From 99511efe81800f6e872ea4d6ebdd48758fb752f8 Mon Sep 17 00:00:00 2001
From: Seth Foster <fosterseth@users.noreply.github.com>
Date: Thu, 5 Feb 2026 14:12:59 -0500
Subject: [PATCH] bump pyasn1 (#16249)

Bump pyasn1 for CVE-2026-2349

Signed-off-by: Seth Foster <fosterbseth@gmail.com>
---
 requirements/requirements.in  | 1 +
 requirements/requirements.txt | 3 ++-
 2 files changed, 3 insertions(+), 1 deletion(-)

diff --git a/requirements/requirements.in b/requirements/requirements.in
index 08f0384eb7..5f50c143db 100644
--- a/requirements/requirements.in
+++ b/requirements/requirements.in
@@ -46,6 +46,7 @@ pexpect
 prometheus-client
 psycopg
 psutil
+pyasn1>=0.6.2  # CVE-2026-2349
 pygerduty
 PyGithub
 pyopenssl
diff --git a/requirements/requirements.txt b/requirements/requirements.txt
index 75a09bde7b..c2e9267936 100644
--- a/requirements/requirements.txt
+++ b/requirements/requirements.txt
@@ -363,8 +363,9 @@ psycopg==3.2.10
     #   dispatcherd
 ptyprocess==0.7.0
     # via pexpect
-pyasn1==0.6.1
+pyasn1==0.6.2
     # via
+    #   -r /awx_devel/requirements/requirements.in
     #   pyasn1-modules
     #   service-identity
 pyasn1-modules==0.4.2