From aeaec65177975fde0223408be2555ec6a1e41e74 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 4 Dec 2025 10:05:35 +0000
Subject: [PATCH] fix: requirements-ci.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-SQLPARSE-14157217
- https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-14151620
---
 requirements-ci.txt | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/requirements-ci.txt b/requirements-ci.txt
index 801e4200c7db..94a9fb894dd6 100644
--- a/requirements-ci.txt
+++ b/requirements-ci.txt
@@ -93,7 +93,7 @@ singledispatch==3.7.0
 six==1.16.0
 snowballstemmer==2.2.0
 SQLAlchemy==1.4.36
-sqlparse==0.4.2
+sqlparse==0.5.4
 termcolor==1.1.0
 testtools==2.5.0
 toml==0.10.2
@@ -108,7 +108,7 @@ unidiff==0.7.3
 urllib3==1.26.9
 webcolors==1.11.1
 websocket-client==1.3.2
-Werkzeug==2.1.2
+Werkzeug==3.1.4
 wrapt==1.14.1
 xmltodict==0.12.0
 zope.interface==5.4.0