Bump dependencies in examples (#211)

seba-aln · web-flow · commit 0656e6aba139 · 2025-03-20T19:24:24.000+01:00
* even more updates

* Fix vulnerabilities in examples
diff --git a/examples/pubnub_asyncio/fastapi/requirements.txt b/examples/pubnub_asyncio/fastapi/requirements.txt
@@ -1,2 +1,6 @@
 fastapi>=0.115.11
-pubnub>=10.1.0
+pubnub>=10.1.0
+aiohttp>=3.11.14 # not directly required, pinned to avoid a vulnerability
+requests>=2.32.2 # not directly required, pinned to avoid a vulnerability
+urllib3>=1.26.19,<2 # not directly required, pinned to avoid a vulnerability
+zipp>=3.19.1 # not directly required, pinned to avoid a vulnerability
diff --git a/examples/pubnub_asyncio/http/requirements.txt b/examples/pubnub_asyncio/http/requirements.txt
@@ -1,3 +1,5 @@
 aiohttp>=3.11.14
 aiohttp-cors>=0.8.0
 pubnub>=10.1.0
+requests>=2.32.2 # not directly required, pinned to avoid a vulnerability
+urllib3>=1.26.19,<2 # not directly required, pinned to avoid a vulnerability
diff --git a/requirements-dev.txt b/requirements-dev.txt
@@ -11,5 +11,5 @@ aiohttp>=3.10.11
 cbor2>=5.6
 behave>=1.2.6
 vcrpy>=6.0.2
-urllib3<2
+urllib3>=1.26.19,<2
 busypie>=0.5.1
diff --git a/setup.py b/setup.py
@@ -35,7 +35,7 @@
         'pycryptodomex>=3.3',
         'httpx>=0.28',
         'h2>=4.1',
-        'requests>=2.4',
+        'requests>=2.32',
         'aiohttp>3.9.2',
         'cbor2>=5.6'
     ],
