From e02ec8d8ad4f6873b34f3cc86f4ae23f16f30fd1 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Fri, 11 Jul 2025 05:53:29 +0000
Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-PROTOBUF-10364902
- https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-10390193
- https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-10390194
---
 requirements.txt | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/requirements.txt b/requirements.txt
index 40aa2e5..717e100 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -15,10 +15,10 @@ python-dotenv>=0.14.0
 requests>=2.24.0
 soupsieve>=2.0.1
 typing-extensions>=3.7.4.2
-urllib3>=1.25.10
+urllib3>=2.5.0
 websockets>=8.1
 yarl>=1.5.1
 mysql-connector-python>=8.0.21
 alt-profanity-check==1.1.3
-protobuf>=3.20.2 # not directly required, pinned by Snyk to avoid a vulnerability
+protobuf>=4.25.8 # not directly required, pinned by Snyk to avoid a vulnerability