From 6d7d9130fce48f40258d5e204561d7d6bbe6edd5 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 15 Jan 2026 10:01:00 +0000
Subject: [PATCH] fix: requirements-ci.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-14896210
- https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-14908843
---
 requirements-ci.txt | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/requirements-ci.txt b/requirements-ci.txt
index 801e4200c7db..adde935ea651 100644
--- a/requirements-ci.txt
+++ b/requirements-ci.txt
@@ -105,10 +105,10 @@ txaio==22.2.1
 txrequests==0.9.6
 typing_extensions==4.2.0
 unidiff==0.7.3
-urllib3==1.26.9
+urllib3==2.6.3
 webcolors==1.11.1
 websocket-client==1.3.2
-Werkzeug==2.1.2
+Werkzeug==3.1.5
 wrapt==1.14.1
 xmltodict==0.12.0
 zope.interface==5.4.0