From db6ee4395cd1b1a865a0534bf6fd34c328300a03 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Wed, 14 Jan 2026 11:56:51 +0000
Subject: [PATCH] fix: online-boutique-demo/src/loadgenerator/requirements.txt
 to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-14896210
- https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-14908843
---
 online-boutique-demo/src/loadgenerator/requirements.txt | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/online-boutique-demo/src/loadgenerator/requirements.txt b/online-boutique-demo/src/loadgenerator/requirements.txt
index 532c613..b2c523b 100644
--- a/online-boutique-demo/src/loadgenerator/requirements.txt
+++ b/online-boutique-demo/src/loadgenerator/requirements.txt
@@ -23,8 +23,8 @@ psutil==5.7.2             # via locust
 pyzmq==19.0.2             # via locust
 requests==2.24.0          # via locust
 six==1.15.0               # via geventhttpclient
-urllib3==1.25.10          # via requests
-werkzeug==1.0.1           # via flask, locust
+urllib3==2.6.3          # via requests
+werkzeug==3.1.5           # via flask, locust
 zope.event==4.5.0         # via gevent
 zope.interface==5.1.0     # via gevent