From 6d9379342990b8e6f0d49d73cdc55a9fcf1e81d1 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sat, 31 Jan 2026 23:31:12 +0000
Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-PROTOBUF-15090738
- https://snyk.io/vuln/SNYK-PYTHON-TORCH-15123585
---
 requirements.txt | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/requirements.txt b/requirements.txt
index be19810..3feae15 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -44,7 +44,7 @@ packaging==23.1
 pandas==2.0.1
 pathtools==0.1.2
 Pillow==9.5.0
-protobuf==4.23.1
+protobuf==6.33.5
 psutil==5.9.5
 pyarrow==12.0.0
 pyre-extensions==0.0.29
@@ -64,7 +64,7 @@ smmap==5.0.0
 sympy==1.12
 threadpoolctl==3.1.0
 tokenizers==0.13.3
-torch==2.0.1
+torch==2.10.0
 torchaudio==2.0.2
 torchvision==0.15.2
 tqdm==4.65.0