Resolve Dependabot Alerts: Upgrade Dependencies & GitHub Actions

[BinoyOza-okta]

Resolve Dependabot Alerts: Upgrade Dependencies & GitHub Actions

Summary

This PR addresses multiple Dependabot security alerts and version-bump PRs by upgrading all flagged runtime and development dependencies to their latest secure versions. It also bumps GitHub Actions (actions/checkout, actions/setup-python) to the current major release (v6) to eliminate Node.js 12/16 deprecation warnings.

Motivation

Dependabot raised alerts and pull requests for several outdated packages that have known vulnerabilities or have since been superseded by newer secure releases. Rather than merging each Dependabot PR individually, this PR consolidates all the dependency bumps into a single change set for easier review and testing.

Changes

Runtime Dependencies (requirements.txt, setup.py, pyproject.toml)

Package	Previous Version	New Version
aenum	3.1.11	3.1.16
aiohttp	3.12.14	3.13.3
pydash	8.0.5	8.0.6
PyJWT	2.10.1	2.11.0
PyYAML	6.0.2	6.0.3
requests	2.32.3	2.32.5
xmltodict	0.14.2	1.0.2

Development & Testing Dependencies (requirements.txt, pyproject.toml, test-requirements.txt)

Package	Previous Version	New Version
flake8	7.1.2 / >=4.0.0	7.3.0 / >=7.3.0
pyfakefs	5.8.0	5.10.2
pytest	8.3.5 / ~=7.1.3	8.4.2 / ~=8.4.2
pytest-asyncio	0.26.0	1.2.0
pytest-mock	3.14.0	3.15.1
pytest-recording	0.13.2	0.13.4
tox	4.24.2 / >=3.9.0	4.30.3 / >=4.30.3
twine	6.1.0	6.2.0

GitHub Actions (.github/workflows/)

Action	Previous Version	New Version
actions/checkout	v2 / v3	v6
actions/setup-python	v2 / v4	v6

OpenAPI Generator Templates (openapi/templates/)

The mustache templates used for SDK code generation (requirements.mustache, setup.mustache, pyproject.mustache, test-requirements.mustache) have been updated to match the new dependency versions so that future regenerations remain consistent.

Files Changed

• .github/workflows/python-package.yml — Bump checkout & setup-python actions
• .github/workflows/python.yml — Bump checkout & setup-python actions
• requirements.txt — Bump runtime + dev dependency versions
• setup.py — Bump runtime dependency version specifiers
• pyproject.toml — Bump dev dependency version specifiers
• test-requirements.txt — Bump pytest version specifier
• openapi/templates/requirements.mustache — Mirror requirements.txt updates
• openapi/templates/setup.mustache — Mirror setup.py updates
• openapi/templates/pyproject.mustache — Mirror pyproject.toml updates
• openapi/templates/test-requirements.mustache — Mirror test-requirements.txt updates

Testing

• CI passes with the updated dependency set (Python 3.10–3.13)
• Integration tests (pytest tests/integration) pass
• Linting (flake8) passes with the upgraded flake8 version

Risk Assessment

Low risk. All changes are dependency version bumps to address known Dependabot alerts. No application logic or SDK API changes are included.

Fixes

• Bump pyjwt from 2.10.1 to 2.11.0 #494
• Bump flake8 from 7.1.2 to 7.3.0 #493
• Bump pytest from 8.3.5 to 8.4.2 #492
• Bump tox from 4.24.2 to 4.30.3 #491
• Bump pydash from 8.0.5 to 8.0.6 #486
• Bump aiohttp from 3.12.14 to 3.13.3 #484
• Bump actions/checkout from 2 to 6 #480
• Bump pyfakefs from 5.8.0 to 5.10.2 #475
• Bump requests from 2.32.3 to 2.32.5 #461
• Bump pyyaml from 6.0.2 to 6.0.3 #463
• Bump pytest-mock from 3.14.0 to 3.15.1 #465
• Bump twine from 6.1.0 to 6.2.0 #466
• Bump xmltodict from 0.14.2 to 1.0.2 #467
• Bump pytest-asyncio from 0.26.0 to 1.2.0 #460
• Bump requests from 2.32.3 to 2.32.4 #453
• Bump aenum from 3.1.11 to 3.1.16 #456
• Bump pytest-recording from 0.13.2 to 0.13.4 #458
• Bump actions/setup-python from 2 to 6 #459

[dhiwakar-okta]

LGTM 🚀