Oryx
Oryx copied to clipboard
microsoft
Build your repo automatically.
### Bug Report - **At what date and time did you most recently experience the problem?** November 11-13, 2025 (after refactoring the project to use Oryx uv build with `pyproject.toml`...
Bumps [django](https://github.com/django/django) from 4.2.7 to 4.2.27. Commits 5948e66 [4.2.x] Bumped version for 4.2.27 release. 4d2b880 [4.2.x] Fixed CVE-2025-64460 -- Corrected quadratic inner text accumulation i... f997037 [4.2.x] Fixed CVE-2025-13372 --...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps [werkzeug](https://github.com/pallets/werkzeug) from 0.15.3 to 3.1.4. Release notes Sourced from werkzeug's releases. 3.1.4 This is the Werkzeug 3.1.4 fix release, which fixes bugs but does not otherwise change behavior and...
Bumps [werkzeug](https://github.com/pallets/werkzeug) from 2.2.3 to 3.1.4. Release notes Sourced from werkzeug's releases. 3.1.4 This is the Werkzeug 3.1.4 fix release, which fixes bugs but does not otherwise change behavior and...
Bumps [werkzeug](https://github.com/pallets/werkzeug) from 0.15.5 to 3.1.4. Release notes Sourced from werkzeug's releases. 3.1.4 This is the Werkzeug 3.1.4 fix release, which fixes bugs but does not otherwise change behavior and...
Hi Team, I currently have a problem with a Node.js 20 project. When deploying it to Azure and using Oryx Build, it always gives an error: Module build failed: Error:...
Bumps [node-forge](https://github.com/digitalbazaar/forge) from 1.3.1 to 1.3.2. Changelog Sourced from node-forge's changelog. 1.3.2 - 2025-11-25 Security HIGH: ASN.1 Validator Desynchronization An Interpretation Conflict (CWE-436) vulnerability in node-forge versions 1.3.1 and below...
Bumps [node-forge](https://github.com/digitalbazaar/forge) from 1.3.1 to 1.3.2. Changelog Sourced from node-forge's changelog. 1.3.2 - 2025-11-25 Security HIGH: ASN.1 Validator Desynchronization An Interpretation Conflict (CWE-436) vulnerability in node-forge versions 1.3.1 and below...
Bumps [glob](https://github.com/isaacs/node-glob) from 10.4.5 to 10.5.0. Commits 56774ef 10.5.0 1e4e297 bin: Do not expose filenames to shell expansion See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve...
Bumps [django](https://github.com/django/django) from 2.2.28 to 4.2.26. Commits 0dfd59e [4.2.x] Bumped version for 4.2.26 release. 279f8b9 [4.2.x] Refs CVE-2025-64459 -- Avoided propagating invalid arguments to Q on ... 59ae82e [4.2.x] Fixed...