From 7f0acababbb2a4380e9e9bdfb0075a9e5b1020bf Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Mon, 14 Jul 2025 05:35:27 +0000
Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-PROTOBUF-10364902
- https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-10390193
- https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-10390194
---
 requirements.txt | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/requirements.txt b/requirements.txt
index 3d6bcf4..397d606 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -30,7 +30,7 @@ numpy==1.19.5
 oauthlib==3.1.1
 opt-einsum==3.3.0
 pkg-resources==0.0.0
-protobuf==3.17.2
+protobuf==4.25.8
 pyasn1==0.4.8
 pyasn1-modules==0.2.8
 requests==2.25.1
@@ -49,7 +49,7 @@ tensorflow-tensorboard==1.5.1
 termcolor==1.1.0
 threadpoolctl==2.1.0
 typing-extensions==3.7.4.3
-urllib3==1.26.5
+urllib3==2.5.0
 Werkzeug==2.0.1
 wrapt==1.12.1
 zipp==3.4.1