search

canonical / testflinger

https://testflinger.readthedocs.io/en/latest/
GNU General Public License v3.0
9 stars 13 forks source link

chore(deps): update dependency rpyc to v6 #269

Open renovate[bot] opened 2 months ago

renovate[bot] commented 2 months ago

Mend Renovate

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
rpyc ~=5.3.1 -> ~=6.0.0 age adoption passing confidence

Release Notes

tomerfiliba-org/rpyc (rpyc) ### [`v6.0.0`](https://togithub.com/tomerfiliba-org/rpyc/blob/HEAD/CHANGELOG.rst#600) [Compare Source](https://togithub.com/tomerfiliba-org/rpyc/compare/5.3.1...6.0.0) \===== Date: 2024-02-23 - `#551`\_ Resolves security issue that results in RCE. The fix breaks backwards compatibility for those that rely on the `__array__` attribute used by `numpy`. This RCE is only exploitable when the server-side gets the attribute `__array__` and calls it (e.g., `np.array(x)`). This issues effects all versions since major release 4. .. \_#551:[https://github.com/tomerfiliba-org/rpyc/issues/551](https://togithub.com/tomerfiliba-org/rpyc/issues/551)1

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

â™» Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

This PR has been generated by Mend Renovate. View repository job log here.