Update deps to fix vulnerabilities (#161)

Fixes: codecov/internal-issues#101
Fixes: codecov/internal-issues#102

Signed-off-by: joseph-sentry <joseph.sawaya@sentry.io>

requirements.in

@@ -33,7 +33,8 @@ SQLAlchemy
 statsd
 stripe
 timestring
+urllib3>=1.26.18
 vcrpy
-opentelemetry-instrumentation-celery
-opentelemetry-sdk
+opentelemetry-instrumentation-celery>=0.41b0
+opentelemetry-sdk>=1.20.0
 google-cloud-pubsub

requirements.txt

@@ -154,6 +154,8 @@ idna==2.10
     #   requests
     #   rfc3986
     #   yarl
+importlib-metadata==6.8.0
+    # via opentelemetry-api
 iniconfig==1.1.1
     # via pytest
 jinja2==3.1.2
@@ -184,22 +186,20 @@ oauth2==1.9.0.post1
     # via shared
 oauthlib==3.1.0
     # via shared
-opentelemetry-api==1.4.1
+opentelemetry-api==1.20.0
     # via
     #   opentelemetry-instrumentation
     #   opentelemetry-instrumentation-celery
     #   opentelemetry-sdk
-opentelemetry-instrumentation==0.23b2
-    # via
-    #   opentelemetry-instrumentation-celery
-    #   opentelemetry-sdk
-opentelemetry-instrumentation-celery==0.23b2
+opentelemetry-instrumentation==0.41b0
+    # via opentelemetry-instrumentation-celery
+opentelemetry-instrumentation-celery==0.41b0
     # via -r requirements.in
-opentelemetry-sdk==1.4.1
+opentelemetry-sdk==1.20.0
     # via
     #   -r requirements.in
     #   codecovopentelem
-opentelemetry-semantic-conventions==0.23b2
+opentelemetry-semantic-conventions==0.41b0
     # via
     #   opentelemetry-instrumentation-celery
     #   opentelemetry-sdk
@@ -347,9 +347,12 @@ tomli==2.0.1
 typing==3.7.4.3
     # via shared
 typing-extensions==4.6.3
-    # via shared
-urllib3==1.26.13
     # via
+    #   opentelemetry-sdk
+    #   shared
+urllib3==1.26.18
+    # via
+    #   -r requirements.in
     #   botocore
     #   google-auth
     #   minio
@@ -374,6 +377,8 @@ wrapt==1.12.1
     #   vcrpy
 yarl==1.6.3
     # via vcrpy
+zipp==3.17.0
+    # via importlib-metadata
 
 # The following packages are considered to be unsafe in a requirements file:
 # setuptools