search

Devasy23 / FaceRec

An advanced facial recognition system designed for real-time identification using deep learning models and optimized vector search. Features include face detection, embedding generation, and scalable deployment options.
Apache License 2.0
12 stars 1 forks source link

Bump the pip group across 1 directory with 3 updates #29

Closed dependabot[bot] closed 5 months ago

dependabot[bot] commented 6 months ago

Bumps the pip group with 3 updates in the / directory: fastapi, python-multipart and starlette.

Updates fastapi from 0.108.0 to 0.109.1

Release notes

Sourced from fastapi's releases.

0.109.1

Security fixes

  • ⬆️ Upgrade minimum version of python-multipart to >=0.0.7 to fix a vulnerability when using form data with a ReDos attack. You can also simply upgrade python-multipart.

Read more in the advisory: Content-Type Header ReDoS.

Features

Refactors

  • ✅ Refactor tests for duplicate operation ID generation for compatibility with other tools running the FastAPI test suite. PR #10876 by @​emmettbutler.
  • ♻️ Simplify string format with f-strings in fastapi/utils.py. PR #10576 by @​eukub.
  • 🔧 Fix Ruff configuration unintentionally enabling and re-disabling mccabe complexity check. PR #10893 by @​jiridanek.
  • ✅ Re-enable test in tests/test_tutorial/test_header_params/test_tutorial003.py after fix in Starlette. PR #10904 by @​ooknimm.

Docs

Translations

  • 🌐 Add Spanish translation for docs/es/docs/external-links.md. PR #10933 by @​pablocm83.
  • 🌐 Update Korean translation for docs/ko/docs/tutorial/first-steps.md, docs/ko/docs/tutorial/index.md, docs/ko/docs/tutorial/path-params.md, and docs/ko/docs/tutorial/query-params.md. PR #4218 by @​SnowSuno.

... (truncated)

Commits
  • 7633d15 🔖 Release version 0.109.1
  • a4de147 📝 Update release notes
  • 9d34ad0 Merge pull request from GHSA-qf9m-vfgh-m389
  • ebf9723 📝 Update release notes
  • 8590d0c 👥 Update FastAPI People (#11074)
  • 063d7ff 📝 Update release notes
  • 3c81e62 🌐 Add Spanish translation for docs/es/docs/external-links.md (#10933)
  • 6c4a143 📝 Update release notes
  • d254e2f 🌐 Update Korean translation for docs/ko/docs/tutorial/first-steps.md, `docs...
  • 6f6e786 📝 Update release notes
  • Additional commits viewable in compare view


Updates python-multipart from 0.0.6 to 0.0.7

Changelog

Sourced from python-multipart's changelog.

0.0.7 (2024-02-03)

  • Refactor header option parser to use the standard library instead of a custom RegEx #75.
Commits
  • c83e6da Version 0.0.7 (#77)
  • fb7d3c9 Bump pygments from 2.7.4 to 2.15.0 (#66)
  • 20f0ef6 ♻️ Refactor header option parser to use the standard library instead of a cus...
  • d3d16da Use latest invoke version (2.2.0) (#73)
  • 8e59feb Use single quotes to avoid special zsh chars '[' and ']' (#71)
  • 86d422c Update changelog URL (#68)
  • 3929f8e Move tests folder to root folder (#61)
  • See full diff in compare view


Updates starlette from 0.32.0.post1 to 0.36.2

Release notes

Sourced from starlette's releases.

Version 0.36.2

Fixed

  • Upgrade python-multipart to 0.0.7 13e5c26.
  • Avoid duplicate charset on Content-Type #2443.

Full Changelog: https://github.com/encode/starlette/compare/0.36.1...0.36.2

Version 0.36.1

Fixed

  • Check if "extensions" in scope before checking the extension #2438.

Full Changelog: https://github.com/encode/starlette/compare/0.36.0...0.36.1

Version 0.36.0

Added

  • Add support for ASGI pathsend extension #2435.
  • Cancel WebSocketTestSession on close #2427.
  • Raise WebSocketDisconnect when WebSocket.send() excepts IOError #2425.
  • Raise FileNotFoundError when the env_file parameter on Config is not valid #2422.

Full Changelog: https://github.com/encode/starlette/compare/0.35.1...0.36.0

Version 0.35.1

Fixed

  • Stop using the deprecated "method" parameter in FileResponse inside of StaticFiles #2406.
  • Make typing-extensions optional again #2409.

Full Changelog: https://github.com/encode/starlette/compare/0.35.0...0.35.1

Version 0.35.0

Added

  • Add *args to Middleware and improve its type hints #2381.

Fixed

  • Use Iterable instead Iterator on iterate_in_threadpool #2362.

... (truncated)

Changelog

Sourced from starlette's changelog.

0.36.2

February 3, 2024

Fixed

  • Upgrade python-multipart to 0.0.7 13e5c26.
  • Avoid duplicate charset on Content-Type #2443.

0.36.1

January 23, 2024

Fixed

  • Check if "extensions" in scope before checking the extension #2438.

0.36.0

January 22, 2024

Added

  • Add support for ASGI pathsend extension #2435.
  • Cancel WebSocketTestSession on close #2427.
  • Raise WebSocketDisconnect when WebSocket.send() excepts IOError #2425.
  • Raise FileNotFoundError when the env_file parameter on Config is not valid #2422.

0.35.1

January 11, 2024

Fixed

  • Stop using the deprecated "method" parameter in FileResponse inside of StaticFiles #2406.
  • Make typing-extensions optional again #2409.

0.35.0

January 11, 2024

Added

  • Add *args to Middleware and improve its type hints #2381.

Fixed

  • Use Iterable instead Iterator on iterate_in_threadpool #2362.

Changes

... (truncated)

Commits


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Devasy23/FaceRec/network/alerts).
senior-dev-bot[bot] commented 6 months ago

Hi there! :wave: Thanks for opening a PR. :tada: To get the most out of Senior Dev, please sign up in our Web App, connect your GitHub account, and add/join your organization Devasy Patel. After that, you will receive code reviews beginning on your next opened PR. :rocket:

dependabot[bot] commented 5 months ago

Superseded by #33.