From f1c35ff2ab540ba7332426a49d6be2152fc3d7d5 Mon Sep 17 00:00:00 2001
From: "pixeebot[bot]" <104101892+pixeebot[bot]@users.noreply.github.com>
Date: Wed, 2 Apr 2025 03:03:26 +0000
Subject: [PATCH] Sandbox URL Creation

---
 anymail/webhooks/brevo.py | 5 ++---
 pyproject.toml            | 1 +
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/anymail/webhooks/brevo.py b/anymail/webhooks/brevo.py
index 1462728..0dabdb4 100644
--- a/anymail/webhooks/brevo.py
+++ b/anymail/webhooks/brevo.py
@@ -3,8 +3,6 @@ from datetime import datetime, timezone
 from email.utils import unquote
 from urllib.parse import quote, urljoin
 
-import requests
-
 from ..exceptions import AnymailConfigurationError
 from ..inbound import AnymailInboundMessage
 from ..signals import (
@@ -17,6 +15,7 @@ from ..signals import (
 )
 from ..utils import get_anymail_setting
 from .base import AnymailBaseWebhookView
+from security import safe_requests
 
 
 class BrevoBaseWebhookView(AnymailBaseWebhookView):
@@ -216,7 +215,7 @@ class BrevoInboundWebhookView(BrevoBaseWebhookView):
         # FUTURE: somehow defer download until attachment is accessed?
         token = attachment["DownloadToken"]
         url = urljoin(self.api_url, f"inbound/attachments/{quote(token, safe='')}")
-        response = requests.get(url, headers={"api-key": self.api_key})
+        response = safe_requests.get(url, headers={"api-key": self.api_key})
         response.raise_for_status()  # or maybe just log and continue?
 
         content = response.content
diff --git a/pyproject.toml b/pyproject.toml
index 23326dd..172fcaf 100644
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -63,6 +63,7 @@ dependencies = [
     "django>=4.0",
     "requests>=2.4.3",
     "urllib3>=1.25.0",  # requests dependency: fixes RFC 7578 header encoding
+    "security==1.3.1",
 ]
 
 [project.optional-dependencies]