The latest requests v2.31.0 resolves a CVE and this project uses an older requests in the requirements file
Dependabot will autopropose PRs of dependencies that it detects to help keep dependencies up to date and make the project more secure
Additional dependencies such as the python version of the project would be difficult to update using dependabot. For those cases, renovatebot should be evaluated.
what
why
https://github.com/cloudandthings/terraform-aws-clickops-notifier/blob/30f44815471751c442a14c674c794d76ebfbe99a/clickopsnotifier/requirements.txt#L3
references