From d02fa923fb503b7b15de292194a77c514f829795 Mon Sep 17 00:00:00 2001
From: stacknil <stacknil@proton.me>
Date: Thu, 21 May 2026 10:36:08 +0800
Subject: [PATCH] [codex] Bump urllib3 example dependency

---
 .../examples/requirements_after.txt           |  2 +-
 .../examples/sample-requirements-report.json  | 32 +++++++++----------
 .../examples/sample-requirements-report.md    |  8 ++---
 3 files changed, 21 insertions(+), 21 deletions(-)

diff --git a/tools/sbom-diff-and-risk/examples/requirements_after.txt b/tools/sbom-diff-and-risk/examples/requirements_after.txt
index db6bd84..11a73af 100644
--- a/tools/sbom-diff-and-risk/examples/requirements_after.txt
+++ b/tools/sbom-diff-and-risk/examples/requirements_after.txt
@@ -1,2 +1,2 @@
 requests==2.32.0
-urllib3==2.2.1
+urllib3==2.7.0
diff --git a/tools/sbom-diff-and-risk/examples/sample-requirements-report.json b/tools/sbom-diff-and-risk/examples/sample-requirements-report.json
index 2cda00e..394fa60 100644
--- a/tools/sbom-diff-and-risk/examples/sample-requirements-report.json
+++ b/tools/sbom-diff-and-risk/examples/sample-requirements-report.json
@@ -17,9 +17,9 @@
     "added": [
       {
         "name": "urllib3",
-        "version": "2.2.1",
+        "version": "2.7.0",
         "ecosystem": "pypi",
-        "purl": "pkg:pypi/urllib3@2.2.1",
+        "purl": "pkg:pypi/urllib3@2.7.0",
         "license_id": null,
         "supplier": null,
         "source_url": null,
@@ -28,8 +28,8 @@
         "evidence": {
           "source_format": "requirements-txt",
           "line_number": 2,
-          "raw_requirement": "urllib3==2.2.1",
-          "specifier": "==2.2.1",
+          "raw_requirement": "urllib3==2.7.0",
+          "specifier": "==2.7.0",
           "marker": null,
           "extras": [],
           "url": null
@@ -90,9 +90,9 @@
       "component_key": "purl:pkg:pypi/urllib3",
       "component": {
         "name": "urllib3",
-        "version": "2.2.1",
+        "version": "2.7.0",
         "ecosystem": "pypi",
-        "purl": "pkg:pypi/urllib3@2.2.1",
+        "purl": "pkg:pypi/urllib3@2.7.0",
         "license_id": null,
         "supplier": null,
         "source_url": null,
@@ -101,8 +101,8 @@
         "evidence": {
           "source_format": "requirements-txt",
           "line_number": 2,
-          "raw_requirement": "urllib3==2.2.1",
-          "specifier": "==2.2.1",
+          "raw_requirement": "urllib3==2.7.0",
+          "specifier": "==2.7.0",
           "marker": null,
           "extras": [],
           "url": null
@@ -140,9 +140,9 @@
       "component_key": "purl:pkg:pypi/urllib3",
       "component": {
         "name": "urllib3",
-        "version": "2.2.1",
+        "version": "2.7.0",
         "ecosystem": "pypi",
-        "purl": "pkg:pypi/urllib3@2.2.1",
+        "purl": "pkg:pypi/urllib3@2.7.0",
         "license_id": null,
         "supplier": null,
         "source_url": null,
@@ -151,8 +151,8 @@
         "evidence": {
           "source_format": "requirements-txt",
           "line_number": 2,
-          "raw_requirement": "urllib3==2.2.1",
-          "specifier": "==2.2.1",
+          "raw_requirement": "urllib3==2.7.0",
+          "specifier": "==2.7.0",
           "marker": null,
           "extras": [],
           "url": null
@@ -190,9 +190,9 @@
       "component_key": "purl:pkg:pypi/urllib3",
       "component": {
         "name": "urllib3",
-        "version": "2.2.1",
+        "version": "2.7.0",
         "ecosystem": "pypi",
-        "purl": "pkg:pypi/urllib3@2.2.1",
+        "purl": "pkg:pypi/urllib3@2.7.0",
         "license_id": null,
         "supplier": null,
         "source_url": null,
@@ -201,8 +201,8 @@
         "evidence": {
           "source_format": "requirements-txt",
           "line_number": 2,
-          "raw_requirement": "urllib3==2.2.1",
-          "specifier": "==2.2.1",
+          "raw_requirement": "urllib3==2.7.0",
+          "specifier": "==2.7.0",
           "marker": null,
           "extras": [],
           "url": null
diff --git a/tools/sbom-diff-and-risk/examples/sample-requirements-report.md b/tools/sbom-diff-and-risk/examples/sample-requirements-report.md
index 5969247..42e1bc1 100644
--- a/tools/sbom-diff-and-risk/examples/sample-requirements-report.md
+++ b/tools/sbom-diff-and-risk/examples/sample-requirements-report.md
@@ -77,7 +77,7 @@
 ## Added components
 | name | version | ecosystem | risk buckets |
 |------|---------|-----------|--------------|
-| urllib3 | 2.2.1 | pypi | new_package, not_evaluated, unknown_license |
+| urllib3 | 2.7.0 | pypi | new_package, not_evaluated, unknown_license |
 
 ## Removed components
 | name | version | ecosystem |
@@ -92,11 +92,11 @@
 ## Risk findings
 | bucket | component | version | rationale |
 |--------|-----------|---------|-----------|
-| new_package | urllib3 | 2.2.1 | Component was not present in the before input. |
+| new_package | urllib3 | 2.7.0 | Component was not present in the before input. |
 | not_evaluated | requests | 2.32.0 | stale_package was not evaluated because enrichment mode is disabled. |
-| not_evaluated | urllib3 | 2.2.1 | stale_package was not evaluated because enrichment mode is disabled. |
+| not_evaluated | urllib3 | 2.7.0 | stale_package was not evaluated because enrichment mode is disabled. |
 | unknown_license | requests | 2.32.0 | License is missing, empty, UNKNOWN, or NOASSERTION. |
-| unknown_license | urllib3 | 2.2.1 | License is missing, empty, UNKNOWN, or NOASSERTION. |
+| unknown_license | urllib3 | 2.7.0 | License is missing, empty, UNKNOWN, or NOASSERTION. |
 | version_change_unclassified | requests | 2.32.0 | Version changed but did not qualify as a parseable SemVer major upgrade. |
 
 ## Blocking violations