From c183080e07565c85ef964df23495f9838476c7eb Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Wed, 4 Feb 2026 01:57:26 +0000
Subject: [PATCH 1/2] fix: framework/requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-PROTOBUF-15090738
---
 framework/requirements.txt | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/framework/requirements.txt b/framework/requirements.txt
index a16b80fd3f3..63864d1b572 100644
--- a/framework/requirements.txt
+++ b/framework/requirements.txt
@@ -59,7 +59,7 @@ numpy==1.26.0
 openapi-spec-validator==0.2.6
 packaging==20.9
 pathlib==1.0.1
-protobuf==3.19.6
+protobuf==6.33.5
 proto-plus==1.19.0
 psutil==5.9.0
 pyarrow==13.0.0

From 131164b5656824f93beb141227a328832e929569 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Wed, 4 Feb 2026 17:17:24 +0000
Subject: [PATCH 2/2] fix: framework/requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-PROTOBUF-15090738