Does urllib3 dependency need to be so strict?

[dnwe]

The urllib3 dep was recently bumped to urllib3 = "^2.2.1" which basically forces any consumer of sysdig-sdk-python to also pull in the most recent release (2.2.1) of urllib3 which can be problematic when trying to co-exist with other dependencies in an application.

As this package isn't really using urllib3 directly and is just consuming it via requests, Is there a specific reason not to just match the permissive range (urllib3>=1.21.1,<3) adopted by requests?