profile
viewpoint
If you are wondering where the data of this site comes from, please visit https://api.github.com/users/Priyanshu1012/events. GitMemory does not store any data, but only uses NGINX to cache data for a period of time. The idea behind GitMemory is simply to give users a better reading experience.
Priyanshu Khandelwal Priyanshu1012 I'm an undergraduate aspiring engineer. I have interested in app development. Currently I'm working on react native and django.

Priyanshu1012/Code-Overflow 0

Awesome Coding Problems

Priyanshu1012/guide-to-HF 0

A guide for super-newbie coders to Hacktoberfest written by super-newbie coders

Priyanshu1012/HacktoberFest 0

:octocat: Simply add your details and Get a chance to earn a free tshirt! ✅

Priyanshu1012/Jeev-Seva-App 0

It is web-based application jeev seva i.e helping animals for saving them. It is basically helping the animals in case of any injuries and in this any person can login or register and can sent an email descriptive about the animals disease etc. to any doctor so that doctor can provide an emergency treatment to an animal.

PR opened Priyanshu1012/Jeev-Seva-App

Bump rsa from 4.6 to 4.7

Bumps rsa from 4.6 to 4.7. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/sybrenstuvel/python-rsa/blob/main/CHANGELOG.md">rsa's changelog</a>.</em></p> <blockquote> <h2>Version 4.7 - released 2021-01-10</h2> <ul> <li>Fix <a href="https://github-redirect.dependabot.com/sybrenstuvel/python-rsa/issues/165">#165</a>: CVE-2020-25658 - Bleichenbacher-style timing oracle in PKCS#1 v1.5 decryption code</li> <li>Add padding length check as described by PKCS#1 v1.5 (Fixes <a href="https://github-redirect.dependabot.com/sybrenstuvel/python-rsa/issues/164">#164</a>)</li> <li>Reuse of blinding factors to speed up blinding operations. Fixes <a href="https://github-redirect.dependabot.com/sybrenstuvel/python-rsa/issues/162">#162</a>.</li> <li>Declare & test support for Python 3.9</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/sybrenstuvel/python-rsa/commit/fa3282a47457254385f2313c2eceaad4b06186a4"><code>fa3282a</code></a> Bumped version to 4.7</li> <li><a href="https://github.com/sybrenstuvel/python-rsa/commit/a364e82caa4cb1fc51400a8c628fb48867fb4362"><code>a364e82</code></a> Marked version 4.7 as released</li> <li><a href="https://github.com/sybrenstuvel/python-rsa/commit/539c54aada3922757099ce1911a28c46e8e81a10"><code>539c54a</code></a> Fix <a href="https://github-redirect.dependabot.com/sybrenstuvel/python-rsa/issues/170">#170</a>: mistake in examples of documentation</li> <li><a href="https://github.com/sybrenstuvel/python-rsa/commit/b81e3171e9f870892e6b8a894db6d00ecd93f544"><code>b81e317</code></a> Declare support for and test Python 3.9</li> <li><a href="https://github.com/sybrenstuvel/python-rsa/commit/06ec1ea1cc7be6034144bd06f07c35eb9d1b4953"><code>06ec1ea</code></a> Fix <a href="https://github-redirect.dependabot.com/sybrenstuvel/python-rsa/issues/162">#162</a>: Blinding uses slow algorithm</li> <li><a href="https://github.com/sybrenstuvel/python-rsa/commit/341e5c4f939988bd472530441b6a02b625a30806"><code>341e5c4</code></a> Directly raise <code>DecryptionError</code> when crypto length is bad</li> <li><a href="https://github.com/sybrenstuvel/python-rsa/commit/f254895b02f0cb106f9ccee6d8dc6af1a27f0bd1"><code>f254895</code></a> Use <code>bytes.find()</code> instead of <code>bytes.index()</code></li> <li><a href="https://github.com/sybrenstuvel/python-rsa/commit/240b0d8910299f970921391ea9737cb64ec09208"><code>240b0d8</code></a> Add link to changelog</li> <li><a href="https://github.com/sybrenstuvel/python-rsa/commit/f878c374086e672e7806fdd18401ec6b71cfa960"><code>f878c37</code></a> Fix <a href="https://github-redirect.dependabot.com/sybrenstuvel/python-rsa/issues/164">#164</a>: Add padding length check as described by PKCS#1 v1.5</li> <li><a href="https://github.com/sybrenstuvel/python-rsa/commit/dae8ce0d85478e16f2368b2341632775313d41ed"><code>dae8ce0</code></a> Fix <a href="https://github-redirect.dependabot.com/sybrenstuvel/python-rsa/issues/165">#165</a>: CVE-2020-25658 - Bleichenbacher-style timing oracle</li> <li>Additional commits viewable in <a href="https://github.com/sybrenstuvel/python-rsa/compare/version-4.6...version-4.7">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+1 -1

0 comment

1 changed file

pr created time in 17 days

create barnchPriyanshu1012/Jeev-Seva-App

branch : dependabot/pip/rsa-4.7

created branch time in 17 days

delete branch Priyanshu1012/Jeev-Seva-App

delete branch : dependabot/pip/django-3.1.6

delete time in a month

PR closed Priyanshu1012/Jeev-Seva-App

Bump django from 3.1.2 to 3.1.6 dependencies

Bumps django from 3.1.2 to 3.1.6. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/django/django/commit/3235a7b80710e5c90bbb1d25a147c8d0eddc8198"><code>3235a7b</code></a> [3.1.x] Bumped version for 3.1.6 release.</li> <li><a href="https://github.com/django/django/commit/02e6592835b4559909aa3aaaf67988fef435f624"><code>02e6592</code></a> [3.1.x] Fixed CVE-2021-3281 -- Fixed potential directory-traversal via archiv...</li> <li><a href="https://github.com/django/django/commit/03a86784d0dbfc5890f5aaba2d2f29c1deb0009d"><code>03a8678</code></a> [3.1.x] Fixed GeoIPTest.test04_city() failure with the latest GeoIP2 database.</li> <li><a href="https://github.com/django/django/commit/a271d8c15cb73fde5e78d429b5d0c906eb300750"><code>a271d8c</code></a> [3.1.x] Modernized custom manager example</li> <li><a href="https://github.com/django/django/commit/82e1294602abd9d85fed114380bf81538c8b6f9e"><code>82e1294</code></a> [3.1.x] Fixed <a href="https://github-redirect.dependabot.com/django/django/issues/32391">#32391</a> -- Used CSS flex properties for changelist filter.</li> <li><a href="https://github.com/django/django/commit/b920945d0286673e5374dee60d329e5d2d1127cd"><code>b920945</code></a> [3.1.x] Fixed <a href="https://github-redirect.dependabot.com/django/django/issues/32388">#32388</a> -- Clarified QuerySet.bulk_update() caveat about duplica...</li> <li><a href="https://github.com/django/django/commit/fa203f17591d53178c28b20f9ad337812666445d"><code>fa203f1</code></a> [3.1.x] Fixed <a href="https://github-redirect.dependabot.com/django/django/issues/32348">#32348</a>, Refs <a href="https://github-redirect.dependabot.com/django/django/issues/29087">#29087</a> -- Corrected tutorial for updated deleting ...</li> <li><a href="https://github.com/django/django/commit/18adc89e50dca63b664a721ea9790279524b6db3"><code>18adc89</code></a> [3.1.x] Refs <a href="https://github-redirect.dependabot.com/django/django/issues/32372">#32372</a> -- Updated manager name in related objects reference docs.</li> <li><a href="https://github.com/django/django/commit/cc5ee23f74b765f35b4ba05a122eef576cedbb3b"><code>cc5ee23</code></a> [3.1.x] Fixed <a href="https://github-redirect.dependabot.com/django/django/issues/32372">#32372</a> -- Made examples in related objects reference docs consi...</li> <li><a href="https://github.com/django/django/commit/2a74248ecab64af6b899c14940fac44b1e8a15bb"><code>2a74248</code></a> [3.1.x] Fixed <a href="https://github-redirect.dependabot.com/django/django/issues/32371">#32371</a> -- Doc'd jquery.init.js dependency for admin widgets.</li> <li>Additional commits viewable in <a href="https://github.com/django/django/compare/3.1.2...3.1.6">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+1 -1

1 comment

1 changed file

dependabot[bot]

pr closed time in a month

pull request commentPriyanshu1012/Jeev-Seva-App

Bump django from 3.1.2 to 3.1.6

Superseded by #8.

dependabot[bot]

comment created time in a month

PR opened Priyanshu1012/Jeev-Seva-App

Bump django from 3.1.2 to 3.1.8

Bumps django from 3.1.2 to 3.1.8. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/django/django/commit/c4928c9115104d3d88a0ccb57e030f0b5f445ed8"><code>c4928c9</code></a> [3.1.x] Bumped version for 3.1.8 release.</li> <li><a href="https://github.com/django/django/commit/cca0d98118cccf9ae0c6dcf2d6c57fc50469fbf0"><code>cca0d98</code></a> [3.1.x] Fixed CVE-2021-28658 -- Fixed potential directory-traversal via uploa...</li> <li><a href="https://github.com/django/django/commit/6eb01cb0521a09003c42a3ab3ad7503ecede36be"><code>6eb01cb</code></a> [3.1.x] Fixed <a href="https://github-redirect.dependabot.com/django/django/issues/32576">#32576</a> -- Corrected dumpdata docs for passing model names to th...</li> <li><a href="https://github.com/django/django/commit/11d241dcf78842764fc3d0feac1a0b2bd78aa398"><code>11d241d</code></a> [3.1.x] Refs <a href="https://github-redirect.dependabot.com/django/django/issues/25735">#25735</a> -- Added tags/exclude_tags arguments to DiscoverRunner docs.</li> <li><a href="https://github.com/django/django/commit/4a10c312c7ff3945e77f9deab88f2bac5eb3794d"><code>4a10c31</code></a> [3.1.x] Added parallel argument to DiscoverRunner docs.</li> <li><a href="https://github.com/django/django/commit/c528c710070cc20fb5f14d5d4d09a2d08c9685d2"><code>c528c71</code></a> [3.1.x] Corrected DiscoverRunner.build_suite() signature.</li> <li><a href="https://github.com/django/django/commit/95ee8fecb53c27ef3a6f5feefb04d744dc8b894b"><code>95ee8fe</code></a> [3.1.x] Fixed <a href="https://github-redirect.dependabot.com/django/django/issues/32560">#32560</a> -- Fixed test runner with --pdb and --buffer on fail/error.</li> <li><a href="https://github.com/django/django/commit/b58b214856e8881a17b8435c71eaf2a988b1921a"><code>b58b214</code></a> [3.1.x] Fixed typo in docs/topics/testing/advanced.txt.</li> <li><a href="https://github.com/django/django/commit/0415ac5af97e51aeb77b6b4203e57456535a2c16"><code>0415ac5</code></a> [3.1.x] Fixed <a href="https://github-redirect.dependabot.com/django/django/issues/32536">#32536</a> -- Added links to BaseDetailView/BaseListView.get() meth...</li> <li><a href="https://github.com/django/django/commit/7c662b75f63cebef98f1a1925e408950d424ae57"><code>7c662b7</code></a> [3.1.x] Fixed typo in docs/ref/checks.txt.</li> <li>Additional commits viewable in <a href="https://github.com/django/django/compare/3.1.2...3.1.8">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+1 -1

0 comment

1 changed file

pr created time in a month

create barnchPriyanshu1012/Jeev-Seva-App

branch : dependabot/pip/django-3.1.8

created branch time in a month

PR opened Priyanshu1012/Jeev-Seva-App

Bump pygments from 2.7.1 to 2.7.4

Bumps pygments from 2.7.1 to 2.7.4. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/pygments/pygments/releases">pygments's releases</a>.</em></p> <blockquote> <h2>2.7.4</h2> <ul> <li> <p>Updated lexers:</p> <ul> <li> <p>Apache configurations: Improve handling of malformed tags (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1656">#1656</a>)</p> </li> <li> <p>CSS: Add support for variables (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1633">#1633</a>, <a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1666">#1666</a>)</p> </li> <li> <p>Crystal (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1650">#1650</a>, <a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1670">#1670</a>)</p> </li> <li> <p>Coq (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1648">#1648</a>)</p> </li> <li> <p>Fortran: Add missing keywords (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1635">#1635</a>, <a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1665">#1665</a>)</p> </li> <li> <p>Ini (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1624">#1624</a>)</p> </li> <li> <p>JavaScript and variants (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1647">#1647</a> -- missing regex flags, <a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1651">#1651</a>)</p> </li> <li> <p>Markdown (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1623">#1623</a>, <a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1617">#1617</a>)</p> </li> <li> <p>Shell</p> <ul> <li>Lex trailing whitespace as part of the prompt (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1645">#1645</a>)</li> <li>Add missing <code>in</code> keyword (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1652">#1652</a>)</li> </ul> </li> <li> <p>SQL - Fix keywords (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1668">#1668</a>)</p> </li> <li> <p>Typescript: Fix incorrect punctuation handling (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1510">#1510</a>, <a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1511">#1511</a>)</p> </li> </ul> </li> <li> <p>Fix infinite loop in SML lexer (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1625">#1625</a>)</p> </li> <li> <p>Fix backtracking string regexes in JavaScript/TypeScript, Modula2 and many other lexers (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1637">#1637</a>)</p> </li> <li> <p>Limit recursion with nesting Ruby heredocs (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1638">#1638</a>)</p> </li> <li> <p>Fix a few inefficient regexes for guessing lexers</p> </li> <li> <p>Fix the raw token lexer handling of Unicode (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1616">#1616</a>)</p> </li> <li> <p>Revert a private API change in the HTML formatter (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1655">#1655</a>) -- please note that private APIs remain subject to change!</p> </li> <li> <p>Fix several exponential/cubic-complexity regexes found by Ben Caller/Doyensec (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1675">#1675</a>)</p> </li> <li> <p>Fix incorrect MATLAB example (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1582">#1582</a>)</p> </li> </ul> <p>Thanks to Google's OSS-Fuzz project for finding many of these bugs.</p> <h2>2.7.3</h2> <ul> <li> <p>Updated lexers:</p> <ul> <li>Ada (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1581">#1581</a>)</li> <li>HTML (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1615">#1615</a>, <a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1614">#1614</a>)</li> <li>Java (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1594">#1594</a>, <a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1586">#1586</a>)</li> <li>JavaScript (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1605">#1605</a>, <a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1589">#1589</a>, <a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1588">#1588</a>)</li> <li>JSON (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1569">#1569</a> -- this is a complete rewrite)</li> <li>Lean (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1601">#1601</a>)</li> <li>LLVM (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1612">#1612</a>)</li> <li>Mason (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1592">#1592</a>)</li> <li>MySQL (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1555">#1555</a>, <a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1551">#1551</a>)</li> <li>Rust (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1608">#1608</a>)</li> <li>Turtle (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1590">#1590</a>, <a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1553">#1553</a>)</li> </ul> </li> <li> <p>Deprecated JsonBareObjectLexer, which is now identical to JsonLexer (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1600">#1600</a>)</p> </li> <li> <p>The <code>ImgFormatter</code> now calculates the exact character width, which fixes some issues with overlapping text (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1213">#1213</a>, <a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1611">#1611</a>)</p> </li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/pygments/pygments/blob/master/CHANGES">pygments's changelog</a>.</em></p> <blockquote> <h2>Version 2.7.4</h2> <p>(released January 12, 2021)</p> <ul> <li> <p>Updated lexers:</p> <ul> <li> <p>Apache configurations: Improve handling of malformed tags (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1656">#1656</a>)</p> </li> <li> <p>CSS: Add support for variables (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1633">#1633</a>, <a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1666">#1666</a>)</p> </li> <li> <p>Crystal (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1650">#1650</a>, <a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1670">#1670</a>)</p> </li> <li> <p>Coq (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1648">#1648</a>)</p> </li> <li> <p>Fortran: Add missing keywords (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1635">#1635</a>, <a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1665">#1665</a>)</p> </li> <li> <p>Ini (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1624">#1624</a>)</p> </li> <li> <p>JavaScript and variants (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1647">#1647</a> -- missing regex flags, <a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1651">#1651</a>)</p> </li> <li> <p>Markdown (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1623">#1623</a>, <a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1617">#1617</a>)</p> </li> <li> <p>Shell</p> <ul> <li>Lex trailing whitespace as part of the prompt (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1645">#1645</a>)</li> <li>Add missing <code>in</code> keyword (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1652">#1652</a>)</li> </ul> </li> <li> <p>SQL - Fix keywords (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1668">#1668</a>)</p> </li> <li> <p>Typescript: Fix incorrect punctuation handling (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1510">#1510</a>, <a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1511">#1511</a>)</p> </li> </ul> </li> <li> <p>Fix infinite loop in SML lexer (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1625">#1625</a>)</p> </li> <li> <p>Fix backtracking string regexes in JavaScript/TypeScript, Modula2 and many other lexers (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1637">#1637</a>)</p> </li> <li> <p>Limit recursion with nesting Ruby heredocs (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1638">#1638</a>)</p> </li> <li> <p>Fix a few inefficient regexes for guessing lexers</p> </li> <li> <p>Fix the raw token lexer handling of Unicode (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1616">#1616</a>)</p> </li> <li> <p>Revert a private API change in the HTML formatter (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1655">#1655</a>) -- please note that private APIs remain subject to change!</p> </li> <li> <p>Fix several exponential/cubic-complexity regexes found by Ben Caller/Doyensec (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1675">#1675</a>)</p> </li> <li> <p>Fix incorrect MATLAB example (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1582">#1582</a>)</p> </li> </ul> <p>Thanks to Google's OSS-Fuzz project for finding many of these bugs.</p> <h2>Version 2.7.3</h2> <p>(released December 6, 2020)</p> <ul> <li> <p>Updated lexers:</p> <ul> <li>Ada (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1581">#1581</a>)</li> <li>HTML (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1615">#1615</a>, <a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1614">#1614</a>)</li> <li>Java (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1594">#1594</a>, <a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1586">#1586</a>)</li> <li>JavaScript (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1605">#1605</a>, <a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1589">#1589</a>, <a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1588">#1588</a>)</li> <li>JSON (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1569">#1569</a> -- this is a complete rewrite)</li> <li>Lean (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1601">#1601</a>)</li> <li>LLVM (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1612">#1612</a>)</li> <li>Mason (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1592">#1592</a>)</li> </ul> </li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/pygments/pygments/commit/4d555d0fffc914a2a4ac9874416cdaaf8f8c9e74"><code>4d555d0</code></a> Bump version to 2.7.4.</li> <li><a href="https://github.com/pygments/pygments/commit/fc3b05ddf25933e45f670534f79fd1df870e142a"><code>fc3b05d</code></a> Update CHANGES.</li> <li><a href="https://github.com/pygments/pygments/commit/ad21935815ff6402d402b036e204f0333a77031b"><code>ad21935</code></a> Revert "Added dracula theme style (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1636">#1636</a>)"</li> <li><a href="https://github.com/pygments/pygments/commit/e411506a23a39f4487ecc36afb616cc4715eb571"><code>e411506</code></a> Prepare for 2.7.4 release.</li> <li><a href="https://github.com/pygments/pygments/commit/275e34d8f0d265bd474f269471b41c635fe559ff"><code>275e34d</code></a> doc: remove Perl 6 ref</li> <li><a href="https://github.com/pygments/pygments/commit/2e7e8c4a7b318f4032493773732754e418279a14"><code>2e7e8c4</code></a> Fix several exponential/cubic complexity regexes found by Ben Caller/Doyensec</li> <li><a href="https://github.com/pygments/pygments/commit/eb39c43b6ef992abadb0d25f0504d0cf2f3ccd86"><code>eb39c43</code></a> xquery: fix pop from empty stack</li> <li><a href="https://github.com/pygments/pygments/commit/2738778c0b9c615bfcae68972fc656d351d676ca"><code>2738778</code></a> fix coding style in test_analyzer_lexer</li> <li><a href="https://github.com/pygments/pygments/commit/02e0f09d796cca5174181e7ae3971cdc010e39b0"><code>02e0f09</code></a> Added 'ERROR STOP' to fortran.py keywords. (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1665">#1665</a>)</li> <li><a href="https://github.com/pygments/pygments/commit/c83fe4888868f79415b50f050c047dc7fe11fd3b"><code>c83fe48</code></a> support added for css variables (<a href="https://github-redirect.dependabot.com/pygments/pygments/issues/1633">#1633</a>)</li> <li>Additional commits viewable in <a href="https://github.com/pygments/pygments/compare/2.7.1...2.7.4">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+1 -1

0 comment

1 changed file

pr created time in 2 months

create barnchPriyanshu1012/Jeev-Seva-App

branch : dependabot/pip/pygments-2.7.4

created branch time in 2 months

PR opened Priyanshu1012/Jeev-Seva-App

Bump pyyaml from 5.3.1 to 5.4

Bumps pyyaml from 5.3.1 to 5.4. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/yaml/pyyaml/blob/master/CHANGES">pyyaml's changelog</a>.</em></p> <blockquote> <p>5.4 (2021-01-19)</p> <ul> <li><a href="https://github-redirect.dependabot.com/yaml/pyyaml/pull/407">yaml/pyyaml#407</a> -- Build modernization, remove distutils, fix metadata, build wheels, CI to GHA</li> <li><a href="https://github-redirect.dependabot.com/yaml/pyyaml/pull/472">yaml/pyyaml#472</a> -- Fix for CVE-2020-14343, moves arbitrary python tags to UnsafeLoader</li> <li><a href="https://github-redirect.dependabot.com/yaml/pyyaml/pull/441">yaml/pyyaml#441</a> -- Fix memory leak in implicit resolver setup</li> <li><a href="https://github-redirect.dependabot.com/yaml/pyyaml/pull/392">yaml/pyyaml#392</a> -- Fix py2 copy support for timezone objects</li> <li><a href="https://github-redirect.dependabot.com/yaml/pyyaml/pull/378">yaml/pyyaml#378</a> -- Fix compatibility with Jython</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/yaml/pyyaml/commit/58d0cb7ee09954c67fabfbd714c5673b03e7a9e1"><code>58d0cb7</code></a> 5.4 release</li> <li><a href="https://github.com/yaml/pyyaml/commit/a60f7a19c0b418fe95fcf2ec0957005ae39e1090"><code>a60f7a1</code></a> Fix compatibility with Jython</li> <li><a href="https://github.com/yaml/pyyaml/commit/ee98abd7d7bd2ca9c7b98aa19164fd0306a3f3d2"><code>ee98abd</code></a> Run CI on PR base branch changes</li> <li><a href="https://github.com/yaml/pyyaml/commit/ddf20330be1fae8813b8ce1789c48f244746d252"><code>ddf2033</code></a> constructor.timezone: _<em>copy</em> & <strong>deepcopy</strong></li> <li><a href="https://github.com/yaml/pyyaml/commit/fc914d52c43f499224f7fb4c2d4c47623adc5b33"><code>fc914d5</code></a> Avoid repeatedly appending to yaml_implicit_resolvers</li> <li><a href="https://github.com/yaml/pyyaml/commit/a001f2782501ad2d24986959f0239a354675f9dc"><code>a001f27</code></a> Fix for CVE-2020-14343</li> <li><a href="https://github.com/yaml/pyyaml/commit/fe150624146ee631bb0f95e45731e8b01281fed6"><code>fe15062</code></a> Add 3.9 to appveyor file for completeness sake</li> <li><a href="https://github.com/yaml/pyyaml/commit/1e1c7fb7c09e9149967c208a6fd07276a6140d57"><code>1e1c7fb</code></a> Add a newline character to end of pyproject.toml</li> <li><a href="https://github.com/yaml/pyyaml/commit/0b6b7d61719fbe0a11f0980489f1bf8ce746c164"><code>0b6b7d6</code></a> Start sentences and phrases for capital letters</li> <li><a href="https://github.com/yaml/pyyaml/commit/c97691596eec279ef9191a9b3bba583a17139d5a"><code>c976915</code></a> Shell code improvements</li> <li>Additional commits viewable in <a href="https://github.com/yaml/pyyaml/compare/5.3.1...5.4">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+1 -1

0 comment

1 changed file

pr created time in 2 months

create barnchPriyanshu1012/Jeev-Seva-App

branch : dependabot/pip/pyyaml-5.4

created branch time in 2 months

PR opened Priyanshu1012/Jeev-Seva-App

Bump jinja2 from 2.11.2 to 2.11.3

Bumps jinja2 from 2.11.2 to 2.11.3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/pallets/jinja/releases">jinja2's releases</a>.</em></p> <blockquote> <h2>2.11.3</h2> <p>This contains a fix for a speed issue with the <code>urlize</code> filter. <code>urlize</code> is likely to be called on untrusted user input. For certain inputs some of the regular expressions used to parse the text could take a very long time due to backtracking. As part of the fix, the email matching became slightly stricter. The various speedups apply to <code>urlize</code> in general, not just the specific input cases.</p> <ul> <li>PyPI: <a href="https://pypi.org/project/Jinja2/2.11.3/">https://pypi.org/project/Jinja2/2.11.3/</a></li> <li>Changes: <a href="https://jinja.palletsprojects.com/en/2.11.x/changelog/#version-2-11-3">https://jinja.palletsprojects.com/en/2.11.x/changelog/#version-2-11-3</a></li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/pallets/jinja/blob/master/CHANGES.rst">jinja2's changelog</a>.</em></p> <blockquote> <h2>Version 2.11.3</h2> <p>Released 2021-01-31</p> <ul> <li>Improve the speed of the <code>urlize</code> filter by reducing regex backtracking. Email matching requires a word character at the start of the domain part, and only word characters in the TLD. :pr:<code>1343</code></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/pallets/jinja/commit/cf215390d4a4d6f0a4de27e2687eed176878f13d"><code>cf21539</code></a> release version 2.11.3</li> <li><a href="https://github.com/pallets/jinja/commit/15ef8f09b659f9100610583938005a7a10472d4d"><code>15ef8f0</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/pallets/jinja/issues/1343">#1343</a> from pallets/urlize-speedup</li> <li><a href="https://github.com/pallets/jinja/commit/ef658dc3b6389b091d608e710a810ce8b87995b3"><code>ef658dc</code></a> speed up urlize matching</li> <li><a href="https://github.com/pallets/jinja/commit/eeca0fecc3318d43f61bc340ad61db641b861ade"><code>eeca0fe</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/pallets/jinja/issues/1207">#1207</a> from mhansen/patch-1</li> <li><a href="https://github.com/pallets/jinja/commit/2dd769111cbb1a2637f805b3b4c652ec8096d371"><code>2dd7691</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/pallets/jinja/issues/1209">#1209</a> from mhansen/patch-3</li> <li><a href="https://github.com/pallets/jinja/commit/48929401db7228db04dfd8e88115dd5c30dc2d86"><code>4892940</code></a> do_dictsort: update example ready to copy/paste</li> <li><a href="https://github.com/pallets/jinja/commit/7db7d336ba12574e6205fdd929386fd529e3fad4"><code>7db7d33</code></a> api.rst: bugfix in docs, import PackageLoader</li> <li><a href="https://github.com/pallets/jinja/commit/9ec465baefe32e305bd4e61da49e6c39360c194e"><code>9ec465b</code></a> fix changelog header</li> <li>See full diff in <a href="https://github.com/pallets/jinja/compare/2.11.2...2.11.3">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+1 -1

0 comment

1 changed file

pr created time in 2 months

create barnchPriyanshu1012/Jeev-Seva-App

branch : dependabot/pip/jinja2-2.11.3

created branch time in 2 months

PR opened Priyanshu1012/Jeev-Seva-App

Bump pillow from 7.2.0 to 8.1.1

Bumps pillow from 7.2.0 to 8.1.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/python-pillow/Pillow/releases">pillow's releases</a>.</em></p> <blockquote> <h2>8.1.1</h2> <p><a href="https://pillow.readthedocs.io/en/stable/releasenotes/8.1.1.html">https://pillow.readthedocs.io/en/stable/releasenotes/8.1.1.html</a></p> <h2>8.1.0</h2> <p><a href="https://pillow.readthedocs.io/en/stable/releasenotes/8.1.0.html">https://pillow.readthedocs.io/en/stable/releasenotes/8.1.0.html</a></p> <h2>Changes</h2> <ul> <li>Fix TIFF OOB Write error <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5175">#5175</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Fix for Buffer Read Overrun in PCX Decoding <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5174">#5174</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Fix for SGI Decode buffer overrun <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5173">#5173</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Fix OOB Read when saving GIF of xsize=1 <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5149">#5149</a> [<a href="https://github.com/wiredfool"><code>@​wiredfool</code></a>]</li> <li>Add support for PySide6 <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5161">#5161</a> [<a href="https://github.com/hugovk"><code>@​hugovk</code></a>]</li> <li>Moved QApplication into one test <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5167">#5167</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Use disposal settings from previous frame in APNG <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5126">#5126</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Revert "skip wheels on 3.10-dev due to wheel#354" <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5163">#5163</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Better _binary module use <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5156">#5156</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Added exception explaining that <em>repr_png</em> saves to PNG <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5139">#5139</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Use previous disposal method in GIF load_end <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5125">#5125</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Do not catch a ValueError only to raise another <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5090">#5090</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Allow putpalette to accept 1024 integers to include alpha values <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5089">#5089</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Fix OOB Read when writing TIFF with custom Metadata <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5148">#5148</a> [<a href="https://github.com/wiredfool"><code>@​wiredfool</code></a>]</li> <li>Removed unused variable <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5140">#5140</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Fix dereferencing of potential null pointers <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5111">#5111</a> [<a href="https://github.com/cgohlke"><code>@​cgohlke</code></a>]</li> <li>Fixed warnings assigning to "unsigned char *" from "char *" <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5127">#5127</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Add append_images support for ICO <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/4568">#4568</a> [<a href="https://github.com/ziplantil"><code>@​ziplantil</code></a>]</li> <li>Fixed comparison warnings <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5122">#5122</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Block TIFFTAG_SUBIFD <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5120">#5120</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Fix dereferencing potential null pointer <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5108">#5108</a> [<a href="https://github.com/cgohlke"><code>@​cgohlke</code></a>]</li> <li>Replaced PyErr_NoMemory with ImagingError_MemoryError <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5113">#5113</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Remove duplicate code <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5109">#5109</a> [<a href="https://github.com/cgohlke"><code>@​cgohlke</code></a>]</li> <li>Moved warning to end of execution <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/4965">#4965</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Removed unused fromstring and tostring C methods <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5026">#5026</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>init() if one of the formats is unrecognised <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5037">#5037</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> </ul> <h2>Dependencies</h2> <ul> <li>Updated libtiff to 4.2.0 <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5153">#5153</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Updated openjpeg to 2.4.0 <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5151">#5151</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Updated harfbuzz to 2.7.4 <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5138">#5138</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Updated harfbuzz to 2.7.3 <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5128">#5128</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Updated libraqm to 0.7.1 <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5070">#5070</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Updated libimagequant to 2.13.1 <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5065">#5065</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Update FriBiDi to 1.0.10 <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5064">#5064</a> [<a href="https://github.com/nulano"><code>@​nulano</code></a>]</li> <li>Updated libraqm to 0.7.1 <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5063">#5063</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Updated libjpeg-turbo to 2.0.6 <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5044">#5044</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> </ul> <h2>Deprecations</h2> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/python-pillow/Pillow/blob/master/CHANGES.rst">pillow's changelog</a>.</em></p> <blockquote> <h2>8.1.1 (2021-03-01)</h2> <ul> <li> <p>Use more specific regex chars to prevent ReDoS. CVE-2021-25292 [hugovk]</p> </li> <li> <p>Fix OOB Read in TiffDecode.c, and check the tile validity before reading. CVE-2021-25291 [wiredfool]</p> </li> <li> <p>Fix negative size read in TiffDecode.c. CVE-2021-25290 [wiredfool]</p> </li> <li> <p>Fix OOB read in SgiRleDecode.c. CVE-2021-25293 [wiredfool]</p> </li> <li> <p>Incorrect error code checking in TiffDecode.c. CVE-2021-25289 [wiredfool]</p> </li> <li> <p>PyModule_AddObject fix for Python 3.10 <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5194">#5194</a> [radarhere]</p> </li> </ul> <h2>8.1.0 (2021-01-02)</h2> <ul> <li> <p>Fix TIFF OOB Write error. CVE-2020-35654 <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5175">#5175</a> [wiredfool]</p> </li> <li> <p>Fix for Read Overflow in PCX Decoding. CVE-2020-35653 <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5174">#5174</a> [wiredfool, radarhere]</p> </li> <li> <p>Fix for SGI Decode buffer overrun. CVE-2020-35655 <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5173">#5173</a> [wiredfool, radarhere]</p> </li> <li> <p>Fix OOB Read when saving GIF of xsize=1 <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5149">#5149</a> [wiredfool]</p> </li> <li> <p>Makefile updates <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5159">#5159</a> [wiredfool, radarhere]</p> </li> <li> <p>Add support for PySide6 <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5161">#5161</a> [hugovk]</p> </li> <li> <p>Use disposal settings from previous frame in APNG <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5126">#5126</a> [radarhere]</p> </li> <li> <p>Added exception explaining that <em>repr_png</em> saves to PNG <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5139">#5139</a> [radarhere]</p> </li> <li> <p>Use previous disposal method in GIF load_end <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5125">#5125</a> [radarhere]</p> </li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/python-pillow/Pillow/commit/741d8744a54bedbc49f16922c61a06fcb3681f53"><code>741d874</code></a> 8.1.1 version bump</li> <li><a href="https://github.com/python-pillow/Pillow/commit/179cd1c8f94aabc47e9e522e01683ea9aadbd3a5"><code>179cd1c</code></a> Added 8.1.1 release notes to index</li> <li><a href="https://github.com/python-pillow/Pillow/commit/7d296653da045e18b379c991797f933e054a7476"><code>7d29665</code></a> Update CHANGES.rst [ci skip]</li> <li><a href="https://github.com/python-pillow/Pillow/commit/d25036fca7c8658b698492088361453bb20073e2"><code>d25036f</code></a> Credits</li> <li><a href="https://github.com/python-pillow/Pillow/commit/973a4c333ab6d603e82f6eb2aa6f39d1cfcecccb"><code>973a4c3</code></a> Release notes for 8.1.1</li> <li><a href="https://github.com/python-pillow/Pillow/commit/521dab94c7ab72b037bd9a83e9663401e0fd2cee"><code>521dab9</code></a> Use more specific regex chars to prevent ReDoS</li> <li><a href="https://github.com/python-pillow/Pillow/commit/8b8076bdcb3815be0ef0d279651d8d1342b8ea61"><code>8b8076b</code></a> Fix for CVE-2021-25291</li> <li><a href="https://github.com/python-pillow/Pillow/commit/e25be1e33dc526bfd1094bc778a54d8e29bf66c9"><code>e25be1e</code></a> Fix negative size read in TiffDecode.c</li> <li><a href="https://github.com/python-pillow/Pillow/commit/f891baa604636cd2506a9360d170bc2cf4963cc5"><code>f891baa</code></a> Fix OOB read in SgiRleDecode.c</li> <li><a href="https://github.com/python-pillow/Pillow/commit/cbfdde7b1f2295059a20a539ee9960f0bec7b299"><code>cbfdde7</code></a> Incorrect error code checking in TiffDecode.c</li> <li>Additional commits viewable in <a href="https://github.com/python-pillow/Pillow/compare/7.2.0...8.1.1">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+1 -1

0 comment

1 changed file

pr created time in 2 months

create barnchPriyanshu1012/Jeev-Seva-App

branch : dependabot/pip/pillow-8.1.1

created branch time in 2 months

PR opened Priyanshu1012/Jeev-Seva-App

Bump django from 3.1.2 to 3.1.6

Bumps django from 3.1.2 to 3.1.6. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/django/django/commit/3235a7b80710e5c90bbb1d25a147c8d0eddc8198"><code>3235a7b</code></a> [3.1.x] Bumped version for 3.1.6 release.</li> <li><a href="https://github.com/django/django/commit/02e6592835b4559909aa3aaaf67988fef435f624"><code>02e6592</code></a> [3.1.x] Fixed CVE-2021-3281 -- Fixed potential directory-traversal via archiv...</li> <li><a href="https://github.com/django/django/commit/03a86784d0dbfc5890f5aaba2d2f29c1deb0009d"><code>03a8678</code></a> [3.1.x] Fixed GeoIPTest.test04_city() failure with the latest GeoIP2 database.</li> <li><a href="https://github.com/django/django/commit/a271d8c15cb73fde5e78d429b5d0c906eb300750"><code>a271d8c</code></a> [3.1.x] Modernized custom manager example</li> <li><a href="https://github.com/django/django/commit/82e1294602abd9d85fed114380bf81538c8b6f9e"><code>82e1294</code></a> [3.1.x] Fixed <a href="https://github-redirect.dependabot.com/django/django/issues/32391">#32391</a> -- Used CSS flex properties for changelist filter.</li> <li><a href="https://github.com/django/django/commit/b920945d0286673e5374dee60d329e5d2d1127cd"><code>b920945</code></a> [3.1.x] Fixed <a href="https://github-redirect.dependabot.com/django/django/issues/32388">#32388</a> -- Clarified QuerySet.bulk_update() caveat about duplica...</li> <li><a href="https://github.com/django/django/commit/fa203f17591d53178c28b20f9ad337812666445d"><code>fa203f1</code></a> [3.1.x] Fixed <a href="https://github-redirect.dependabot.com/django/django/issues/32348">#32348</a>, Refs <a href="https://github-redirect.dependabot.com/django/django/issues/29087">#29087</a> -- Corrected tutorial for updated deleting ...</li> <li><a href="https://github.com/django/django/commit/18adc89e50dca63b664a721ea9790279524b6db3"><code>18adc89</code></a> [3.1.x] Refs <a href="https://github-redirect.dependabot.com/django/django/issues/32372">#32372</a> -- Updated manager name in related objects reference docs.</li> <li><a href="https://github.com/django/django/commit/cc5ee23f74b765f35b4ba05a122eef576cedbb3b"><code>cc5ee23</code></a> [3.1.x] Fixed <a href="https://github-redirect.dependabot.com/django/django/issues/32372">#32372</a> -- Made examples in related objects reference docs consi...</li> <li><a href="https://github.com/django/django/commit/2a74248ecab64af6b899c14940fac44b1e8a15bb"><code>2a74248</code></a> [3.1.x] Fixed <a href="https://github-redirect.dependabot.com/django/django/issues/32371">#32371</a> -- Doc'd jquery.init.js dependency for admin widgets.</li> <li>Additional commits viewable in <a href="https://github.com/django/django/compare/3.1.2...3.1.6">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+1 -1

0 comment

1 changed file

pr created time in 2 months

create barnchPriyanshu1012/Jeev-Seva-App

branch : dependabot/pip/django-3.1.6

created branch time in 2 months