Safety CI > kiwitcms/Kiwi

dependabot/pip/pygithub-2.3.0

2 years, 1 month ago

dd2f6a75

Bump pygithub from 1.58.2 to 2.3.0 Bumps [pygithub](https://github.com/pygithub/pygithub) from 1.58

No dependencies with known security vulnerabilities.

pyup-update-pygithub-1.58.2-to-2.3.0

2 years, 1 month ago

7c51208b

Update pygithub from 1.58.2 to 2.3.0

No dependencies with known security vulnerabilities.

dependabot/npm_and_yarn/tcms/webpack-5.91.0

2 years, 1 month ago

90e7829a

Bump webpack from 5.90.3 to 5.91.0 in /tcms Bumps [webpack](https://github.com/webpack/webpack) fro

No dependencies with known security vulnerabilities.

master

2 years, 1 month ago

76b2886a

PHPUnit plugin has made an initial release so update the documentation

No dependencies with known security vulnerabilities.

update_docs

2 years, 1 month ago

8bd26e5e

PHPUnit plugin has made an initial release so update the documentation

No dependencies with known security vulnerabilities.

dependabot/pip/django-5.0.3

2 years, 1 month ago

0e5cd337

Bump django from 4.2.11 to 5.0.3 Bumps [django](https://github.com/django/django) from 4.2.11 to 5.

No dependencies with known security vulnerabilities.

master

2 years, 1 month ago

0348e0a5

Update markdown from 3.5.2 to 3.6

No dependencies with known security vulnerabilities.

master

2 years, 1 month ago

2091462f

fix: upgrade pdfmake from 0.2.9 to 0.2.10 Snyk has created this PR to upgrade pdfmake from 0.2.9 to

No dependencies with known security vulnerabilities.

master

2 years, 1 month ago

065bf2e8

Remove inline style text-align: center in favor of class

No dependencies with known security vulnerabilities.

master

2 years, 1 month ago

ab8acecc

Reformat

No dependencies with known security vulnerabilities.

pyup-update-black-23.12.1-to-24.3.0

2 years, 1 month ago

148873fd

Reformat

No dependencies with known security vulnerabilities.

pyup-update-black-23.12.1-to-24.3.0

2 years, 1 month ago

bfd5ad2b

Reformat

No dependencies with known security vulnerabilities.

pyup-update-black-23.12.1-to-24.3.0

2 years, 1 month ago

f934b4c1

Bump psf/black from 23.12.1 to 24.3.0 Bumps [psf/black](https://github.com/psf/black) from 23.12.1

No dependencies with known security vulnerabilities.

remove_inline_style

2 years, 1 month ago

518e060a

Remove inline style text-align: center in favor of class

black 23.12.1 has known security vulnerabilities.

Package	Installed	Affected	Info
black	23.12.1	<26.3.1	show Affected versions of the black package are vulnerable to Path Traversal due to unsanitized user input in a cache file name. The vulnerability exists because Black incorporates the --python-cell-magics option value into the cache filename without sanitizing path elements, allowing the computed cache path to escape the intended cache directory.
black	23.12.1	<24.3.0	show Affected versions of Black are vulnerable to Regular Expression Denial of Service (ReDoS) via the lines_with_leading_tabs_expanded function in the strings.py file. An attacker could exploit this vulnerability by crafting a malicious input that causes a denial of service.

Package

Installed

Affected

Info

black

23.12.1

<26.3.1

show

Affected versions of the black package are vulnerable to Path Traversal due to unsanitized user input in a cache file name. The vulnerability exists because Black incorporates the --python-cell-magics option value into the cache filename without sanitizing path elements, allowing the computed cache path to escape the intended cache directory.

black

23.12.1

<24.3.0

show

Affected versions of Black are vulnerable to Regular Expression Denial of Service (ReDoS) via the lines_with_leading_tabs_expanded function in the strings.py file. An attacker could exploit this vulnerability by crafting a malicious input that causes a denial of service.

dependabot/github_actions/psf/black-24.3.0

2 years, 1 month ago

a0fc8f33

Bump psf/black from 23.12.1 to 24.3.0 Bumps [psf/black](https://github.com/psf/black) from 23.12.1

No dependencies with known security vulnerabilities.