RADar-AZDelta/archived-azd-radar-ai-lungcancerExplainableDecisionSupport
1
0
Fork 0
mirror of https://github.com/RADar-AZDelta/azd-radar-ai-lungcancerExplainableDecisionSupport.git synced 2026-03-23 20:37:03 +00:00
Code Issues 2 Projects Packages Wiki Activity

[PR #5] Bump gitpython from 3.1.32 to 3.1.37 #5

New issue
Open
opened 2026-03-23 20:29:15 +00:00 by mirror · 0 comments
mirror commented 2026-03-23 20:29:15 +00:00
Owner
Copy link

📋 Pull Request Information

Original PR: https://github.com/RADar-AZDelta/azd-radar-ai-lungcancerExplainableDecisionSupport/pull/5
Author: @dependabot[bot]
Created: 10/10/2023
Status: 🔄 Open

Base: masterHead: dependabot/pip/gitpython-3.1.37

📝 Commits (1)

  • 2e3d6c9 Bump gitpython from 3.1.32 to 3.1.37

📊 Changes

1 file changed (+504 additions, -393 deletions)

View changed files

📝 Pipfile.lock (+504 -393)

📄 Description

Bumps gitpython from 3.1.32 to 3.1.37.

Release notes

Sourced from gitpython's releases.

3.1.37 - a proper fix CVE-2023-41040

What's Changed

Full Changelog: https://github.com/gitpython-developers/GitPython/compare/3.1.36...3.1.37

3.1.35 - a fix for CVE-2023-41040

What's Changed

New Contributors

Full Changelog: https://github.com/gitpython-developers/GitPython/compare/3.1.34...3.1.35

3.1.34 - fix resource leaking

What's Changed

New Contributors

Full Changelog: https://github.com/gitpython-developers/GitPython/compare/3.1.33...3.1.34

v3.1.33 - with security fix

What's Changed

... (truncated)

Commits
  • b27a89f fix makefile to compare commit hashes only
  • 0bd2890 prepare next release
  • 832b6ee remove unnecessary list comprehension to fix CI
  • e98f57b Merge pull request #1672 from trail-of-forks/robust-refname-checks
  • 1774f1e Merge pull request #1677 from EliahKagan/no-noeffect
  • a4701a0 Remove @NoEffect annotations
  • d40320b Merge pull request #1675 from EliahKagan/rollback
  • d1c1f31 Merge pull request #1673 from EliahKagan/flake8
  • e480985 Tweak rollback logic in log.to_file
  • ff84b26 Refactor try-finally cleanup in git/
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.

## 📋 Pull Request Information **Original PR:** https://github.com/RADar-AZDelta/azd-radar-ai-lungcancerExplainableDecisionSupport/pull/5 **Author:** [@dependabot[bot]](https://github.com/apps/dependabot) **Created:** 10/10/2023 **Status:** 🔄 Open **Base:** `master` ← **Head:** `dependabot/pip/gitpython-3.1.37` --- ### 📝 Commits (1) - [`2e3d6c9`](https://github.com/RADar-AZDelta/azd-radar-ai-lungcancerExplainableDecisionSupport/commit/2e3d6c9ecda1cc4d5c01c9d91a51b366b8a1720f) Bump gitpython from 3.1.32 to 3.1.37 ### 📊 Changes **1 file changed** (+504 additions, -393 deletions) <details> <summary>View changed files</summary> 📝 `Pipfile.lock` (+504 -393) </details> ### 📄 Description Bumps [gitpython](https://github.com/gitpython-developers/GitPython) from 3.1.32 to 3.1.37. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/gitpython-developers/GitPython/releases">gitpython's releases</a>.</em></p> <blockquote> <h2>3.1.37 - a proper fix CVE-2023-41040</h2> <h2>What's Changed</h2> <ul> <li>Improve Python version and OS compatibility, fixing deprecations by <a href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/1654">gitpython-developers/GitPython#1654</a></li> <li>Better document env_case test/fixture and cwd by <a href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/1657">gitpython-developers/GitPython#1657</a></li> <li>Remove spurious executable permissions by <a href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/1658">gitpython-developers/GitPython#1658</a></li> <li>Fix up checks in Makefile and make them portable by <a href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/1661">gitpython-developers/GitPython#1661</a></li> <li>Fix URLs that were redirecting to another license by <a href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/1662">gitpython-developers/GitPython#1662</a></li> <li>Assorted small fixes/improvements to root dir docs by <a href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/1663">gitpython-developers/GitPython#1663</a></li> <li>Use venv instead of virtualenv in test_installation by <a href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/1664">gitpython-developers/GitPython#1664</a></li> <li>Omit py_modules in setup by <a href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/1665">gitpython-developers/GitPython#1665</a></li> <li>Don't track code coverage temporary files by <a href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/1666">gitpython-developers/GitPython#1666</a></li> <li>Configure tox by <a href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/1667">gitpython-developers/GitPython#1667</a></li> <li>Format tests with black and auto-exclude untracked paths by <a href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/1668">gitpython-developers/GitPython#1668</a></li> <li>Upgrade and broaden flake8, fixing style problems and bugs by <a href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/1673">gitpython-developers/GitPython#1673</a></li> <li>Fix rollback bug in SymbolicReference.set_reference by <a href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/1675">gitpython-developers/GitPython#1675</a></li> <li>Remove <code>@NoEffect</code> annotations by <a href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/1677">gitpython-developers/GitPython#1677</a></li> <li>Add more checks for the validity of refnames by <a href="https://github.com/facutuesca"><code>@​facutuesca</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/1672">gitpython-developers/GitPython#1672</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/gitpython-developers/GitPython/compare/3.1.36...3.1.37">https://github.com/gitpython-developers/GitPython/compare/3.1.36...3.1.37</a></p> <h2>3.1.35 - a fix for CVE-2023-41040</h2> <h2>What's Changed</h2> <ul> <li>Bump actions/checkout from 3 to 4 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/1643">gitpython-developers/GitPython#1643</a></li> <li>Fix 'Tree' object has no attribute '_name' when submodule path is normal path by <a href="https://github.com/CosmosAtlas"><code>@​CosmosAtlas</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/1645">gitpython-developers/GitPython#1645</a></li> <li>Fix CVE-2023-41040 by <a href="https://github.com/facutuesca"><code>@​facutuesca</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/1644">gitpython-developers/GitPython#1644</a></li> <li>Only make config more permissive in tests that need it by <a href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/1648">gitpython-developers/GitPython#1648</a></li> <li>Added test for PR <a href="https://redirect.github.com/gitpython-developers/GitPython/issues/1645">#1645</a> submodule path by <a href="https://github.com/CosmosAtlas"><code>@​CosmosAtlas</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/1647">gitpython-developers/GitPython#1647</a></li> <li>Fix Windows environment variable upcasing bug by <a href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/1650">gitpython-developers/GitPython#1650</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/CosmosAtlas"><code>@​CosmosAtlas</code></a> made their first contribution in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/1645">gitpython-developers/GitPython#1645</a></li> <li><a href="https://github.com/facutuesca"><code>@​facutuesca</code></a> made their first contribution in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/1644">gitpython-developers/GitPython#1644</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/gitpython-developers/GitPython/compare/3.1.34...3.1.35">https://github.com/gitpython-developers/GitPython/compare/3.1.34...3.1.35</a></p> <h2>3.1.34 - fix resource leaking</h2> <h2>What's Changed</h2> <ul> <li>util: close lockfile after opening successfully by <a href="https://github.com/skshetry"><code>@​skshetry</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/1639">gitpython-developers/GitPython#1639</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/skshetry"><code>@​skshetry</code></a> made their first contribution in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/1639">gitpython-developers/GitPython#1639</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/gitpython-developers/GitPython/compare/3.1.33...3.1.34">https://github.com/gitpython-developers/GitPython/compare/3.1.33...3.1.34</a></p> <h2>v3.1.33 - with security fix</h2> <h2>What's Changed</h2> <ul> <li>WIP Quick doc by <a href="https://github.com/LeoDaCoda"><code>@​LeoDaCoda</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/1608">gitpython-developers/GitPython#1608</a></li> <li>Partial clean up wrt mypy and black by <a href="https://github.com/bodograumann"><code>@​bodograumann</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/1617">gitpython-developers/GitPython#1617</a></li> <li>Disable merge_includes in config writers by <a href="https://github.com/bodograumann"><code>@​bodograumann</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/1618">gitpython-developers/GitPython#1618</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/gitpython-developers/GitPython/commit/b27a89f683cda85ebd78243c055e876282df89ee"><code>b27a89f</code></a> fix makefile to compare commit hashes only</li> <li><a href="https://github.com/gitpython-developers/GitPython/commit/0bd2890ef42a7506b81a96c3c94b064917ed0d7b"><code>0bd2890</code></a> prepare next release</li> <li><a href="https://github.com/gitpython-developers/GitPython/commit/832b6eeb4a14e669099c486862c9f568215d5afb"><code>832b6ee</code></a> remove unnecessary list comprehension to fix CI</li> <li><a href="https://github.com/gitpython-developers/GitPython/commit/e98f57b81f792f0f5e18d33ee658ae395f9aa3c4"><code>e98f57b</code></a> Merge pull request <a href="https://redirect.github.com/gitpython-developers/GitPython/issues/1672">#1672</a> from trail-of-forks/robust-refname-checks</li> <li><a href="https://github.com/gitpython-developers/GitPython/commit/1774f1e32307deb755f80dc51b220566c7aef755"><code>1774f1e</code></a> Merge pull request <a href="https://redirect.github.com/gitpython-developers/GitPython/issues/1677">#1677</a> from EliahKagan/no-noeffect</li> <li><a href="https://github.com/gitpython-developers/GitPython/commit/a4701a0f17308ec8d4b5871e6e2a95c4e2ca5b91"><code>a4701a0</code></a> Remove <code>@NoEffect</code> annotations</li> <li><a href="https://github.com/gitpython-developers/GitPython/commit/d40320b823994ed908d8a5e236758ff525851cd4"><code>d40320b</code></a> Merge pull request <a href="https://redirect.github.com/gitpython-developers/GitPython/issues/1675">#1675</a> from EliahKagan/rollback</li> <li><a href="https://github.com/gitpython-developers/GitPython/commit/d1c1f31dbd4a4fd527f9f3ff2ea901abf023c46b"><code>d1c1f31</code></a> Merge pull request <a href="https://redirect.github.com/gitpython-developers/GitPython/issues/1673">#1673</a> from EliahKagan/flake8</li> <li><a href="https://github.com/gitpython-developers/GitPython/commit/e480985aa4d358d0cc167d4552910e85944b8966"><code>e480985</code></a> Tweak rollback logic in log.to_file</li> <li><a href="https://github.com/gitpython-developers/GitPython/commit/ff84b26445b147ee9e2c75d82903b0c6b09e2b7a"><code>ff84b26</code></a> Refactor try-finally cleanup in git/</li> <li>Additional commits viewable in <a href="https://github.com/gitpython-developers/GitPython/compare/3.1.32...3.1.37">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=gitpython&package-manager=pip&previous-version=3.1.32&new-version=3.1.37)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/RADar-AZDelta/Explainable-Decision-Support-Lung-Cancer/network/alerts). </details> --- <sub>🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.</sub>
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
master
dependabot/pip/gitpython-3.1.37
dependabot/pip/pillow-10.0.1
main
No results found.
Labels
Clear labels   
pull-request

Mirrored from GitHub Pull Request

No labels
pull-request
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
RADar-AZDelta/archived-azd-radar-ai-lungcancerExplainableDecisionSupport#5
No description provided.