From dd82487e103cdb2a29fa69f19aba8058cc978197 Mon Sep 17 00:00:00 2001
From: Corentin Le Molgat <corentinl@google.com>
Date: Thu, 5 Jun 2025 08:06:55 +0200
Subject: [PATCH] bazel: fix notebook requirements.txt

---
 bazel/notebook_requirements.in  | 3 ++-
 bazel/notebook_requirements.txt | 8 +++++---
 2 files changed, 7 insertions(+), 4 deletions(-)

diff --git a/bazel/notebook_requirements.in b/bazel/notebook_requirements.in
index af64100600..946cbc100f 100644
--- a/bazel/notebook_requirements.in
+++ b/bazel/notebook_requirements.in
@@ -21,7 +21,8 @@ svgwrite==1.4.3
 plotly==5.15.0
 
 # Notebook
-jupyterlab==4.4.2
+jupyterlab==4.4.3
+setuptools==78.1.1  # jupyterlab require 74.0.0 which contains vulnerabilities
 notebook==7.4.2
 jupyter-server==2.16.0
 tornado==6.5.0
diff --git a/bazel/notebook_requirements.txt b/bazel/notebook_requirements.txt
index 7fbe03c9bc..500b45e7ee 100644
--- a/bazel/notebook_requirements.txt
+++ b/bazel/notebook_requirements.txt
@@ -132,7 +132,7 @@ jupyter-server==2.16.0
     #   notebook-shim
 jupyter-server-terminals==0.4.4
     # via jupyter-server
-jupyterlab==4.4.2
+jupyterlab==4.4.3
     # via
     #   -r bazel/notebook_requirements.in
     #   notebook
@@ -350,5 +350,7 @@ websocket-client==1.8.0
     # via jupyter-server
 
 # The following packages are considered to be unsafe in a requirements file:
-setuptools==74.0.0
-    # via jupyterlab
+setuptools==78.1.1
+    # via
+    #   -r bazel/notebook_requirements.in
+    #   jupyterlab