[Dependencies] Constraint flask to version ~=3.1.0 to reduce the risk of breaking changes.

gmarciani · gmarciani · commit 997bf59e11f2 · 2025-11-04T16:13:22.000-05:00
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -7,7 +7,7 @@ CHANGELOG
 **CHANGES**
 - Add validator that warns against the downsides of disabling in-place updates on compute and login nodes through DevSettings.
 - Upgrade Connexion to ~=2.15.1 (from ~=2.13.0).
-- Upgrade Flask to ~=3.0 (from >=2.2.5,<2.3).
+- Upgrade Flask to ~=3.1.0 (from >=2.2.5,<2.3).
 - Upgrade Werkzeug to ~=3.1 (from ~=2.0) to address [CVE-2024-34069](https://nvd.nist.gov/vuln/detail/cve-2024-34069).
 
 **BUG FIXES**
diff --git a/cli/requirements.txt b/cli/requirements.txt
@@ -24,5 +24,5 @@ PyYAML>=5.3.1,!=5.4
 tabulate>=0.8.8,<=0.8.10
 connexion~=2.15.1
 werkzeug~=3.1
-flask~=3.0
+flask~=3.1.0
 packaging~=25.0
diff --git a/cli/setup.py b/cli/setup.py
@@ -51,7 +51,7 @@ def readme():
     "jmespath~=0.10",
     "jsii==1.85.0",
     "werkzeug~=3.1",
-    "flask~=3.0",
+    "flask~=3.1.0",
     "packaging~=25.0",
 ]
 
