sachinraja / simple-icons-py

python wrapper for simple-icons
https://pypi.org/project/simpleicons/
MIT License
18 stars 3 forks source link

chore(deps): bump pillow from 8.2.0 to 8.3.0 #6

Closed dependabot[bot] closed 3 years ago

dependabot[bot] commented 3 years ago

Bumps pillow from 8.2.0 to 8.3.0.

Release notes

Sourced from pillow's releases.

8.3.0

https://pillow.readthedocs.io/en/stable/releasenotes/8.3.0.html

Changes

... (truncated)

Changelog

Sourced from pillow's changelog.

8.3.0 (2021-07-01)

  • Use snprintf instead of sprintf. CVE-2021-34552 #5567 [radarhere]

  • Limit TIFF strip size when saving with LibTIFF #5514 [kmilos]

  • Allow ICNS save on all operating systems #4526 [baletu, radarhere, newpanjing, hugovk]

  • De-zigzag JPEG's DQT when loading; deprecate convert_dict_qtables #4989 [gofr, radarhere]

  • Replaced xml.etree.ElementTree #5565 [radarhere]

  • Moved CVE image to pillow-depends #5561 [radarhere]

  • Added tag data for IFD groups #5554 [radarhere]

  • Improved ImagePalette #5552 [radarhere]

  • Add DDS saving #5402 [radarhere]

  • Improved getxmp() #5455 [radarhere]

  • Convert to float for comparison with float in IFDRational eq #5412 [radarhere]

  • Allow getexif() to access TIFF tag_v2 data #5416 [radarhere]

  • Read FITS image mode and size #5405 [radarhere]

  • Merge parallel horizontal edges in ImagingDrawPolygon #5347 [radarhere, hrdrq]

  • Use transparency behind first GIF frame and when disposing to background #5557 [radarhere, zewt]

  • Avoid unstable nature of qsort in Quant.c #5367 [radarhere]

... (truncated)

Commits


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 3 years ago

Superseded by #7.