diff --git a/requirements.in b/requirements.in
index e10b6ecc..6cc30da5 100644
--- a/requirements.in
+++ b/requirements.in
@@ -42,3 +42,4 @@ cryptography==41.*
 oauthlib==3.2.*
 drf-spectacular
 certifi==2023.7.22
+willow==1.6.*
diff --git a/requirements.txt b/requirements.txt
index 6f0a9f71..d6de5cfb 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -6,7 +6,7 @@
 #
 --no-binary psycopg2
 
-amqp==5.1.1
+amqp==5.2.0
     # via kombu
 anyascii==0.3.2
     # via wagtail
@@ -20,7 +20,7 @@ beautifulsoup4==4.11.2
     # via
     #   directory-components
     #   wagtail
-billiard==4.1.0
+billiard==4.2.0
     # via celery
 bleach==3.3.1
     # via
@@ -44,9 +44,9 @@ certifi==2023.7.22
     #   elastic-apm
     #   requests
     #   sentry-sdk
-cffi==1.15.1
+cffi==1.16.0
     # via cryptography
-charset-normalizer==3.2.0
+charset-normalizer==3.3.2
     # via requests
 click==8.1.7
     # via
@@ -62,9 +62,11 @@ click-repl==0.3.0
     # via celery
 cron-descriptor==1.4.0
     # via django-celery-beat
-cryptography==41.0.4
+cryptography==41.0.7
     # via -r requirements.in
-directory-components==39.1.3
+defusedxml==0.7.1
+    # via willow
+directory-components==39.1.4
     # via -r requirements.in
 directory-constants==23.1.1
     # via
@@ -101,7 +103,7 @@ django==4.1.13
     #   wagtailmedia
 django-celery-beat==2.5.0
     # via -r requirements.in
-django-environ==0.10.0
+django-environ==0.11.2
     # via -r requirements.in
 django-filter==22.1
     # via
@@ -109,7 +111,7 @@ django-filter==22.1
     #   wagtail
 django-health-check==3.17.0
     # via directory-healthcheck
-django-modelcluster==6.0
+django-modelcluster==6.1
     # via wagtail
 django-modeltranslation==0.18.11
     # via
@@ -119,15 +121,15 @@ django-permissionedforms==0.1
     # via wagtail
 django-pglocks==1.0.4
     # via -r requirements.in
-django-redis==5.3.0
+django-redis==5.4.0
     # via -r requirements.in
-django-staff-sso-client==4.2.0
+django-staff-sso-client==4.2.1
     # via -r requirements.in
 django-storages==1.13.2
     # via -r requirements.in
 django-taggit==3.1.0
     # via wagtail
-django-timezone-field==6.0
+django-timezone-field==6.1.0
     # via django-celery-beat
 django-treebeard==4.7
     # via wagtail
@@ -143,17 +145,19 @@ docopt==0.6.2
     #   num2words
 draftjs-exporter==2.1.7
     # via wagtail
-drf-spectacular==0.26.4
+drf-spectacular==0.26.5
     # via -r requirements.in
 ecs-logging==2.1.0
     # via elastic-apm
-elastic-apm==6.18.0
+elastic-apm==6.19.0
     # via -r requirements.in
 et-xmlfile==1.1.0
     # via openpyxl
+filetype==1.2.0
+    # via willow
 gevent==23.9.1
     # via -r requirements.in
-greenlet==2.0.2
+greenlet==3.0.1
     # via gevent
 gunicorn==20.1.0
     # via -r requirements.in
@@ -161,7 +165,7 @@ html2text==2020.1.16
     # via -r requirements.in
 html5lib==1.1
     # via wagtail
-idna==3.4
+idna==3.6
     # via requests
 importlib-metadata==6.8.0
     # via markdown
@@ -181,7 +185,7 @@ kombu==5.3.1
     #   celery
 l18n==2021.3
     # via wagtail
-markdown==3.4.4
+markdown==3.5.1
     # via
     #   -r requirements.in
     #   wagtail-markdown
@@ -197,15 +201,15 @@ oauthlib==3.2.2
     #   requests-oauthlib
 openpyxl==3.1.2
     # via wagtail
-packaging==23.1
+packaging==23.2
     # via bleach
-pillow==9.5.0
+pillow==10.1.0
     # via wagtail
-prompt-toolkit==3.0.39
+prompt-toolkit==3.0.41
     # via click-repl
 psycogreen==1.0.2
     # via -r requirements.in
-psycopg2==2.9.7
+psycopg2==2.9.9
     # via -r requirements.in
 pycountry==19.8.18
     # via -r requirements.in
@@ -213,7 +217,7 @@ pycparser==2.21
     # via cffi
 pyjwt==2.8.0
     # via notifications-python-client
-pyrsistent==0.19.3
+pyrsistent==0.20.0
     # via jsonschema
 python-crontab==3.0.0
     # via django-celery-beat
@@ -224,14 +228,14 @@ python-dateutil==2.8.2
     #   python-crontab
 pytube==9.2.2
     # via -r requirements.in
-pytz==2023.3
+pytz==2023.3.post1
     # via
     #   django-modelcluster
     #   djangorestframework
     #   l18n
 pyyaml==6.0.1
     # via drf-spectacular
-redis==5.0.0
+redis==5.0.1
     # via
     #   celery
     #   django-redis
@@ -239,14 +243,13 @@ requests[security]==2.31.0
     # via
     #   -r requirements.in
     #   notifications-python-client
-    #   requests
     #   requests-oauthlib
     #   wagtail
 requests-oauthlib==1.3.1
     # via django-staff-sso-client
 s3transfer==0.6.2
     # via boto3
-sentry-sdk==1.29.2
+sentry-sdk==1.38.0
     # via -r requirements.in
 sigauth==5.2.2
     # via -r requirements.in
@@ -260,13 +263,13 @@ six==1.16.0
     #   mohawk
     #   python-dateutil
     #   w3lib
-soupsieve==2.4.1
+soupsieve==2.5
     # via beautifulsoup4
 sqlparse==0.4.4
     # via django
 telepath==0.3.1
     # via wagtail
-typing-extensions==4.7.1
+typing-extensions==4.8.0
     # via
     #   asgiref
     #   dj-database-url
@@ -285,7 +288,7 @@ urllib3==1.26.18
     #   elastic-apm
     #   requests
     #   sentry-sdk
-vine==5.0.0
+vine==5.1.0
     # via
     #   amqp
     #   celery
@@ -302,9 +305,9 @@ wagtail-markdown==0.11.0
     # via -r requirements.in
 wagtail-modeltranslation==0.13.0
     # via -r requirements.in
-wagtailmedia==0.14.4
+wagtailmedia==0.14.5
     # via -r requirements.in
-wcwidth==0.2.6
+wcwidth==0.2.12
     # via prompt-toolkit
 webencodings==0.5.1
     # via
@@ -312,15 +315,17 @@ webencodings==0.5.1
     #   html5lib
 whitenoise==6.4.0
     # via -r requirements.in
-willow==1.4.1
-    # via wagtail
-wrapt==1.15.0
+willow==1.6.3
+    # via
+    #   -r requirements.in
+    #   wagtail
+wrapt==1.14.1
     # via elastic-apm
-zipp==3.16.2
+zipp==3.17.0
     # via importlib-metadata
 zope-event==5.0
     # via gevent
-zope-interface==6.0
+zope-interface==6.1
     # via gevent
 
 # The following packages are considered to be unsafe in a requirements file:
diff --git a/requirements_test.txt b/requirements_test.txt
index 6c9910e1..503eec13 100644
--- a/requirements_test.txt
+++ b/requirements_test.txt
@@ -6,7 +6,7 @@
 #
 --no-binary psycopg2
 
-amqp==5.1.1
+amqp==5.2.0
     # via kombu
 anyascii==0.3.2
     # via wagtail
@@ -20,7 +20,7 @@ beautifulsoup4==4.11.2
     # via
     #   directory-components
     #   wagtail
-billiard==4.1.0
+billiard==4.2.0
     # via celery
 bleach==3.3.1
     # via
@@ -34,7 +34,7 @@ botocore==1.27.96
     # via
     #   boto3
     #   s3transfer
-build==0.10.0
+build==1.0.3
     # via pip-tools
 celery[redis]==5.3.1
     # via
@@ -46,9 +46,9 @@ certifi==2023.7.22
     #   elastic-apm
     #   requests
     #   sentry-sdk
-cffi==1.15.1
+cffi==1.16.0
     # via cryptography
-charset-normalizer==3.2.0
+charset-normalizer==3.3.2
     # via requests
 click==8.1.7
     # via
@@ -65,7 +65,6 @@ click-repl==0.3.0
     # via celery
 coverage[toml]==6.5.0
     # via
-    #   coverage
     #   coveralls
     #   pytest-codecov
     #   pytest-cov
@@ -73,9 +72,11 @@ coveralls==3.3.1
     # via -r requirements_test.in
 cron-descriptor==1.4.0
     # via django-celery-beat
-cryptography==41.0.4
+cryptography==41.0.7
     # via -r requirements.in
-directory-components==39.1.3
+defusedxml==0.7.1
+    # via willow
+directory-components==39.1.4
     # via -r requirements.in
 directory-constants==23.1.1
     # via
@@ -115,7 +116,7 @@ django-celery-beat==2.5.0
     # via -r requirements.in
 django-debug-toolbar==3.2.4
     # via -r requirements_test.in
-django-environ==0.10.0
+django-environ==0.11.2
     # via -r requirements.in
 django-filter==22.1
     # via
@@ -123,7 +124,7 @@ django-filter==22.1
     #   wagtail
 django-health-check==3.17.0
     # via directory-healthcheck
-django-modelcluster==6.0
+django-modelcluster==6.1
     # via wagtail
 django-modeltranslation==0.18.11
     # via
@@ -133,15 +134,15 @@ django-permissionedforms==0.1
     # via wagtail
 django-pglocks==1.0.4
     # via -r requirements.in
-django-redis==5.3.0
+django-redis==5.4.0
     # via -r requirements.in
-django-staff-sso-client==4.2.0
+django-staff-sso-client==4.2.1
     # via -r requirements.in
 django-storages==1.13.2
     # via -r requirements.in
 django-taggit==3.1.0
     # via wagtail
-django-timezone-field==6.0
+django-timezone-field==6.1.0
     # via django-celery-beat
 django-treebeard==4.7
     # via wagtail
@@ -158,33 +159,35 @@ docopt==0.6.2
     #   num2words
 draftjs-exporter==2.1.7
     # via wagtail
-drf-spectacular==0.26.4
+drf-spectacular==0.26.5
     # via -r requirements.in
 ecs-logging==2.1.0
     # via elastic-apm
-elastic-apm==6.18.0
+elastic-apm==6.19.0
     # via -r requirements.in
 et-xmlfile==1.1.0
     # via openpyxl
-exceptiongroup==1.1.3
+exceptiongroup==1.2.0
     # via pytest
 factory-boy==2.12.0
     # via
     #   -r requirements_test.in
     #   wagtail-factories
-faker==19.3.0
+faker==20.1.0
     # via factory-boy
+filetype==1.2.0
+    # via willow
 flake8==6.1.0
     # via -r requirements_test.in
 freezegun==0.3.14
     # via -r requirements_test.in
 gevent==23.9.1
     # via -r requirements.in
-gitdb==4.0.10
+gitdb==4.0.11
     # via gitpython
-gitpython==3.1.37
+gitpython==3.1.40
     # via -r requirements_test.in
-greenlet==2.0.2
+greenlet==3.0.1
     # via gevent
 gunicorn==20.1.0
     # via -r requirements.in
@@ -192,10 +195,12 @@ html2text==2020.1.16
     # via -r requirements.in
 html5lib==1.1
     # via wagtail
-idna==3.4
+idna==3.6
     # via requests
 importlib-metadata==6.8.0
-    # via markdown
+    # via
+    #   build
+    #   markdown
 inflection==0.5.1
     # via drf-spectacular
 iniconfig==2.0.0
@@ -214,7 +219,7 @@ kombu==5.3.1
     #   celery
 l18n==2021.3
     # via wagtail
-markdown==3.4.4
+markdown==3.5.1
     # via
     #   -r requirements.in
     #   wagtail-markdown
@@ -232,25 +237,25 @@ oauthlib==3.2.2
     #   requests-oauthlib
 openpyxl==3.1.2
     # via wagtail
-packaging==23.1
+packaging==23.2
     # via
     #   bleach
     #   build
     #   pytest
     #   pytest-sugar
-pillow==9.5.0
+pillow==10.1.0
     # via wagtail
 pip-tools==7.3.0
     # via -r requirements_test.in
-pluggy==1.2.0
+pluggy==1.3.0
     # via pytest
-prompt-toolkit==3.0.39
+prompt-toolkit==3.0.41
     # via click-repl
 psycogreen==1.0.2
     # via -r requirements.in
-psycopg2==2.9.7
+psycopg2==2.9.9
     # via -r requirements.in
-pycodestyle==2.11.0
+pycodestyle==2.11.1
     # via flake8
 pycountry==19.8.18
     # via -r requirements.in
@@ -262,9 +267,9 @@ pyjwt==2.8.0
     # via notifications-python-client
 pyproject-hooks==1.0.0
     # via build
-pyrsistent==0.19.3
+pyrsistent==0.20.0
     # via jsonschema
-pytest==7.4.0
+pytest==7.4.3
     # via
     #   -r requirements_test.in
     #   pytest-codecov
@@ -277,7 +282,7 @@ pytest-cov==4.1.0
     # via
     #   -r requirements_test.in
     #   pytest-codecov
-pytest-django==4.5.2
+pytest-django==4.7.0
     # via -r requirements_test.in
 pytest-sugar==0.9.7
     # via -r requirements_test.in
@@ -292,14 +297,14 @@ python-dateutil==2.8.2
     #   python-crontab
 pytube==9.2.2
     # via -r requirements.in
-pytz==2023.3
+pytz==2023.3.post1
     # via
     #   django-modelcluster
     #   djangorestframework
     #   l18n
 pyyaml==6.0.1
     # via drf-spectacular
-redis==5.0.0
+redis==5.0.1
     # via
     #   celery
     #   django-redis
@@ -309,7 +314,6 @@ requests[security]==2.31.0
     #   coveralls
     #   notifications-python-client
     #   pytest-codecov
-    #   requests
     #   requests-mock
     #   requests-oauthlib
     #   wagtail
@@ -319,7 +323,7 @@ requests-oauthlib==1.3.1
     # via django-staff-sso-client
 s3transfer==0.6.2
     # via boto3
-sentry-sdk==1.29.2
+sentry-sdk==1.38.0
     # via -r requirements.in
 sigauth==5.2.2
     # via -r requirements.in
@@ -335,9 +339,9 @@ six==1.16.0
     #   python-dateutil
     #   requests-mock
     #   w3lib
-smmap==5.0.0
+smmap==5.0.1
     # via gitdb
-soupsieve==2.4.1
+soupsieve==2.5
     # via beautifulsoup4
 sqlparse==0.4.4
     # via
@@ -354,7 +358,7 @@ tomli==2.0.1
     #   pip-tools
     #   pyproject-hooks
     #   pytest
-typing-extensions==4.7.1
+typing-extensions==4.8.0
     # via
     #   asgiref
     #   dj-database-url
@@ -373,7 +377,7 @@ urllib3==1.26.18
     #   elastic-apm
     #   requests
     #   sentry-sdk
-vine==5.0.0
+vine==5.1.0
     # via
     #   amqp
     #   celery
@@ -393,27 +397,29 @@ wagtail-markdown==0.11.0
     # via -r requirements.in
 wagtail-modeltranslation==0.13.0
     # via -r requirements.in
-wagtailmedia==0.14.4
+wagtailmedia==0.14.5
     # via -r requirements.in
-wcwidth==0.2.6
+wcwidth==0.2.12
     # via prompt-toolkit
 webencodings==0.5.1
     # via
     #   bleach
     #   html5lib
-wheel==0.41.2
+wheel==0.42.0
     # via pip-tools
 whitenoise==6.4.0
     # via -r requirements.in
-willow==1.4.1
-    # via wagtail
-wrapt==1.15.0
+willow==1.6.3
+    # via
+    #   -r requirements.in
+    #   wagtail
+wrapt==1.14.1
     # via elastic-apm
-zipp==3.16.2
+zipp==3.17.0
     # via importlib-metadata
 zope-event==5.0
     # via gevent
-zope-interface==6.0
+zope-interface==6.1
     # via gevent
 
 # The following packages are considered to be unsafe in a requirements file: