From f93309e69227a3c4c84ff0f365403d5b79368e25 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 19 Jun 2025 11:15:02 +0000
Subject: [PATCH] fix: pip-sample/requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-PROTOBUF-10364902
- https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-10390193
- https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-10390194
---
 pip-sample/requirements.txt | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/pip-sample/requirements.txt b/pip-sample/requirements.txt
index 680d08166..90adbd950 100644
--- a/pip-sample/requirements.txt
+++ b/pip-sample/requirements.txt
@@ -38,7 +38,7 @@ parso==0.3.1
 pexpect==4.6.0
 pickleshare==0.7.5
 prometheus-client==0.3.1
-protobuf==3.6.1
+protobuf==4.25.8
 protobuf-to-dict==0.1.0
 ptyprocess==0.6.0
 Pygments==2.2.0
@@ -58,7 +58,7 @@ testpath==0.4.1
 tornado==5.1.1
 traitlets==4.3.2
 tweepy==3.6.0
-urllib3==1.23
+urllib3==2.5.0
 virtualenv==16.0.0
 wcwidth==0.1.7
 webencodings==0.5.1