From ad8374aedc93225f564bbf190ccfc5ede763f7c9 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 13 Jan 2026 22:04:33 +0000
Subject: [PATCH] GHA: bump pip-dependencies

- update `ruff` from 0.14.10 to 0.14.11
- update `filelock` from 3.20.1 to 3.20.3 (CVE-2026-22701) (used in pytests)
- update `psutil` from 7.2.0 to 7.2.1

Closes #20300
---
 .github/scripts/requirements.txt | 2 +-
 tests/http/requirements.txt      | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/scripts/requirements.txt b/.github/scripts/requirements.txt
index 69e8e9fc9b..d111fe5063 100644
--- a/.github/scripts/requirements.txt
+++ b/.github/scripts/requirements.txt
@@ -6,4 +6,4 @@ cmakelang==0.6.13
 codespell==2.4.1
 pytype==2024.10.11
 reuse==6.2.0
-ruff==0.14.10
+ruff==0.14.11
diff --git a/tests/http/requirements.txt b/tests/http/requirements.txt
index 6bdc814283..e7e43c0295 100644
--- a/tests/http/requirements.txt
+++ b/tests/http/requirements.txt
@@ -3,8 +3,8 @@
 # SPDX-License-Identifier: curl
 
 cryptography==46.0.3
-filelock==3.20.1
-psutil==7.2.0
+filelock==3.20.3
+psutil==7.2.1
 pytest==9.0.2
 pytest-xdist==3.8.0
 websockets==15.0.1