From b36f4dad19c7000e100b8b236de556d1a598a9ae Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 9 Jan 2026 09:20:27 -0600 Subject: [PATCH 1/4] Build(deps): bump werkzeug in /tools/bigquery-s3tobq/core (#1670) Bumps [werkzeug](https://github.com/pallets/werkzeug) from 3.0.6 to 3.1.5. - [Release notes](https://github.com/pallets/werkzeug/releases) - [Changelog](https://github.com/pallets/werkzeug/blob/main/CHANGES.rst) - [Commits](https://github.com/pallets/werkzeug/compare/3.0.6...3.1.5) --- updated-dependencies: - dependency-name: werkzeug dependency-version: 3.1.5 dependency-type: direct:production ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- tools/bigquery-s3tobq/core/requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/tools/bigquery-s3tobq/core/requirements.txt b/tools/bigquery-s3tobq/core/requirements.txt index c06726d289f..dff5ffbcd2f 100644 --- a/tools/bigquery-s3tobq/core/requirements.txt +++ b/tools/bigquery-s3tobq/core/requirements.txt @@ -8,4 +8,4 @@ google-cloud google-cloud-storage google-cloud-bigquery google-cloud-orchestration-airflow -Werkzeug==3.0.6 \ No newline at end of file +Werkzeug==3.1.5 \ No newline at end of file From 41897c7f82e960c600f365d5dce97f4a714f517c Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 9 Jan 2026 09:28:59 -0600 Subject: [PATCH 2/4] Build(deps): bump werkzeug in /examples/risk-analysis-asset/backend (#1671) Bumps [werkzeug](https://github.com/pallets/werkzeug) from 3.1.4 to 3.1.5. - [Release notes](https://github.com/pallets/werkzeug/releases) - [Changelog](https://github.com/pallets/werkzeug/blob/main/CHANGES.rst) - [Commits](https://github.com/pallets/werkzeug/compare/3.1.4...3.1.5) --- updated-dependencies: - dependency-name: werkzeug dependency-version: 3.1.5 dependency-type: direct:production ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Andrew Gold <41129777+agold-rh@users.noreply.github.com> --- examples/risk-analysis-asset/backend/requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/examples/risk-analysis-asset/backend/requirements.txt b/examples/risk-analysis-asset/backend/requirements.txt index 7fcd995c873..7b32543ba9e 100644 --- a/examples/risk-analysis-asset/backend/requirements.txt +++ b/examples/risk-analysis-asset/backend/requirements.txt @@ -3,4 +3,4 @@ google-cloud-firestore flask-cors python-dotenv google-auth -Werkzeug==3.1.4 +Werkzeug==3.1.5 From 37e2ffde05c1eb8d9e771304ec23756ed0a9bd6d Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 9 Jan 2026 09:39:53 -0600 Subject: [PATCH 3/4] Build(deps): bump urllib3 in /examples/dataflow-flex-python (#1672) Bumps [urllib3](https://github.com/urllib3/urllib3) from 2.6.0 to 2.6.3. - [Release notes](https://github.com/urllib3/urllib3/releases) - [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst) - [Commits](https://github.com/urllib3/urllib3/compare/2.6.0...2.6.3) --- updated-dependencies: - dependency-name: urllib3 dependency-version: 2.6.3 dependency-type: direct:production ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Andrew Gold <41129777+agold-rh@users.noreply.github.com> --- examples/dataflow-flex-python/requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/examples/dataflow-flex-python/requirements.txt b/examples/dataflow-flex-python/requirements.txt index d72c8599aca..204bd363706 100644 --- a/examples/dataflow-flex-python/requirements.txt +++ b/examples/dataflow-flex-python/requirements.txt @@ -75,6 +75,6 @@ requests==2.28.1 rsa==4.9 six==1.16.0 typing-extensions==4.4.0 -urllib3==2.6.0 +urllib3==2.6.3 xsdata==22.12 xsdata-pydantic==22.10 From 6e2196c53a13593fd109bba6c26e8e9f0466c50a Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 9 Jan 2026 09:47:44 -0600 Subject: [PATCH 4/4] Build(deps): bump urllib3 from 2.6.0 to 2.6.3 in /tools/gcs-bucket-mover (#1673) Bumps [urllib3](https://github.com/urllib3/urllib3) from 2.6.0 to 2.6.3. - [Release notes](https://github.com/urllib3/urllib3/releases) - [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst) - [Commits](https://github.com/urllib3/urllib3/compare/2.6.0...2.6.3) --- updated-dependencies: - dependency-name: urllib3 dependency-version: 2.6.3 dependency-type: direct:production ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Andrew Gold <41129777+agold-rh@users.noreply.github.com> --- tools/gcs-bucket-mover/requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/tools/gcs-bucket-mover/requirements.txt b/tools/gcs-bucket-mover/requirements.txt index 777ae6ec9fd..9d709108ff2 100644 --- a/tools/gcs-bucket-mover/requirements.txt +++ b/tools/gcs-bucket-mover/requirements.txt @@ -142,7 +142,7 @@ text-unidecode==1.3 # via faker uritemplate==3.0.1 # via google-api-python-client -urllib3==2.6.0 +urllib3==2.6.3 # via requests yaspin==1.5.0 # via gcs_bucket_mover (setup.py)