django: 1.6.1 -> 3.2.18	No	No Known Exploit
	704/1000 Why? Has a fix available, CVSS 9.8	SQL Injection SNYK-PYTHON-DJANGO-40027	django: 1.6.1 -> 3.2.18	No	No Known Exploit
	539/1000 Why? Has a fix available, CVSS 6.5	Web Cache Poisoning SNYK-PYTHON-DJANGO-40256	django: 1.6.1 -> 3.2.18	No	No Known Exploit
	429/1000 Why? Has a fix available, CVSS 4.3	Open Redirect SNYK-PYTHON-DJANGO-40257	django: 1.6.1 -> 3.2.18	No	No Known Exploit
	619/1000 Why? Has a fix available, CVSS 8.1	DNS Rebinding SNYK-PYTHON-DJANGO-40440	django: 1.6.1 -> 3.2.18	No	No Known Exploit
	519/1000 Why? Has a fix available, CVSS 6.1	Open Redirect SNYK-PYTHON-DJANGO-40460	django: 1.6.1 -> 3.2.18	No	No Known Exploit
	519/1000 Why? Has a fix available, CVSS 6.1	Open Redirect SNYK-PYTHON-DJANGO-40461	django: 1.6.1 -> 3.2.18	No	No Known Exploit
	626/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.1	Open Redirect SNYK-PYTHON-DJANGO-42178	django: 1.6.1 -> 3.2.18	No	Proof of Concept
	701/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.6	SQL Injection SNYK-PYTHON-DJANGO-559326	django: 1.6.1 -> 3.2.18	No	Proof of Concept
	429/1000 Why? Has a fix available, CVSS 4.3	Content Spoofing SNYK-PYTHON-DJANGO-72888	django: 1.6.1 -> 3.2.18	No	No Known Exploit
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-PYTHON-JINJA2-1012994	jinja2: 2.7.2 -> 2.11.3	No	Proof of Concept
	554/1000 Why? Has a fix available, CVSS 6.8	Sandbox Escape SNYK-PYTHON-JINJA2-174126	jinja2: 2.7.2 -> 2.11.3	No	No Known Exploit
	644/1000 Why? Has a fix available, CVSS 8.6	Sandbox Bypass SNYK-PYTHON-JINJA2-455616	jinja2: 2.7.2 -> 2.11.3	No	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Some vulnerabilities couldn't be fully fixed and so Snyk will still find them when the project is tested again. This may be because the vulnerability existed within more than one direct dependency, but not all of the affected dependencies could be upgraded.

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 SQL Injection
🦉 Denial of Service (DoS)
🦉 Arbitrary Code Execution
🦉 More lessons are available in Snyk Learn