From c4cd55f9d0eec9db48dc0fc20863ab01ec8935b1 Mon Sep 17 00:00:00 2001
From: Ryan Mulligan <ryan@ryantm.com>
Date: Thu, 20 Feb 2025 13:15:58 -0800
Subject: [PATCH] [security] fix zipp security report

Why
===
* The zipp dependency used in the docs has a security report
* Let's fix it.

What changed
===
* Add zipp to requirements.in (bumping it from an indirect dependency
to direct so we can control the version)
* run pip-compile

Test plan
===
* CI still builds the docs
---
 docs/requirements.in  | 1 +
 docs/requirements.txt | 4 +++-
 2 files changed, 4 insertions(+), 1 deletion(-)

diff --git a/docs/requirements.in b/docs/requirements.in
index f5011cb..ef1007f 100644
--- a/docs/requirements.in
+++ b/docs/requirements.in
@@ -9,3 +9,4 @@ urllib3>=2.2.2,<3
 aiohttp-retry>=2.8.3
 sphinx-autodoc-typehints>=3.1.0
 sphinx_click>=6.0.0
+zipp>=3.19.1
diff --git a/docs/requirements.txt b/docs/requirements.txt
index 859a059..ff5569d 100644
--- a/docs/requirements.txt
+++ b/docs/requirements.txt
@@ -74,7 +74,7 @@ multidict==6.1.0
     #   yarl
 packaging==24.2
     # via sphinx
-propcache==0.2.1
+propcache==0.3.0
     # via
     #   aiohttp
     #   yarl
@@ -128,3 +128,5 @@ werkzeug==3.1.3
     #   flask
 yarl==1.18.3
     # via aiohttp
+zipp==3.21.0
+    # via -r requirements.in