Dlog

Dlog copied to clipboard

Bumps [tensorflow](https://github.com/tensorflow/tensorflow) from 2.1.2 to 2.9.3. Release notes Sourced from tensorflow's releases. TensorFlow 2.9.3 Release 2.9.3 This release introduces several vulnerability fixes: Fixes an overflow in tf.keras.losses.poisson (CVE-2022-41887) Fixes a...

dependabot[bot]

Bumps [joblib](https://github.com/joblib/joblib) from 0.14.1 to 1.2.0. Changelog Sourced from joblib's changelog. Release 1.2.0 Fix a security issue where eval(pre_dispatch) could potentially run arbitrary code. Now only basic numerics are supported....

dependabot[bot]

Bumps [protobuf](https://github.com/protocolbuffers/protobuf) from 3.11.4 to 3.18.3. Release notes Sourced from protobuf's releases. Protocol Buffers v3.18.3 C++ Reduce memory consumption of MessageSet parsing This release addresses a Security Advisory for C++...

dependabot[bot]

Bumps [numpy](https://github.com/numpy/numpy) from 1.18.1 to 1.22.0. Release notes Sourced from numpy's releases. v1.22.0 NumPy 1.22.0 Release Notes NumPy 1.22.0 is a big release featuring the work of 153 contributors spread...

dependabot[bot]

Bumps [pyjwt](https://github.com/jpadilla/pyjwt) from 1.7.1 to 2.4.0. Release notes Sourced from pyjwt's releases. 2.4.0 Security [CVE-2022-29217] Prevent key confusion through non-blocklisted public key formats. https://github.com/jpadilla/pyjwt/security/advisories/GHSA-ffqj-6fqr-9h24 What's Changed Add support for Python...

dependabot[bot]

zzkluck

Bumps [urllib3](https://github.com/urllib3/urllib3) from 1.25.8 to 1.26.5. Release notes Sourced from urllib3's releases. 1.26.5 :warning: IMPORTANT: urllib3 v2.0 will drop support for Python 2: Read more in the v2.0 Roadmap Fixed...

dependabot[bot]

Bumps [rsa](https://github.com/sybrenstuvel/python-rsa) from 4.0 to 4.7. Changelog Sourced from rsa's changelog. Version 4.7 - released 2021-01-10 Fix #165: CVE-2020-25658 - Bleichenbacher-style timing oracle in PKCS#1 v1.5 decryption code Add padding...

dependabot[bot]

Bumps [pyyaml](https://github.com/yaml/pyyaml) from 5.3 to 5.4. Changelog Sourced from pyyaml's changelog. 5.4 (2021-01-19) yaml/pyyaml#407 -- Build modernization, remove distutils, fix metadata, build wheels, CI to GHA yaml/pyyaml#472 -- Fix for...

dependabot[bot]

Bumps [cryptography](https://github.com/pyca/cryptography) from 2.8 to 3.2. Changelog Sourced from cryptography's changelog. 3.2 - 2020-10-25 * **SECURITY ISSUE:** Attempted to make RSA PKCS#1v1.5 decryption more constant time, to protect against Bleichenbacher...

dependabot[bot]