From b853b27f6a8fffbf2ddce227b71a492778e680bd Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 4 Jun 2026 03:53:42 +0000
Subject: [PATCH] fix: appengine/standard/urlfetch/requests/requirements.txt to
 reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-7267250
---
 appengine/standard/urlfetch/requests/requirements.txt | 1 +
 1 file changed, 1 insertion(+)

diff --git a/appengine/standard/urlfetch/requests/requirements.txt b/appengine/standard/urlfetch/requests/requirements.txt
index 57db758ea8..6ad397b257 100644
--- a/appengine/standard/urlfetch/requests/requirements.txt
+++ b/appengine/standard/urlfetch/requests/requirements.txt
@@ -2,3 +2,4 @@ Flask==3.1.3; python_version >= '3.9'
 Werkzeug==3.1.8; python_version >= '3.9'
 requests==2.34.2; python_version >= '3.10'
 requests-toolbelt==1.0.0
+urllib3>=2.2.2 # not directly required, pinned by Snyk to avoid a vulnerability