automate-the-boring-stuff-projects

automate-the-boring-stuff-projects copied to clipboard

Bumps [lxml](https://github.com/lxml/lxml) from 4.3.3 to 4.9.1. Changelog Sourced from lxml's changelog. 4.9.1 (2022-07-01) Bugs fixed A crash was resolved when using iterwalk() (or canonicalize()) after parsing certain incorrect input. Note...

dependabot[bot]

Bumps [pyjwt](https://github.com/jpadilla/pyjwt) from 1.7.1 to 2.4.0. Release notes Sourced from pyjwt's releases. 2.4.0 Security [CVE-2022-29217] Prevent key confusion through non-blocklisted public key formats. https://github.com/jpadilla/pyjwt/security/advisories/GHSA-ffqj-6fqr-9h24 What's Changed Add support for Python...

dependabot[bot]

Bumps [pypdf2](https://github.com/py-pdf/PyPDF2) from 1.26.0 to 1.27.5. Release notes Sourced from pypdf2's releases. Version 1.27.5, 2022-04-15 Security (SEC) ContentStream_readInlineImage had potential infinite loop (#740) Bug fixes (BUG) Fix merging encrypted files...

dependabot[bot]

Bumps [pillow](https://github.com/python-pillow/Pillow) from 6.0.0 to 9.0.1. Release notes Sourced from pillow's releases. 9.0.1 https://pillow.readthedocs.io/en/stable/releasenotes/9.0.1.html Changes In show_file, use os.remove to remove temporary images. CVE-2022-24303 #6010 [@​radarhere, @​hugovk] Restrict builtins within...

dependabot[bot]

AllenIge

Bumps [certifi](https://github.com/certifi/python-certifi) from 2019.3.9 to 2022.12.7. Commits 9e9e840 2022.12.07 b81bdb2 2022.09.24 939a28f 2022.09.14 aca828a 2022.06.15.2 de0eae1 Only use importlib.resources's new files() / Traversable API on Python ≥3.11 ... b8eb5e9 2022.06.15.1...

dependabot[bot]

Bumps [pillow](https://github.com/python-pillow/Pillow) from 6.0.0 to 9.3.0. Release notes Sourced from pillow's releases. 9.3.0 https://pillow.readthedocs.io/en/stable/releasenotes/9.3.0.html Changes Initialize libtiff buffer when saving #6699 [@​radarhere] Limit SAMPLESPERPIXEL to avoid runtime DOS #6700 [@​wiredfool]...

dependabot[bot]