From 349a75f67bfffdaaef7480ce9ad04befdcfe988a Mon Sep 17 00:00:00 2001
From: Hiroshi Miura <miurahr@linux.com>
Date: Fri, 3 Nov 2023 12:12:22 +0900
Subject: [PATCH] security: CVE-2023-32681: bump requests@2.31.0

- Versions of Requests between v2.3.0 and v2.30.0 are vulnerable to potential forwarding of Proxy-Authorization headers to destination servers when following HTTPS redirects.

Details at [Github Advisory](https://github.com/psf/requests/security/advisories/GHSA-j8r2-6x86-q33q)

Signed-off-by: Hiroshi Miura <miurahr@linux.com>
---
 pyproject.toml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pyproject.toml b/pyproject.toml
index 624b42e7..c2b6912d 100644
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -27,7 +27,7 @@ dependencies = [
     "humanize",
     "patch>=1.16",
     "py7zr>=0.20.6",
-    "requests>2.20.0",
+    "requests>=2.31.0",
     "semantic-version",
     "texttable",
 ]