feat: fix security warnings in torchft (#69)

c-p-i-o · web-flow · commit e0f76e1b40a4 · 2025-01-13T13:49:34.000-08:00
Summary:
Update jinja to address dependabot reported alerts.
1. Jinja has a sandbox breakout through malicious filename
2. Jinja has a sandbox breakout through indirect reference to format
   method.

Test Plan:
Test on github
diff --git a/docs/requirements.txt b/docs/requirements.txt
@@ -5,5 +5,5 @@ matplotlib
 papermill
 ipykernel
 ipython_genutils
-jinja2==3.1.4
+jinja2==3.1.5
 sphinx-autobuild
