chore: upgrade Django and related libraries to latest version (#451)

Signed-off-by: tdruez <tdruez@aboutcode.org>

Author: tdruez

CHANGELOG.rst

@@ -1,6 +1,8 @@
 Release notes
 =============
 
+### Version 5.6.0-dev
+
 ### Version 5.5.0
 
 - Add UI to refresh a package scan.

dejacode/__init__.py

@@ -14,7 +14,7 @@
 
 import git
 
-VERSION = "5.5.0"
+VERSION = "5.6.0-dev"
 
 PROJECT_DIR = Path(__file__).resolve().parent
 ROOT_DIR = PROJECT_DIR.parent

pyproject.toml

@@ -4,7 +4,7 @@ build-backend = "setuptools.build_meta"
 
 [project]
 name = "dejacode"
-version = "5.5.0"
+version = "5.6.0-dev"
 description = "Automate open source license compliance and ensure supply chain integrity"
 readme = "README.rst"
 requires-python = ">=3.13,<3.14"
@@ -35,8 +35,8 @@ dependencies = [
     "wheel==0.45.1",
     "pip==25.3",
     # Django
-    "Django==5.2.8",
-    "asgiref==3.10.0",
+    "Django==5.2.9",
+    "asgiref==3.11.0",
     "typing_extensions==4.15.0",
     "sqlparse==0.5.3",
     # Django apps
@@ -68,7 +68,7 @@ dependencies = [
     # Database
     "psycopg==3.2.12",
     # Cache
-    "redis==7.0.1",
+    "redis==7.1.0",
     # redis dependencies:
     "packaging==25.0",
     "pyparsing==3.2.5",
@@ -83,10 +83,10 @@ dependencies = [
     "rq==2.6.1",
     "croniter==6.0.0",
     "django-rq==3.2.1",
-    "fakeredis==2.32.1",
+    "fakeredis==2.33.0",
     # Libs
-    "certifi==2025.11.12",
-    "urllib3==2.5.0",
+    "certifi==2026.1.4",
+    "urllib3==2.6.2",
     "python-dateutil==2.9.0.post0",
     "python-mimeparse==2.0.0",
     "PyJWT==2.10.1",
@@ -133,22 +133,22 @@ dependencies = [
     "openpyxl==3.1.5",
     "et-xmlfile==2.0.0",
     # PackageURL
-    "packageurl-python==0.17.5",
+    "packageurl-python==0.17.6",
     # Gunicorn
     "gunicorn==23.0.0",
     # SPDX validation
     "jsonschema==4.24.0",
     "jsonschema-specifications==2025.4.1",
     "referencing==0.36.2",
     "rpds-py==0.25.1",
-    "attrs==25.3.0",
+    "attrs==25.4.0",
     "pyrsistent==0.20.0",
     # CycloneDX
-    "cyclonedx-python-lib==11.1.0",
+    "cyclonedx-python-lib==11.6.0",
     "sortedcontainers==2.4.0",
     "py-serializable==2.1.0",
     # Git
-    "GitPython==3.1.45",
+    "GitPython==3.1.46",
     "gitdb==4.0.12",
     "smmap==5.0.2",
     # CSAF
@@ -168,7 +168,7 @@ dev = [
     # Linter and Validation
     "ruff==0.14.0",
     # Parallel testing
-    "tblib==3.1.0"
+    "tblib==3.2.2"
 ]
 docs = [
     "Sphinx",

thirdparty/dist/asgiref-3.10.0-py3-none-any.whl.ABOUT

@@ -0,0 +1,14 @@
+about_resource: asgiref-3.11.0-py3-none-any.whl
+name: asgiref
+version: 3.11.0
+download_url: https://files.pythonhosted.org/packages/91/be/317c2c55b8bbec407257d45f5c8d1b6867abc76d12043f2d3d58c538a4ea/asgiref-3.11.0-py3-none-any.whl
+package_url: pkg:pypi/asgiref@3.11.0
+license_expression: bsd-new
+copyright: Copyright asgiref project contributors
+attribute: yes
+checksum_md5: 659fe6bbd7e43c8bde0b7ca065be0f6c
+checksum_sha1: 450de5a4aa731204f861dcd1a41a52a460b756de
+licenses:
+  - key: bsd-new
+    name: BSD-3-Clause
+    file: bsd-new.LICENSE

…rty/dist/asgiref-3.10.0-py3-none-any.whl …rty/dist/asgiref-3.11.0-py3-none-any.whlthirdparty/dist/asgiref-3.10.0-py3-none-any.whl renamed to thirdparty/dist/asgiref-3.11.0-py3-none-any.whl thirdparty/dist/asgiref-3.10.0-py3-none-any.whl renamed to thirdparty/dist/asgiref-3.11.0-py3-none-any.whl

@@ -0,0 +1,17 @@
+about_resource: attrs-25.4.0-py3-none-any.whl
+name: attrs
+version: 25.4.0
+download_url: https://files.pythonhosted.org/packages/3a/2a/7cc015f5b9f5db42b7d48157e23356022889fc354a2813c15934b7cb5c0e/attrs-25.4.0-py3-none-any.whl
+package_url: pkg:pypi/attrs@25.4.0
+license_expression: mit AND unknown-license-reference
+copyright: Copyright attrs project contributors
+attribute: yes
+checksum_md5: 7b7fab960686d9e318a640d5ddce32f7
+checksum_sha1: 0f44b024e556094358b37aa227f07cdd70baffa9
+licenses:
+  - key: mit
+    name: MIT License
+    file: mit.LICENSE
+  - key: unknown-license-reference
+    name: Unknown License file reference
+    file: unknown-license-reference.LICENSE