From 71dee9ee842d18866e0b924778102515bd5b3e40 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 8 Jan 2026 04:37:39 +0000
Subject: [PATCH] chore(deps): bump urllib3 from 2.2.3 to 2.6.3

Bumps [urllib3](https://github.com/urllib3/urllib3) from 2.2.3 to 2.6.3.
- [Release notes](https://github.com/urllib3/urllib3/releases)
- [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst)
- [Commits](https://github.com/urllib3/urllib3/compare/2.2.3...2.6.3)

---
updated-dependencies:
- dependency-name: urllib3
  dependency-version: 2.6.3
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 requirements-core.txt | 2 +-
 requirements.txt      | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/requirements-core.txt b/requirements-core.txt
index c571613..65e747c 100644
--- a/requirements-core.txt
+++ b/requirements-core.txt
@@ -13,7 +13,7 @@ statsmodels==0.14.4    # Statistical modeling
 requests==2.32.4       # HTTP library with security patches - FIXED CVE
 cryptography==44.0.1   # Cryptographic functions - FIXED CVE  
 certifi==2024.12.14    # Certificate validation
-urllib3==2.5.0         # HTTP client with security patches - FIXED CVE
+urllib3==2.6.3         # HTTP client with security patches - FIXED CVE
 
 # Utilities
 joblib==1.4.2          # Parallel processing
diff --git a/requirements.txt b/requirements.txt
index 8290d23..e057e1d 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -35,7 +35,7 @@ pyyaml==6.0.2          # YAML parser with security fixes
 # Security and Validation
 cryptography==44.0.0   # Cryptographic recipes and primitives
 certifi==2024.12.14    # Certificate validation
-urllib3==2.2.3         # HTTP client with security patches
+urllib3==2.6.3         # HTTP client with security patches
 
 # Development and Testing
 pytest==8.3.4          # Testing framework