Bump requests from 2.32.5 to 2.33.0

.github/workflows/static_code_checks.yaml

@@ -58,20 +58,9 @@ jobs:
           # CVE-2026-26007 is a cryptography vulnerability that requires cryptography>=46.0.5, but flwr (flower)
           # requires cryptography<45.0.0, blocking the upgrade.
           # GHSA-rf74-v2fm-23pw, CVE-2026-33230, CVE-2026-33231: NLTK vulnerabilities without a fix yet.
+          # CVE-2026-4539 pygments vulnerability with no fix yet
           ignore-vulns: |
-            GHSA-3749-ghw9-m3mg
-            GHSA-887c-mr87-cxwp
-            CVE-2025-53000
-            CVE-2026-21851
-            CVE-2024-55459
-            CVE-2025-9906
-            CVE-2025-12058
-            CVE-2025-12060
-            CVE-2026-0994
-            CVE-2026-26007
-            GHSA-rf74-v2fm-23pw
-            CVE-2026-33230
-            CVE-2026-33231
+            CVE-2026-4539
 
       # Deleting some temporary files and useless folders to free up space
       # Deleting /usr/share/dotnet should clear ~4GB of space.

pyproject.toml

@@ -19,7 +19,7 @@ dependencies = [
     "pandas>=2.0,<3.0",
     "flwr>=1.18.0,<1.19.0",
     "opacus>=1.3.0,<2.0.0",
-    "torch==2.6.0",
+    "torch>=2.6.0",
     "pyarrow>=17.0.0,<18.0.0",  # Pin as there is potential ACE with v0.14.2 that is resolved in v17.0
     "dp-accounting>=0.4.3,<0.5.0",
     "torchmetrics>=1.3.0,<2.0.0",
@@ -57,7 +57,7 @@ dev = [
     "tensorflow>=2.15,<2.16",
     "keras>=2.15.0,<2.16",
     "nltk>=3.8.0,<4.0.0",
-    "torchvision==0.21.0",
+    "torchvision>=0.21.0",
     "torchinfo>=1.8.0,<2.0.0",
     "ipykernel>=6.25.1,<7.0.0",
     "pytest-test-groups>=1.2.1,<2.0.0",