From 7a30250d7bcf104695e30a1de0915c7ccc01210a Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Mon, 28 Oct 2024 06:00:42 +0000
Subject: [PATCH] fix: server/requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-8309091
- https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-8309092
---
 server/requirements.txt | 1 +
 1 file changed, 1 insertion(+)
 mode change 100755 => 100644 server/requirements.txt

diff --git a/server/requirements.txt b/server/requirements.txt
old mode 100755
new mode 100644
index 12a741f..8fcb79f
--- a/server/requirements.txt
+++ b/server/requirements.txt
@@ -14,3 +14,4 @@ six==1.16.0
 sseclient==0.0.27
 torch==2.0.0
 transformers==4.27.1
+werkzeug>=3.0.6 # not directly required, pinned by Snyk to avoid a vulnerability