From 465c016339c38c5cccf374a086b87a50014bf7a4 Mon Sep 17 00:00:00 2001
From: Saagar Patel <saagar210@gmail.com>
Date: Tue, 21 Apr 2026 12:47:37 +0200
Subject: [PATCH] chore(deps): bump requests to 2.33.1 in search-api
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Supersedes #11 (2.32.4 → 2.33.0) and #23 (2.32.4 → 2.33.1) from the
Dependabot pip-security group — both are blocked by the branch-name
governance guard per docs/SECURITY.md. This re-creates the upgrade
on a codex-compliant branch. #23 is the newer of the two Dependabot
PRs and carries the security fixes, so we take that version.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
---
 search-api/requirements.txt | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/search-api/requirements.txt b/search-api/requirements.txt
index b0a063c..4453cfe 100644
--- a/search-api/requirements.txt
+++ b/search-api/requirements.txt
@@ -5,7 +5,7 @@ huggingface-hub==0.36.0
 joblib==1.5.1
 numpy==2.2.6
 psycopg2-binary==2.9.10
-requests==2.32.4
+requests==2.33.1
 redis==6.4.0
 scikit-learn==1.7.1
 sentence-transformers==5.1.0