Merge #1869

1869: Scheduled weekly dependency update for week 16 r=mythmon a=pyup-bot






### Update [botocore](https://pypi.org/project/botocore) from **1.12.130** to **1.12.134**.


<details>
  <summary>Changelog</summary>
  
  
   ### 1.12.134
   ```
   ========

* api-change:``resource-groups``: Update resource-groups client to latest version
* api-change:``transcribe``: Update transcribe client to latest version
* api-change:``workspaces``: Update workspaces client to latest version
   ```
   
  
  
   ### 1.12.133
   ```
   ========

* api-change:``kafka``: Update kafka client to latest version
* api-change:``cognito-idp``: Update cognito-idp client to latest version
* api-change:``rds``: Update rds client to latest version
* api-change:``worklink``: Update worklink client to latest version
* api-change:``workspaces``: Update workspaces client to latest version
* api-change:``discovery``: Update discovery client to latest version
* api-change:``organizations``: Update organizations client to latest version
   ```
   
  
  
   ### 1.12.132
   ```
   ========

* api-change:``polly``: Update polly client to latest version
* api-change:``ec2``: Update ec2 client to latest version
   ```
   
  
  
   ### 1.12.131
   ```
   ========

* api-change:``organizations``: Update organizations client to latest version
* api-change:``mq``: Update mq client to latest version
* api-change:``redshift``: Update redshift client to latest version
* api-change:``storagegateway``: Update storagegateway client to latest version
* api-change:``cloudwatch``: Update cloudwatch client to latest version
* api-change:``cognito-idp``: Update cognito-idp client to latest version
   ```
   
  
</details>


 

<details>
  <summary>Links</summary>
  
  - PyPI: https://pypi.org/project/botocore
  - Changelog: https://pyup.io/changelogs/botocore/
  - Repo: https://github.com/boto/botocore
</details>





### Update [cffi](https://pypi.org/project/cffi) from **1.12.2** to **1.12.3**.


<details>
  <summary>Changelog</summary>
  
  
   ### 1.12.3
   ```
   =======

* Fix for nested struct types that end in a var-sized array (405).

* Add support for using ``U`` and ``L`` characters at the end of integer
  constants in ``ffi.cdef()`` (thanks Guillaume).

* More 3.8 fixes.
   ```
   
  
</details>


 

<details>
  <summary>Links</summary>
  
  - PyPI: https://pypi.org/project/cffi
  - Changelog: https://pyup.io/changelogs/cffi/
  - Docs: http://cffi.readthedocs.org
</details>





### Update [ruamel.yaml](https://pypi.org/project/ruamel.yaml) from **0.15.91** to **0.15.93**.


*The bot wasn't able to find a changelog for this release. [Got an idea?](https://github.com/pyupio/changelogs/issues/new)*

<details>
  <summary>Links</summary>
  
  - PyPI: https://pypi.org/project/ruamel.yaml
  - Changelog: https://pyup.io/changelogs/ruamel.yaml/
  - Repo: https://bitbucket.org/ruamel/yaml
</details>





### Update [urllib3](https://pypi.org/project/urllib3) from **1.24.1** to **1.25**.


<details>
  <summary>Changelog</summary>
  
  
   ### 1.25
   ```
   -----------------

* Require and validate certificates by default when using HTTPS (Pull 1507)

* Upgraded ``urllib3.utils.parse_url()`` to be RFC 3986 compliant. (Pull 1487)

* Added support for ``key_password`` for ``HTTPSConnectionPool`` to use
  encrypted ``key_file`` without creating your own ``SSLContext`` object. (Pull 1489)

* Add TLSv1.3 support to CPython, pyOpenSSL, and SecureTransport ``SSLContext``
  implementations. (Pull 1496)

* Switched the default multipart header encoder from RFC 2231 to HTML 5 working draft. (Issue 303, PR 1492)

* Fixed issue where OpenSSL would block if an encrypted client private key was
  given and no password was given. Instead an ``SSLError`` is raised. (Pull 1489)

* Added support for Brotli content encoding. It is enabled automatically if
  ``brotlipy`` package is installed which can be requested with
  ``urllib3[brotli]`` extra. (Pull 1532)

* Drop ciphers using DSS key exchange from default TLS cipher suites.
  Improve default ciphers when using SecureTransport. (Pull 1496)

* Implemented a more efficient ``HTTPResponse.__iter__()`` method. (Issue 1483)
   ```
   
  
  
   ### 1.24.2
   ```
   -------------------

* Don&#39;t load system certificates by default when any other ``ca_certs``, ``ca_certs_dir`` or
  ``ssl_context`` parameters are specified.

* Remove Authorization header regardless of case when redirecting to cross-site. (Issue 1510)

* Add support for IPv6 addresses in subjectAltName section of certificates. (Issue 1269)
   ```
   
  
</details>


 

<details>
  <summary>Links</summary>
  
  - PyPI: https://pypi.org/project/urllib3
  - Changelog: https://pyup.io/changelogs/urllib3/
  - Docs: https://urllib3.readthedocs.io/
</details>





### Update [boto3](https://pypi.org/project/boto3) from **1.9.130** to **1.9.134**.


<details>
  <summary>Changelog</summary>
  
  
   ### 1.9.134
   ```
   =======

* api-change:``resource-groups``: [``botocore``] Update resource-groups client to latest version
* api-change:``transcribe``: [``botocore``] Update transcribe client to latest version
* api-change:``workspaces``: [``botocore``] Update workspaces client to latest version
   ```
   
  
  
   ### 1.9.133
   ```
   =======

* api-change:``kafka``: [``botocore``] Update kafka client to latest version
* api-change:``cognito-idp``: [``botocore``] Update cognito-idp client to latest version
* api-change:``rds``: [``botocore``] Update rds client to latest version
* api-change:``worklink``: [``botocore``] Update worklink client to latest version
* api-change:``workspaces``: [``botocore``] Update workspaces client to latest version
* api-change:``discovery``: [``botocore``] Update discovery client to latest version
* api-change:``organizations``: [``botocore``] Update organizations client to latest version
   ```
   
  
  
   ### 1.9.132
   ```
   =======

* api-change:``polly``: [``botocore``] Update polly client to latest version
* api-change:``ec2``: [``botocore``] Update ec2 client to latest version
   ```
   
  
  
   ### 1.9.131
   ```
   =======

* api-change:``organizations``: [``botocore``] Update organizations client to latest version
* api-change:``mq``: [``botocore``] Update mq client to latest version
* api-change:``redshift``: [``botocore``] Update redshift client to latest version
* api-change:``storagegateway``: [``botocore``] Update storagegateway client to latest version
* api-change:``cloudwatch``: [``botocore``] Update cloudwatch client to latest version
* api-change:``cognito-idp``: [``botocore``] Update cognito-idp client to latest version
   ```
   
  
</details>


 

<details>
  <summary>Links</summary>
  
  - PyPI: https://pypi.org/project/boto3
  - Changelog: https://pyup.io/changelogs/boto3/
  - Repo: https://github.com/boto/boto3
</details>





### Update [ecdsa](https://pypi.org/project/ecdsa) from **0.13** to **0.13.2**.


*The bot wasn't able to find a changelog for this release. [Got an idea?](https://github.com/pyupio/changelogs/issues/new)*

<details>
  <summary>Links</summary>
  
  - PyPI: https://pypi.org/project/ecdsa
  - Changelog: https://pyup.io/changelogs/ecdsa/
  - Repo: http://github.com/warner/python-ecdsa
</details>





### Update [google-cloud-storage](https://pypi.org/project/google-cloud-storage) from **1.14.0** to **1.15.0**.


*The bot wasn't able to find a changelog for this release. [Got an idea?](https://github.com/pyupio/changelogs/issues/new)*

<details>
  <summary>Links</summary>
  
  - PyPI: https://pypi.org/project/google-cloud-storage
  - Repo: https://github.com/GoogleCloudPlatform/google-cloud-python
</details>





### Update [newrelic](https://pypi.org/project/newrelic) from **4.16.1.117** to **4.18.0.118**.


<details>
  <summary>Changelog</summary>
  
  
   ### 4.18.0.118
   ```
   This release of the Python agent adds improvements to the gRPC instrumentation package and includes bug fixes.

The agent can be installed using easy_install/pip/distribute via the Python Package Index or can be downloaded directly from the New Relic download site.

Features


Improved gRPC support

Support for measuring inbound gRPC requests has now been added. Inbound gRPC requests will now show as web transactions in APM. Additionally, distributed tracing is now supported as part of the gRPC instrumentation package.


Bug Fixes


Update pika instrumentation to support the 1.x releases

When using the agent with pika versions 1.x and up, the agent may have caused an application crash. The agent now correctly collects data on newer versions of pika.
The startup_timeout setting may not have been honored in a multithreaded application

When startup_timeout is set to a number greater than 0, the servicing of transactions is blocked until the agent has fully activated. In multithreaded applications, only the first thread would block due to improper locking. The agent will now block on all threads.
   ```
   
  
</details>


 

<details>
  <summary>Links</summary>
  
  - PyPI: https://pypi.org/project/newrelic
  - Changelog: https://pyup.io/changelogs/newrelic/
  - Homepage: http://newrelic.com/docs/python/new-relic-for-python
</details>





### Update [pytest](https://pypi.org/project/pytest) from **4.4.0** to **4.4.1**.


<details>
  <summary>Changelog</summary>
  
  
   ### 4.4.1
   ```
   =========================

Bug Fixes
---------

- `5031 &lt;https://github.com/pytest-dev/pytest/issues/5031&gt;`_: Environment variables are properly restored when using pytester&#39;s ``testdir`` fixture.


- `5039 &lt;https://github.com/pytest-dev/pytest/issues/5039&gt;`_: Fix regression with ``--pdbcls``, which stopped working with local modules in 4.0.0.


- `5092 &lt;https://github.com/pytest-dev/pytest/issues/5092&gt;`_: Produce a warning when unknown keywords are passed to ``pytest.param(...)``.


- `5098 &lt;https://github.com/pytest-dev/pytest/issues/5098&gt;`_: Invalidate import caches with ``monkeypatch.syspath_prepend``, which is required with namespace packages being used.
   ```
   
  
</details>


 

<details>
  <summary>Links</summary>
  
  - PyPI: https://pypi.org/project/pytest
  - Changelog: https://pyup.io/changelogs/pytest/
  - Homepage: https://docs.pytest.org/en/latest/
</details>





### Update [pytest-mock](https://pypi.org/project/pytest-mock) from **1.10.3** to **1.10.4**.


<details>
  <summary>Changelog</summary>
  
  
   ### 1.10.4
   ```
   ------

* Fix plugin when &#39;terminal&#39; plugin is disabled
   ```
   
  
</details>


 

<details>
  <summary>Links</summary>
  
  - PyPI: https://pypi.org/project/pytest-mock
  - Changelog: https://pyup.io/changelogs/pytest-mock/
  - Repo: https://github.com/pytest-dev/pytest-mock/
</details>





### Update [sort-requirements](https://pypi.org/project/sort-requirements) from **1.1.0** to **1.3.0**.


<details>
  <summary>Changelog</summary>
  
  
   ### 1.3.0
   ```
   - Add support for non-equal comparators (`!=`, `&gt;=`, `~=`).
- Add support for non-inline comments.
   ```
   
  
  
   ### 1.2.0
   ```
   - Adds a results line after running.
- Adds the `--diff` flag for diff outputs.
- Adds the `--quiet` flag.
   ```
   
  
</details>


 

<details>
  <summary>Links</summary>
  
  - PyPI: https://pypi.org/project/sort-requirements
  - Changelog: https://pyup.io/changelogs/sort-requirements/
  - Repo: https://github.com/rehandalal/sort-requirements
</details>







Co-authored-by: pyup-bot <github-bot@pyup.io>
Co-authored-by: Rehan Dalal <rehandalal@gmail.com>

requirements/constraints.txt

@@ -20,44 +20,44 @@ attrs==19.1.0 \
 Babel==2.6.0 \
     --hash=sha256:6778d85147d5d85345c14a26aada5e478ab04e39b078b0745ee6870c2b5cf669 \
     --hash=sha256:8cba50f48c529ca3fa18cf81fa9403be176d374ac4d60738b839122dfaaa3d23
-botocore==1.12.130 \
-    --hash=sha256:128130b12f8ba4bf07a673b119135264060eb98f6a4a7419cbd1f2c6dc926827 \
-    --hash=sha256:59376112fdee707927b644dd44a1771861f8fe354a48d596131ced83d7a3c05b
+botocore==1.12.134 \
+    --hash=sha256:5c4d9ea1b0fbb1dc98b6a06ed8780096fca981a1c3599bf8f03f338e6aa389ae \
+    --hash=sha256:c59a74539eb081f4b3a307fc5c3d69d8459e30bfaf4b94aa78e74a9a05583764
 cachetools==3.1.0 \
     --hash=sha256:219b7dc6024195b6f2bc3d3f884d1fef458745cd323b04165378622dcc823852 \
     --hash=sha256:9efcc9fab3b49ab833475702b55edd5ae07af1af7a4c627678980b45e459c460
 certifi==2019.3.9 \
     --hash=sha256:59b7658e26ca9c7339e00f8f4636cdfe59d34fa37b9b04f6f9e9926b3cece1a5 \
     --hash=sha256:b26104d6835d1f5e49452a26eb2ff87fe7090b89dfcaee5ea2212697e1e1d7ae
-cffi==1.12.2 \
-    --hash=sha256:00b97afa72c233495560a0793cdc86c2571721b4271c0667addc83c417f3d90f \
-    --hash=sha256:0ba1b0c90f2124459f6966a10c03794082a2f3985cd699d7d63c4a8dae113e11 \
-    --hash=sha256:0bffb69da295a4fc3349f2ec7cbe16b8ba057b0a593a92cbe8396e535244ee9d \
-    --hash=sha256:21469a2b1082088d11ccd79dd84157ba42d940064abbfa59cf5f024c19cf4891 \
-    --hash=sha256:2e4812f7fa984bf1ab253a40f1f4391b604f7fc424a3e21f7de542a7f8f7aedf \
-    --hash=sha256:2eac2cdd07b9049dd4e68449b90d3ef1adc7c759463af5beb53a84f1db62e36c \
-    --hash=sha256:2f9089979d7456c74d21303c7851f158833d48fb265876923edcb2d0194104ed \
-    --hash=sha256:3dd13feff00bddb0bd2d650cdb7338f815c1789a91a6f68fdc00e5c5ed40329b \
-    --hash=sha256:4065c32b52f4b142f417af6f33a5024edc1336aa845b9d5a8d86071f6fcaac5a \
-    --hash=sha256:51a4ba1256e9003a3acf508e3b4f4661bebd015b8180cc31849da222426ef585 \
-    --hash=sha256:59888faac06403767c0cf8cfb3f4a777b2939b1fbd9f729299b5384f097f05ea \
-    --hash=sha256:59c87886640574d8b14910840327f5cd15954e26ed0bbd4e7cef95fa5aef218f \
-    --hash=sha256:610fc7d6db6c56a244c2701575f6851461753c60f73f2de89c79bbf1cc807f33 \
-    --hash=sha256:70aeadeecb281ea901bf4230c6222af0248c41044d6f57401a614ea59d96d145 \
-    --hash=sha256:71e1296d5e66c59cd2c0f2d72dc476d42afe02aeddc833d8e05630a0551dad7a \
-    --hash=sha256:8fc7a49b440ea752cfdf1d51a586fd08d395ff7a5d555dc69e84b1939f7ddee3 \
-    --hash=sha256:9b5c2afd2d6e3771d516045a6cfa11a8da9a60e3d128746a7fe9ab36dfe7221f \
-    --hash=sha256:9c759051ebcb244d9d55ee791259ddd158188d15adee3c152502d3b69005e6bd \
-    --hash=sha256:b4d1011fec5ec12aa7cc10c05a2f2f12dfa0adfe958e56ae38dc140614035804 \
-    --hash=sha256:b4f1d6332339ecc61275bebd1f7b674098a66fea11a00c84d1c58851e618dc0d \
-    --hash=sha256:c030cda3dc8e62b814831faa4eb93dd9a46498af8cd1d5c178c2de856972fd92 \
-    --hash=sha256:c2e1f2012e56d61390c0e668c20c4fb0ae667c44d6f6a2eeea5d7148dcd3df9f \
-    --hash=sha256:c37c77d6562074452120fc6c02ad86ec928f5710fbc435a181d69334b4de1d84 \
-    --hash=sha256:c8149780c60f8fd02752d0429246088c6c04e234b895c4a42e1ea9b4de8d27fb \
-    --hash=sha256:cbeeef1dc3c4299bd746b774f019de9e4672f7cc666c777cd5b409f0b746dac7 \
-    --hash=sha256:e113878a446c6228669144ae8a56e268c91b7f1fafae927adc4879d9849e0ea7 \
-    --hash=sha256:e21162bf941b85c0cda08224dade5def9360f53b09f9f259adb85fc7dd0e7b35 \
-    --hash=sha256:fb6934ef4744becbda3143d30c6604718871495a5e36c408431bf33d9c146889
+cffi==1.12.3 \
+    --hash=sha256:041c81822e9f84b1d9c401182e174996f0bae9991f33725d059b771744290774 \
+    --hash=sha256:046ef9a22f5d3eed06334d01b1e836977eeef500d9b78e9ef693f9380ad0b83d \
+    --hash=sha256:066bc4c7895c91812eff46f4b1c285220947d4aa46fa0a2651ff85f2afae9c90 \
+    --hash=sha256:066c7ff148ae33040c01058662d6752fd73fbc8e64787229ea8498c7d7f4041b \
+    --hash=sha256:2444d0c61f03dcd26dbf7600cf64354376ee579acad77aef459e34efcb438c63 \
+    --hash=sha256:300832850b8f7967e278870c5d51e3819b9aad8f0a2c8dbe39ab11f119237f45 \
+    --hash=sha256:34c77afe85b6b9e967bd8154e3855e847b70ca42043db6ad17f26899a3df1b25 \
+    --hash=sha256:46de5fa00f7ac09f020729148ff632819649b3e05a007d286242c4882f7b1dc3 \
+    --hash=sha256:4aa8ee7ba27c472d429b980c51e714a24f47ca296d53f4d7868075b175866f4b \
+    --hash=sha256:4d0004eb4351e35ed950c14c11e734182591465a33e960a4ab5e8d4f04d72647 \
+    --hash=sha256:4e3d3f31a1e202b0f5a35ba3bc4eb41e2fc2b11c1eff38b362de710bcffb5016 \
+    --hash=sha256:50bec6d35e6b1aaeb17f7c4e2b9374ebf95a8975d57863546fa83e8d31bdb8c4 \
+    --hash=sha256:55cad9a6df1e2a1d62063f79d0881a414a906a6962bc160ac968cc03ed3efcfb \
+    --hash=sha256:5662ad4e4e84f1eaa8efce5da695c5d2e229c563f9d5ce5b0113f71321bcf753 \
+    --hash=sha256:59b4dc008f98fc6ee2bb4fd7fc786a8d70000d058c2bbe2698275bc53a8d3fa7 \
+    --hash=sha256:73e1ffefe05e4ccd7bcea61af76f36077b914f92b76f95ccf00b0c1b9186f3f9 \
+    --hash=sha256:a1f0fd46eba2d71ce1589f7e50a9e2ffaeb739fb2c11e8192aa2b45d5f6cc41f \
+    --hash=sha256:a2e85dc204556657661051ff4bab75a84e968669765c8a2cd425918699c3d0e8 \
+    --hash=sha256:a5457d47dfff24882a21492e5815f891c0ca35fefae8aa742c6c263dac16ef1f \
+    --hash=sha256:a8dccd61d52a8dae4a825cdbb7735da530179fea472903eb871a5513b5abbfdc \
+    --hash=sha256:ae61af521ed676cf16ae94f30fe202781a38d7178b6b4ab622e4eec8cefaff42 \
+    --hash=sha256:b012a5edb48288f77a63dba0840c92d0504aa215612da4541b7b42d849bc83a3 \
+    --hash=sha256:d2c5cfa536227f57f97c92ac30c8109688ace8fa4ac086d19d0af47d134e2909 \
+    --hash=sha256:d42b5796e20aacc9d15e66befb7a345454eef794fdb0737d1af593447c6c8f45 \
+    --hash=sha256:dee54f5d30d775f525894d67b1495625dd9322945e7fee00731952e0368ff42d \
+    --hash=sha256:e070535507bd6aa07124258171be2ee8dfc19119c28ca94c9dfb7efd23564512 \
+    --hash=sha256:e1ff2748c84d97b065cc95429814cdba39bcbd77c9c85c89344b317dc0d9cbff \
+    --hash=sha256:ed851c75d1e0e043cbf5ca9a8e1b13c4c90f3fbd863dacb01c0808e2b5204201
 chardet==3.0.4 \
     --hash=sha256:84ab92ed1c4d4f16916e05906b6b75a6c0fb5db821cc65e70cbd64a3e2a5eaae \
     --hash=sha256:fc323ffcaeaed0e0a02bf4d117757b98aed530d9ed4531e3e15460124c106691
@@ -287,29 +287,29 @@ PyYAML==5.1 \
 rsa==4.0 \
     --hash=sha256:14ba45700ff1ec9eeb206a2ce76b32814958a98e372006c8fb76ba820211be66 \
     --hash=sha256:1a836406405730121ae9823e19c6e806c62bbad73f890574fff50efa4122c487
-ruamel.yaml==0.15.91 \
-    --hash=sha256:1d38d5abf1f36a74f9244f3654f22329e4dc7b9353cc6bf921c0c2d985bba8c9 \
-    --hash=sha256:2ae248d81386b6708efdae5d3c42b408e17ded66318d102174827351b23417a6 \
-    --hash=sha256:4122b4ea513d1193673ff38ce8d95a4ed7717d36f342fbed811c3db93e5fff65 \
-    --hash=sha256:52fcbc159977be3f4c20c2b02f7e9271eb14e460863abb9b956812e535d6750c \
-    --hash=sha256:5c132b6b944b9e9e3e763c15d0f0c199dd70600d34f4c722674be7521bc60a64 \
-    --hash=sha256:5d0bf4fe48f2677f71e5d743606a26525114b83cdc100e12f075a1dfa887fe33 \
-    --hash=sha256:692f03ed24c8c1d9fa9fd4c045f7ba1c26f1e96edb8bfb4d54854ba26bc02319 \
-    --hash=sha256:748add3006bdc4c89b033bbb38003c2f7259456ae5ed250a0d3d453eb00e0524 \
-    --hash=sha256:7b587269e7a0992d774d75628bbde8e09c1992075e5598c6f394be2f75c7de88 \
-    --hash=sha256:b5d2e447e255d8ce35b47e24072f8d6f585e671955dc1a82ee104da7e7e8e9a1 \
-    --hash=sha256:b98a90bd8c6717d260409efc1e9f5467f8286cf00e5f457b8d1aeac6d3e85f91 \
-    --hash=sha256:c107e809bae51af407535231a92f03bdb5975ec0d0ec2a424a7974ee989310e2 \
-    --hash=sha256:cc57a38a2353ffd8dc90288f96bbc8b4cf8e7c5558b118e8ccbba6157c1c2c78 \
-    --hash=sha256:df522e5ae0da7f70129e4415c0a539cc641572fc8a3c28f6ac11091a1a5f3441 \
-    --hash=sha256:e31c288a8950abd41fbd2d77f552641c032463ca6d5ade49a015d590af00123f \
-    --hash=sha256:e3d8451f51f0dfda4bc094c78840b7d606cc2a545942964e5f608a4d92c47a55 \
-    --hash=sha256:e4c16764bf86485716578cdb003a895f8c15105847d738f17d3fe948663c711a \
-    --hash=sha256:e6027c0d24a9a7203dfc086876af980d394645d9bc5043457154e166fffdb8a1 \
-    --hash=sha256:e9f27c9217f2c822abc9a724bb71be7c94747d9613c54a4880a81e7a02526ffe \
-    --hash=sha256:f44eea0e6b95b05ceaaadc8af51021ee72941d93ab11add42886045628bde0ae \
-    --hash=sha256:f9e391f82bde79beaa11f55d8f171c2b3b7f2f9c2447a9db963887fc1f3b9692 \
-    --hash=sha256:faf7b304e676e84d110fe6e13a0dc094f20d993e2997d6374434a76ef5caf41e
+ruamel.yaml==0.15.93 \
+    --hash=sha256:0567fd8066b34f4537a561c3c93369b0dada197c8538756a88586fb5543567b3 \
+    --hash=sha256:06950c7f7417e95190e6ea11ae2168caf68c4f4db6e0a36cca69059ab24fdec9 \
+    --hash=sha256:1040a0bee9f477052ccdc2ee9531457d7b487d4fc870c80062abf076454ad469 \
+    --hash=sha256:1d0e0cd76e0322c919f9cc58bbf54f75f91b7864c0bd5a6eb34729bc726bb1ef \
+    --hash=sha256:1d0fb0d348ab2a9417354edfae7aaeb0dbc16237c18630866256b678453f0372 \
+    --hash=sha256:275b10627d459c79b926c804b96a3204f3c22ccfdf3c94e3ec8761afb7edfb2b \
+    --hash=sha256:28789252bf3fdcd0f50963572706a020fc1aef1be334fd131cc8085b5439bd12 \
+    --hash=sha256:372e5ef37997049d7726537825bbb771c142d58b12867e0e81238b048f1d8f1c \
+    --hash=sha256:3d0e448f2a8b45aeee199641bdaac4c92e9d78632bea19db7fd25c77e8f67032 \
+    --hash=sha256:4820c8086971c167173884049109e0353d5d6e2c6f632b9019de0f3495bd0424 \
+    --hash=sha256:686dd86b9a31ebed379cadf916bbcb390f9e702b7f958d0a217c77660e194f49 \
+    --hash=sha256:73b12512790408259adb87d23814ee930f8786ad7dc3bf70013f95aa372f8ae8 \
+    --hash=sha256:7ed6a699c80c32b862497baf6b8ea280b6ca980493d28ae8353128844a40a369 \
+    --hash=sha256:818bfcaf13a489013ccd6fe2de14c659a69bfcf24d4d83e0c6925526c93aae34 \
+    --hash=sha256:88aef20ada947f61d4e694d8ce2b210152ce96d98cd41953ce2355d9efcc4e14 \
+    --hash=sha256:89856624f86ffce1bbe573a1f0b0e7fa2a61fe580d6e09afa8b29b5816f248a6 \
+    --hash=sha256:a27dc6831a50f261be39aac758fb88ba645e8477c418624dd5ecde4f583173e5 \
+    --hash=sha256:a35879b18b73bce1a988d207bcc13dc24d2ebe1f41bd147b9275515c07efe0c4 \
+    --hash=sha256:c77e5727a25193f624566d2f4467b75e557772e64b55de2f8cf22c8ac0d2f603 \
+    --hash=sha256:d70839833b2fe0fc33c31295aa369520c8cd0a0c86b6de6f2c4a9d0f3024c2fb \
+    --hash=sha256:dfa661b05386d09c4eda074c051603960149bcfd6d0b6a7130abbeeeb14fe55f \
+    --hash=sha256:e78fd0a3b961a4a023f9cf3da3f4fd40a356a0d6974697533710f1e19affffa3
 Rx==1.6.1 \
     --hash=sha256:13a1d8d9e252625c173dc795471e614eadfe1cf40ffc684e08b8fff0d9748c23 \
     --hash=sha256:7357592bc7e881a95e0c2013b73326f704953301ab551fbc8133a6fadab84105
@@ -394,7 +394,8 @@ uritemplate==3.0.0 \
     --hash=sha256:c02643cebe23fc8adb5e6becffe201185bf06c40bda5c0b4028a93f1527d011d
 urllib3==1.24.1 \
     --hash=sha256:61bf29cada3fc2fbefad4fdf059ea4bd1b4a86d2b6d15e1c7c0b582b9752fe39 \
-    --hash=sha256:de9529817c93f27c8ccbfead6985011db27bd0ddfcdb2d86f3f663385c6a9c22
+    --hash=sha256:de9529817c93f27c8ccbfead6985011db27bd0ddfcdb2d86f3f663385c6a9c22 \
+    # pyup: >=1.21.1,<1.25 # pinned by requests-mock 1.5.2
 webencodings==0.5.1 \
     --hash=sha256:a0af1213f3c2226497a97e2b3aa01a7e4bee4f403f95be16fc9acd2947514a78 \
     --hash=sha256:b36a1c245f2d304965eb4e0a82848379241dc04b865afcc4aab16748587e1923

requirements/default.txt

@@ -26,9 +26,9 @@ bcrypt==3.1.6 \
 black==19.3b0 \
     --hash=sha256:09a9dcb7c46ed496a9850b76e4e825d6049ecd38b611f1224857a79bd985a8cf \
     --hash=sha256:68950ffd4d9169716bcb8719a56c07a2f4485354fec061cdd5910aa07369731c
-boto3==1.9.130 \
-    --hash=sha256:bb69628f933a8dba22817c85289b3421b23ac643ff3202b13dd2e933c2717109 \
-    --hash=sha256:c75c45bae9dbdb2ff3fc3482d421a3901e552574a882dba1cffa064715acfbe7
+boto3==1.9.134 \
+    --hash=sha256:883f7143bcb081a834f7c09659524059b66745ea043fffd40420e88ef0143feb \
+    --hash=sha256:9c789a775f0499743b083ffd63e0e87dae9a727511bb37f2529da52ccd25a360
 dj-database-url==0.5.0 \
     --hash=sha256:4aeaeb1f573c74835b0686a2b46b85990571159ffc21aa57ecd4d1e1cb334163 \
     --hash=sha256:851785365761ebe4994a921b433062309eb882fedd318e1b0fcecc607ed02da9
@@ -73,9 +73,9 @@ dockerflow==2018.4.0 \
 drf-yasg==1.15.0 \
     --hash=sha256:2c03c569cd1f1711e30efe3a1a56998cf61aa224cb2991e9fdac22aa47fd41e5 \
     --hash=sha256:dfb96eb36b259c2e0da67515319a25e49f6bdd3a275412f34221cc5236d2b62a
-ecdsa==0.13 \
-    --hash=sha256:40d002cf360d0e035cf2cb985e1308d41aaa087cbfc135b2dc2d844296ea546c \
-    --hash=sha256:64cf1ee26d1cde3c73c6d7d107f835fed7c6a2904aef9eac223d57ad800c43fa
+ecdsa==0.13.2 \
+    --hash=sha256:20c17e527e75acad8f402290e158a6ac178b91b881f941fc6ea305bfdfb9657c \
+    --hash=sha256:5c034ffa23413ac923541ceb3ac14ec15a0d2530690413bff58c12b80e56d884
 factory_boy==2.11.1 \
     --hash=sha256:d552cb872b310ae78bd7429bf318e42e1e903b1a109e899a523293dfa762ea4f \
     --hash=sha256:6f25cc4761ac109efd503f096e2ad99421b1159f01a29dbb917359dcd68e08ca
@@ -115,9 +115,9 @@ gevent==1.4.0 \
     --hash=sha256:107f4232db2172f7e8429ed7779c10f2ed16616d75ffbe77e0e0c3fcdeb51a51 \
     --hash=sha256:28a0c5417b464562ab9842dd1fb0cc1524e60494641d973206ec24d6ec5f6909 \
     --hash=sha256:1eb7fa3b9bd9174dfe9c3b59b7a09b768ecd496debfc4976a9530a3e15c990d1
-google-cloud-storage==1.14.0 \
-    --hash=sha256:a3115c22a71e2f172fade72c7b7b797a071f3ac9b66043191fc84c214ba0c671 \
-    --hash=sha256:aef243b533144c11c9ff750565c43dffe5445debb143697002edb6205f64a437
+google-cloud-storage==1.15.0 \
+    --hash=sha256:0e02039f37d3e4531090f72d1200ad78316625503644864f81c1d6b91516bfa7 \
+    --hash=sha256:d66bfed1fd51f392ee361b5b7d84efd912f47db52a28722ee2e3994f0a54698d
 graphene-django==2.2.0 \
     --hash=sha256:3afd81d47c8b702650e05cc1179fac1cfceae991d241bb164d51f28bed9ec95c \
     --hash=sha256:760a18068feb5457e2ec00d2447c09b2fbac2a6b8c32cc8be2abce3752107ad3 \
@@ -137,8 +137,8 @@ kinto-http==10.3.0 \
 markus[datadog]==1.2.0 \
     --hash=sha256:86bbeb16de1b1920d291c81a39b7a7c61c94b665cd8d10c6b69c994ce4fd5bcc \
     --hash=sha256:9bce7bd152578703a8e4aa5a765c7c0d94bcdd69f7bc5e42d29b893e3abf2e5a
-newrelic==4.16.1.117 \
-    --hash=sha256:23aead34b5ea4d0492d65069d3ab41eb1c276b3b237d0d0c2c213fbb4e1b32b6
+newrelic==4.18.0.118 \
+    --hash=sha256:3cd496022c6906ee3cdbf27c67ec3e03922830bfebbca4549ef6f2e58cf719e2
 psycopg2==2.8.2 \
     --hash=sha256:00cfecb3f3db6eb76dcc763e71777da56d12b6d61db6a2c6ccbbb0bff5421f8f \
     --hash=sha256:076501fc24ae13b2609ba2303d88d4db79072562f0b8cc87ec1667dedff99dc1 \
@@ -182,15 +182,15 @@ pyasn1-modules==0.2.4 \
 pyjexl==0.2.3 \
     --hash=sha256:1369c08c3f1f6931bc3c3089f24e79902680b6022412ccfc5e818441cf0dca52 \
     --hash=sha256:56eb1ab1bd78eb12d3c514b6e2f2c93fe7f2fdd00bd821873e3f089706452c51
-pytest==4.4.0 \
-    --hash=sha256:13c5e9fb5ec5179995e9357111ab089af350d788cbc944c628f3cde72285809b \
-    --hash=sha256:f21d2f1fb8200830dcbb5d8ec466a9c9120e20d8b53c7585d180125cce1d297a
+pytest==4.4.1 \
+    --hash=sha256:3773f4c235918987d51daf1db66d51c99fac654c81d6f2f709a046ab446d5e5d \
+    --hash=sha256:b7802283b70ca24d7119b32915efa7c409982f59913c1a6c0640aacf118b95f5
 pytest-django==3.4.8 \
     --hash=sha256:30d773f1768e8f214a3106f1090e00300ce6edfcac8c55fd13b675fe1cbd1c85 \
     --hash=sha256:4d3283e774fe1d40630ee58bf34929b83875e4751b525eeb07a7506996eb42ee
-pytest-mock==1.10.3 \
-    --hash=sha256:330bfa1a71c9b6e84e2976f01d70d8a174f755e7f9dc5b22f4b7335992e1e98b \
-    --hash=sha256:cea3983a1ebc88bf7c0fa1ed8c84e67b898bf71a320a49605bcb74f31e6cfd6a
+pytest-mock==1.10.4 \
+    --hash=sha256:43ce4e9dd5074993e7c021bb1c22cbb5363e612a2b5a76bc6d956775b10758b7 \
+    --hash=sha256:5bf5771b1db93beac965a7347dc81c675ec4090cb841e49d9d34637a25c30568
 pytest-testrail==2.3.3 \
     --hash=sha256:d1981ff94fb28b485fa51c28042ea728bab5362b4f08de86aa849d398aede6fc
 raven==6.10.0 \
@@ -204,10 +204,11 @@ requests-hawk==1.0.0 \
     --hash=sha256:c2626ab31ebef0c81b97781c44c2275bfcc6d8e8520fc4ced495f0f386f8fe26
 requests-mock==1.5.2 \
     --hash=sha256:8ca0628dc66d3f212878932fd741b02aa197ad53fd2228164800a169a4a826af \
-    --hash=sha256:7a5fa99db5e3a2a961b6f20ed40ee6baeff73503cf0a553cc4d679409e6170fb
-sort-requirements==1.1.0 \
-    --hash=sha256:43f08661794435aa756d9a5c8a2b7727a51dc73b45818d5d92769c5eeef2f078 \
-    --hash=sha256:7a04a665ece40d2a9e0bb62751366ef0f07f517427ff420e6340854056ab39a1
+    --hash=sha256:7a5fa99db5e3a2a961b6f20ed40ee6baeff73503cf0a553cc4d679409e6170fb \
+    # Pinning urllib3 >=1.21.1,<1.25
+sort-requirements==1.3.0 \
+    --hash=sha256:56de1172f5656aa9a0dfb7575913fff3d9ab80090e6bd4095fd6feec312c7d7c \
+    --hash=sha256:8038315f8932b1496567f1241ea482aa900845d5a5116c7d23835e783a3a2082
 statsd==3.3.0 \
     --hash=sha256:c610fb80347fca0ef62666d241bce64184bd7cc1efe582f9690e045c25535eaa \
     --hash=sha256:e3e6db4c246f7c59003e51c9720a51a7f39a396541cb9b147ff4b14d15b5dd1f