Skip to content

Commit

Permalink
fix(deps): bump django from 4.2.13 to 4.2.14 (#101)
Browse files Browse the repository at this point in the history 
Bumps [django](https://github.com/django/django) from 4.2.13 to 4.2.14.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/django/django/commit/98cf264c9cb0561e4ec305a621e9d58116e44aef"><code>98cf264</code></a>
[4.2.x] Bumped version for 4.2.14 release.</li>
<li><a
href="https://github.com/django/django/commit/17358fb35fb7217423d4c4877ccb6d1a3a40b1c3"><code>17358fb</code></a>
[4.2.x] Fixed CVE-2024-39614 -- Mitigated potential DoS in
get_supported_lang...</li>
<li><a
href="https://github.com/django/django/commit/2b00edc0151a660d1eb86da4059904a0fc4e095e"><code>2b00edc</code></a>
[4.2.x] Fixed CVE-2024-39330 -- Added extra file name validation in
Storage's...</li>
<li><a
href="https://github.com/django/django/commit/156d3186c96e3ec2ca73b8b25dc2ef366e38df14"><code>156d318</code></a>
[4.2.x] Fixed CVE-2024-39329 -- Standarized timing of verify_password()
when ...</li>
<li><a
href="https://github.com/django/django/commit/79f368764295df109a37192f6182fb6f361d85b5"><code>79f3687</code></a>
[4.2.x] Fixed CVE-2024-38875 -- Mitigated potential DoS in urlize and
urlizet...</li>
<li><a
href="https://github.com/django/django/commit/446cdab13485e99939f06b74c563d5bb992330b2"><code>446cdab</code></a>
[4.2.x] Added stub release notes for 4.2.14.</li>
<li><a
href="https://github.com/django/django/commit/d26c8838d0a447d5cba03a0b4eebd5fc2d27e9df"><code>d26c883</code></a>
[4.2.x]Post-release version bump.</li>
<li>See full diff in <a
href="https://github.com/django/django/compare/4.2.13...4.2.14">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=django&package-manager=pip&previous-version=4.2.13&new-version=4.2.14)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>
  • Loading branch information
@akalipetis
akalipetis authored Jul 10, 2024
2 parents a851498 + 066dd24 commit dd416b8
Showing 1 changed file with 4 additions and 4 deletions.
8 changes: 4 additions & 4 deletions poetry.lock
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

0 comments on commit dd416b8

Please sign in to comment.