Safety CI > PhosphorylatedRabbits/brontes

pyup-update-pytorch-lightning-0.4.8-to-1.7.6

3 years, 5 months ago

ecdcacac

Update pytorch-lightning from 0.4.8 to 1.7.6

No dependencies with known security vulnerabilities.

pyup-update-pytorch-lightning-0.4.8-to-1.7.5

3 years, 5 months ago

8752a396

Update pytorch-lightning from 0.4.8 to 1.7.5

No dependencies with known security vulnerabilities.

pyup-update-pytorch-lightning-0.4.8-to-1.7.4

3 years, 5 months ago

6ed74850

Update pytorch-lightning from 0.4.8 to 1.7.4

No dependencies with known security vulnerabilities.

pyup-update-pytorch-lightning-0.4.8-to-1.7.3

3 years, 5 months ago

410528bb

Update pytorch-lightning from 0.4.8 to 1.7.3

No dependencies with known security vulnerabilities.

pyup-update-pytorch-lightning-0.4.8-to-1.7.2

3 years, 5 months ago

a9348f09

Update pytorch-lightning from 0.4.8 to 1.7.2

No dependencies with known security vulnerabilities.

pyup-update-pytorch-lightning-0.4.8-to-1.7.1

3 years, 6 months ago

6741359a

Update pytorch-lightning from 0.4.8 to 1.7.1

No dependencies with known security vulnerabilities.

pyup-update-pytorch-lightning-0.4.8-to-1.7.0

3 years, 6 months ago

07cc37a9

Update pytorch-lightning from 0.4.8 to 1.7.0

No dependencies with known security vulnerabilities.

pyup-update-pytorch-lightning-0.4.8-to-1.6.5

3 years, 7 months ago

983b0856

Update pytorch-lightning from 0.4.8 to 1.6.5

No dependencies with known security vulnerabilities.

pyup-update-pytorch-lightning-0.4.8-to-1.6.4

3 years, 8 months ago

7cb5b4d6

Update pytorch-lightning from 0.4.8 to 1.6.4

No dependencies with known security vulnerabilities.

pyup-update-pytorch-lightning-0.4.8-to-1.6.3

3 years, 9 months ago

432c4b36

Update pytorch-lightning from 0.4.8 to 1.6.3

No dependencies with known security vulnerabilities.

pyup-update-pytorch-lightning-0.4.8-to-1.6.2

3 years, 9 months ago

2bf108bc

Update pytorch-lightning from 0.4.8 to 1.6.2

No dependencies with known security vulnerabilities.

pyup-update-pytorch-lightning-0.4.8-to-1.6.1

3 years, 10 months ago

84cd1630

Update pytorch-lightning from 0.4.8 to 1.6.1

No dependencies with known security vulnerabilities.

pyup-update-pytorch-lightning-0.4.8-to-1.6.0

3 years, 10 months ago

323cf357

Update pytorch-lightning from 0.4.8 to 1.6.0

No dependencies with known security vulnerabilities.

pyup-update-pytorch-lightning-0.4.8-to-1.5.10

4 years ago

a444f526

Update pytorch-lightning from 0.4.8 to 1.5.10

pytorch-lightning 1.5.10 has known security vulnerabilities.

Package	Installed	Affected	Info
pytorch-lightning	1.5.10	<2.4.0	show Affected versions of the PyTorch-Lightning package are vulnerable to Path Traversal due to insufficient validation of user-supplied filenames. The `/api/v1/upload_file/` endpoint in the LightningApp component on Windows hosts fails to sanitize the filename parameter, allowing directory traversal sequences to escape the intended upload directory.
pytorch-lightning	1.5.10	<1.6.0	show Pytorch-lightning 1.6.0 updates its dependency 'pyyaml' to v5.4 and uses yaml.safe_load() to fix code execution vulnerabilities.
pytorch-lightning	1.5.10	>=0,<1.6.0	show Pytorch-lightning before 1.6.0 is vulnerable to Deserialization of Untrusted Data.
pytorch-lightning	1.5.10	<2.3.2	show Affected versions of the PyTorch Lightning package are vulnerable to Denial of Service (DoS) due to improper validation of state values. The `/api/v1/state` endpoint in the LightningApp component fails to properly handle unexpected state values in POST requests, causing the server process to crash.
pytorch-lightning	1.5.10	>=0,<1.6.0	show PyTorch Lightning version 1.5.10 and prior is vulnerable to code injection. An attacker could execute commands on the target OS running the operating system by setting the `PL_TRAINER_GPUS` when using the `Trainer` module. A [patch](https://github.com/pytorchlightning/pytorch-lightning/commit/8b7a12c52e52a06408e9231647839ddb4665e8ae) is included in the `1.6.0` release. Affected functions: pytorch_lightning.utilities.argparse.parse_env_variables
pytorch-lightning	1.5.10	<1.6.0	show Pytorch-lightning 1.6.0 updates its dependency 'pyyaml' to v5.4 and uses yaml.safe_load() to fix code execution vulnerabilities.

pyup-update-pytorch-lightning-0.4.8-to-1.5.9

4 years ago

242fd60a

Update pytorch-lightning from 0.4.8 to 1.5.9

pytorch-lightning 1.5.9 has known security vulnerabilities.

Package	Installed	Affected	Info
pytorch-lightning	1.5.9	<2.4.0	show Affected versions of the PyTorch-Lightning package are vulnerable to Path Traversal due to insufficient validation of user-supplied filenames. The `/api/v1/upload_file/` endpoint in the LightningApp component on Windows hosts fails to sanitize the filename parameter, allowing directory traversal sequences to escape the intended upload directory.
pytorch-lightning	1.5.9	<1.6.0	show Pytorch-lightning 1.6.0 updates its dependency 'pyyaml' to v5.4 and uses yaml.safe_load() to fix code execution vulnerabilities.
pytorch-lightning	1.5.9	>=0,<1.6.0	show Pytorch-lightning before 1.6.0 is vulnerable to Deserialization of Untrusted Data.
pytorch-lightning	1.5.9	<2.3.2	show Affected versions of the PyTorch Lightning package are vulnerable to Denial of Service (DoS) due to improper validation of state values. The `/api/v1/state` endpoint in the LightningApp component fails to properly handle unexpected state values in POST requests, causing the server process to crash.
pytorch-lightning	1.5.9	>=0,<1.6.0	show PyTorch Lightning version 1.5.10 and prior is vulnerable to code injection. An attacker could execute commands on the target OS running the operating system by setting the `PL_TRAINER_GPUS` when using the `Trainer` module. A [patch](https://github.com/pytorchlightning/pytorch-lightning/commit/8b7a12c52e52a06408e9231647839ddb4665e8ae) is included in the `1.6.0` release. Affected functions: pytorch_lightning.utilities.argparse.parse_env_variables
pytorch-lightning	1.5.9	<1.6.0	show Pytorch-lightning 1.6.0 updates its dependency 'pyyaml' to v5.4 and uses yaml.safe_load() to fix code execution vulnerabilities.