MIRRORS/layerindex-web
1
0
Fork 0
mirror of git://git.yoctoproject.org/layerindex-web.git synced 2025-07-05 05:04:46 +02:00
Code Issues Actions Packages Projects Releases Wiki Activity

build(deps): bump gitpython from 3.1.32 to 3.1.37

Browse Source 
This release contains another security fix that further improves validation
of symbolic references and thus properly fixes this CVE:
https://github.com/advisories/GHSA-cwvm-v4w8-q58c (CVE-2023-41040).

https://github.com/gitpython-developers/GitPython/blob/main/doc/source/changes.rst

Signed-off-by: Tim Orling <tim.orling@konsulko.com>
This commit is contained in:
Tim Orling 2023-09-29 08:02:46 -07:00
parent 7b316cddfb
commit a2e23f1e20
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
requirements.txt
View File

@ -16,7 +16,7 @@ django-reversion-compare==0.14.1
django-simple-captcha==0.5.14
djangorestframework==3.13.1
gitdb==4.0.9
GitPython==3.1.32
GitPython==3.1.37
kombu==5.2.3
mysqlclient==2.1.0
Pillow==9.3.0