From cef4ea090e53d59a3a07abb084ebe7e921af5a44 Mon Sep 17 00:00:00 2001
From: Daniel Grossmann-Kavanagh <me@danielgk.com>
Date: Fri, 15 Mar 2019 21:25:26 +1100
Subject: [PATCH] bump PyYAML to 5.1 for CVE-2017-18342

---
 connexion/utils.py | 2 +-
 setup.py           | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/connexion/utils.py b/connexion/utils.py
index e56e1829e..c95adccd0 100644
--- a/connexion/utils.py
+++ b/connexion/utils.py
@@ -252,4 +252,4 @@ def ignore_aliases(self, *args):
     # Dump long lines as "|".
     yaml.representer.SafeRepresenter.represent_scalar = my_represent_scalar
 
-    return yaml.dump(openapi, default_flow_style=False, allow_unicode=True, Dumper=NoAnchorDumper)
+    return yaml.dump(openapi, allow_unicode=True, Dumper=NoAnchorDumper)
diff --git a/setup.py b/setup.py
index 21007363e..d3660205e 100755
--- a/setup.py
+++ b/setup.py
@@ -23,7 +23,7 @@ def read_version(package):
 install_requires = [
     'clickclick>=1.2',
     'jsonschema>=2.5.1,<3.0.0',
-    'PyYAML>=3.13',
+    'PyYAML>=5.1',
     'requests>=2.9.1',
     'six>=1.9',
     'inflection>=0.3.1',