From d6a751cab11aa7dbe4ab363a0d802e7254241187 Mon Sep 17 00:00:00 2001
From: "snyk-io[bot]" <141718529+snyk-io[bot]@users.noreply.github.com>
Date: Wed, 19 Nov 2025 07:07:48 +0000
Subject: [PATCH] fix: requirements_versions.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-TORCH-13052971
---
 requirements_versions.txt | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/requirements_versions.txt b/requirements_versions.txt
index 9147db47f1..38eebdc93e 100644
--- a/requirements_versions.txt
+++ b/requirements_versions.txt
@@ -21,4 +21,5 @@ tokenizers==0.19.1
 packaging==24.1
 rembg==2.0.57
 groundingdino-py==0.4.0
-segment_anything==1.0
\ No newline at end of file
+segment_anything==1.0
+torch>=2.9.0 # not directly required, pinned by Snyk to avoid a vulnerability
\ No newline at end of file