From c59aa4ce22b72ed0c912120629d6d91c49a11093 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 26 Mar 2026 07:47:59 +0000
Subject: [PATCH 1/2] chore(deps): bump requests

Bumps the pip group with 1 update in the /apps/blockchain-node directory: [requests](https://github.com/psf/requests).


Updates `requests` from 2.32.5 to 2.33.0
- [Release notes](https://github.com/psf/requests/releases)
- [Changelog](https://github.com/psf/requests/blob/main/HISTORY.md)
- [Commits](https://github.com/psf/requests/compare/v2.32.5...v2.33.0)

---
updated-dependencies:
- dependency-name: requests
  dependency-version: 2.33.0
  dependency-type: direct:production
  dependency-group: pip
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 apps/blockchain-node/poetry.lock    | 19 ++++++++++---------
 apps/blockchain-node/pyproject.toml |  2 +-
 2 files changed, 11 insertions(+), 10 deletions(-)

diff --git a/apps/blockchain-node/poetry.lock b/apps/blockchain-node/poetry.lock
index dc105f9d..8b097676 100644
--- a/apps/blockchain-node/poetry.lock
+++ b/apps/blockchain-node/poetry.lock
@@ -1,4 +1,4 @@
-# This file is automatically @generated by Poetry 2.3.2 and should not be changed by hand.
+# This file is automatically @generated by Poetry 2.2.1 and should not be changed by hand.
 
 [[package]]
 name = "aiosqlite"
@@ -1377,25 +1377,26 @@ files = [
 
 [[package]]
 name = "requests"
-version = "2.32.5"
+version = "2.33.0"
 description = "Python HTTP for Humans."
 optional = false
-python-versions = ">=3.9"
+python-versions = ">=3.10"
 groups = ["main"]
 files = [
-    {file = "requests-2.32.5-py3-none-any.whl", hash = "sha256:2462f94637a34fd532264295e186976db0f5d453d1cdd31473c85a6a161affb6"},
-    {file = "requests-2.32.5.tar.gz", hash = "sha256:dbba0bac56e100853db0ea71b82b4dfd5fe2bf6d3754a8893c3af500cec7d7cf"},
+    {file = "requests-2.33.0-py3-none-any.whl", hash = "sha256:3324635456fa185245e24865e810cecec7b4caf933d7eb133dcde67d48cee69b"},
+    {file = "requests-2.33.0.tar.gz", hash = "sha256:c7ebc5e8b0f21837386ad0e1c8fe8b829fa5f544d8df3b2253bff14ef29d7652"},
 ]
 
 [package.dependencies]
-certifi = ">=2017.4.17"
+certifi = ">=2023.5.7"
 charset_normalizer = ">=2,<4"
 idna = ">=2.5,<4"
-urllib3 = ">=1.21.1,<3"
+urllib3 = ">=1.26,<3"
 
 [package.extras]
 socks = ["PySocks (>=1.5.6,!=1.5.7)"]
-use-chardet-on-py3 = ["chardet (>=3.0.2,<6)"]
+test = ["PySocks (>=1.5.6,!=1.5.7)", "pytest (>=3)", "pytest-cov", "pytest-httpbin (==2.1.0)", "pytest-mock", "pytest-xdist"]
+use-chardet-on-py3 = ["chardet (>=3.0.2,<8)"]
 
 [[package]]
 name = "rich"
@@ -1954,4 +1955,4 @@ uvloop = ["uvloop"]
 [metadata]
 lock-version = "2.1"
 python-versions = "^3.13"
-content-hash = "29ff358d6c84aa16c66c55a870bfc31442d090ce218785aeb4a83e71b9e863af"
+content-hash = "55b974f6c38b7bc0908cf88c1ab4972ffd9f97b398c87d0211c01d95dd0cbe4a"
diff --git a/apps/blockchain-node/pyproject.toml b/apps/blockchain-node/pyproject.toml
index 49b9afa9..75a5790c 100644
--- a/apps/blockchain-node/pyproject.toml
+++ b/apps/blockchain-node/pyproject.toml
@@ -25,7 +25,7 @@ uvloop = ">=0.22.0"
 rich = "^13.7.1"
 cryptography = "^46.0.5"
 asyncpg = ">=0.29.0"
-requests = "^2.32.5"
+requests = "^2.33.0"
 # Pin starlette to a version with Broadcast (removed in 0.38)
 starlette = ">=0.37.2,<0.38.0"
 

From fa1f16555cca151514ecf26885467c294dcc5032 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 26 Mar 2026 07:53:45 +0000
Subject: [PATCH 2/2] ci(deps): bump actions/setup-python from 4 to 6

Bumps [actions/setup-python](https://github.com/actions/setup-python) from 4 to 6.
- [Release notes](https://github.com/actions/setup-python/releases)
- [Commits](https://github.com/actions/setup-python/compare/v4...v6)

---
updated-dependencies:
- dependency-name: actions/setup-python
  dependency-version: '6'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/gpu-benchmark.yml     | 2 +-
 .github/workflows/security-scanning.yml | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/gpu-benchmark.yml b/.github/workflows/gpu-benchmark.yml
index f1bc9064..c08b5061 100644
--- a/.github/workflows/gpu-benchmark.yml
+++ b/.github/workflows/gpu-benchmark.yml
@@ -20,7 +20,7 @@ jobs:
     - uses: actions/checkout@v4
     
     - name: Set up Python ${{ matrix.python-version }}
-      uses: actions/setup-python@v4
+      uses: actions/setup-python@v6
       with:
         python-version: ${{ matrix.python-version }}
         
diff --git a/.github/workflows/security-scanning.yml b/.github/workflows/security-scanning.yml
index 01cdcc3e..fb00e8e2 100644
--- a/.github/workflows/security-scanning.yml
+++ b/.github/workflows/security-scanning.yml
@@ -28,7 +28,7 @@ jobs:
       uses: actions/checkout@v4
 
     - name: Set up Python
-      uses: actions/setup-python@v5
+      uses: actions/setup-python@v6
       with:
         python-version: '3.13.5'
 
@@ -106,7 +106,7 @@ jobs:
       uses: actions/checkout@v4
 
     - name: Set up Python
-      uses: actions/setup-python@v5
+      uses: actions/setup-python@v6
       with:
         python-version: '3.13.5'