From 8909995501ddbf5ede2bb8ec25cef256080bf4bb Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Sat, 6 Dec 2025 09:36:48 +0000 Subject: [PATCH] Update dependency urllib3 to v2.6.0 [SECURITY] --- ci/requirements.txt | 2 +- docker/poetry.lock | 12 ++++++------ docker/pyproject.toml | 2 +- docker/requirements.txt | 2 +- 4 files changed, 9 insertions(+), 9 deletions(-) diff --git a/ci/requirements.txt b/ci/requirements.txt index 914b69b..0f6bf64 100644 --- a/ci/requirements.txt +++ b/ci/requirements.txt @@ -6,7 +6,7 @@ poetry-dynamic-versioning==1.9.1 setuptools>=65.5.1 # not directly required, pinned by Snyk to avoid a vulnerability requests>=2.31.0 # not directly required, pinned by Snyk to avoid a vulnerability certifi>=2024.7.4 # not directly required, pinned by Snyk to avoid a vulnerability -urllib3>=1.26.17 # not directly required, pinned by Snyk to avoid a vulnerability +urllib3>=2.6.0 # not directly required, pinned by Snyk to avoid a vulnerability cryptography>=42.0.2 # not directly required, pinned by Snyk to avoid a vulnerability idna>=3.7 # not directly required, pinned by Snyk to avoid a vulnerability jinja2>=3.1.4 # not directly required, pinned by Snyk to avoid a vulnerability diff --git a/docker/poetry.lock b/docker/poetry.lock index 9d10c68..f1a076c 100644 --- a/docker/poetry.lock +++ b/docker/poetry.lock @@ -1704,21 +1704,21 @@ markers = {main = "python_version == \"3.12\""} [[package]] name = "urllib3" -version = "2.5.0" +version = "2.6.0" description = "HTTP library with thread-safe connection pooling, file post, and more." optional = false python-versions = ">=3.9" groups = ["main", "dev"] files = [ - {file = "urllib3-2.5.0-py3-none-any.whl", hash = "sha256:e6b01673c0fa6a13e374b50871808eb3bf7046c4b125b216f6bf1cc604cff0dc"}, - {file = "urllib3-2.5.0.tar.gz", hash = "sha256:3fc47733c7e419d4bc3f6b3dc2b4f890bb743906a30d56ba4a5bfa4bbff92760"}, + {file = "urllib3-2.6.0-py3-none-any.whl", hash = "sha256:c90f7a39f716c572c4e3e58509581ebd83f9b59cced005b7db7ad2d22b0db99f"}, + {file = "urllib3-2.6.0.tar.gz", hash = "sha256:cb9bcef5a4b345d5da5d145dc3e30834f58e8018828cbc724d30b4cb7d4d49f1"}, ] [package.extras] -brotli = ["brotli (>=1.0.9) ; platform_python_implementation == \"CPython\"", "brotlicffi (>=0.8.0) ; platform_python_implementation != \"CPython\""] +brotli = ["brotli (>=1.2.0) ; platform_python_implementation == \"CPython\"", "brotlicffi (>=1.2.0.0) ; platform_python_implementation != \"CPython\""] h2 = ["h2 (>=4,<5)"] socks = ["pysocks (>=1.5.6,!=1.5.7,<2.0)"] -zstd = ["zstandard (>=0.18.0)"] +zstd = ["backports-zstd (>=1.0.0) ; python_version < \"3.14\""] [[package]] name = "yarl" @@ -1868,4 +1868,4 @@ propcache = ">=0.2.1" [metadata] lock-version = "2.1" python-versions = ">=3.12,<3.15" -content-hash = "56fd6e194ba2104981d26b64cbfaee699a53cecc457058315a1484603c0bc935" +content-hash = "5247c41e4298c90903737ed0f30f02ff94870f90d7288e796486c3f3b7ad1929" diff --git a/docker/pyproject.toml b/docker/pyproject.toml index 9bf7e34..d6edb57 100644 --- a/docker/pyproject.toml +++ b/docker/pyproject.toml @@ -23,7 +23,7 @@ strict = true python = ">=3.12,<3.15" kopf = "1.38.0" requests = "2.32.5" -urllib3 = "2.5.0" +urllib3 = "2.6.0" aiohttp = "3.13.2" idna = { version = "3.11", optional = true } certifi = "2025.11.12" diff --git a/docker/requirements.txt b/docker/requirements.txt index e37f9a0..7579e45 100644 --- a/docker/requirements.txt +++ b/docker/requirements.txt @@ -2,6 +2,6 @@ poetry==2.2.1 poetry-plugin-export==1.9.0 requests>=2.31.0 # not directly required, pinned by Snyk to avoid a vulnerability certifi>=2024.7.4 # not directly required, pinned by Snyk to avoid a vulnerability -urllib3>=1.26.17 # not directly required, pinned by Snyk to avoid a vulnerability +urllib3>=2.6.0 # not directly required, pinned by Snyk to avoid a vulnerability idna>=3.7 # not directly required, pinned by Snyk to avoid a vulnerability zipp>=3.19.1 # not directly required, pinned by Snyk to avoid a vulnerability