From 490f62ac12631cb5400dcc023ca35b435a8dd4f7 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Mon, 12 Jan 2026 10:11:59 +0000
Subject: [PATCH] fix: services/workshop/requirements.txt to reduce
 vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-14896210
- https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-14908843
---
 services/workshop/requirements.txt | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/services/workshop/requirements.txt b/services/workshop/requirements.txt
index c10137dd..3d915d4b 100644
--- a/services/workshop/requirements.txt
+++ b/services/workshop/requirements.txt
@@ -16,10 +16,11 @@ PyJWT==2.7.0
 pymongo==3.13.0
 pyOpenSSL==23.1.1
 requests==2.30.0
-Werkzeug==2.0.3
+Werkzeug==3.1.5
 Faker==22.1.0
 gunicorn==21.2.0
 coverage==7.4.1
 unittest-xml-reporting==3.2.0
 black==24.4.2
-xhtml2pdf==0.2.17
\ No newline at end of file
+xhtml2pdf==0.2.17
+urllib3>=2.6.3 # not directly required, pinned by Snyk to avoid a vulnerability
\ No newline at end of file