Merge pull request #4922 from linuxfoundation/unicron-4452-vulns-from-code-scanning-tools-2

Fix broken deployment

Author: lukaszgryglicki

cla-backend/requirements.txt

@@ -31,8 +31,9 @@ py==1.10.0
 pyasn1==0.4.8
 pydocusign==2.2
 PyGithub==1.55
-PyJWT[crypto]==2.11.0
 pyparsing==2.4.5
+PyJWT==2.11.0
+cryptography==41.0.7
 python-dateutil==2.8.1
 requests==2.31.0
 requests-oauthlib==1.2.0

cla-backend/serverless.yml

@@ -41,6 +41,13 @@ custom:
     app: cla.routes.__hug_wsgi__
     pythonBin: python
     pythonRequirements: false
+  pythonRequirements:
+    dockerizePip: true
+    dockerImage: public.ecr.aws/sam/build-python3.11:latest
+    slim: false
+    strip: false
+    useDownloadCache: true
+    useStaticCache: true
   # Config for serverless-prune-plugin - remove all but the 10 most recent
   # versions to avoid the "Code storage limit exceeded" error
   prune: