fix(security): bump aiohttp 3.13.3→3.13.5, picomatch 2.3.1→2.3.2 (ENG-13677, ENG-13698–13701)

[andriy-sudo]

Vulnerability Fixes

Package	Old	New	Advisory	CVSS	Location	Status
aiohttp	3.13.3	3.13.5	CVE-2026-22815	MEDIUM	langchain/	✅ Fixed
aiohttp	3.13.3	3.13.5	CVE-2026-34515	MEDIUM	langchain/	✅ Fixed
aiohttp	3.13.3	3.13.5	CVE-2026-34516	MEDIUM	langchain/	✅ Fixed
aiohttp	3.13.3	3.13.5	CVE-2026-34525	MEDIUM	langchain/	✅ Fixed
picomatch	2.3.1	2.3.2	CVE-2026-33672 / GHSA-hxnx-85p3-7mf2	MEDIUM	zapier/	✅ Fixed

Changes

• langchain/pyproject.toml: Added explicit floor pin aiohttp>=3.13.5 (transitive dep)
• langchain/poetry.lock: Bumped aiohttp 3.13.3 → 3.13.5
• zapier/package.json: Added "picomatch": "^2.3.2" to overrides
• zapier/package-lock.json: Regenerated — picomatch resolves to 2.3.2

aiohttp 3.13.5 also fixes 6 additional GHSAs (CVSS 2.7–6.9) beyond the 4 MEDIUM tickets above.

Changelog impact summary

Package	Old	New	Classification	Key changes
aiohttp	3.13.3	3.13.5	Patch/security	Header/trailer handling, multipart DoS, NTLMv2 path — no API changes
picomatch	2.3.1	2.3.2	Patch/security	Fix POSIX_REGEX_SOURCE prototype inheritance — no API changes

Fixes ENG-13677, ENG-13698, ENG-13699, ENG-13700, ENG-13701.

[coderabbitai]

📝 Walkthrough

Walkthrough

This pull request updates dependency configurations in two separate package files. The langchain/pyproject.toml file adds aiohttp as a dependency with a minimum version constraint of >=3.13.5. The zapier/package.json file adds a picomatch package override (^2.3.2) to its dependency resolution configuration, complementing an existing minimatch override. No functional code changes, exported entities, or other tooling configurations were modified.

🚥 Pre-merge checks | ✅ 2

✅ Passed checks (2 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title accurately and concisely describes the main changes: bumping aiohttp and picomatch versions to fix security vulnerabilities, with clear version numbers and ticket references.
Description check	✅ Passed	The description provides comprehensive details about the vulnerability fixes, specific CVEs addressed, files changed, and changelog impact—clearly related to the changeset.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch andriy/ENG-13677-fix-picomatch-aiohttp

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

🧹 Nitpick comments (1)

langchain/pyproject.toml (1)

35-35: Consider adding an upper bound for the aiohttp major version.

>=3.13.5 correctly addresses the security floor, but constraining to <4.0.0 aligns with semantic versioning best practices and prevents unexpected major version upgrades in the future.

♻️ Proposed change

-aiohttp = ">=3.13.5"
+aiohttp = ">=3.13.5,<4.0.0"

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@langchain/pyproject.toml` at line 35, The aiohttp dependency in pyproject
(the line specifying aiohttp = ">=3.13.5") lacks an upper bound; change that
requirement to include a `<4.0.0` upper bound (e.g., `>=3.13.5,<4.0.0`) so
major-version upgrades are prevented while keeping the security floor; update
the aiohttp entry in langchain/pyproject.toml accordingly.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Nitpick comments:
In `@langchain/pyproject.toml`:
- Line 35: The aiohttp dependency in pyproject (the line specifying aiohttp =
">=3.13.5") lacks an upper bound; change that requirement to include a `<4.0.0`
upper bound (e.g., `>=3.13.5,<4.0.0`) so major-version upgrades are prevented
while keeping the security floor; update the aiohttp entry in
langchain/pyproject.toml accordingly.

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 9b72a67c-e5fb-4662-8f77-952c04663ef9

📥 Commits

Reviewing files that changed from the base of the PR and between 63d5e8e and f682214.

⛔ Files ignored due to path filters (2)

• langchain/poetry.lock is excluded by !**/*.lock
• zapier/package-lock.json is excluded by !**/package-lock.json

📒 Files selected for processing (2)

• langchain/pyproject.toml
• zapier/package.json