From bdbcb5ff55ef59557edb0756193fd277655ce7a1 Mon Sep 17 00:00:00 2001
From: Imre Dobos <12954380+imredobos@users.noreply.github.com>
Date: Wed, 7 May 2025 15:54:06 +0200
Subject: [PATCH] fix CVE-2025-43859

h11 accepts some malformed Chunked-Encoding bodies before 0.16.0, httpcore 1.0.9 ensure using at least 0.16.0
---
 pyproject.toml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pyproject.toml b/pyproject.toml
index 675d2ad4c6..c717795a0f 100644
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -30,7 +30,7 @@ classifiers = [
 ]
 dependencies = [
     "certifi",
-    "httpcore==1.*",
+    "httpcore>=1.0.9",
     "anyio",
     "idna",
 ]