diff --git a/requirements-lock.txt b/requirements-lock.txt
new file mode 100644
index 0000000..307df21
--- /dev/null
+++ b/requirements-lock.txt
@@ -0,0 +1,32 @@
+aliyun-python-sdk-core==2.13.36
+asgiref==3.7.2
+certifi==2023.7.22
+cffi==1.15.1
+charset-normalizer==3.2.0
+cryptography==41.0.3
+defusedxml==0.7.1
+Django==4.2.5
+django-allauth==0.56.1
+gevent==23.9.0.post1
+greenlet==2.0.2
+idna==3.4
+jmespath==0.10.0
+Markdown==3.4.4
+oauthlib==3.2.2
+psycopg==3.1.10
+psycopg-binary==3.1.10
+psycopg-pool==3.1.7
+pycparser==2.21
+PyJWT==2.8.0
+pymemcache==4.0.0
+pyOpenSSL==23.2.0
+python3-openid==3.2.0
+PyYAML==6.0.1
+requests==2.31.0
+requests-oauthlib==1.3.1
+sqlparse==0.4.4
+typing_extensions==4.7.1
+urllib3==2.0.4
+uWSGI==2.0.22
+zope.event==5.0
+zope.interface==6.0
diff --git a/requirements.txt b/requirements.txt
index 578fdff..13c51e6 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -1,34 +1,15 @@
+# Packages used directly
+# requirements-lock.txt should be generated by `pip freeze > requirements-lock.txt`.
 aliyun-python-sdk-core==2.13.36
-asgiref==3.7.2
-certifi==2023.7.22
-cffi==1.15.1
-charset-normalizer==2.1.1
-cryptography==41.0.3
-defusedxml==0.7.1
 Django==4.2.5
 django-allauth==0.56.1
 gevent==23.9.0.post1
-idna==3.4
-importlib-metadata==6.8.0
-jmespath==0.10.0
 Markdown==3.4.4
-oauthlib==3.2.2
 psycopg==3.1.10
 psycopg-binary==3.1.10
 psycopg-pool==3.1.7
-pycparser==2.21
-Pygments==2.16.1
-PyJWT==2.8.0
 pymemcache==4.0.0
 pyOpenSSL==23.2.0
-python3-openid==3.2.0
-pytz==2023.3.post1
 PyYAML==6.0.1
 requests==2.31.0
-requests-oauthlib==1.3.1
-six==1.16.0
-sqlparse==0.4.4
-typing_extensions==4.3.0
-urllib3==1.26.12
 uWSGI==2.0.22
-zipp==3.8.1