From 20e920a3b0a3aac4ff156b546479b6808d5d5824 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 5 Feb 2026 07:29:42 +0000 Subject: [PATCH 1/2] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-ZIPP-7430899 --- requirements.txt | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) mode change 100755 => 100644 requirements.txt diff --git a/requirements.txt b/requirements.txt old mode 100755 new mode 100644 index 0561978..06e04d4 --- a/requirements.txt +++ b/requirements.txt @@ -2,4 +2,5 @@ matplotlib optuna shap sklearn -xgboost \ No newline at end of file +xgboost +zipp>=3.19.1 # not directly required, pinned by Snyk to avoid a vulnerability \ No newline at end of file From 84e7aa6ee85380831494f757e12f81e62695d3ef Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 6 Feb 2026 18:36:44 +0000 Subject: [PATCH 2/2] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-ZIPP-7430899