Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot]
commented
1 month ago
Bumps django from 3.2 to 5.0.8.
Commits
84d1102[5.0.x] Bumped version for 5.0.8 release.32ebcbf[5.0.x] Fixed CVE-2024-42005 -- Mitigated QuerySet.values() SQL injection att...523da87[5.0.x] Fixed CVE-2024-41991 -- Prevented potential ReDoS in django.utils.htm...7b7b909[5.0.x] Fixed CVE-2024-41990 -- Mitigated potential DoS in urlize and urlizet...27900fe[5.0.x] Fixed CVE-2024-41989 -- Prevented excessive memory consumption in flo...d7f9554[5.0.x] Fixed #35657 -- Made FileField handle db_default values.333cfab[5.0.x] Fixed #35638 -- Updated validate_constraints to consider db_default.e88ef6a[5.0.x] Refs #35638 -- Avoided wrapping expressions with Value in get_field...c822ad6[5.0.x] Fixed #35628 -- Allowed compatible GeneratedFields for ModelAdmin.dat...3aa9acd[5.0.x] Added stub release notes and release date for 5.0.8 and 4.2.15.Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show