From 73b4d65bd31d93e3f8c090cc09d7ae18a3ccccc2 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 13 Jan 2026 10:21:44 +0000
Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-14896210
- https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-14908843
---
 requirements.txt | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/requirements.txt b/requirements.txt
index b8b6f53..e6800d0 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -21,8 +21,8 @@ s3transfer==0.1.1
 six==1.10.0
 tqdm==4.11.2
 Unidecode==0.4.19
-Werkzeug==0.15.5
+Werkzeug==3.1.5
 wsgi-request-logger==0.4.5
 zappa==0.20.2
 wheel>=0.38.0 # not directly required, pinned by Snyk to avoid a vulnerability
-urllib3>=1.26.5 # not directly required, pinned by Snyk to avoid a vulnerability
+urllib3>=2.6.3 # not directly required, pinned by Snyk to avoid a vulnerability