Safety CI > nightingu/damebot

dependabot/pip/nonebot2-2.0.0rc1

2 years, 5 months ago

1480a6b3

Bump nonebot2 from 2.0.0a15 to 2.0.0rc1 Bumps [nonebot2](https://github.com/nonebot/nonebot2) from

py7zr 0.11.3 has known security vulnerabilities.

Package	Installed	Affected	Info
py7zr	0.11.3	<0.17.3	show Py7zr 0.17.3 protects against directory traversal attacks by checking file paths in ArchiveFile. https://github.com/miurahr/py7zr/commit/2cb066688b05ee7427f236fd35f5598112e9d501
py7zr	0.11.3	<=0.20.0	show Py7zr 0.20.1 includes a fix for CVE-2022-44900: A directory traversal vulnerability in the SevenZipFile.extractall() function of the python library py7zr v0.20.0 and earlier allows attackers to write arbitrary files via extracting a crafted 7z file.
py7zr	0.11.3	<0.20.1	show Py7zr 0.20.1 adds protection against path traversal attacks. https://github.com/miurahr/py7zr/commit/1bb43f17515c7f69673a1c88ab9cc72a7bbef406

Package

Installed

Affected

Info

py7zr

0.11.3

<0.17.3

show

Py7zr 0.17.3 protects against directory traversal attacks by checking file paths in ArchiveFile.
https://github.com/miurahr/py7zr/commit/2cb066688b05ee7427f236fd35f5598112e9d501

py7zr

0.11.3

<=0.20.0

show

Py7zr 0.20.1 includes a fix for CVE-2022-44900: A directory traversal vulnerability in the SevenZipFile.extractall() function of the python library py7zr v0.20.0 and earlier allows attackers to write arbitrary files via extracting a crafted 7z file.

py7zr

0.11.3

<0.20.1

show

Py7zr 0.20.1 adds protection against path traversal attacks.
https://github.com/miurahr/py7zr/commit/1bb43f17515c7f69673a1c88ab9cc72a7bbef406

dependabot/pip/pytest-7.1.3

2 years, 6 months ago

7fc6a8d6

Bump pytest from 6.2.2 to 7.1.3 Bumps [pytest](https://github.com/pytest-dev/pytest) from 6.2.2 to

py7zr 0.11.3 has known security vulnerabilities.

Package	Installed	Affected	Info
py7zr	0.11.3	<0.17.3	show Py7zr 0.17.3 protects against directory traversal attacks by checking file paths in ArchiveFile. https://github.com/miurahr/py7zr/commit/2cb066688b05ee7427f236fd35f5598112e9d501
py7zr	0.11.3	<=0.20.0	show Py7zr 0.20.1 includes a fix for CVE-2022-44900: A directory traversal vulnerability in the SevenZipFile.extractall() function of the python library py7zr v0.20.0 and earlier allows attackers to write arbitrary files via extracting a crafted 7z file.
py7zr	0.11.3	<0.20.1	show Py7zr 0.20.1 adds protection against path traversal attacks. https://github.com/miurahr/py7zr/commit/1bb43f17515c7f69673a1c88ab9cc72a7bbef406

Package

Installed

Affected

Info

py7zr

0.11.3

<0.17.3

show

Py7zr 0.17.3 protects against directory traversal attacks by checking file paths in ArchiveFile.
https://github.com/miurahr/py7zr/commit/2cb066688b05ee7427f236fd35f5598112e9d501

py7zr

0.11.3

<=0.20.0

show

Py7zr 0.20.1 includes a fix for CVE-2022-44900: A directory traversal vulnerability in the SevenZipFile.extractall() function of the python library py7zr v0.20.0 and earlier allows attackers to write arbitrary files via extracting a crafted 7z file.

py7zr

0.11.3

<0.20.1

show

Py7zr 0.20.1 adds protection against path traversal attacks.
https://github.com/miurahr/py7zr/commit/1bb43f17515c7f69673a1c88ab9cc72a7bbef406

dependabot/pip/pypinyin-0.47.1

2 years, 6 months ago

1e20d659

Bump pypinyin from 0.40.0 to 0.47.1 Bumps [pypinyin](https://github.com/mozillazg/python-pinyin) fr

py7zr 0.11.3 has known security vulnerabilities.

Package	Installed	Affected	Info
py7zr	0.11.3	<0.17.3	show Py7zr 0.17.3 protects against directory traversal attacks by checking file paths in ArchiveFile. https://github.com/miurahr/py7zr/commit/2cb066688b05ee7427f236fd35f5598112e9d501
py7zr	0.11.3	<=0.20.0	show Py7zr 0.20.1 includes a fix for CVE-2022-44900: A directory traversal vulnerability in the SevenZipFile.extractall() function of the python library py7zr v0.20.0 and earlier allows attackers to write arbitrary files via extracting a crafted 7z file.
py7zr	0.11.3	<0.20.1	show Py7zr 0.20.1 adds protection against path traversal attacks. https://github.com/miurahr/py7zr/commit/1bb43f17515c7f69673a1c88ab9cc72a7bbef406

Package

Installed

Affected

Info

py7zr

0.11.3

<0.17.3

show

Py7zr 0.17.3 protects against directory traversal attacks by checking file paths in ArchiveFile.
https://github.com/miurahr/py7zr/commit/2cb066688b05ee7427f236fd35f5598112e9d501

py7zr

0.11.3

<=0.20.0

show

Py7zr 0.20.1 includes a fix for CVE-2022-44900: A directory traversal vulnerability in the SevenZipFile.extractall() function of the python library py7zr v0.20.0 and earlier allows attackers to write arbitrary files via extracting a crafted 7z file.

py7zr

0.11.3

<0.20.1

show

Py7zr 0.20.1 adds protection against path traversal attacks.
https://github.com/miurahr/py7zr/commit/1bb43f17515c7f69673a1c88ab9cc72a7bbef406

dependabot/pip/json-store-3.1

2 years, 7 months ago

cf1cbc06

Bump json-store from 3.0 to 3.1 Bumps [json-store](https://github.com/brainsik/json-store) from 3.0

py7zr 0.11.3 has known security vulnerabilities.

Package	Installed	Affected	Info
py7zr	0.11.3	<0.17.3	show Py7zr 0.17.3 protects against directory traversal attacks by checking file paths in ArchiveFile. https://github.com/miurahr/py7zr/commit/2cb066688b05ee7427f236fd35f5598112e9d501
py7zr	0.11.3	<=0.20.0	show Py7zr 0.20.1 includes a fix for CVE-2022-44900: A directory traversal vulnerability in the SevenZipFile.extractall() function of the python library py7zr v0.20.0 and earlier allows attackers to write arbitrary files via extracting a crafted 7z file.
py7zr	0.11.3	<0.20.1	show Py7zr 0.20.1 adds protection against path traversal attacks. https://github.com/miurahr/py7zr/commit/1bb43f17515c7f69673a1c88ab9cc72a7bbef406

Package

Installed

Affected

Info

py7zr

0.11.3

<0.17.3

show

Py7zr 0.17.3 protects against directory traversal attacks by checking file paths in ArchiveFile.
https://github.com/miurahr/py7zr/commit/2cb066688b05ee7427f236fd35f5598112e9d501

py7zr

0.11.3

<=0.20.0

show

Py7zr 0.20.1 includes a fix for CVE-2022-44900: A directory traversal vulnerability in the SevenZipFile.extractall() function of the python library py7zr v0.20.0 and earlier allows attackers to write arbitrary files via extracting a crafted 7z file.

py7zr

0.11.3

<0.20.1

show

Py7zr 0.20.1 adds protection against path traversal attacks.
https://github.com/miurahr/py7zr/commit/1bb43f17515c7f69673a1c88ab9cc72a7bbef406

dependabot/pip/nonebot2-2.0.0b5

2 years, 7 months ago

3b951c83

Bump nonebot2 from 2.0.0a15 to 2.0.0b5 Bumps [nonebot2](https://github.com/nonebot/nonebot2) from 2

py7zr 0.11.3 has known security vulnerabilities.

Package	Installed	Affected	Info
py7zr	0.11.3	<0.17.3	show Py7zr 0.17.3 protects against directory traversal attacks by checking file paths in ArchiveFile. https://github.com/miurahr/py7zr/commit/2cb066688b05ee7427f236fd35f5598112e9d501
py7zr	0.11.3	<=0.20.0	show Py7zr 0.20.1 includes a fix for CVE-2022-44900: A directory traversal vulnerability in the SevenZipFile.extractall() function of the python library py7zr v0.20.0 and earlier allows attackers to write arbitrary files via extracting a crafted 7z file.
py7zr	0.11.3	<0.20.1	show Py7zr 0.20.1 adds protection against path traversal attacks. https://github.com/miurahr/py7zr/commit/1bb43f17515c7f69673a1c88ab9cc72a7bbef406

Package

Installed

Affected

Info

py7zr

0.11.3

<0.17.3

show

Py7zr 0.17.3 protects against directory traversal attacks by checking file paths in ArchiveFile.
https://github.com/miurahr/py7zr/commit/2cb066688b05ee7427f236fd35f5598112e9d501

py7zr

0.11.3

<=0.20.0

show

Py7zr 0.20.1 includes a fix for CVE-2022-44900: A directory traversal vulnerability in the SevenZipFile.extractall() function of the python library py7zr v0.20.0 and earlier allows attackers to write arbitrary files via extracting a crafted 7z file.

py7zr

0.11.3

<0.20.1

show

Py7zr 0.20.1 adds protection against path traversal attacks.
https://github.com/miurahr/py7zr/commit/1bb43f17515c7f69673a1c88ab9cc72a7bbef406

dependabot/pip/py7zr-0.20.0

2 years, 7 months ago

03110737

Bump py7zr from 0.11.3 to 0.20.0 Bumps [py7zr](https://github.com/miurahr/py7zr) from 0.11.3 to 0.2

No dependencies with known security vulnerabilities.

dependabot/pip/pypinyin-0.47.0

2 years, 7 months ago

a822607c

Bump pypinyin from 0.40.0 to 0.47.0 Bumps [pypinyin](https://github.com/mozillazg/python-pinyin) fr

py7zr 0.11.3 has known security vulnerabilities.

Package	Installed	Affected	Info
py7zr	0.11.3	<0.17.3	show Py7zr 0.17.3 protects against directory traversal attacks by checking file paths in ArchiveFile. https://github.com/miurahr/py7zr/commit/2cb066688b05ee7427f236fd35f5598112e9d501
py7zr	0.11.3	<=0.20.0	show Py7zr 0.20.1 includes a fix for CVE-2022-44900: A directory traversal vulnerability in the SevenZipFile.extractall() function of the python library py7zr v0.20.0 and earlier allows attackers to write arbitrary files via extracting a crafted 7z file.
py7zr	0.11.3	<0.20.1	show Py7zr 0.20.1 adds protection against path traversal attacks. https://github.com/miurahr/py7zr/commit/1bb43f17515c7f69673a1c88ab9cc72a7bbef406

Package

Installed

Affected

Info

py7zr

0.11.3

<0.17.3

show

Py7zr 0.17.3 protects against directory traversal attacks by checking file paths in ArchiveFile.
https://github.com/miurahr/py7zr/commit/2cb066688b05ee7427f236fd35f5598112e9d501

py7zr

0.11.3

<=0.20.0

show

Py7zr 0.20.1 includes a fix for CVE-2022-44900: A directory traversal vulnerability in the SevenZipFile.extractall() function of the python library py7zr v0.20.0 and earlier allows attackers to write arbitrary files via extracting a crafted 7z file.

py7zr

0.11.3

<0.20.1

show

Py7zr 0.20.1 adds protection against path traversal attacks.
https://github.com/miurahr/py7zr/commit/1bb43f17515c7f69673a1c88ab9cc72a7bbef406

dependabot/pip/py7zr-0.19.0

2 years, 8 months ago

7b78614a

Bump py7zr from 0.11.3 to 0.19.0 Bumps [py7zr](https://github.com/miurahr/py7zr) from 0.11.3 to 0.1

No dependencies with known security vulnerabilities.

dependabot/pip/requests-2.28.1

2 years, 8 months ago

ce957ad7

Bump requests from 2.25.1 to 2.28.1 Bumps [requests](https://github.com/psf/requests) from 2.25.1 t

py7zr 0.11.3 has known security vulnerabilities.

Package	Installed	Affected	Info
py7zr	0.11.3	<0.17.3	show Py7zr 0.17.3 protects against directory traversal attacks by checking file paths in ArchiveFile. https://github.com/miurahr/py7zr/commit/2cb066688b05ee7427f236fd35f5598112e9d501
py7zr	0.11.3	<=0.20.0	show Py7zr 0.20.1 includes a fix for CVE-2022-44900: A directory traversal vulnerability in the SevenZipFile.extractall() function of the python library py7zr v0.20.0 and earlier allows attackers to write arbitrary files via extracting a crafted 7z file.
py7zr	0.11.3	<0.20.1	show Py7zr 0.20.1 adds protection against path traversal attacks. https://github.com/miurahr/py7zr/commit/1bb43f17515c7f69673a1c88ab9cc72a7bbef406

Package

Installed

Affected

Info

py7zr

0.11.3

<0.17.3

show

Py7zr 0.17.3 protects against directory traversal attacks by checking file paths in ArchiveFile.
https://github.com/miurahr/py7zr/commit/2cb066688b05ee7427f236fd35f5598112e9d501

py7zr

0.11.3

<=0.20.0

show

Py7zr 0.20.1 includes a fix for CVE-2022-44900: A directory traversal vulnerability in the SevenZipFile.extractall() function of the python library py7zr v0.20.0 and earlier allows attackers to write arbitrary files via extracting a crafted 7z file.

py7zr

0.11.3

<0.20.1

show

Py7zr 0.20.1 adds protection against path traversal attacks.
https://github.com/miurahr/py7zr/commit/1bb43f17515c7f69673a1c88ab9cc72a7bbef406

dependabot/pip/nonebot2-2.0.0b4

2 years, 8 months ago

f9d2571a

Bump nonebot2 from 2.0.0a15 to 2.0.0b4 Bumps [nonebot2](https://github.com/nonebot/nonebot2) from 2

py7zr 0.11.3 has known security vulnerabilities.

Package	Installed	Affected	Info
py7zr	0.11.3	<0.17.3	show Py7zr 0.17.3 protects against directory traversal attacks by checking file paths in ArchiveFile. https://github.com/miurahr/py7zr/commit/2cb066688b05ee7427f236fd35f5598112e9d501
py7zr	0.11.3	<=0.20.0	show Py7zr 0.20.1 includes a fix for CVE-2022-44900: A directory traversal vulnerability in the SevenZipFile.extractall() function of the python library py7zr v0.20.0 and earlier allows attackers to write arbitrary files via extracting a crafted 7z file.
py7zr	0.11.3	<0.20.1	show Py7zr 0.20.1 adds protection against path traversal attacks. https://github.com/miurahr/py7zr/commit/1bb43f17515c7f69673a1c88ab9cc72a7bbef406

Package

Installed

Affected

Info

py7zr

0.11.3

<0.17.3

show

Py7zr 0.17.3 protects against directory traversal attacks by checking file paths in ArchiveFile.
https://github.com/miurahr/py7zr/commit/2cb066688b05ee7427f236fd35f5598112e9d501

py7zr

0.11.3

<=0.20.0

show

Py7zr 0.20.1 includes a fix for CVE-2022-44900: A directory traversal vulnerability in the SevenZipFile.extractall() function of the python library py7zr v0.20.0 and earlier allows attackers to write arbitrary files via extracting a crafted 7z file.

py7zr

0.11.3

<0.20.1

show

Py7zr 0.20.1 adds protection against path traversal attacks.
https://github.com/miurahr/py7zr/commit/1bb43f17515c7f69673a1c88ab9cc72a7bbef406

dependabot/pip/watchdog-watchmedo--2.1.9

2 years, 9 months ago

05c2c89f

Bump watchdog[watchmedo] from 1.0.2 to 2.1.9 Bumps [watchdog[watchmedo]](https://github.com/gorakha

py7zr 0.11.3 has known security vulnerabilities.

Package	Installed	Affected	Info
py7zr	0.11.3	<0.17.3	show Py7zr 0.17.3 protects against directory traversal attacks by checking file paths in ArchiveFile. https://github.com/miurahr/py7zr/commit/2cb066688b05ee7427f236fd35f5598112e9d501
py7zr	0.11.3	<=0.20.0	show Py7zr 0.20.1 includes a fix for CVE-2022-44900: A directory traversal vulnerability in the SevenZipFile.extractall() function of the python library py7zr v0.20.0 and earlier allows attackers to write arbitrary files via extracting a crafted 7z file.
py7zr	0.11.3	<0.20.1	show Py7zr 0.20.1 adds protection against path traversal attacks. https://github.com/miurahr/py7zr/commit/1bb43f17515c7f69673a1c88ab9cc72a7bbef406

Package

Installed

Affected

Info

py7zr

0.11.3

<0.17.3

show

Py7zr 0.17.3 protects against directory traversal attacks by checking file paths in ArchiveFile.
https://github.com/miurahr/py7zr/commit/2cb066688b05ee7427f236fd35f5598112e9d501

py7zr

0.11.3

<=0.20.0

show

Py7zr 0.20.1 includes a fix for CVE-2022-44900: A directory traversal vulnerability in the SevenZipFile.extractall() function of the python library py7zr v0.20.0 and earlier allows attackers to write arbitrary files via extracting a crafted 7z file.

py7zr

0.11.3

<0.20.1

show

Py7zr 0.20.1 adds protection against path traversal attacks.
https://github.com/miurahr/py7zr/commit/1bb43f17515c7f69673a1c88ab9cc72a7bbef406

dependabot/pip/requests-2.28.0

2 years, 9 months ago

7003d7a9

Bump requests from 2.25.1 to 2.28.0 Bumps [requests](https://github.com/psf/requests) from 2.25.1 t

py7zr 0.11.3 has known security vulnerabilities.

Package	Installed	Affected	Info
py7zr	0.11.3	<0.17.3	show Py7zr 0.17.3 protects against directory traversal attacks by checking file paths in ArchiveFile. https://github.com/miurahr/py7zr/commit/2cb066688b05ee7427f236fd35f5598112e9d501
py7zr	0.11.3	<=0.20.0	show Py7zr 0.20.1 includes a fix for CVE-2022-44900: A directory traversal vulnerability in the SevenZipFile.extractall() function of the python library py7zr v0.20.0 and earlier allows attackers to write arbitrary files via extracting a crafted 7z file.
py7zr	0.11.3	<0.20.1	show Py7zr 0.20.1 adds protection against path traversal attacks. https://github.com/miurahr/py7zr/commit/1bb43f17515c7f69673a1c88ab9cc72a7bbef406

Package

Installed

Affected

Info

py7zr

0.11.3

<0.17.3

show

Py7zr 0.17.3 protects against directory traversal attacks by checking file paths in ArchiveFile.
https://github.com/miurahr/py7zr/commit/2cb066688b05ee7427f236fd35f5598112e9d501

py7zr

0.11.3

<=0.20.0

show

Py7zr 0.20.1 includes a fix for CVE-2022-44900: A directory traversal vulnerability in the SevenZipFile.extractall() function of the python library py7zr v0.20.0 and earlier allows attackers to write arbitrary files via extracting a crafted 7z file.

py7zr

0.11.3

<0.20.1

show

Py7zr 0.20.1 adds protection against path traversal attacks.
https://github.com/miurahr/py7zr/commit/1bb43f17515c7f69673a1c88ab9cc72a7bbef406

dependabot/pip/py7zr-0.18.9

2 years, 9 months ago

3369fdbc

Bump py7zr from 0.11.3 to 0.18.9 Bumps [py7zr](https://github.com/miurahr/py7zr) from 0.11.3 to 0.1

No dependencies with known security vulnerabilities.

dependabot/pip/py7zr-0.18.7

2 years, 9 months ago

4bddcf22

Bump py7zr from 0.11.3 to 0.18.7 Bumps [py7zr](https://github.com/miurahr/py7zr) from 0.11.3 to 0.1

No dependencies with known security vulnerabilities.

dependabot/pip/nonebot2-2.0.0b3

2 years, 9 months ago

a397c0c0

Bump nonebot2 from 2.0.0a15 to 2.0.0b3 Bumps [nonebot2](https://github.com/nonebot/nonebot2) from 2

py7zr 0.11.3 has known security vulnerabilities.

Package	Installed	Affected	Info
py7zr	0.11.3	<0.17.3	show Py7zr 0.17.3 protects against directory traversal attacks by checking file paths in ArchiveFile. https://github.com/miurahr/py7zr/commit/2cb066688b05ee7427f236fd35f5598112e9d501
py7zr	0.11.3	<=0.20.0	show Py7zr 0.20.1 includes a fix for CVE-2022-44900: A directory traversal vulnerability in the SevenZipFile.extractall() function of the python library py7zr v0.20.0 and earlier allows attackers to write arbitrary files via extracting a crafted 7z file.
py7zr	0.11.3	<0.20.1	show Py7zr 0.20.1 adds protection against path traversal attacks. https://github.com/miurahr/py7zr/commit/1bb43f17515c7f69673a1c88ab9cc72a7bbef406

Package

Installed

Affected

Info

py7zr

0.11.3

<0.17.3

show

Py7zr 0.17.3 protects against directory traversal attacks by checking file paths in ArchiveFile.
https://github.com/miurahr/py7zr/commit/2cb066688b05ee7427f236fd35f5598112e9d501

py7zr

0.11.3

<=0.20.0

show

Py7zr 0.20.1 includes a fix for CVE-2022-44900: A directory traversal vulnerability in the SevenZipFile.extractall() function of the python library py7zr v0.20.0 and earlier allows attackers to write arbitrary files via extracting a crafted 7z file.

py7zr

0.11.3

<0.20.1

show

Py7zr 0.20.1 adds protection against path traversal attacks.
https://github.com/miurahr/py7zr/commit/1bb43f17515c7f69673a1c88ab9cc72a7bbef406