fix(deps): vuln minor upgrades — 6 packages (minor: 3 · patch: 3)

[gh-worker-campaigns-3e9aa4]

Summary: Security update — 6 packages upgraded (MINOR changes included)

Manifests changed:

• . (poetry)

---

✅ Action Required: Please review the changes below. If they look good, approve and merge this PR.

---

Updates

Package	From	To	Type	Dep Type	Vulnerabilities Fixed
pytest	9.0.2	9.0.3	patch	Direct	2 MODERATE
click	8.1.8	8.3.2	minor	Direct	-
mypy	1.19.1	1.20.1	minor	Direct	-
semgrep	1.151.0	1.160.0	minor	Direct	-
poetry-core	1.0.0	1.0.8	patch	Direct	-
requests	2.33.0	2.33.1	patch	Direct	-

Packages marked with "-" are updated due to dependency constraints.

---

Security Details

ℹ️ Other Vulnerabilities (2)

Package	CVE	Severity	Summary	Unsafe Version	Fixed In
pytest	GHSA-6w46-j5rx-g56g	MODERATE	pytest has vulnerable tmpdir handling	9.0.2	9.0.3
pytest	CVE-2025-71176	MODERATE	-	9.0.2	-

⚠️ Dependencies that have Reached EOL (3)

Dependency	Unsafe Version	EOL Date	New Version	Path
click	8.1.8	-	8.3.2	pyproject.toml
poetry-core	1.0.0	Sep 30, 2025	1.0.8	pyproject.toml
requests	2.33.0	-	2.33.1	pyproject.toml

---

Review Checklist

Standard review:

• Review changes for compatibility with your code
• Check for breaking changes in release notes
• Run tests locally or wait for CI
• Approve and merge this PR

---

Update Mode: Vulnerability Remediation

🤖 Generated by DataDog Automated Dependency Management System