From e327195470824074465657f98bb0282c7c93a56e Mon Sep 17 00:00:00 2001
From: Damien Elmes <gpg@ankiweb.net>
Date: Fri, 3 Nov 2023 14:21:12 +1000
Subject: [PATCH] Update pip for CVE [action required]

If this is not your first time building Anki, remove out/pyenv to
fix the error you'll get after updating to this commit.
---
 python/requirements.base.txt   | 6 +++---
 python/requirements.bundle.txt | 6 +++---
 python/requirements.dev.txt    | 6 +++---
 3 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/python/requirements.base.txt b/python/requirements.base.txt
index 7f4edaf73..be3232fed 100644
--- a/python/requirements.base.txt
+++ b/python/requirements.base.txt
@@ -35,9 +35,9 @@ wheel==0.40.0 \
     # via pip-tools
 
 # The following packages are considered to be unsafe in a requirements file:
-pip==23.1.2 \
-    --hash=sha256:0e7c86f486935893c708287b30bd050a36ac827ec7fe5e43fe7cb198dd835fba \
-    --hash=sha256:3ef6ac33239e4027d9a5598a381b9d30880a1477e50039db2eac6e8a8f6d1b18
+pip==23.3.1 \
+    --hash=sha256:1fcaa041308d01f14575f6d0d2ea4b75a3e2871fe4f9c694976f908768e14174 \
+    --hash=sha256:55eb67bb6171d37447e82213be585b75fe2b12b359e993773aca4de9247a052b
     # via pip-tools
 setuptools==68.0.0 \
     --hash=sha256:11e52c67415a381d10d6b462ced9cfb97066179f0e871399e006c4ab101fc85f \
diff --git a/python/requirements.bundle.txt b/python/requirements.bundle.txt
index 09b1f0130..23d9a1639 100644
--- a/python/requirements.bundle.txt
+++ b/python/requirements.bundle.txt
@@ -367,9 +367,9 @@ zipp==3.15.0 \
     # via importlib-metadata
 
 # The following packages are considered to be unsafe in a requirements file:
-pip==23.1.2 \
-    --hash=sha256:0e7c86f486935893c708287b30bd050a36ac827ec7fe5e43fe7cb198dd835fba \
-    --hash=sha256:3ef6ac33239e4027d9a5598a381b9d30880a1477e50039db2eac6e8a8f6d1b18
+pip==23.3.1 \
+    --hash=sha256:1fcaa041308d01f14575f6d0d2ea4b75a3e2871fe4f9c694976f908768e14174 \
+    --hash=sha256:55eb67bb6171d37447e82213be585b75fe2b12b359e993773aca4de9247a052b
     # via
     #   -r requirements.base.txt
     #   pip-tools
diff --git a/python/requirements.dev.txt b/python/requirements.dev.txt
index 44c9c2838..69b2402aa 100644
--- a/python/requirements.dev.txt
+++ b/python/requirements.dev.txt
@@ -730,9 +730,9 @@ zipp==3.15.0 \
     #   importlib-metadata
 
 # The following packages are considered to be unsafe in a requirements file:
-pip==23.1.2 \
-    --hash=sha256:0e7c86f486935893c708287b30bd050a36ac827ec7fe5e43fe7cb198dd835fba \
-    --hash=sha256:3ef6ac33239e4027d9a5598a381b9d30880a1477e50039db2eac6e8a8f6d1b18
+pip==23.3.1 \
+    --hash=sha256:1fcaa041308d01f14575f6d0d2ea4b75a3e2871fe4f9c694976f908768e14174 \
+    --hash=sha256:55eb67bb6171d37447e82213be585b75fe2b12b359e993773aca4de9247a052b
     # via
     #   -r requirements.bundle.txt
     #   pip-tools