From 32bb41ca2ff63747ac244d607280028cad625c3c Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Mon, 12 Jan 2026 10:55:50 +0000
Subject: [PATCH] fix: engines/arachni/requirements.txt to reduce
 vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-14896210
- https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-14908843
---
 engines/arachni/requirements.txt | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/engines/arachni/requirements.txt b/engines/arachni/requirements.txt
index 9f179e4d..e2c84425 100644
--- a/engines/arachni/requirements.txt
+++ b/engines/arachni/requirements.txt
@@ -22,6 +22,6 @@ pytest==3.8.1
 requests==2.28.2
 scandir==1.9.0
 six==1.11.0
-urllib3==1.26.5
-werkzeug==2.2.3
+urllib3==2.6.3
+werkzeug==3.1.5
 setuptools==65.5.1 # not directly required, pinned by Snyk to avoid a vulnerability