From 8b48820f0fa9bce4b871654b4443becac187889b Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sun, 14 Dec 2025 09:11:02 +0000
Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-TORNADO-14400977
- https://snyk.io/vuln/SNYK-PYTHON-TORNADO-14400978
- https://snyk.io/vuln/SNYK-PYTHON-TORNADO-14400979
- https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-14192442
- https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-14192443
---
 requirements.txt | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/requirements.txt b/requirements.txt
index 7287ffe..fd57ed7 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -184,13 +184,13 @@ tblib==1.3.2
 terminado==0.8.1
 testpath==0.4.2
 toolz==0.9.0
-tornado==6.0.2
+tornado==6.5.3
 tqdm==4.31.1
 traitlets==4.3.2
 typed-ast==1.3.5
 unicodecsv==0.14.1
 update==0.0.1
-urllib3==1.25.3
+urllib3==2.6.0
 wcwidth==0.1.7
 webencodings==0.5.1
 Werkzeug==0.14.1