fix(deps): vuln patch: requests, toml [ci]

[gh-worker-campaigns-3e9aa4]

Summary: Security update — 2 packages upgraded (patch changes only)

Manifests changed:

• ci (pip)

---

✅ Action Required: Please review the changes below. If they look good, approve and merge this PR.

---

Updates

Package	From	To	Type	Vulnerabilities Fixed
requests	2.25.0	2.25.1	patch	8 MODERATE
toml	0.10.0	0.10.2	patch	-

Packages marked with "-" are updated due to dependency constraints.

---

Security Details

ℹ️ Other Vulnerabilities (8)

Package	CVE	Severity	Summary	Unsafe Version	Fixed In
requests	GHSA-j8r2-6x86-q33q	MODERATE	Unintended leak of Proxy-Authorization header in requests	2.25.0	2.31.0
requests	CVE-2023-32681	MODERATE	Unintended leak of Proxy-Authorization header in requests	2.25.0	-
requests	PYSEC-2023-74	MODERATE	-	2.25.0	74ea7cf7a6a27a4eeb2ae24e162bcc942a6706d5
requests	GHSA-9hjg-9r4m-mvj7	MODERATE	Requests vulnerable to .netrc credentials leak via malicious URLs	2.25.0	2.32.4
requests	CVE-2024-47081	MODERATE	Requests vulnerable to .netrc credentials leak via malicious URLs	2.25.0	-
requests	GHSA-9wx4-h78v-vm56	MODERATE	Requests Session object does not verify requests after making first request with verify=False	2.25.0	2.32.0
requests	CVE-2024-35195	MODERATE	Requests Session object does not verify requests after making first request with verify=False	2.25.0	-
requests	GHSA-gc5v-m9x4-r6x2	MODERATE	Requests has Insecure Temp File Reuse in its extract_zipped_paths() utility function	2.25.0	2.33.0

⚠️ Dependencies that have Reached EOL (2)

Dependency	Unsafe Version	EOL Date	New Version	Path
requests	2.25.0	-	2.25.1	ci/requirements.txt
toml	0.10.0	-	0.10.2	ci/requirements.txt

---

Review Checklist

Standard review:

• Review changes for compatibility with your code
• Check for breaking changes in release notes
• Run tests locally or wait for CI
• Approve and merge this PR

---

Update Mode: Vulnerability Remediation

🤖 Generated by DataDog Automated Dependency Management System