Updated dependency versions with outstanding CSVs

[awherr]

This repo was recently moved from Granulate to Intel in GitHub. In the processes, IPASS scans were enabled and several CVEs in dependency versions were identified. This PR upgrades the packages with the versions that mitigate these CVEs.

Description

The changes involve in bumping the versions of dependent modules to version where CVEs are resolved. Which are as follows:
CVE CVSS Severity Package Version Fixed Version SLA Date
CVE-2023-49797 8.8 High. pyinstaller 4.6 5.13.1 2024-03-08
CVE-2024-6345 8.8 High setuptools 65.5.1 70.0.0 2024-10-13
CVE-2024-35195 5.6 Moderate requests 2.31.0 2.32.0 2024-08-19
CVE-2024-21503 5.3 Moderate black 23.3.0 24.3.0 2024-06-18

Related Issue

Motivation and Context

This change is required by the Intel open source repo maintainers. The general policy is to have all outstanding CVEs mitigated or dispositioned (through an exception) with 90 days of its detection. Failure to do so causes repos to be archived.

How Has This Been Tested?

This is being test with existing unit test

Screenshots

Checklist:

• I have read the CONTRIBUTING document.
• [N/A] I have updated the relevant documentation.
• [N/A] I have added tests for new logic.

[awherr]

Broke these CVE fixes into specific PRs