From 98c2d6bc2db1e82c53008ace92bd3aafd17e9d0f Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sat, 31 Jan 2026 10:25:59 +0000
Subject: [PATCH 1/2] fix: contrib/requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-PROTOBUF-15090738
---
 contrib/requirements.txt | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/contrib/requirements.txt b/contrib/requirements.txt
index 52fada94ec89..70e8ef468878 100644
--- a/contrib/requirements.txt
+++ b/contrib/requirements.txt
@@ -5,7 +5,7 @@ ecdsa==0.13
 idna==2.6
 jsonrpclib-pelix==0.3.1
 pbkdf2==1.3
-protobuf==3.5.0.post1
+protobuf==6.33.5
 pyaes==1.6.1
 PySocks==1.6.7
 qrcode==5.3

From ee8b62300f2c69bc359d10edeba73780d4712c35 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Wed, 4 Feb 2026 13:55:13 +0000
Subject: [PATCH 2/2] fix: contrib/requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-PROTOBUF-15090738