search

python-discord / site

pythondiscord.com - A Django and Bulma web application.
https://pythondiscord.com
MIT License
639 stars 127 forks source link

Bump django from 5.0.6 to 5.0.7 #1359

Closed dependabot[bot] closed 1 month ago

dependabot[bot] commented 1 month ago

Bumps django from 5.0.6 to 5.0.7.

Commits
  • deec9b9 [5.0.x] Bumped version for 5.0.7 release.
  • 3a7bf7f [5.0.x] Made cosmetic edits to 5.0.7 release notes.
  • 8e7a44e [5.0.x] Fixed CVE-2024-39614 -- Mitigated potential DoS in get_supported_lang...
  • 9f4f63e [5.0.x] Fixed CVE-2024-39330 -- Added extra file name validation in Storage's...
  • 07cefde [5.0.x] Fixed CVE-2024-39329 -- Standarized timing of verify_password() when ...
  • 7285644 [5.0.x] Fixed CVE-2024-38875 -- Mitigated potential DoS in urlize and urlizet...
  • 8303400 [5.0.x] Fixed 35506 -- Clarified initial references to URLconf in tutorial 1.
  • c76089b [5.0.x] Refs #35560 -- Corrected CheckConstraint argument name in model_field...
  • 43aa0c1 [5.0.x] Removed outdated note about limitations in Clickjacking protection.
  • 0602fc2 [5.0.x] Fixed #35560 -- Made Model.full_clean() ignore GeneratedFields for co...
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
netlify[bot] commented 1 month ago

Deploy Preview for pydis-static ready!

Name Link
Latest commit e18f116651a439fcc98b391c07de8ec96cb67113
Latest deploy log https://app.netlify.com/sites/pydis-static/deploys/668ebe875d87ac0008d505f8
Deploy Preview https://deploy-preview-1359--pydis-static.netlify.app
Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify site configuration.

jchristgit commented 1 month ago

Ah, I merged ruff yesterday and it broke CI. Will push a fix shortly.

jchristgit commented 1 month ago

@dependabot rebase

coveralls commented 1 month ago

Coverage Status

coverage: 100.0%. remained the same when pulling e18f116651a439fcc98b391c07de8ec96cb67113 on dependabot/pip/django-5.0.7 into 28f774445f911a5670e3eb079148ab288e95cfc3 on main.