From 418f43dc4b5d0519d08d13e505a0657a7b6a6d98 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 3 Feb 2026 23:06:16 +0000
Subject: [PATCH] fix: requirements/requirements_torch.txt to reduce
 vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-PROTOBUF-15090738
- https://snyk.io/vuln/SNYK-PYTHON-TORCH-15123585
---
 requirements/requirements_torch.txt | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/requirements/requirements_torch.txt b/requirements/requirements_torch.txt
index 6737ebd0..59bab8d6 100644
--- a/requirements/requirements_torch.txt
+++ b/requirements/requirements_torch.txt
@@ -2,7 +2,8 @@ matplotlib>=3.5.2
 opencv-python
 pillow>=10.0.1 # not directly required, pinned by Snyk to avoid a vulnerability
 tensorboard
-torch>=1.12.0
+torch>=2.10.0
 torchvision>=0.13.0
 werkzeug>=3.0.1 # not directly required, pinned by Snyk to avoid a vulnerability
 wheel>=0.38.0 # not directly required, pinned by Snyk to avoid a vulnerability
+protobuf>=6.33.5 # not directly required, pinned by Snyk to avoid a vulnerability