From 39fa1e06b927e5ec1a50fc1b97c4ea28e395e7f8 Mon Sep 17 00:00:00 2001
From: Bodong Yang <86948717+Bodong-Yang@users.noreply.github.com>
Date: Wed, 27 Nov 2024 22:33:02 +0900
Subject: [PATCH] deps: bump aiohttp to >=3.10.11,<3.12 (#433)

Bump aiohttp to >=3.10.11,<3.12, see https://www.cve.org/CVERecord?id=CVE-2024-52304 for more details.
---
 pyproject.toml   | 2 +-
 requirements.txt | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/pyproject.toml b/pyproject.toml
index c98830edf..cc8641ed7 100644
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -25,7 +25,7 @@ dynamic = [
 ]
 dependencies = [
   "aiofiles<25,>=24.1",
-  "aiohttp>=3.10.2,<3.12",
+  "aiohttp>=3.10.11,<3.12",
   "cryptography>=43.0.1,<44",
   "grpcio>=1.53.2,<1.69",
   "protobuf>=4.21.12,<5.29",
diff --git a/requirements.txt b/requirements.txt
index cc81b257d..fdcd01299 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -1,7 +1,7 @@
 # Automatically generated from pyproject.toml by gen_requirements_txt.py script.
 # DO NOT EDIT! Only for reference use.
 aiofiles<25,>=24.1
-aiohttp>=3.10.2,<3.12
+aiohttp>=3.10.11,<3.12
 cryptography>=43.0.1,<44
 grpcio>=1.53.2,<1.69
 protobuf>=4.21.12,<5.29