From b2f31e8758c32899790352b38bd7ae9d24a2a122 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Mon, 16 Mar 2026 16:31:28 +0000
Subject: [PATCH] fix: services/core-api/requirements.txt to reduce
 vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-PYJWT-15518059
---
 services/core-api/requirements.txt | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/services/core-api/requirements.txt b/services/core-api/requirements.txt
index 295ae6f0ae..fae591333f 100644
--- a/services/core-api/requirements.txt
+++ b/services/core-api/requirements.txt
@@ -14,7 +14,7 @@ names==0.3.0
 openlocationcode==1.0.1
 petl==1.6.8
 psycopg2-binary==2.9.6
-PyJWT==2.4.0
+PyJWT==2.12.0
 cryptography==44.0.1
 pytest==8.0.0
 pytest-cov==5.0.0