diff --git a/third_party/py/requirements.txt b/third_party/py/requirements.txt
index 5db9170c..c5b8809a 100644
--- a/third_party/py/requirements.txt
+++ b/third_party/py/requirements.txt
@@ -750,7 +750,14 @@ rjsmin==1.2.1 \
 robot-detection==0.4 \
     --hash=sha256:3d8fb72ca47164b8ce55e33bdda93742f62c348def7d3cc3b42b0ceb4795a2f5
     # via hyperkitty
-    # via -r third_party/py/requirements.in
+setuptools==68.2.0 \
+    --hash=sha256:00478ca80aeebeecb2f288d3206b0de568df5cd2b8fada1209843cc9a8d88a48 \
+    --hash=sha256:af3d5949030c3f493f550876b2fd1dd5ec66689c4ee5d5344f009746f71fd5a8
+    # via
+    #   gevent
+    #   gunicorn
+    #   zope-event
+    #   zope-interface
 six==1.16.0 \
     --hash=sha256:1e61c37477a1626458e36f7b1d82aa5c9b094fa4802892072e49de9c60c4c926 \
     --hash=sha256:8abb2f1d86890a2dfb989f9a77cfcfd3e47c2a354b01111771326f8aa26e0254
@@ -854,13 +861,3 @@ zope-interface==5.4.0 \
     --hash=sha256:f44e517131a98f7a76696a7b21b164bcb85291cee106a23beccce454e1f433a4 \
     --hash=sha256:f7ee479e96f7ee350db1cf24afa5685a5899e2b34992fb99e1f7c1b0b758d263
     # via gevent
-
-# The following packages are considered to be unsafe in a requirements file:
-setuptools==68.2.0 \
-    --hash=sha256:00478ca80aeebeecb2f288d3206b0de568df5cd2b8fada1209843cc9a8d88a48 \
-    --hash=sha256:af3d5949030c3f493f550876b2fd1dd5ec66689c4ee5d5344f009746f71fd5a8
-    # via
-    #   gevent
-    #   gunicorn
-    #   zope-event
-    #   zope-interface