From 0ddd24fae922801a03d13a1344f76bf56979647f Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Mon, 15 Dec 2025 04:15:22 +0000
Subject: [PATCH] fix: demo/tf-requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-TORNADO-14400977
- https://snyk.io/vuln/SNYK-PYTHON-TORNADO-14400978
- https://snyk.io/vuln/SNYK-PYTHON-TORNADO-14400979
---
 demo/tf-requirements.txt | 1 +
 1 file changed, 1 insertion(+)

diff --git a/demo/tf-requirements.txt b/demo/tf-requirements.txt
index f16f3aa066..666fb0a618 100644
--- a/demo/tf-requirements.txt
+++ b/demo/tf-requirements.txt
@@ -1,2 +1,3 @@
 -e git+https://github.com/mindee/doctr.git#egg=python-doctr[tf]
 streamlit>=1.0.0
+tornado>=6.5.3 # not directly required, pinned by Snyk to avoid a vulnerability