From 36ca83ef34b67c7952c0934ca92dd6db1c700311 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Fri, 22 Nov 2024 03:51:08 +0000
Subject: [PATCH] fix:
 samples/server/petstore/python-aiohttp-srclayout/requirements.txt to reduce
 vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-8383923
---
 .../server/petstore/python-aiohttp-srclayout/requirements.txt  | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/samples/server/petstore/python-aiohttp-srclayout/requirements.txt b/samples/server/petstore/python-aiohttp-srclayout/requirements.txt
index aaaaeb756eac..246176f7f219 100644
--- a/samples/server/petstore/python-aiohttp-srclayout/requirements.txt
+++ b/samples/server/petstore/python-aiohttp-srclayout/requirements.txt
@@ -7,4 +7,5 @@ connexion[aiohttp,swagger-ui] <= 2.3.0; python_version=="3.5" or python_version=
 werkzeug == 0.16.1; python_version=="3.5" or python_version=="3.4"
 swagger-ui-bundle == 0.0.9
 aiohttp_jinja2 == 1.5.0
-Flask < 2.3
\ No newline at end of file
+Flask < 2.3
+aiohttp>=3.10.11 # not directly required, pinned by Snyk to avoid a vulnerability
\ No newline at end of file