fastapi==0.137.1
sqlalchemy==2.0.51
python-dotenv==1.2.2
pydantic-settings==2.14.2
python-jose[cryptography]==3.5.0
bcrypt==5.0.0
slowapi==0.1.10
mercadopago==3.2.0
requests==2.33.1
PyMySQL>=1.0.2
a2wsgi>=1.2.0

# Pins de seguridad — transitivas con CVE conocida
urllib3>=2.7.0          # PYSEC-2026-141, PYSEC-2026-142
idna>=3.15              # PYSEC-2026-215
cryptography>=48.0.1    # GHSA-537c-gmf6-5ccf
