From d3495e408e42edb5ab8c3200d75825ed2a14640c Mon Sep 17 00:00:00 2001
From: mattsb42-aws <bullocm@amazon.com>
Date: Wed, 3 Jul 2019 14:48:07 -0700
Subject: [PATCH] bump PyYAML minimum version to address
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18342

---
 setup.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/setup.py b/setup.py
index 593d248e9..7286507e8 100755
--- a/setup.py
+++ b/setup.py
@@ -38,7 +38,7 @@ install_requires = [
     "xmltodict",
     "six>1.9",
     "werkzeug",
-    "PyYAML",
+    "PyYAML>=5.1",
     "pytz",
     "python-dateutil<3.0.0,>=2.1",
     "python-jose<4.0.0",