From 2ac28927a326fee6431b5e01f7930e650c636c17 Mon Sep 17 00:00:00 2001
From: cwegener <cwegener@users.noreply.github.com>
Date: Mon, 11 Dec 2023 16:27:53 +0000
Subject: [PATCH] fix: bump pyarrow constraints (CVE-2023-47248) (#26187)

---
 requirements/base.txt | 3 ++-
 setup.py              | 2 +-
 2 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/requirements/base.txt b/requirements/base.txt
index e8b1b43f9..df8f3ea55 100644
--- a/requirements/base.txt
+++ b/requirements/base.txt
@@ -252,7 +252,7 @@ prison==0.2.1
     # via flask-appbuilder
 prompt-toolkit==3.0.38
     # via click-repl
-pyarrow==12.0.0
+pyarrow==14.0.1
     # via apache-superset
 pycparser==2.20
     # via cffi
@@ -371,6 +371,7 @@ werkzeug==2.3.3
     # via
     #   apache-superset
     #   flask
+    #   flask-appbuilder
     #   flask-jwt-extended
     #   flask-login
 wrapt==1.15.0
diff --git a/setup.py b/setup.py
index c3cc887bb..18fb4dd1e 100644
--- a/setup.py
+++ b/setup.py
@@ -113,7 +113,7 @@ setup(
         "python-dateutil",
         "python-dotenv",
         "python-geohash",
-        "pyarrow>=12.0.0, <13",
+        "pyarrow>=14.0.1, <15",
         "pyyaml>=6.0.0, <7.0.0",
         "PyJWT>=2.4.0, <3.0",
         "redis>=4.5.4, <5.0",