[Snyk] Security upgrade tensorflow from 1.14.0 to 2.5.3

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `pip` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • requirements.txt

⚠️ Warning

python-socketio 5.3.0 requires bidict, which is not installed.

Vulnerabilities that will be fixed

By pinning:

Severity	Priority Score (*)	Issue	Upgrade	Breaking Change	Exploit Maturity
	726/1000 Why? Recently disclosed, Has a fix available, CVSS 8.8	Integer Overflow SNYK-PYTHON-TENSORFLOW-2395339	tensorflow: 1.14.0 -> 2.5.3	No	No Known Exploit
	726/1000 Why? Recently disclosed, Has a fix available, CVSS 8.8	Out-of-Bounds SNYK-PYTHON-TENSORFLOW-2395342	tensorflow: 1.14.0 -> 2.5.3	No	No Known Exploit
	666/1000 Why? Recently disclosed, Has a fix available, CVSS 7.6	Integer Overflow SNYK-PYTHON-TENSORFLOW-2395345	tensorflow: 1.14.0 -> 2.5.3	No	No Known Exploit
	666/1000 Why? Recently disclosed, Has a fix available, CVSS 7.6	Use After Free SNYK-PYTHON-TENSORFLOW-2395351	tensorflow: 1.14.0 -> 2.5.3	No	No Known Exploit
	501/1000 Why? Recently disclosed, Has a fix available, CVSS 4.3	Denial of Service (DoS) SNYK-PYTHON-TENSORFLOW-2395366	tensorflow: 1.14.0 -> 2.5.3	No	No Known Exploit
	661/1000 Why? Recently disclosed, Has a fix available, CVSS 7.5	Buffer Overflow SNYK-PYTHON-TENSORFLOW-2395371	tensorflow: 1.14.0 -> 2.5.3	No	No Known Exploit
	611/1000 Why? Recently disclosed, Has a fix available, CVSS 6.5	Denial of Service (DoS) SNYK-PYTHON-TENSORFLOW-2395377	tensorflow: 1.14.0 -> 2.5.3	No	No Known Exploit
	611/1000 Why? Recently disclosed, Has a fix available, CVSS 6.5	Denial of Service (DoS) SNYK-PYTHON-TENSORFLOW-2395380	tensorflow: 1.14.0 -> 2.5.3	No	No Known Exploit
	611/1000 Why? Recently disclosed, Has a fix available, CVSS 6.5	Denial of Service (DoS) SNYK-PYTHON-TENSORFLOW-2395383	tensorflow: 1.14.0 -> 2.5.3	No	No Known Exploit
	611/1000 Why? Recently disclosed, Has a fix available, CVSS 6.5	NULL Pointer Dereference SNYK-PYTHON-TENSORFLOW-2395386	tensorflow: 1.14.0 -> 2.5.3	No	No Known Exploit
	611/1000 Why? Recently disclosed, Has a fix available, CVSS 6.5	Denial of Service (DoS) SNYK-PYTHON-TENSORFLOW-2395390	tensorflow: 1.14.0 -> 2.5.3	No	No Known Exploit
	611/1000 Why? Recently disclosed, Has a fix available, CVSS 6.5	Denial of Service (DoS) SNYK-PYTHON-TENSORFLOW-2395393	tensorflow: 1.14.0 -> 2.5.3	No	No Known Exploit
	611/1000 Why? Recently disclosed, Has a fix available, CVSS 6.5	Integer Overflow or Wraparound SNYK-PYTHON-TENSORFLOW-2395400	tensorflow: 1.14.0 -> 2.5.3	No	No Known Exploit
	611/1000 Why? Recently disclosed, Has a fix available, CVSS 6.5	Denial of Service (DoS) SNYK-PYTHON-TENSORFLOW-2395404	tensorflow: 1.14.0 -> 2.5.3	No	No Known Exploit
	661/1000 Why? Recently disclosed, Has a fix available, CVSS 7.5	Denial of Service (DoS) SNYK-PYTHON-TENSORFLOW-2395408	tensorflow: 1.14.0 -> 2.5.3	No	No Known Exploit
	551/1000 Why? Recently disclosed, Has a fix available, CVSS 5.3	NULL Pointer Dereference SNYK-PYTHON-TENSORFLOW-2395413	tensorflow: 1.14.0 -> 2.5.3	No	No Known Exploit
	666/1000 Why? Recently disclosed, Has a fix available, CVSS 7.6	Integer overflow SNYK-PYTHON-TENSORFLOW-2395416	tensorflow: 1.14.0 -> 2.5.3	No	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Some vulnerabilities couldn't be fully fixed and so Snyk will still find them when the project is tested again. This may be because the vulnerability existed within more than one direct dependency, but not all of the effected dependencies could be upgraded.

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic