From 0033cc68c261ce49be0adfb26ab4664b965ed093 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Mon, 22 Jun 2026 08:44:16 +0000
Subject: [PATCH] fix: manual-testing-sandbox/requirements.txt to reduce
 vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-JUPYTERSERVER-17391532
- https://snyk.io/vuln/SNYK-PYTHON-NLTK-17391908
---
 manual-testing-sandbox/requirements.txt | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/manual-testing-sandbox/requirements.txt b/manual-testing-sandbox/requirements.txt
index 787755f1d4b..9720b635a5a 100644
--- a/manual-testing-sandbox/requirements.txt
+++ b/manual-testing-sandbox/requirements.txt
@@ -21,7 +21,7 @@ seaborn==0.11.2
 plotly==5.3.1
 
 # Natural Language Processing
-nltk==3.6.3
+nltk==3.9.4
 spacy==3.1.2
 
 # Deep Learning
@@ -54,4 +54,5 @@ aiohttp==3.7.4
 # Others
 jupyter==1.0.0
 gunicorn==20.1.0
-psycopg2==2.9.1
\ No newline at end of file
+psycopg2==2.9.1
+jupyter-server>=2.20.0 # not directly required, pinned by Snyk to avoid a vulnerability
\ No newline at end of file