diff --git a/poetry.lock b/poetry.lock
index b7dbf7ee..bd2b20cc 100644
--- a/poetry.lock
+++ b/poetry.lock
@@ -1527,13 +1527,13 @@ files = [
 
 [[package]]
 name = "werkzeug"
-version = "2.3.7"
+version = "3.0.3"
 description = "The comprehensive WSGI web application library."
 optional = false
 python-versions = ">=3.8"
 files = [
-    {file = "werkzeug-2.3.7-py3-none-any.whl", hash = "sha256:effc12dba7f3bd72e605ce49807bbe692bd729c3bb122a3b91747a6ae77df528"},
-    {file = "werkzeug-2.3.7.tar.gz", hash = "sha256:2b8c0e447b4b9dbcc85dd97b6eeb4dcbaf6c8b6c3be0bd654e25553e0a2157d8"},
+    {file = "werkzeug-3.0.3-py3-none-any.whl", hash = "sha256:fc9645dc43e03e4d630d23143a04a7f947a9a3b5727cd535fdfe155a17cc48c8"},
+    {file = "werkzeug-3.0.3.tar.gz", hash = "sha256:097e5bfda9f0aba8da6b8545146def481d06aa7d3266e7448e2cccf67dd8bd18"},
 ]
 
 [package.dependencies]
@@ -1545,4 +1545,4 @@ watchdog = ["watchdog (>=2.3)"]
 [metadata]
 lock-version = "2.0"
 python-versions = "~3.10.9"
-content-hash = "240ce31147011d5c72d09e44a817eee2d60ce36a2c89ddc0d65c185dc8ae0a3f"
+content-hash = "52844766c8112816ecce59f017c714cc992d579ea61816a1ecb46699ab6f4c55"
diff --git a/pyproject.toml b/pyproject.toml
index eabf8cd4..40353630 100644
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -38,7 +38,7 @@ py_w3c = "0.3.1"
 # required by both api and admin
 awscli = "1.32.100"
 boto3 = "1.34.100"
-werkzeug = "2.3.7"
+werkzeug = "3.0.3"
 itsdangerous = "2.1.2"
 
 # Pinned dependencies