diff --git a/requirements.txt b/requirements.txt
index da1a40e8cd..1024b5683d 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -128,7 +128,7 @@ itsdangerous==2.1.2
     #   -r requirements.in
     #   flask
     #   notifications-utils
-jinja2==3.1.3
+jinja2==3.1.4
     # via
     #   flask
     #   notifications-utils
@@ -270,8 +270,9 @@ wcwidth==0.2.5
     # via prompt-toolkit
 webcolors==1.12
     # via jsonschema
-werkzeug==3.0.1
+werkzeug==3.0.6
     # via flask
 
 # The following packages are considered to be unsafe in a requirements file:
 # setuptools
+zipp>=3.19.1 # not directly required, pinned by Snyk to avoid a vulnerability