From 2e8c05678fbb0a2cb9de69100db8d48f01d608a0 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Wed, 14 Jan 2026 10:17:14 +0000
Subject: [PATCH] fix: framework/requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-14896210
- https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-14908843
---
 framework/requirements.txt | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/framework/requirements.txt b/framework/requirements.txt
index a16b80fd3f3..4a9593e35d0 100644
--- a/framework/requirements.txt
+++ b/framework/requirements.txt
@@ -82,10 +82,10 @@ SQLAlchemy==2.0.0
 tabulate==0.8.9
 typing-extensions==4.5.0
 typing-inspect==0.7.1
-urllib3==1.26.5
+urllib3==2.6.3
 uvloop==0.17.0
 websocket-client==0.57.0
-Werkzeug==2.2.3
+Werkzeug==3.1.5
 xmltodict==0.12.0
 yarl==1.7.0
 zipp==3.3.2