Safety CI > spacemanspiff2007/HABApp

Develop

1 month ago

2d3adbbb

ci

No dependencies with known security vulnerabilities.

Develop

1 month, 1 week ago

9db6f037

Align __all__ and reexports with official documentation for linter compatibility (#500)

No dependencies with known security vulnerabilities.

Develop

3 months ago

0da478f5

.

No dependencies with known security vulnerabilities.

Develop

3 months ago

700cb527

.

No dependencies with known security vulnerabilities.

Develop

3 months ago

9970c2b3

Require Python 3.11

No dependencies with known security vulnerabilities.

Develop

3 months ago

e752033b

Implemented code generator for models

No dependencies with known security vulnerabilities.

master

3 months ago

6aedb242

25.07.0 (#498) Support for OpenHAB 5.0

No dependencies with known security vulnerabilities.

Develop

3 months ago

27a6866b

Support for OpenHAB 5.0

No dependencies with known security vulnerabilities.

Develop

3 months ago

545ac3a7

remove workaround

aiohttp 3.12.12 has known security vulnerabilities.

Package	Installed	Affected	Info
aiohttp	3.12.12	<3.12.14	show AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.12.14, the Python parser is vulnerable to a request smuggling vulnerability due to not parsing trailer sections of an HTTP request. If a pure Python version of aiohttp is installed (i.e. without the usual C extensions) or AIOHTTP_NO_EXTENSIONS is enabled, then an attacker may be able to execute a request smuggling attack to bypass certain firewalls or proxy protections. Version 3.12.14 contains a patch for this issue.

Package

Installed

Affected

Info

aiohttp

3.12.12

<3.12.14

show

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.12.14, the Python parser is vulnerable to a request smuggling vulnerability due to not parsing trailer sections of an HTTP request. If a pure Python version of aiohttp is installed (i.e. without the usual C extensions) or AIOHTTP_NO_EXTENSIONS is enabled, then an attacker may be able to execute a request smuggling attack to bypass certain firewalls or proxy protections. Version 3.12.14 contains a patch for this issue.

dependabot/pip/aiohttp-3.12.14

3 months, 2 weeks ago

9244930f

Bump aiohttp from 3.12.12 to 3.12.14 Bumps [aiohttp](https://github.com/aio-libs/aiohttp) from 3.12

No dependencies with known security vulnerabilities.

Develop

4 months, 2 weeks ago

8eb1d125

.

No dependencies with known security vulnerabilities.

master

4 months, 2 weeks ago

578500fa

25.06.2

No dependencies with known security vulnerabilities.

Develop

4 months, 2 weeks ago

2ea52d84

.

No dependencies with known security vulnerabilities.

Develop

4 months, 2 weeks ago

36db4195

.

No dependencies with known security vulnerabilities.

Develop

4 months, 3 weeks ago

bf6ea1e8

.

No dependencies with known security vulnerabilities.