fix: services/workshop/requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-14157807
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-14157810
- https://snyk.io/vuln/SNYK-PYTHON-SQLPARSE-14157217
- https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-14192442
- https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-14192443

Author: snyk-bot

services/workshop/requirements.txt

@@ -1,5 +1,5 @@
 bcrypt==4.1.2
-Django~=4.1.13
+Django~=4.2.27
 cryptography==40.0.2
 django-cors-headers==4.0.0
 django-db-cascade-2==0.3.5
@@ -10,7 +10,7 @@ django-health-check==3.17.0
 djangorestframework==3.14.0
 django-sslserver==0.22
 djongo==1.3.6 #max version for django 4.1.13
-sqlparse==0.2.4 #djongo-dependency
+sqlparse==0.5.4 #djongo-dependency
 psycopg2==2.9.9
 PyJWT==2.7.0
 pymongo==3.13.0
@@ -22,4 +22,5 @@ gunicorn==21.2.0
 coverage==7.4.1
 unittest-xml-reporting==3.2.0
 black==24.4.2
-xhtml2pdf==0.2.17
+xhtml2pdf==0.2.17
+urllib3>=2.6.0 # not directly required, pinned by Snyk to avoid a vulnerability