Skip to content

Commit 9a78f4e

Browse files
snyk-botsnyk-bot
committed
fix: requirements-genai.txt to reduce vulnerabilities
The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321964 - https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321966 - https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321970 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-5918878 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6043904 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6182918 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6219984 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6219986 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6514866 - https://snyk.io/vuln/SNYK-PYTHON-PROTOBUF-10364902 - https://snyk.io/vuln/SNYK-PYTHON-REQUESTS-10305723 - https://snyk.io/vuln/SNYK-PYTHON-REQUESTS-6928867 - https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-3180412 - https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-7448482 - https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-9964606 - https://snyk.io/vuln/SNYK-PYTHON-TORCH-6619806 - https://snyk.io/vuln/SNYK-PYTHON-TORCH-6649934 - https://snyk.io/vuln/SNYK-PYTHON-TORCH-9634167 - https://snyk.io/vuln/SNYK-PYTHON-TORCH-9788071 - https://snyk.io/vuln/SNYK-PYTHON-TRANSFORMERS-10658536 - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-10390193 - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-10390194 - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-7267250 - https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-6035177 - https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-6808933 - https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-8309091 - https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-8309092 - https://snyk.io/vuln/SNYK-PYTHON-WHEEL-3180413 - https://snyk.io/vuln/SNYK-PYTHON-ZIPP-7430899
1 parent 835ed09 commit 9a78f4e

File tree

1 file changed

+12
-4
lines changed

1 file changed

+12
-4
lines changed

requirements-genai.txt

Lines changed: 12 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -2,13 +2,13 @@
22
# Install only if GenAI features are enabled
33

44
# Core AI/ML Libraries
5-
torch>=2.0.0
5+
torch>=2.7.1
66
torchvision>=0.15.0
77
torchaudio>=2.0.0
88

99
# Computer Vision and Image Processing
1010
opencv-python>=4.8.0
11-
pillow>=9.5.0
11+
pillow>=10.3.0
1212
scikit-image>=0.20.0
1313

1414
# Video Processing and Analysis
@@ -23,7 +23,7 @@ gfpgan>=1.3.8
2323
realesrgan>=0.3.0
2424

2525
# Video understanding models
26-
transformers>=4.30.0
26+
transformers>=4.52.0
2727
timm>=0.9.0
2828
einops>=0.6.0
2929

@@ -54,4 +54,12 @@ nvidia-ml-py>=11.495.46
5454

5555
# Development and testing (optional)
5656
pytest>=7.0.0
57-
pytest-asyncio>=0.21.0
57+
pytest-asyncio>=0.21.0
58+
numpy>=1.22.2 # not directly required, pinned by Snyk to avoid a vulnerability
59+
protobuf>=4.25.8 # not directly required, pinned by Snyk to avoid a vulnerability
60+
requests>=2.32.4 # not directly required, pinned by Snyk to avoid a vulnerability
61+
setuptools>=78.1.1 # not directly required, pinned by Snyk to avoid a vulnerability
62+
urllib3>=2.5.0 # not directly required, pinned by Snyk to avoid a vulnerability
63+
werkzeug>=3.0.6 # not directly required, pinned by Snyk to avoid a vulnerability
64+
wheel>=0.38.0 # not directly required, pinned by Snyk to avoid a vulnerability
65+
zipp>=3.19.1 # not directly required, pinned by Snyk to avoid a vulnerability

0 commit comments

Comments
 (0)