Safety CI > spacemanspiff2007/HABApp

Develop

2 weeks, 3 days ago

0da478f5

.

No dependencies with known security vulnerabilities.

Develop

2 weeks, 3 days ago

700cb527

.

No dependencies with known security vulnerabilities.

Develop

2 weeks, 3 days ago

9970c2b3

Require Python 3.11

No dependencies with known security vulnerabilities.

Develop

2 weeks, 3 days ago

e752033b

Implemented code generator for models

No dependencies with known security vulnerabilities.

master

2 weeks, 3 days ago

6aedb242

25.07.0 (#498) Support for OpenHAB 5.0

No dependencies with known security vulnerabilities.

Develop

2 weeks, 3 days ago

27a6866b

Support for OpenHAB 5.0

No dependencies with known security vulnerabilities.

Develop

2 weeks, 3 days ago

545ac3a7

remove workaround

aiohttp 3.12.12 has known security vulnerabilities.

Package	Installed	Affected	Info
aiohttp	3.12.12	<3.12.14	show AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.12.14, the Python parser is vulnerable to a request smuggling vulnerability due to not parsing trailer sections of an HTTP request. If a pure Python version of aiohttp is installed (i.e. without the usual C extensions) or AIOHTTP_NO_EXTENSIONS is enabled, then an attacker may be able to execute a request smuggling attack to bypass certain firewalls or proxy protections. Version 3.12.14 contains a patch for this issue.

Package

Installed

Affected

Info

aiohttp

3.12.12

<3.12.14

show

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.12.14, the Python parser is vulnerable to a request smuggling vulnerability due to not parsing trailer sections of an HTTP request. If a pure Python version of aiohttp is installed (i.e. without the usual C extensions) or AIOHTTP_NO_EXTENSIONS is enabled, then an attacker may be able to execute a request smuggling attack to bypass certain firewalls or proxy protections. Version 3.12.14 contains a patch for this issue.

dependabot/pip/aiohttp-3.12.14

4 weeks, 1 day ago

9244930f

Bump aiohttp from 3.12.12 to 3.12.14 Bumps [aiohttp](https://github.com/aio-libs/aiohttp) from 3.12

No dependencies with known security vulnerabilities.

Develop

2 months ago

8eb1d125

.

No dependencies with known security vulnerabilities.

master

2 months ago

578500fa

25.06.2

No dependencies with known security vulnerabilities.

Develop

2 months ago

2ea52d84

.

No dependencies with known security vulnerabilities.

Develop

2 months ago

36db4195

.

No dependencies with known security vulnerabilities.

Develop

2 months, 1 week ago

bf6ea1e8

.

No dependencies with known security vulnerabilities.

master

2 months, 1 week ago

518189f2

25.6.1 (#493)

No dependencies with known security vulnerabilities.

Develop

2 months, 1 week ago

8c731157

25.6.1

No dependencies with known security vulnerabilities.