Dependabot issued a few high severity alters which require upgrade starlette to 1.1.0 or 1.3.1 the latest version released on un 12, 2026
https://github.com/CDLUC3/resolver/security/dependabot/33
https://github.com/CDLUC3/resolver/security/dependabot/35
As the Resolver is on fastapi v0.121.0 which depends on starlette v0.49.3, we cannot update starlette to a non-vulnerable version. Consider to upgrade FastAPI to 0.137.2 (the latest version released on 2026-06-18) that supports starlette 1.3.1.
Dependabot issued a few high severity alters which require upgrade starlette to 1.1.0 or 1.3.1 the latest version released on un 12, 2026
https://github.com/CDLUC3/resolver/security/dependabot/33
https://github.com/CDLUC3/resolver/security/dependabot/35
As the Resolver is on
fastapi v0.121.0which depends onstarlette v0.49.3, we cannot update starlette to a non-vulnerable version. Consider to upgrade FastAPI to 0.137.2 (the latest version released on 2026-06-18) that supports starlette 1.3.1.