starlette 0.46.1 → 0.49.1

neverinfamous · neverinfamous · commit 4e586cab0a0a · 2025-10-28T20:09:01.000-04:00
✅ urllib3 2.3.0 → 2.5.0
✅ requests 2.32.3 → 2.32.5 (even better than required 2.32.4!)
✅ aiohttp 3.11.16 → 3.13.2 (even better than required 3.12.14!)
diff --git a/DOCKER_README.md b/DOCKER_README.md
@@ -1,6 +1,6 @@
 # PostgreSQL MCP Server - Enhanced
 
-Last Updated October 18, 2025 8:59 PM EST Production/Stable v1.1.1
+Last Updated October 27, 2025 - Production/Stable v1.1.1
 
 <!-- mcp-name: io.github.neverinfamous/postgres-mcp-server -->
 
diff --git a/Dockerfile b/Dockerfile
@@ -39,6 +39,9 @@ RUN apt-get update && apt-get install -y \
   && rm -rf /var/lib/apt/lists/* \
   && apt-get clean
 
+# Security: Upgrade pip to fix CVE-2025-8869
+RUN pip install --no-cache-dir --upgrade pip>=25.3
+
 COPY --from=builder --chown=app:app /app /app
 COPY --chown=app:app docker-entrypoint.sh /app/
 RUN chmod +x /app/docker-entrypoint.sh
diff --git a/README.md b/README.md
@@ -1,6 +1,6 @@
 # PostgreSQL MCP Server - Version 1.1.1
 
-Last Updated October 18, 2025 8:59 PM EST - Production/Stable v1.1.1
+Last Updated October 27, 2025 - Production/Stable v1.1.1
 
 <!-- mcp-name: io.github.neverinfamous/postgres-mcp-server -->
 
diff --git a/pyproject.toml b/pyproject.toml
@@ -14,6 +14,11 @@ dependencies = [
     "instructor>=1.7.9",
     "h11>=0.16.0",
     "setuptools>=78.1.1",
+    # Security: Force updated versions to fix CVEs
+    "starlette>=0.49.1",  # CVE-2025-62727, CVE-2025-54121
+    "urllib3>=2.5.0",     # CVE-2025-50181, CVE-2025-50182
+    "requests>=2.32.4",   # CVE-2024-47081
+    "aiohttp>=3.12.14",   # CVE-2025-53643
 ]
 license = "mit"
 license-files = ["LICENSE"]
diff --git a/uv.lock b/uv.lock
