From a11b147def90ff6194413bcde5940fca4b91d5d0 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sun, 19 Feb 2023 21:48:53 +0000
Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321964
- https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321966
- https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321970
- https://snyk.io/vuln/SNYK-PYTHON-PROTOBUF-3031740
- https://snyk.io/vuln/SNYK-PYTHON-RAY-2308017
---
 requirements.txt | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/requirements.txt b/requirements.txt
index 773415ab..acf59952 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -8,11 +8,11 @@ fuzzywuzzy==0.18.0
 grpcio==1.41.0
 idna==3.2; python_version >= '3'
 msgpack==1.0.2
-numpy==1.21.2; python_version < '3.9'
-protobuf==3.18.0
+numpy==1.22.2; python_version < '3.9'
+protobuf==3.18.3
 psutil==5.8.0
 pyyaml==5.4.1; python_version >= '2.7' and python_version not in '3.0, 3.1, 3.2, 3.3, 3.4, 3.5'
-ray==1.6.0
+ray==1.8.0
 redis==3.5.3; python_version >= '2.7' and python_version not in '3.0, 3.1, 3.2, 3.3, 3.4'
 requests==2.26.0
 six==1.16.0; python_version >= '2.7' and python_version not in '3.0, 3.1, 3.2, 3.3'