Safety CI > alexyorke/installed-to-chocolatey

pyup-scheduled-update-2025-11-01

4 days, 6 hours ago

56de175f

Update requests from 2.32.3 to 2.32.5

No dependencies with known security vulnerabilities.

pyup-scheduled-update-2025-10-01

1 month ago

9b429245

Update requests from 2.32.3 to 2.32.5

No dependencies with known security vulnerabilities.

dependabot/pip/feedparser-6.0.12

1 month, 3 weeks ago

04507aac

Bump feedparser from 6.0.11 to 6.0.12 Bumps [feedparser](https://github.com/kurtmckee/feedparser) f

requests 2.32.3 has known security vulnerabilities.

Package	Installed	Affected	Info
requests	2.32.3	<2.32.4	show Requests is an HTTP library. Due to a URL parsing issue, Requests releases prior to 2.32.4 may leak .netrc credentials to third parties for specific maliciously-crafted URLs. Users should upgrade to version 2.32.4 to receive a fix. For older versions of Requests, use of the .netrc file can be disabled with `trust_env=False` on one's Requests Session.

Package

Installed

Affected

Info

requests

2.32.3

<2.32.4

show

Requests is an HTTP library. Due to a URL parsing issue, Requests releases prior to 2.32.4 may leak .netrc credentials to third parties for specific maliciously-crafted URLs. Users should upgrade to version 2.32.4 to receive a fix. For older versions of Requests, use of the .netrc file can be disabled with `trust_env=False` on one's Requests Session.

pyup-scheduled-update-2025-09-03

2 months ago

921e2b4f

Update requests from 2.32.3 to 2.32.5

No dependencies with known security vulnerabilities.

dependabot/pip/requests-2.32.5

2 months, 1 week ago

360333b3

Bump requests from 2.32.3 to 2.32.5 Bumps [requests](https://github.com/psf/requests) from 2.32.3 t

No dependencies with known security vulnerabilities.

pyup-scheduled-update-2025-08-01

3 months ago

6332e500

Update requests from 2.32.3 to 2.32.4

No dependencies with known security vulnerabilities.

pyup-scheduled-update-2025-07-09

3 months, 4 weeks ago

1feff7f0

Update requests from 2.32.3 to 2.32.4

No dependencies with known security vulnerabilities.

dependabot/pip/pip-512858e340

4 months, 4 weeks ago

5d9fab62

Bump requests from 2.32.3 to 2.32.4 in the pip group Bumps the pip group with 1 update: [requests](

No dependencies with known security vulnerabilities.

master

7 months, 3 weeks ago

55e052c1

Merge pull request #24 from alexyorke/dependabot/pip/feedparser-6.0.11 Bump feedparser from 5.2.1 t

No dependencies with known security vulnerabilities.

dependabot/pip/feedparser-6.0.11

8 months, 1 week ago

dcc5d060

Bump feedparser from 5.2.1 to 6.0.11 Bumps [feedparser](https://github.com/kurtmckee/feedparser) fr

No dependencies with known security vulnerabilities.

dependabot/pip/feedparser-6.0.11

8 months, 1 week ago

a83c1eb4

Bump feedparser from 5.2.1 to 6.0.11 Bumps [feedparser](https://github.com/kurtmckee/feedparser) fr

No dependencies with known security vulnerabilities.

master

8 months, 1 week ago

11ac1fcb

Merge pull request #25 from alexyorke/dependabot/pip/requests-2.32.3 Bump requests from 2.22.0 to 2

No dependencies with known security vulnerabilities.

master

8 months, 1 week ago

553c7a1d

Merge pull request #26 from alexyorke/pyup-scheduled-update-2025-03-01 Scheduled monthly dependency

No dependencies with known security vulnerabilities.

pyup-scheduled-update-2025-03-01

8 months, 1 week ago

b1f77b2c

Update requests from 2.22.0 to 2.32.3

No dependencies with known security vulnerabilities.

dependabot/pip/requests-2.32.3

8 months, 1 week ago

94ce87f8

Bump requests from 2.22.0 to 2.32.3 Bumps [requests](https://github.com/psf/requests) from 2.22.0 t

No dependencies with known security vulnerabilities.