diff --git a/poetry.lock b/poetry.lock
index 60cd9a9..2f2143f 100644
--- a/poetry.lock
+++ b/poetry.lock
@@ -329,14 +329,14 @@ test = ["pytest", "pytest-cov", "pytest-xdist"]
 
 [[package]]
 name = "bandit"
-version = "1.7.10"
+version = "1.9.4"
 description = "Security oriented static analyser for python code."
 optional = false
-python-versions = ">=3.8"
+python-versions = ">=3.10"
 groups = ["dev"]
 files = [
-    {file = "bandit-1.7.10-py3-none-any.whl", hash = "sha256:665721d7bebbb4485a339c55161ac0eedde27d51e638000d91c8c2d68343ad02"},
-    {file = "bandit-1.7.10.tar.gz", hash = "sha256:59ed5caf5d92b6ada4bf65bc6437feea4a9da1093384445fed4d472acc6cff7b"},
+    {file = "bandit-1.9.4-py3-none-any.whl", hash = "sha256:f89ffa663767f5a0585ea075f01020207e966a9c0f2b9ef56a57c7963a3f6f8e"},
+    {file = "bandit-1.9.4.tar.gz", hash = "sha256:b589e5de2afe70bd4d53fa0c1da6199f4085af666fde00e8a034f152a52cd628"},
 ]
 
 [package.dependencies]
@@ -6077,4 +6077,4 @@ propcache = ">=0.2.1"
 [metadata]
 lock-version = "2.1"
 python-versions = ">=3.10,<3.12"
-content-hash = "21d450224e721d34401504c75da662910133a24cf11a26c3db280e0f68c417b3"
+content-hash = "43f4e7a52c1e6b598d8abb5095f1b06fc5b86da96eddeac7e51e1614e880e173"
diff --git a/pyproject.toml b/pyproject.toml
index 8bae2b3..e37ca2a 100644
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -59,7 +59,7 @@ ruff = "0.12.5" # linting
 autoflake = "2.3.3" # remove unused imports
 pyupgrade = "3.21.2" # upgrade syntax to newer versions
 pre-commit = "4.5.1" # pre-commit hooks
-bandit = "1.7.10" # security linter
+bandit = "1.9.4" # security linter
 radon = "6.0.1" # code metrics (human)
 xenon = "0.9.3" # code metrics (machine)