From 0ff53eb59b410703155c59c6c1742007fd1701fa Mon Sep 17 00:00:00 2001
From: Casey Faist <caseylfaist@gmail.com>
Date: Wed, 28 Aug 2019 14:50:28 -0700
Subject: [PATCH] pin package versions for python-pip to bionic-security

so that we do not get an update of libssl to 1.1.1, since the stack is still on 1.1.0
---
 Dockerfile.heroku-18 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/Dockerfile.heroku-18 b/Dockerfile.heroku-18
index 466506a76..b4f823962 100644
--- a/Dockerfile.heroku-18
+++ b/Dockerfile.heroku-18
@@ -6,7 +6,7 @@ ENV WORKSPACE_DIR="/app/builds" \
     S3_PREFIX="heroku-18/" \
     DEBIAN_FRONTEND=noninteractive
 
-RUN apt-get update && apt-get install -y python-pip && rm -rf /var/lib/apt/lists/*
+RUN apt-get update && apt-get install --no-install-recommends -y python-pip-whl=9.0.1-2 python-pip=9.0.1-2 python-setuptools python-wheel && rm -rf /var/lib/apt/lists/*
 
 COPY requirements.txt /app/
 RUN pip install --disable-pip-version-check --no-cache-dir -r /app/requirements.txt