Safety CI > AgarwalPragy/py-fullstack

dependabot/pip/pip-21.1

3 years, 11 months ago

Bump pip from 19.2.3 to 21.1 Bumps [pip](https://github.com/pypa/pip) from 19.2.3 to 21.1. - [Relea

Sphinx 1.8.5 and twine 1.14.0 have known security vulnerabilities.

Package	Installed	Affected	Info
Sphinx	1.8.5	<3.0.4	show Sphinx 3.0.4 updates jQuery version from 3.4.1 to 3.5.1 for security reasons.
Sphinx	1.8.5	<3.3.0	show Sphinx 3.3.0 includes a fix for a ReDoS vulnerability in inventory. https://github.com/sphinx-doc/sphinx/issues/8175 https://github.com/sphinx-doc/sphinx/commit/f7b872e673f9b359a61fd287a7338a28077840d2
Sphinx	1.8.5	<3.3.0	show Sphinx 3.3.0 includes a fix for a ReDoS vulnerability in docstring. https://github.com/sphinx-doc/sphinx/issues/8172 https://github.com/sphinx-doc/sphinx/commit/f00e75278c5999f40b214d8934357fbf0e705417
Sphinx	1.8.5	<3.0.4	show Sphinx 3.0.4 updates jQuery version from 3.4.1 to 3.5.1 for security reasons.
twine	1.14.0	<2.0.0	show Twine 2.0.0 updates requests to 2.20 (or later) to include a security fix.

master

5 years, 4 months ago

0f761022

bug fixes. improve event handling

Sphinx 1.8.5 and twine 1.14.0 have known security vulnerabilities.

Package	Installed	Affected	Info
Sphinx	1.8.5	<3.0.4	show Sphinx 3.0.4 updates jQuery version from 3.4.1 to 3.5.1 for security reasons.
Sphinx	1.8.5	<3.3.0	show Sphinx 3.3.0 includes a fix for a ReDoS vulnerability in inventory. https://github.com/sphinx-doc/sphinx/issues/8175 https://github.com/sphinx-doc/sphinx/commit/f7b872e673f9b359a61fd287a7338a28077840d2
Sphinx	1.8.5	<3.3.0	show Sphinx 3.3.0 includes a fix for a ReDoS vulnerability in docstring. https://github.com/sphinx-doc/sphinx/issues/8172 https://github.com/sphinx-doc/sphinx/commit/f00e75278c5999f40b214d8934357fbf0e705417
Sphinx	1.8.5	<3.0.4	show Sphinx 3.0.4 updates jQuery version from 3.4.1 to 3.5.1 for security reasons.
twine	1.14.0	<2.0.0	show Twine 2.0.0 updates requests to 2.20 (or later) to include a security fix.

master

5 years, 6 months ago

a192d40e

init

twine 1.14.0 has known security vulnerabilities.

Package	Installed	Affected	Info
twine	1.14.0	<2.0.0	show Twine 2.0.0 updates requests to 2.20 (or later) to include a security fix.

master

5 years, 6 months ago

60feaa63

init

twine 1.14.0 has known security vulnerabilities.

Package	Installed	Affected	Info
twine	1.14.0	<2.0.0	show Twine 2.0.0 updates requests to 2.20 (or later) to include a security fix.