From 7f661fe38fdcacf7105b5c51db5fb87252a3170d Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 16 Jan 2025 05:50:09 +0000
Subject: [PATCH 1/3] fix: requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-TRANSFORMERS-8400820
- https://snyk.io/vuln/SNYK-PYTHON-TRANSFORMERS-8400822
- https://snyk.io/vuln/SNYK-PYTHON-TRANSFORMERS-8400823
---
 requirements.txt | 1 +
 1 file changed, 1 insertion(+)

diff --git a/requirements.txt b/requirements.txt
index ad0f6f905..52cb6d24b 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -17,3 +17,4 @@ boto3
 langchain-openai
 langchain-community
 langchain-google-genai
+transformers>=4.48.0 # not directly required, pinned by Snyk to avoid a vulnerability

From 67b943596b384e9c57d237ced8e59d5e7418b0b3 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 8 May 2025 06:57:28 +0000
Subject: [PATCH 2/3] fix: requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-9964606
---
 requirements.txt | 1 +
 1 file changed, 1 insertion(+)

diff --git a/requirements.txt b/requirements.txt
index 52cb6d24b..1aa32758e 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -18,3 +18,4 @@ langchain-openai
 langchain-community
 langchain-google-genai
 transformers>=4.48.0 # not directly required, pinned by Snyk to avoid a vulnerability
+setuptools>=78.1.1 # not directly required, pinned by Snyk to avoid a vulnerability

From 0068674443c8744e0042c42afcc3d84f52649f81 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 2 Oct 2025 07:48:31 +0000
Subject: [PATCH 3/3] fix: requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-TORCH-13052818
- https://snyk.io/vuln/SNYK-PYTHON-TORCH-13052821
- https://snyk.io/vuln/SNYK-PYTHON-TORCH-13052968
- https://snyk.io/vuln/SNYK-PYTHON-TORCH-13052977
- https://snyk.io/vuln/SNYK-PYTHON-TORCH-13052994
---
 requirements.txt | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/requirements.txt b/requirements.txt
index 1aa32758e..37677cef8 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -8,7 +8,7 @@ sentence_transformers==2.2.2
 Pillow
 fastapi
 PyPDF2
-torch==2.0.1
+torch==2.8.0
 pydantic
 uvicorn
 sse-starlette