From 37e7edc14f382ecb77ed6962547c2f2e620ec6f3 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Mon, 14 Jul 2025 07:52:27 +0000
Subject: [PATCH] fix: requirements/base.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-FLASKCORS-7707876
- https://snyk.io/vuln/SNYK-PYTHON-FLASKCORS-9668952
- https://snyk.io/vuln/SNYK-PYTHON-FLASKCORS-9668953
- https://snyk.io/vuln/SNYK-PYTHON-FLASKCORS-9668954
- https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-6035177
- https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-6808933
- https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-8309091
- https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-8309092
- https://snyk.io/vuln/SNYK-PYTHON-ZIPP-7430899
---
 requirements/base.txt | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/requirements/base.txt b/requirements/base.txt
index f7742cb5ada5..ffee31e53fa1 100644
--- a/requirements/base.txt
+++ b/requirements/base.txt
@@ -120,7 +120,7 @@ flask-caching==2.3.1
     # via apache-superset (pyproject.toml)
 flask-compress==1.17
     # via apache-superset (pyproject.toml)
-flask-cors==4.0.2
+flask-cors==6.0.0
     # via apache-superset (pyproject.toml)
 flask-jwt-extended==4.7.1
     # via flask-appbuilder
@@ -448,3 +448,4 @@ xlsxwriter==3.0.9
     #   pandas
 zstandard==0.23.0
     # via flask-compress
+zipp>=3.19.1 # not directly required, pinned by Snyk to avoid a vulnerability