diff --git a/ci/requirements.txt b/ci/requirements.txt
index 2cb71ab102..42a95196c4 100644
--- a/ci/requirements.txt
+++ b/ci/requirements.txt
@@ -4,3 +4,4 @@ pre-commit==3.0.4
 requests>=2.32.0 # not directly required, pinned by Snyk to avoid a vulnerability
 cryptography>=42.0.8 # not directly required, pinned by Snyk to avoid a vulnerability
 certifi>=2024.7.4 # not directly required, pinned by Snyk to avoid a vulnerability
+zipp>=3.19.1 # not directly required, pinned by Snyk to avoid a vulnerability
diff --git a/doc/requirements.txt b/doc/requirements.txt
index 3bd5c35f82..62cdd83583 100644
--- a/doc/requirements.txt
+++ b/doc/requirements.txt
@@ -5,3 +5,4 @@ urllib3>=1.26.17 # not directly required, pinned by Snyk to avoid a vulnerabilit
 idna>=3.7 # not directly required, pinned by Snyk to avoid a vulnerability
 cryptography>=42.0.8 # not directly required, pinned by Snyk to avoid a vulnerability
 certifi>=2024.7.4 # not directly required, pinned by Snyk to avoid a vulnerability
+zipp>=3.19.1 # not directly required, pinned by Snyk to avoid a vulnerability
diff --git a/docker/config/requirements.txt b/docker/config/requirements.txt
index 10613cc60c..a4e4cd1720 100644
--- a/docker/config/requirements.txt
+++ b/docker/config/requirements.txt
@@ -6,3 +6,4 @@ urllib3>=1.26.17 # not directly required, pinned by Snyk to avoid a vulnerabilit
 idna>=3.7 # not directly required, pinned by Snyk to avoid a vulnerability
 cryptography>=42.0.8 # not directly required, pinned by Snyk to avoid a vulnerability
 certifi>=2024.7.4 # not directly required, pinned by Snyk to avoid a vulnerability
+zipp>=3.19.1 # not directly required, pinned by Snyk to avoid a vulnerability
diff --git a/docker/qgisserver/requirements.txt b/docker/qgisserver/requirements.txt
index 3bd5c35f82..62cdd83583 100644
--- a/docker/qgisserver/requirements.txt
+++ b/docker/qgisserver/requirements.txt
@@ -5,3 +5,4 @@ urllib3>=1.26.17 # not directly required, pinned by Snyk to avoid a vulnerabilit
 idna>=3.7 # not directly required, pinned by Snyk to avoid a vulnerability
 cryptography>=42.0.8 # not directly required, pinned by Snyk to avoid a vulnerability
 certifi>=2024.7.4 # not directly required, pinned by Snyk to avoid a vulnerability
+zipp>=3.19.1 # not directly required, pinned by Snyk to avoid a vulnerability
diff --git a/requirements.txt b/requirements.txt
index 3bd5c35f82..62cdd83583 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -5,3 +5,4 @@ urllib3>=1.26.17 # not directly required, pinned by Snyk to avoid a vulnerabilit
 idna>=3.7 # not directly required, pinned by Snyk to avoid a vulnerability
 cryptography>=42.0.8 # not directly required, pinned by Snyk to avoid a vulnerability
 certifi>=2024.7.4 # not directly required, pinned by Snyk to avoid a vulnerability
+zipp>=3.19.1 # not directly required, pinned by Snyk to avoid a vulnerability