From 313b17247395bf3f1d8eb291c6b93909f6adda2e Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Fri, 6 Feb 2026 06:54:25 +0000
Subject: [PATCH] fix: Python/Python_Library_Downloader/Unix/requirements.txt
 to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-NBCONVERT-14463457
- https://snyk.io/vuln/SNYK-PYTHON-PROTOBUF-15090738
---
 Python/Python_Library_Downloader/Unix/requirements.txt | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/Python/Python_Library_Downloader/Unix/requirements.txt b/Python/Python_Library_Downloader/Unix/requirements.txt
index 4ca33defc..0092e3373 100644
--- a/Python/Python_Library_Downloader/Unix/requirements.txt
+++ b/Python/Python_Library_Downloader/Unix/requirements.txt
@@ -78,4 +78,6 @@ tensorflow-datasets==1.2.0
 tensorflow-hub==0.7.0
 tensorflow-metadata==0.14.0s
 tensorflow-probability==0.7
-tf-agents==0.3.0rc0
\ No newline at end of file
+tf-agents==0.3.0rc0
+nbconvert>=7.17.0 # not directly required, pinned by Snyk to avoid a vulnerability
+protobuf>=5.29.6 # not directly required, pinned by Snyk to avoid a vulnerability
\ No newline at end of file