From b43a451d8a482593321f9236654870e781dc37f6 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Wed, 24 Sep 2025 08:50:56 +0000
Subject: [PATCH] fix: requirements/optional.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-KERAS-12927178
- https://snyk.io/vuln/SNYK-PYTHON-KERAS-12927179
---
 requirements/optional.txt | 1 +
 1 file changed, 1 insertion(+)

diff --git a/requirements/optional.txt b/requirements/optional.txt
index 567257297aa82..0be1005f326ea 100644
--- a/requirements/optional.txt
+++ b/requirements/optional.txt
@@ -26,3 +26,4 @@ pyspark
 autoflake # for backend generation
 snakeviz # for profiling
 cryptography
+keras>=3.11.3 # not directly required, pinned by Snyk to avoid a vulnerability