chore: Upgrade langchain-core and jinja

NVIDIA / NeMo-Guardrails

NeMo Guardrails is an open-source toolkit for easily adding programmable guardrails to LLM-based conversational systems.

Other

4.2k stars 399 forks source link

Closed Pouyanpi closed 2 months ago

Pouyanpi commented 2 months ago

Because of known vulnerabilities, Jinja2 and Langchain have been upgraded.

The current version of the Langchain package contains several critical and high vulnerabilities. It must be upgraded to at least version 0.2.14.
The current Jinja2 version exposes a high-severity vulnerability that is fixed in version 3.1.4.