From c34c29f01a56c29af1dfa1b8b17c9df1857c1235 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 18 Mar 2025 05:14:37 +0000
Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-ANYIO-7361842
- https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-7267250
- https://snyk.io/vuln/SNYK-PYTHON-ZIPP-7430899
---
 requirements.txt | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/requirements.txt b/requirements.txt
index 36d65bb..3cb26eb 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -12,6 +12,8 @@ PyYAML>=6.0.2
 Requests>=2.32.3
 rich>=13.8.1
 tldextract>=5.1.2
-urllib3>=1.26.18
+urllib3>=2.2.2
 yarl>=1.9.4
 lxml>=5.3.0
+anyio>=4.4.0 # not directly required, pinned by Snyk to avoid a vulnerability
+zipp>=3.19.1 # not directly required, pinned by Snyk to avoid a vulnerability