From 89c4ba18f22e6c60ca12bbf761a6cc36e8c9ebc3 Mon Sep 17 00:00:00 2001
From: Ashley Smith <ashley.smith@thetradedesk.com>
Date: Thu, 11 Dec 2025 13:22:11 -0700
Subject: [PATCH 1/2] trivy ignore libpng vuln for now

---
 .trivyignore | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/.trivyignore b/.trivyignore
index 09dd392ee..074f3bbc6 100644
--- a/.trivyignore
+++ b/.trivyignore
@@ -16,3 +16,6 @@ CVE-2025-64720 exp:2026-06-05
 
 # UID2-6340
 CVE-2025-65018 exp:2026-06-05
+
+# UID2-6385
+CVE-2025-66293 exp:2026-06-15
\ No newline at end of file

From 7a1a1f66543e0411752a5914a52ab2586ccb656e Mon Sep 17 00:00:00 2001
From: Ashley Smith <ashley.smith@thetradedesk.com>
Date: Thu, 11 Dec 2025 13:29:19 -0700
Subject: [PATCH 2/2] update version of urllib3

---
 scripts/aws/requirements.txt | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/scripts/aws/requirements.txt b/scripts/aws/requirements.txt
index 421faba98..fe56f20ad 100644
--- a/scripts/aws/requirements.txt
+++ b/scripts/aws/requirements.txt
@@ -1,4 +1,4 @@
 requests[socks]==2.32.3
 boto3==1.35.59
-urllib3==1.26.20
+urllib3==2.6.0
 PyYAML===6.0.2
\ No newline at end of file