From dc2a846cc4efca056fc528e3aac2226f456baf62 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 20 Jan 2026 11:19:32 +0000
Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-PYASN1-15032639
- https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-14896210
- https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-14908843
---
 requirements.txt | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/requirements.txt b/requirements.txt
index de77a3863d..6f6fa864ac 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -51,7 +51,7 @@ oauth2client==4.1.3
 orderedmultidict==1.0.1
 protobuf==3.9.1
 puremagic==1.4
-pyasn1==0.4.7
+pyasn1==0.6.2
 pyasn1-modules==0.2.6
 pycparser==2.19
 PyJWT==1.7.1
@@ -67,6 +67,6 @@ six==1.12.0
 swagger-spec-validator==2.4.3
 termcolor==1.1.0
 uritemplate==3.0.0
-urllib3==1.25.5
-Werkzeug==0.16.0
+urllib3==2.6.3
+Werkzeug==3.1.5
 wrapt==1.11.2