Sergiu Stefanov issues

Repositories
Issues
Comments

Results 1 issues of


                                            Sergiu Stefanov

CVE in dependency (black==22.3.0)

`black==22.3.0` is a dependency and the version is pinned in spaCy's `requirements.txt`. There is a CVE affecting `black` versions prior to `24.3.0`, specifically CVE-2024-21503 (https://nvd.nist.gov/vuln/detail/CVE-2024-21503). Impact: Although not a run-time...