From 782eee45ccf05edb7378df3e960ec3e1d6741cf0 Mon Sep 17 00:00:00 2001 From: Jay Lee Date: Mon, 11 May 2026 15:39:50 -0400 Subject: [PATCH] [no ci] Add dependency overrides for urllib3 Add dependency overrides for urllib3 to address vulnerabilities. --- dep-overrides.txt | 6 ++++++ 1 file changed, 6 insertions(+) create mode 100644 dep-overrides.txt diff --git a/dep-overrides.txt b/dep-overrides.txt new file mode 100644 index 00000000..03d945d7 --- /dev/null +++ b/dep-overrides.txt @@ -0,0 +1,6 @@ +# overrides uv.lock to force newer dependencies +# when old deps are vulnerable. These should be set +# to expire after 2 weeks when the fixed version will +# be automatically picked up anyway. +# Format: package_requirement | MM/DD/YYYY +urllib3>=2.7.0 | 05/22/2026