From 1337d6107dc3b3bd4c7e77bd721c9b1bbba6cf6c Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Fri, 20 Mar 2026 12:07:24 +0000
Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-PYOPENSSL-15674458
- https://snyk.io/vuln/SNYK-PYTHON-PYOPENSSL-15674459
---
 requirements.txt | 1 +
 1 file changed, 1 insertion(+)

diff --git a/requirements.txt b/requirements.txt
index 0ff619d1..b99552f7 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -49,3 +49,4 @@ elastic-transport==8.17
 litellm==1.77.0
 strawberry-graphql==0.285.0
 strawberry-graphql-django==0.67.0
+pyopenssl>=26.0.0 # not directly required, pinned by Snyk to avoid a vulnerability