chore(deps): update dependency flask to v3.0.3

[renovate-bot]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
flask (changelog)	==3.0.2 -> ==3.0.3

---

Release Notes

pallets/flask (flask)

v3.0.3

Compare Source

This is a fix release for the 3.0.x feature branch.

PyPI: https://pypi.org/project/Flask/3.0.3/ Changes: https://flask.palletsprojects.com/en/3.0.x/changes/#version-3-0-3 Milestone: https://github.com/pallets/flask/milestone/35?closed=1

• The default hashlib.sha1 may not be available in FIPS builds. Don't access it at import time so the developer has time to change the default. #​5448
• Don't initialize the cli attribute in the sansio scaffold, but rather in the Flask concrete class. #​5270

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• [ ] If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.

[iennae]

hey @GoogleCloudPlatform/api-workflows can y'all check whether this update will cause problems? For flask updates, this probably needs additional care and review.

[rspruyt-google]

Hi Jennifer,

I agree, we will need to take a bit closer look at this. Can you kindly coordinate a resource w/ rboruk@ ? Thanks!

[rspruyt-google]

Hi Jennifer, are you still waiting for Cloud Workflows to review?

[PeterMilley]

Looking at the flask changelog this appears to be a fairly minor version increase, and the dependency is only used in one of our example snippets; I don't see any reason to block this.