Safety CI > dssg/triage

pyup-scheduled-update-2022-11-01

2 years, 10 months ago

be80ecde

Update boto3 from 1.22.4 to 1.25.5

No dependencies with known security vulnerabilities.

pyup-scheduled-update-2022-11-01

2 years, 10 months ago

f3d3f443

Update alembic from 1.7.7 to 1.8.1

No dependencies with known security vulnerabilities.

pyup-scheduled-update-2022-11-01

2 years, 10 months ago

9590aae2

Update psycopg2-binary from 2.9.3 to 2.9.5

No dependencies with known security vulnerabilities.

pyup-scheduled-update-2022-11-01

2 years, 10 months ago

b92de0f6

Update wheel from 0.37.1 to 0.38.0

No dependencies with known security vulnerabilities.

pyup-scheduled-update-2022-11-01

2 years, 10 months ago

7e6c1fac

Update mkdocstrings from 0.18.1 to 0.19.0

wheel 0.37.1 has known security vulnerabilities.

Package	Installed	Affected	Info
wheel	0.37.1	<0.38.1	show Wheel 0.38.1 includes a fix for CVE-2022-40898: An issue discovered in Python Packaging Authority (PyPA) Wheel 0.37.1 and earlier allows remote attackers to cause a denial of service via attacker controlled input to wheel cli. https://pyup.io/posts/pyup-discovers-redos-vulnerabilities-in-top-python-packages

Package

Installed

Affected

Info

wheel

0.37.1

<0.38.1

show

Wheel 0.38.1 includes a fix for CVE-2022-40898: An issue discovered in Python Packaging Authority (PyPA) Wheel 0.37.1 and earlier allows remote attackers to cause a denial of service via attacker controlled input to wheel cli.
https://pyup.io/posts/pyup-discovers-redos-vulnerabilities-in-top-python-packages

pyup-scheduled-update-2022-11-01

2 years, 10 months ago

62c07f74

Update black from 22.3.0 to 22.10.0

wheel 0.37.1 has known security vulnerabilities.

Package	Installed	Affected	Info
wheel	0.37.1	<0.38.1	show Wheel 0.38.1 includes a fix for CVE-2022-40898: An issue discovered in Python Packaging Authority (PyPA) Wheel 0.37.1 and earlier allows remote attackers to cause a denial of service via attacker controlled input to wheel cli. https://pyup.io/posts/pyup-discovers-redos-vulnerabilities-in-top-python-packages

Package

Installed

Affected

Info

wheel

0.37.1

<0.38.1

show

Wheel 0.38.1 includes a fix for CVE-2022-40898: An issue discovered in Python Packaging Authority (PyPA) Wheel 0.37.1 and earlier allows remote attackers to cause a denial of service via attacker controlled input to wheel cli.
https://pyup.io/posts/pyup-discovers-redos-vulnerabilities-in-top-python-packages

pyup-scheduled-update-2022-11-01

2 years, 10 months ago

7f3c82bd

Update mkdocs-material from 8.2.12 to 8.5.7

wheel 0.37.1 has known security vulnerabilities.

Package	Installed	Affected	Info
wheel	0.37.1	<0.38.1	show Wheel 0.38.1 includes a fix for CVE-2022-40898: An issue discovered in Python Packaging Authority (PyPA) Wheel 0.37.1 and earlier allows remote attackers to cause a denial of service via attacker controlled input to wheel cli. https://pyup.io/posts/pyup-discovers-redos-vulnerabilities-in-top-python-packages

Package

Installed

Affected

Info

wheel

0.37.1

<0.38.1

show

Wheel 0.38.1 includes a fix for CVE-2022-40898: An issue discovered in Python Packaging Authority (PyPA) Wheel 0.37.1 and earlier allows remote attackers to cause a denial of service via attacker controlled input to wheel cli.
https://pyup.io/posts/pyup-discovers-redos-vulnerabilities-in-top-python-packages

pyup-scheduled-update-2022-11-01

2 years, 10 months ago

4f57f3b5

Update mkdocs from 1.3.0 to 1.4.1

wheel 0.37.1 has known security vulnerabilities.

Package	Installed	Affected	Info
wheel	0.37.1	<0.38.1	show Wheel 0.38.1 includes a fix for CVE-2022-40898: An issue discovered in Python Packaging Authority (PyPA) Wheel 0.37.1 and earlier allows remote attackers to cause a denial of service via attacker controlled input to wheel cli. https://pyup.io/posts/pyup-discovers-redos-vulnerabilities-in-top-python-packages

Package

Installed

Affected

Info

wheel

0.37.1

<0.38.1

show

Wheel 0.38.1 includes a fix for CVE-2022-40898: An issue discovered in Python Packaging Authority (PyPA) Wheel 0.37.1 and earlier allows remote attackers to cause a denial of service via attacker controlled input to wheel cli.
https://pyup.io/posts/pyup-discovers-redos-vulnerabilities-in-top-python-packages

pyup-scheduled-update-2022-11-01

2 years, 10 months ago

e15d5de4

Update pymdown-extensions from 9.4 to 9.7

wheel 0.37.1 has known security vulnerabilities.

Package	Installed	Affected	Info
wheel	0.37.1	<0.38.1	show Wheel 0.38.1 includes a fix for CVE-2022-40898: An issue discovered in Python Packaging Authority (PyPA) Wheel 0.37.1 and earlier allows remote attackers to cause a denial of service via attacker controlled input to wheel cli. https://pyup.io/posts/pyup-discovers-redos-vulnerabilities-in-top-python-packages

Package

Installed

Affected

Info

wheel

0.37.1

<0.38.1

show

Wheel 0.38.1 includes a fix for CVE-2022-40898: An issue discovered in Python Packaging Authority (PyPA) Wheel 0.37.1 and earlier allows remote attackers to cause a denial of service via attacker controlled input to wheel cli.
https://pyup.io/posts/pyup-discovers-redos-vulnerabilities-in-top-python-packages

master

2 years, 10 months ago

c8397693

Bump version: 5.2.0 → 5.2.1

wheel 0.37.1 has known security vulnerabilities.

Package	Installed	Affected	Info
wheel	0.37.1	<0.38.1	show Wheel 0.38.1 includes a fix for CVE-2022-40898: An issue discovered in Python Packaging Authority (PyPA) Wheel 0.37.1 and earlier allows remote attackers to cause a denial of service via attacker controlled input to wheel cli. https://pyup.io/posts/pyup-discovers-redos-vulnerabilities-in-top-python-packages

Package

Installed

Affected

Info

wheel

0.37.1

<0.38.1

show

Wheel 0.38.1 includes a fix for CVE-2022-40898: An issue discovered in Python Packaging Authority (PyPA) Wheel 0.37.1 and earlier allows remote attackers to cause a denial of service via attacker controlled input to wheel cli.
https://pyup.io/posts/pyup-discovers-redos-vulnerabilities-in-top-python-packages

kit_cohort_default_fix

2 years, 11 months ago

9616179d

fix error inserting from labels table

No dependencies with known security vulnerabilities.

kit_cohort_default_fix

2 years, 11 months ago

98f1b713

debug more

No dependencies with known security vulnerabilities.

kit_cohort_default_fix

2 years, 11 months ago

bbc5fece

debug

No dependencies with known security vulnerabilities.

kit_cohort_default_fix

2 years, 11 months ago

a2a985f0

debug log string

No dependencies with known security vulnerabilities.

kit_cohort_default_fix

2 years, 11 months ago

62cef93f

when creating cohort from labels don't insert for existing as_of_dates

No dependencies with known security vulnerabilities.