android-uiconductor
android-uiconductor copied to clipboard
google
Bumps [idna](https://github.com/kjd/idna) from 2.8 to 3.7. Release notes Sourced from idna's releases. v3.7 What's Changed Fix issue where specially crafted inputs to encode() could take exceptionally long amount of time...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps [pillow](https://github.com/python-pillow/Pillow) from 6.0.0 to 10.3.0. Release notes Sourced from pillow's releases. 10.3.0 https://pillow.readthedocs.io/en/stable/releasenotes/10.3.0.html Changes CVE-2024-28219: Use strncpy to avoid buffer overflow #7928 [@hugovk] Use functools.lru_cache for hopper() #7912 [@hugovk]...
Bumps [express](https://github.com/expressjs/express) from 4.17.1 to 4.19.2. Release notes Sourced from express's releases. 4.19.2 What's Changed Improved fix for open redirect allow list bypass Full Changelog: https://github.com/expressjs/express/compare/4.19.1...4.19.2 4.19.1 What's Changed Fix...
Bumps [follow-redirects](https://github.com/follow-redirects/follow-redirects) from 1.13.3 to 1.15.6. Commits 35a517c Release version 1.15.6 of the npm package. c4f847f Drop Proxy-Authorization across hosts. 8526b4a Use GitHub for disclosure. b1677ce Release version 1.15.5 of...
Bumps [browserify-sign](https://github.com/crypto-browserify/browserify-sign) from 4.2.1 to 4.2.2. Changelog Sourced from browserify-sign's changelog. v4.2.2 - 2023-10-25 Fixed [Tests] log when openssl doesn't support cipher [#37](https://github.com/crypto-browserify/browserify-sign/issues/37) Commits Only apps should have lockfiles 09a8995...
Bumps [werkzeug](https://github.com/pallets/werkzeug) from 0.15.4 to 3.0.1. Release notes Sourced from werkzeug's releases. 3.0.1 This is a security release for the 3.0.x feature branch. Changes: https://werkzeug.palletsprojects.com/en/3.0.x/changes/#version-3-0-1 3.0.0 This is a feature...
Bumps [urllib3](https://github.com/urllib3/urllib3) from 1.25.3 to 1.26.18. Release notes Sourced from urllib3's releases. 1.26.18 Made body stripped from HTTP requests changing the request method to GET after HTTP 303 "See Other"...
Bumps [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse) from 7.13.0 to 7.23.2. Release notes Sourced from @babel/traverse's releases. v7.23.2 (2023-10-11) NOTE: This release also re-publishes @babel/core, even if it does not appear in the linked release...
Bumps [org.eclipse.jetty:jetty-http](https://github.com/eclipse/jetty.project) from 9.4.19.v20190610 to 9.4.53.v20231009. Release notes Sourced from org.eclipse.jetty:jetty-http's releases. 9.4.53.v20231009 Security Updates This release addresses: CVE-2023-44487 CVE-2023-36478 Sponsored Release This is a release of the End of...
_This issue was automatically created by [Allstar](https://github.com/ossf/allstar/)._ **Security Policy Violation** Project is out of compliance with Binary Artifacts policy: binaries present in source code **Rule Description** Binary Artifacts are an...
![allstar-app[bot] avatar](https://avatars.githubusercontent.com/in/119816?v=4 "allstar-app[bot] avatar"){kind=avatar}