Merge pull request #5 from rendiffdev/snyk-fix-89f261b6be157eba06d0016b59d5c232

alokemajumder · web-flow · commit dff589d7e492 · 2025-07-08T22:01:52.000+05:30
[Snyk] Fix for 29 vulnerabilities
diff --git a/requirements-genai.txt b/requirements-genai.txt
@@ -2,13 +2,13 @@
 # Install only if GenAI features are enabled
 
 # Core AI/ML Libraries
-torch>=2.0.0
+torch>=2.7.1
 torchvision>=0.15.0
 torchaudio>=2.0.0
 
 # Computer Vision and Image Processing
 opencv-python>=4.8.0
-pillow>=9.5.0
+pillow>=10.3.0
 scikit-image>=0.20.0
 
 # Video Processing and Analysis
@@ -23,7 +23,7 @@ gfpgan>=1.3.8
 realesrgan>=0.3.0
 
 # Video understanding models
-transformers>=4.30.0
+transformers>=4.52.0
 timm>=0.9.0
 einops>=0.6.0
 
@@ -54,4 +54,12 @@ nvidia-ml-py>=11.495.46
 
 # Development and testing (optional)
 pytest>=7.0.0
-pytest-asyncio>=0.21.0
+pytest-asyncio>=0.21.0
+numpy>=1.22.2 # not directly required, pinned by Snyk to avoid a vulnerability
+protobuf>=4.25.8 # not directly required, pinned by Snyk to avoid a vulnerability
+requests>=2.32.4 # not directly required, pinned by Snyk to avoid a vulnerability
+setuptools>=78.1.1 # not directly required, pinned by Snyk to avoid a vulnerability
+urllib3>=2.5.0 # not directly required, pinned by Snyk to avoid a vulnerability
+werkzeug>=3.0.6 # not directly required, pinned by Snyk to avoid a vulnerability
+wheel>=0.38.0 # not directly required, pinned by Snyk to avoid a vulnerability
+zipp>=3.19.1 # not directly required, pinned by Snyk to avoid a vulnerability
