Open dependabot[bot] opened 5 months ago
New and removed dependencies detected. Learn more about Socket for GitHub ↗︎
Package | New capabilities | Transitives | Size | Publisher |
---|---|---|---|---|
pypi/pillow@10.3.0 | environment, eval, filesystem, shell, unsafe | 0 |
73 MB | aclark, hugovk, radarhere, ...1 more |
🚮 Removed packages: pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2, pypi/pillow@8.3.2
Bumps pillow from 8.3.2 to 10.3.0.
Release notes
Sourced from pillow's releases.
... (truncated)
Changelog
Sourced from pillow's changelog.
... (truncated)
Commits
5c89d88
10.3.0 version bump63cbfcf
Update CHANGES.rst [ci skip]2776126
Merge pull request #7928 from python-pillow/lcmsaeb51cb
Merge branch 'main' into lcms5beb0b6
Update CHANGES.rst [ci skip]cac6ffa
Merge pull request #7927 from python-pillow/imagemathf5eeeac
Name as 'options' in lambda_eval and unsafe_eval, but '_dict' in deprecated evalfacf3af
Added release notes2a93aba
Use strncpy to avoid buffer overflowa670597
Update CHANGES.rst [ci skip]Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show