algorithms

algorithms copied to clipboard

Snyk has created this PR to fix one or more vulnerable packages in the `pip` dependencies of this project. #### Changes included in this PR - Changes to the following...

snyk-bot

Dependency Graph

6

If you upload all meta data or just their dependency in some easy to use format like xml , json or even an mySQL full db dump, I can implement...

Fazel94

michaeladamkatz

Bumps [werkzeug](https://github.com/pallets/werkzeug) from 2.0.2 to 2.2.3. Release notes Sourced from werkzeug's releases. 2.2.3 This is a fix release for the 2.2.x release branch. Changes: https://werkzeug.palletsprojects.com/en/2.2.x/changes/#version-2-2-3 Milestone: https://github.com/pallets/werkzeug/milestone/26?closed=1 This release contains...

dependabot[bot]

Bumps [werkzeug](https://github.com/pallets/werkzeug) from 1.0.1 to 2.2.3. Release notes Sourced from werkzeug's releases. 2.2.3 This is a fix release for the 2.2.x release branch. Changes: https://werkzeug.palletsprojects.com/en/2.2.x/changes/#version-2-2-3 Milestone: https://github.com/pallets/werkzeug/milestone/26?closed=1 This release contains...

dependabot[bot]

Bumps [wheel](https://github.com/pypa/wheel) from 0.37.0 to 0.38.1. Changelog Sourced from wheel's changelog. Release Notes UNRELEASED Updated vendored packaging to 22.0 0.38.4 (2022-11-09) Fixed PKG-INFO conversion in bdist_wheel mangling UTF-8 header values...

dependabot[bot]

Bumps [wheel](https://github.com/pypa/wheel) from 0.37.0 to 0.38.1. Changelog Sourced from wheel's changelog. Release Notes UNRELEASED Updated vendored packaging to 22.0 0.38.4 (2022-11-09) Fixed PKG-INFO conversion in bdist_wheel mangling UTF-8 header values...

dependabot[bot]

# Patching CVE-2007-4559 Hi, we are security researchers from the Advanced Research Center at [Trellix](https://www.trellix.com). We have began a campaign to patch a widespread bug named CVE-2007-4559. CVE-2007-4559 is a...

TrellixVulnTeam

Bumps [joblib](https://github.com/joblib/joblib) from 0.13.2 to 1.2.0. Changelog Sourced from joblib's changelog. Release 1.2.0 Fix a security issue where eval(pre_dispatch) could potentially run arbitrary code. Now only basic numerics are supported....

dependabot[bot]