digihel

digihel copied to clipboard

Bumps [decode-uri-component](https://github.com/SamVerschueren/decode-uri-component) from 0.2.0 to 0.2.2. Release notes Sourced from decode-uri-component's releases. v0.2.2 Prevent overwriting previously decoded tokens 980e0bf https://github.com/SamVerschueren/decode-uri-component/compare/v0.2.1...v0.2.2 v0.2.1 Switch to GitHub workflows 76abc93 Fix issue where decode...

dependabot[bot]

Bumps [moment](https://github.com/moment/moment) from 2.24.0 to 2.29.4. Changelog Sourced from moment's changelog. 2.29.4 Release Jul 6, 2022 #6015 [bugfix] Fix ReDoS in preprocessRFC2822 regex 2.29.3 Full changelog Release Apr 17, 2022...

dependabot[bot]

Bumps [lxml](https://github.com/lxml/lxml) from 4.3.3 to 4.6.5. Changelog Sourced from lxml's changelog. 4.6.5 (2021-12-12) Bugs fixed A vulnerability (GHSL-2021-1038) in the HTML cleaner allowed sneaking script content through SVG images. A...

dependabot[bot]

Bumps [wagtail](https://github.com/wagtail/wagtail) from 2.5.1 to 2.11.8. Release notes Sourced from wagtail's releases. 2.11.8 CVE-2021-32681 - fix improper escaping of HTML ('Cross-site Scripting') in Wagtail StreamField blocks (Karen Tracey, Matt Westcott)...

dependabot[bot]

Bumps [django](https://github.com/django/django) from 2.2.1 to 2.2.24. Commits 2da029d [2.2.x] Bumped version for 2.2.24 release. f27c38a [2.2.x] Fixed CVE-2021-33571 -- Prevented leading zeros in IPv4 addresses. 053cc95 [2.2.x] Fixed CVE-2021-33203 --...

dependabot[bot]

Add a "glossary" system for term management

2

* add a model for Term Categories (these group Terms, below) * add a model for Term (has a reference to a Category, a name, a rich text (HTML) description,...

terotik

Bumps [lodash](https://github.com/lodash/lodash) from 4.17.11 to 4.17.21. Commits f299b52 Bump to v4.17.21 c4847eb Improve performance of toNumber, trim and trimEnd on large input strings 3469357 Prevent command injection through _.template's variable...

dependabot[bot]

Bumps [rsa](https://github.com/sybrenstuvel/python-rsa) from 4.0 to 4.7. Changelog Sourced from rsa's changelog. Version 4.7 - released 2021-01-10 Fix #165: CVE-2020-25658 - Bleichenbacher-style timing oracle in PKCS#1 v1.5 decryption code Add padding...

dependabot[bot]

Bumps [urllib3](https://github.com/urllib3/urllib3) from 1.25.2 to 1.25.8. Release notes Sourced from urllib3's releases. 1.25.8 Release: 1.25.8 1.25.7 No release notes provided. 1.25.6 Release: 1.25.6 1.25.5 Release: 1.25.5 1.25.4 Release: 1.25.4 Changelog...

dependabot[bot]

Bumps [py](https://github.com/pytest-dev/py) from 1.8.0 to 1.10.0. Changelog Sourced from py's changelog. 1.10.0 (2020-12-12) Fix a regular expression DoS vulnerability in the py.path.svnwc SVN blame functionality (CVE-2020-29651) Update vendored apipkg: 1.4...

dependabot[bot]