covid-19-ro-help
covid-19-ro-help copied to clipboard
code4romania
Platform for NGOs to create donation requests and to broadcast their services in an emergency
Bumps [pillow](https://github.com/python-pillow/Pillow) from 7.0.0 to 9.3.0. Release notes Sourced from pillow's releases. 9.3.0 https://pillow.readthedocs.io/en/stable/releasenotes/9.3.0.html Changes Initialize libtiff buffer when saving #6699 [@radarhere] Limit SAMPLESPERPIXEL to avoid runtime DOS #6700 [@wiredfool]...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Change the instances where the mobilpay modules located here https://github.com/code4romania/covid-19-ro-help/tree/develop/ro_help/mobilpay/mobilpay are using the pycrypto library. [PyCrypto](https://pypi.org/project/pycrypto/) has not been updated since 2013 and it is not tested with Python>3.3. [pyOpenSSL](https://pypi.org/project/pyOpenSSL/)...
Bumps [django](https://github.com/django/django) from 3.0.4 to 3.1.13. Commits 43873b9 [3.1.x] Bumped version for 3.1.13 release. 0bd57a8 [3.1.x] Fixed CVE-2021-35042 -- Prevented SQL injection in QuerySet.order_by(). 8dc1cc0 [3.1.x] Added stub release notes...
Add a few unit tests for the mobilpay low-level crypto. Useful for #386, to verify replacement implementation later on. Decryption is verified against the stand-alone openssl tool, encryption is verified...
As of commit d429483186d01eb1e6ffd449986632ee3eb57850, ``` $ grep -o 'Downloading [^-]*' pip.log | sort | uniq -c | sort -nr | head -4 258 Downloading boto3 9 Downloading django_admin_rangefilter 6 Downloading...
At commit d429483186d01eb1e6ffd449986632ee3eb57850, running "docker-compose up" fails at the "pip3 install" step with: ``` ERROR: Cannot install -r requirements.txt (line 6) and django-crispy-forms=1.9.0 because these package versions have conflicting dependencies....
Bumps [django-debug-toolbar](https://github.com/jazzband/django-debug-toolbar) from 2.2 to 2.2.1. Changelog Sourced from django-debug-toolbar's changelog. 2.2.1 (2021-04-14) Fixed SQL Injection vulnerability, CVE-2021-30459. The toolbar now calculates a signature on all fields for the SQL...
Starting point: http://dev.rohelp.ro/en/admin/auth/ **Expected**: Both Groups & Users submenus accept adding a new group or/and user with an username consisting of letters, digits & symbols 
Starting point: http://dev.rohelp.ro/en/admin/auth/user/ **Expected**: Create a new user consisting of an username & a password with at least couple of characters **Actual**: Able to create a new user consisting of...
Metadata
Owner
Metadata
Platform for NGOs to create donation requests and to broadcast their services in an emergency