From aa7c2c7ff976dc4d9af2bba924262fa6170c51a7 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 11 May 2026 17:23:40 +0000 Subject: [PATCH] Bump urllib3 from 2.6.3 to 2.7.0 Bumps [urllib3](https://github.com/urllib3/urllib3) from 2.6.3 to 2.7.0. - [Release notes](https://github.com/urllib3/urllib3/releases) - [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst) - [Commits](https://github.com/urllib3/urllib3/compare/2.6.3...2.7.0) --- updated-dependencies: - dependency-name: urllib3 dependency-version: 2.7.0 dependency-type: direct:production ... Signed-off-by: dependabot[bot] --- Pipfile | 2 +- Pipfile.lock | 10 +++++----- 2 files changed, 6 insertions(+), 6 deletions(-) diff --git a/Pipfile b/Pipfile index d6367f7..4c63ee6 100644 --- a/Pipfile +++ b/Pipfile @@ -15,7 +15,7 @@ rope = "*" [packages] httplib2 = ">=0.19.0" # Fixes CV"-2021-21240 -urllib3 = ">=1.24.2" # Fixes CVE-2019-11324 +urllib3 = ">=2.7.0" # Fixes CVE-2019-11324 requests = ">=2.20.0" flask = "*" json-minify = "*" diff --git a/Pipfile.lock b/Pipfile.lock index 0f6e859..c14f27c 100644 --- a/Pipfile.lock +++ b/Pipfile.lock @@ -1,7 +1,7 @@ { "_meta": { "hash": { - "sha256": "b783d02a77232cea1677ab74712d20f7eb109f8cd0119e877108549025d0a7f6" + "sha256": "7d470ef5df0f170e7f0a8179832d553b361a2d531a8258d7aae9a36612feaf17" }, "pipfile-spec": 6, "requires": {}, @@ -703,12 +703,12 @@ }, "urllib3": { "hashes": [ - "sha256:1b62b6884944a57dbe321509ab94fd4d3b307075e0c2eae991ac71ee15ad38ed", - "sha256:bf272323e553dfb2e87d9bfd225ca7b0f467b919d7bbd355436d3fd37cb0acd4" + "sha256:231e0ec3b63ceb14667c67be60f2f2c40a518cb38b03af60abc813da26505f4c", + "sha256:9fb4c81ebbb1ce9531cce37674bbc6f1360472bc18ca9a553ede278ef7276897" ], "index": "pypi", - "markers": "python_version >= '3.9'", - "version": "==2.6.3" + "markers": "python_version >= '3.10'", + "version": "==2.7.0" }, "werkzeug": { "hashes": [