diff --git a/Pipfile b/Pipfile
index 919e0feb53..8bb9b0203c 100644
--- a/Pipfile
+++ b/Pipfile
@@ -6,7 +6,7 @@ verify_ssl = true
 [dev-packages]
 awscli = "==1.19.112"  # Work with Object storage
 Babel = "==2.9.1"  # i18n
-bandit = "==1.7.9"  # lint
+bandit = "==1.7.10"  # lint
 beautifulsoup4 = "==4.9.3"  # admin tests
 coverage = "==5.4"  # Build coverage XML for Codacy
 Jinja2 = "==3.1.4"  # c2c.template
@@ -91,7 +91,7 @@ ColanderAlchemy = "==0.3.4"  # commons
 deform = "==2.0.15"  # commons, admin
 defusedxml = "==0.6.0"  # geoportal
 "dogpile.cache" = "==1.0.2"  # geoportal
-Fiona = "==1.10.0rc1"  # geoportal raster
+Fiona = "==1.10.1"  # geoportal raster
 GeoAlchemy2 = "==0.8.5"  # commons, geoportal
 geojson = "==2.5.0"  # geoportal
 getitfixed = "==1.0.29"  # geoportal
diff --git a/admin/package-lock.json b/admin/package-lock.json
index 7799ef633a..d0b0bd2835 100644
--- a/admin/package-lock.json
+++ b/admin/package-lock.json
@@ -12,7 +12,7 @@
         "bootstrap-table": "1.20.2",
         "jquery": "3.5.1",
         "jquery.scrollintoview": "1.9.4",
-        "jstree": "3.3.16",
+        "jstree": "3.3.17",
         "jstreegrid": "3.10.2",
         "magicsuggest-alpine": "1.0.0",
         "typeahead.js": "0.11.1"
@@ -48,9 +48,10 @@
       }
     },
     "node_modules/jstree": {
-      "version": "3.3.16",
-      "resolved": "https://registry.npmjs.org/jstree/-/jstree-3.3.16.tgz",
-      "integrity": "sha512-yeeIJffi2WAqyMeHufXj/Ozy7GqgKdDkxfN8L8lwbG0h1cw/TgDafWmyhroH4AKgDSk9yW1W6jiJZu4zXAqzXw==",
+      "version": "3.3.17",
+      "resolved": "https://registry.npmjs.org/jstree/-/jstree-3.3.17.tgz",
+      "integrity": "sha512-V0Pl1B6BIaxHUQMiWkol37QlhlBKoZA9RUeUmm95+UnV2QeZsj2QP1sOQl/m2EIOyZXOOxOHvR0SYZLSDC7EFw==",
+      "license": "MIT",
       "dependencies": {
         "jquery": "^3.5.0"
       }
diff --git a/admin/package.json b/admin/package.json
index 743434804a..992fd6ae6e 100644
--- a/admin/package.json
+++ b/admin/package.json
@@ -8,7 +8,7 @@
     "bootstrap-table": "1.20.2",
     "jquery": "3.5.1",
     "jquery.scrollintoview": "1.9.4",
-    "jstree": "3.3.16",
+    "jstree": "3.3.17",
     "jstreegrid": "3.10.2",
     "magicsuggest-alpine": "1.0.0",
     "typeahead.js": "0.11.1"
diff --git a/docker/qgisserver/python/3.8/Pipfile b/docker/qgisserver/python/3.8/Pipfile
index 6fea0b1297..78535caa89 100644
--- a/docker/qgisserver/python/3.8/Pipfile
+++ b/docker/qgisserver/python/3.8/Pipfile
@@ -40,7 +40,7 @@ mypy = "==0.790" # lint
 prospector = { extras = ["with_mypy", "with_bandit"], version = "==1.3.1" }
 flake8 = "==3.8.4"
 # Lock dependencies
-bandit = "==1.7.9"
+bandit = "==1.7.10"
 dodgy = "==0.2.1"
 flake8-polyfill = "==1.0.2"
 gitdb = "==4.0.11"
diff --git a/docker/qgisserver/python/3.8/Pipfile.lock b/docker/qgisserver/python/3.8/Pipfile.lock
index 1f14e8c02c..09cdb165be 100644
--- a/docker/qgisserver/python/3.8/Pipfile.lock
+++ b/docker/qgisserver/python/3.8/Pipfile.lock
@@ -1,7 +1,7 @@
 {
     "_meta": {
         "hash": {
-            "sha256": "0aff9a56cecd717395497085e0d08e95ea22f1408cdd493550a4bb2cb7cfc638"
+            "sha256": "f01387212c4e55f0c61c911caf21078d1c3a89d9046d8449b6465faa29c9db3c"
         },
         "pipfile-spec": 6,
         "requires": {
@@ -306,7 +306,7 @@
                 "sha256:8b74bedcbbbaca38ff6d7491d76f2b06b3592611af620f8426e82dddb04a5ced"
             ],
             "index": "pypi",
-            "markers": "python_version >= '2.7' and python_version not in '3.0, 3.1, 3.2, 3.3'",
+            "markers": "python_version >= '2.7' and python_version not in '3.0, 3.1, 3.2'",
             "version": "==1.15.0"
         },
         "sqlalchemy": {
@@ -381,7 +381,7 @@
                 "sha256:b60ba63f05c0cf61e086a10c3781a41fcfe30027753a8ae6d819c77592ce83ea"
             ],
             "index": "pypi",
-            "markers": "python_version >= '2.7' and python_version not in '3.0, 3.1, 3.2, 3.3'",
+            "markers": "python_version >= '2.7' and python_version not in '3.0, 3.1, 3.2'",
             "version": "==1.8.8"
         },
         "zope.deprecation": {
@@ -475,12 +475,12 @@
         },
         "bandit": {
             "hashes": [
-                "sha256:52077cb339000f337fb25f7e045995c4ad01511e716e5daac37014b9752de8ec",
-                "sha256:7c395a436743018f7be0a4cbb0a4ea9b902b6d87264ddecf8cfdc73b4f78ff61"
+                "sha256:59ed5caf5d92b6ada4bf65bc6437feea4a9da1093384445fed4d472acc6cff7b",
+                "sha256:665721d7bebbb4485a339c55161ac0eedde27d51e638000d91c8c2d68343ad02"
             ],
             "index": "pypi",
             "markers": "python_version >= '3.8'",
-            "version": "==1.7.9"
+            "version": "==1.7.10"
         },
         "commonmark": {
             "hashes": [
@@ -773,7 +773,7 @@
                 "sha256:8b74bedcbbbaca38ff6d7491d76f2b06b3592611af620f8426e82dddb04a5ced"
             ],
             "index": "pypi",
-            "markers": "python_version >= '2.7' and python_version not in '3.0, 3.1, 3.2, 3.3'",
+            "markers": "python_version >= '2.7' and python_version not in '3.0, 3.1, 3.2'",
             "version": "==1.15.0"
         },
         "smmap": {
@@ -808,7 +808,7 @@
                 "sha256:b3bda1d108d5dd99f4a20d24d9c348e91c4db7ab1b749200bded2f839ccbe68f"
             ],
             "index": "pypi",
-            "markers": "python_version >= '2.6' and python_version not in '3.0, 3.1, 3.2, 3.3'",
+            "markers": "python_version >= '2.6' and python_version not in '3.0, 3.1, 3.2'",
             "version": "==0.10.2"
         },
         "typed-ast": {