updating requests to address CVEs CVE-2024-35195 and CVE-2024-47081 (#167)

Signed-off-by: Adam D. Cornett <adc@redhat.com>

Author: acornett21

images/ansible-operator/Dockerfile

@@ -27,10 +27,7 @@ RUN set -e && dnf clean all && rm -rf /var/cache/dnf/* \
   && pip3 install --upgrade pip~=23.3.2 \
   && pip3 install pipenv==2023.11.15 \
   && pipenv install --deploy \
-  # NOTE: This ignored vulnerability (71064) was detected in requests, \
-  # but the upgraded version doesn't support the use case (protocol we are using).\
-  # Ref: https://github.com/operator-framework/ansible-operator-plugins/pull/67#issuecomment-2189164688 \
-  && pipenv check --ignore 71064 --ignore 77680 \
+  && pipenv check \
   && dnf remove -y gcc libffi-devel openssl-devel python3.12-devel \
   && dnf clean all \
   && rm -rf /var/cache/dnf

images/ansible-operator/Pipfile

@@ -9,7 +9,7 @@ ansible-runner-http = "~=1.0.0"
 ansible-core = "~=2.18.3"
 urllib3 = "~=2.5.0"
 kubernetes = "==33.1.0"
-requests = "~=2.31.0"
+requests = "~=2.32.5"
 
 [dev-packages]
 

images/ansible-operator/Pipfile.lock

@@ -23,10 +23,7 @@ RUN set -e && dnf clean all && rm -rf /var/cache/dnf/* \
   && pip3 install --upgrade pip~=23.3.2 \
   && pip3 install pipenv==2023.11.15 \
   && pipenv lock \
-  # NOTE: This ignored vulnerability (71064) was detected in requests, \
-  # but the upgraded version doesn't support the use case (protocol we are using).\
-  # Ref: https://github.com/operator-framework/ansible-operator-plugins/pull/67#issuecomment-2189164688
-  && pipenv check --ignore 71064 --ignore 77680 \
+  && pipenv check \
   && dnf remove -y gcc libffi-devel openssl-devel python3.12-devel \
   && dnf clean all \
   && rm -rf /var/cache/dnf