From 88b1b25bf17f8de09c0200621655e0d159d4ee7f Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 2 Feb 2026 17:47:24 +0000
Subject: [PATCH] chore(deps)(deps): Bump the server-dependencies group across
 1 directory with 16 updates

---
updated-dependencies:
- dependency-name: uvicorn[standard]
  dependency-version: 0.40.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: server-dependencies
- dependency-name: pyvisa
  dependency-version: 1.16.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: server-dependencies
- dependency-name: pyvisa-py
  dependency-version: 0.8.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: server-dependencies
- dependency-name: pyusb
  dependency-version: 1.3.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: server-dependencies
- dependency-name: h5py
  dependency-version: 3.15.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: server-dependencies
- dependency-name: scipy
  dependency-version: 1.17.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: server-dependencies
- dependency-name: pydantic
  dependency-version: 2.12.5
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: server-dependencies
- dependency-name: pydantic-settings
  dependency-version: 2.12.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: server-dependencies
- dependency-name: python-dotenv
  dependency-version: 1.2.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: server-dependencies
- dependency-name: email-validator
  dependency-version: 2.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: server-dependencies
- dependency-name: python-dateutil
  dependency-version: 2.9.0.post0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: server-dependencies
- dependency-name: apscheduler
  dependency-version: 3.11.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: server-dependencies
- dependency-name: zeroconf
  dependency-version: 0.148.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: server-dependencies
- dependency-name: requests
  dependency-version: 2.32.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: server-dependencies
- dependency-name: httpx
  dependency-version: 0.28.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: server-dependencies
- dependency-name: pyjwt
  dependency-version: 2.11.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: server-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 server/requirements.txt | 32 ++++++++++++++++----------------
 1 file changed, 16 insertions(+), 16 deletions(-)

diff --git a/server/requirements.txt b/server/requirements.txt
index 6bb750f..3478577 100644
--- a/server/requirements.txt
+++ b/server/requirements.txt
@@ -1,35 +1,35 @@
 # Web Framework
 fastapi>=0.115.0  # Security: Fixes PYSEC-2024-38 (ReDoS), upgrades starlette to fix GHSA-f96h-pmfr-66vw, GHSA-2c2j-9gv5-cj73
-uvicorn[standard]==0.27.0
+uvicorn[standard]==0.40.0
 websockets==12.0
 python-multipart>=0.0.18  # Required for FastAPI file uploads (Form/File parameters). Security: Fixes GHSA-2jv5-9r88-3w3p (ReDoS), GHSA-59g5-xgcq-4qw3 (DoS)
 
 # Equipment Communication
-pyvisa==1.14.1
-pyvisa-py==0.7.1
+pyvisa==1.16.1
+pyvisa-py==0.8.1
 pyserial==3.5
 
 # USB/Device Access
-pyusb==1.2.1
+pyusb==1.3.1
 
 # Data Handling
 numpy==1.26.3
 pandas==2.2.0
-h5py==3.10.0
-scipy==1.11.4
+h5py==3.15.1
+scipy==1.17.0
 
 # Configuration
-pydantic==2.5.3
-pydantic-settings==2.1.0
-python-dotenv==1.0.0
-email-validator==2.1.0
+pydantic==2.12.5
+pydantic-settings==2.12.0
+python-dotenv==1.2.1
+email-validator==2.3.0
 
 # Utilities
-python-dateutil==2.8.2
+python-dateutil==2.9.0.post0
 psutil==5.9.8
-apscheduler==3.10.4
-zeroconf==0.132.2
-requests==2.32.4  # HTTP library for Pi discovery. Security: Fixes GHSA-9wx4-h78v-vm56 (cert verification), GHSA-9hjg-9r4m-mvj7 (netrc leak)
+apscheduler==3.11.2
+zeroconf==0.148.0
+requests==2.32.5  # HTTP library for Pi discovery. Security: Fixes GHSA-9wx4-h78v-vm56 (cert verification), GHSA-9hjg-9r4m-mvj7 (netrc leak)
 docker==7.1.0  # Docker Python API for running Pi diagnostics on host
 
 # Testing
@@ -38,8 +38,8 @@ pytest-asyncio==0.23.3
 
 # Security & Authentication
 bcrypt==4.1.3         # Password hashing
-httpx==0.27.0         # Async HTTP client for OAuth2
-PyJWT==2.10.1         # JWT token handling
+httpx==0.28.1         # Async HTTP client for OAuth2
+PyJWT==2.11.0         # JWT token handling
 pyotp==2.9.0          # TOTP multi-factor authentication
 qrcode[pil]==8.2      # QR code generation with PIL support
 cryptography>=46.0.0  # CVE fixes: PYSEC-2024-225, GHSA-3ww4-gg4f-jr7f, GHSA-9v9h-cgj8-h64p, GHSA-h4gh-qq45-vh27