Maintenance: Fix transitive dependency resolution

### Why is this needed?

Some dependencies like boto3 depend on `urllib` and dependency resolution fails sometimes.

Some other dependencies like `aws-requests-auth` are bringing in `requests` as an optional dependency, but they are not pinning the minimum version of `requests` and are installing `requests==0.14.0` which has a potential CVE. Even this does not affect customers, because it is a development dependency, it is important to fix.

### Which area does this relate to?

Automation

### Solution

_No response_

### Acknowledgment

- [x] This request meets [Powertools for AWS Lambda (Python) Tenets](https://docs.powertools.aws.dev/lambda/python/latest/#tenets)
- [ ] Should this be considered in other Powertools for AWS Lambda languages? i.e. [Java](https://github.com/aws-powertools/powertools-lambda-java/), [TypeScript](https://github.com/aws-powertools/powertools-lambda-typescript/), and [.NET](https://github.com/aws-powertools/powertools-lambda-dotnet/)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Maintenance: Fix transitive dependency resolution #5857

Why is this needed?

Which area does this relate to?

Solution

Acknowledgment

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Maintenance: Fix transitive dependency resolution #5857

Description

Why is this needed?

Which area does this relate to?

Solution

Acknowledgment

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions