From 7b64c74a83ef1b586a7de5cabe803926ca2b8084 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 9 Jul 2024 21:10:53 +0000
Subject: [PATCH] fix: sdk/python/requirements/py3.9-requirements.txt to reduce
 vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-CERTIFI-7430173
- https://snyk.io/vuln/SNYK-PYTHON-ZIPP-7430899
---
 sdk/python/requirements/py3.9-requirements.txt | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/sdk/python/requirements/py3.9-requirements.txt b/sdk/python/requirements/py3.9-requirements.txt
index 8db9fd4b14..1172cae7f8 100644
--- a/sdk/python/requirements/py3.9-requirements.txt
+++ b/sdk/python/requirements/py3.9-requirements.txt
@@ -14,7 +14,7 @@ attrs==21.4.0
     # via jsonschema
 cachetools==4.2.4
     # via google-auth
-certifi==2021.10.8
+certifi==2024.7.4
     # via requests
 charset-normalizer==2.0.10
     # via requests
@@ -148,3 +148,4 @@ websockets==10.1
 
 # The following packages are considered to be unsafe in a requirements file:
 # setuptools
+zipp>=3.19.1 # not directly required, pinned by Snyk to avoid a vulnerability