From 005a9f56de5853d062c08df018e0910155bf0faf Mon Sep 17 00:00:00 2001 From: "pyup.io vuln bot" Date: Tue, 31 Dec 2024 22:00:54 -0800 Subject: [PATCH] january update --- data/insecure.json | 168 +++++++++++++++++++++++++++++++++++++++------ 1 file changed, 148 insertions(+), 20 deletions(-) diff --git a/data/insecure.json b/data/insecure.json index 0dfbc337..9702fb74 100644 --- a/data/insecure.json +++ b/data/insecure.json @@ -2,7 +2,7 @@ "$meta": { "advisory": "PyUp.io metadata", "base_domain": "https://pyup.io", - "timestamp": 1733032853 + "timestamp": 1735711254 }, "10cent10": [ "<0", @@ -186,6 +186,10 @@ "aiocouchdb": [ "<0.6.0" ], + "aiocpa": [ + "<=0", + ">=0" + ], "aiocurrencylayer": [ "<1.0.4" ], @@ -196,6 +200,7 @@ "<0.16.3", "<0.22.0", "<3.10.11", + "<3.10.2", "<3.7.4", "<3.8.0", "<3.8.6", @@ -402,6 +407,9 @@ "amdsmi": [ "<6.1.2" ], + "amici": [ + "<0.29.0" + ], "aml-ds-pipeline-contrib": [ "<0", ">0" @@ -565,7 +573,8 @@ ], "ansible-doctor": [ "<4.0.0", - "<7.0.0" + "<7.0.0", + "<7.0.1" ], "ansible-runner": [ "<1.3.1", @@ -683,7 +692,7 @@ ">=2.6.0,<2.8.0b1", ">=2.7.0,<2.7.2", ">=2.7.0,<2.8.0", - ">=2.8.0,<2.8.3rc1" + ">=2.8.0b1,<2.8.3rc1" ], "apache-airflow-backport-providers-amazon": [ "<=2021.3.3" @@ -1171,6 +1180,7 @@ "<0.13.0" ], "argo-workflows": [ + "<2.6.0", "<5.0.0", "<6.1.0rc1", "<6.2.0rc1", @@ -1245,6 +1255,9 @@ "astrometry-net-client": [ "<0.2.9" ], + "astronomer-cosmos": [ + "<1.8.0" + ], "astropy": [ "<3.0.1", "<5.0.5", @@ -1896,6 +1909,9 @@ ">=0.7.6,<0.7.12", ">=2.0.0,<2.3.1" ], + "buildstream": [ + "<2.4.0" + ], "bullmq": [ "<1.14.1", "<5.1.3" @@ -1986,7 +2002,8 @@ "<0.24.1" ], "canada-holiday": [ - "<1.1.4" + "<1.1.4", + "<1.1.5" ], "cancat": [ "<=2.0.0" @@ -2212,6 +2229,7 @@ "<0.45.6", "<0.47.05", "<0.47.06", + "<0.48.5", ">=0.39.14,<=0.45.12" ], "chanjo-report": [ @@ -2257,6 +2275,9 @@ "chazz": [ ">0" ], + "check-jsonschema": [ + "<0.30.0" + ], "checkmk": [ "<1.2.8p26", "<1.6.0p17", @@ -2653,6 +2674,9 @@ "coldsweat": [ "<0.10.0" ], + "collaborative-article-sharing": [ + "<0.1.0b2" + ], "collective-contact-core": [ "<1.10" ], @@ -2723,6 +2747,10 @@ "<0", ">0" ], + "cometlogger": [ + "<=0", + ">=0" + ], "commlib-py": [ "<0.11.5" ], @@ -2856,7 +2884,8 @@ "<1.0.11", "<1.0.5", "<1.0.6", - "<1.1.1" + "<1.1.1", + "<1.1.2" ], "cortex": [ "<0.32.0" @@ -3223,6 +3252,12 @@ "database-sanitizer": [ "<1.1.0" ], + "databricks-labs-ucx": [ + "<0.53.0" + ], + "databricks-sdk": [ + "<0.35.0" + ], "datacube": [ "<1.6.2", "<1.8.7", @@ -3566,6 +3601,9 @@ "diffsync": [ "<1.4.0" ], + "diffusion-model-framework": [ + "<0.1.2rc.2" + ], "digger": [ "<6697d1269d981e35e11f240725b16401b5ce3db5" ], @@ -3704,6 +3742,7 @@ "<4.2.14", "<4.2.15", "<4.2.16", + "<4.2.17", "<=0.95", "==1.11.8", "==1.11.9", @@ -3856,12 +3895,14 @@ ">=4.2a1,<4.2.5", ">=4.2a1,<4.2.6", ">=4.2a1,<4.2.7", + ">=5.0a1,<5.0.10", ">=5.0a1,<5.0.2", ">=5.0a1,<5.0.3", ">=5.0a1,<5.0.7", ">=5.0a1,<5.0.8", ">=5.0a1,<5.0.9", - ">=5.1a1,<5.1.1" + ">=5.1a1,<5.1.1", + ">=5.1a1,<5.1.4" ], "django-access-tokens": [ "<0.9.2" @@ -3894,7 +3935,8 @@ "<0.47.0", "<0.54.0", "<0.63.3", - "<0.63.6" + "<0.63.6", + "<65.3.0" ], "django-allauth-underground": [ "<0.28.0" @@ -4697,6 +4739,7 @@ "dtale": [ "<3.13.1", "<3.14.1", + "<3.16.1", "<3.7.0", ">=0,<3.9.0" ], @@ -4890,6 +4933,9 @@ "encord-active": [ "<0.1.63" ], + "endec": [ + "<0.3.0" + ], "energyquantified": [ "<0.11" ], @@ -4984,6 +5030,7 @@ "<2.37.0", "<2.39.1", "<2.44.0", + "<2.50.0", ">=2.11.0,<2.16.0", ">=2.11.0rc1,<2.19.0", ">=2.19.0,<2.39.2" @@ -5243,6 +5290,9 @@ "fastbots": [ "<0.1.5" ], + "fastcrud": [ + "<0.14.0" + ], "fastecdsa": [ "<2.1.2", "<2.1.5", @@ -6108,6 +6158,9 @@ "gps-time": [ "<2.8.6" ], + "gpt-researcher": [ + "<0.10.4" + ], "gpyg": [ "<0.3.0" ], @@ -6696,6 +6749,9 @@ "<0", ">0" ], + "importspy": [ + "<0.1.12" + ], "imread": [ ">=0.6,<=0.7.4" ], @@ -6704,6 +6760,7 @@ "<2.0.0" ], "inboard": [ + "<0.41", "<0.46.0", "<0.68.0" ], @@ -6741,7 +6798,9 @@ "inference": [ "<0.14.0", "<0.16.0", - "<0.17.1" + "<0.17.1", + "<0.29.1", + "<0.32.0" ], "influx-prompt": [ "<0.0.3", @@ -7214,6 +7273,7 @@ "<2.8.1", "<3.1.3", "<3.1.4", + "<3.1.5", ">=0,<2.10.1", ">=0,<2.7.3" ], @@ -7243,6 +7303,9 @@ "jose": [ "<0.3.0" ], + "joserfc": [ + "<0.11.0" + ], "js-ember": [ "<=1.0.0" ], @@ -7899,7 +7962,8 @@ ], "langfuse": [ "<2.1.0", - "<2.81.1" + "<2.81.1", + "<2.93.5" ], "langsmith": [ "<0.1.84" @@ -8032,6 +8096,9 @@ "<0", ">0" ], + "libre-chat": [ + ">=0" + ], "libre-fastapi-jwt": [ "<0.20.3" ], @@ -8133,7 +8200,9 @@ "<1.40.6", "<1.44.16", "<1.44.17", - "<1.44.8" + "<1.44.8", + "<1.55.8", + "<1.56.2" ], "litestar": [ "<=2.10.0", @@ -8531,6 +8600,8 @@ "<0.31.2", "<0.33.3.1", "<1.105.1", + "<1.106", + "<1.120.1", "<1.25.0", "<1.27.0", "<1.28.0", @@ -8563,7 +8634,7 @@ "<1.69.0" ], "matrixctl": [ - "<0.10.0" + "<0.10.1" ], "matthisk-httpsig": [ "<1.0.0" @@ -8643,6 +8714,7 @@ ], "mesop": [ "<0.12.4", + "<0.13.0", "<0.7.1" ], "metadataproxy": [ @@ -8714,6 +8786,9 @@ "mikado": [ "<2.1.0" ], + "millennium": [ + "<2.13.1" + ], "milvus": [ "<2.2.6" ], @@ -8858,6 +8933,7 @@ "<2.12.1", "<2.12.2", "<2.15.0", + "<2.16.0", "<2.2.1", "<2.3.0", "<2.3.1", @@ -8922,6 +8998,7 @@ "mobsf": [ "<3.6.0", "<4.0.7", + "<4.2.9", "<=3.7.8", "<=3.9.7", ">=0,<0.9.3" @@ -9507,6 +9584,7 @@ ">2010,<2014.2.2", ">2010,<2014.2.3", ">2014,<2014.1.2", + ">=0", ">=10.0.0.0rc1,<10.0.2-1.1", ">=11.0,<11.0.7", ">=11.0.0.0b1,<11.0.7", @@ -9619,6 +9697,9 @@ "nipyapi": [ "<0.16.2" ], + "nipype": [ + "<1.8.3" + ], "nitrokeyapp": [ "<1.0" ], @@ -9892,6 +9973,9 @@ "nvidia-modulus.sym": [ "<1.7.0" ], + "nvidia-riva-client": [ + "<2.17.0" + ], "nwb-conversion-tools": [ "<0.11.38" ], @@ -10335,6 +10419,9 @@ "<0.7.0", "<=0.16.9" ], + "optimal-congress": [ + "<0.7.3" + ], "optimizely-sdk": [ "<4.0.0" ], @@ -10976,7 +11063,6 @@ "<=3.1.7", "<=3.3.6", "<=5.2.4", - "<=6.0.9", "==5.2.3", ">2.0.4,<=2.5-beta1", ">4,<4.2a2", @@ -11206,6 +11292,7 @@ ], "poetry": [ "<1.1.9", + "<1.8.4", "<=1.1.9" ], "poetry-core": [ @@ -11594,6 +11681,9 @@ "<0.5.1", "<=5.6.5" ], + "psyclone": [ + "<3.0.0" + ], "psycopg": [ "<3.0.4" ], @@ -12086,6 +12176,7 @@ "pyjwt": [ "<1.0.0", "<1.5.1", + "<2.10.1", ">=1.5.0,<2.4.0" ], "pykarotz": [ @@ -12193,7 +12284,8 @@ "<1.3.0" ], "pyninja": [ - "<0.0.4" + "<0.0.4", + "<1.1.0" ], "pynitrokey": [ "<0.4.39" @@ -12441,6 +12533,9 @@ "<0.4.1", "<0.4.2" ], + "pyspider": [ + ">=0" + ], "pysstv": [ "<0.5", "<0.5.2", @@ -12942,6 +13037,7 @@ "<1.1.0" ], "python-multipart": [ + "<0.0.18", ">=0,<0.0.7" ], "python-muranoclient": [ @@ -13582,6 +13678,9 @@ "repomate-junit4": [ "<0.4.0" ], + "repomix": [ + "<0.1.29" + ], "repopack": [ "<0.1.29" ], @@ -13630,11 +13729,10 @@ ">=0" ], "requests": [ + "<0.13.4", "<2.3.0", "<2.32.2", - "<=0.13.1", "<=2.19.1", - ">=0,<=1.2.3", ">=2.1,<=2.5.3", ">=2.3.0,<2.31.0" ], @@ -13852,6 +13950,9 @@ "<0.7.1", "<0.7.4" ], + "rpy2-arrow": [ + "<0.1.2" + ], "rpyc": [ "<4.1.2", "<5.2.1", @@ -14410,6 +14511,7 @@ "<21.6.0", "<21.6.2", "<21.9.0", + "<24.11.1", "<6.1.1", "<7.4.0", "<7.7.0", @@ -14639,7 +14741,8 @@ ">=0,<2.0.1" ], "smac-fastapi-auth": [ - "<0.2.1" + "<0.2.1", + "<0.3.0" ], "smart-app-framework": [ "<2.3.0rc5" @@ -14823,6 +14926,9 @@ "speakeasy-emulator": [ "<1.5.15" ], + "spec-classes": [ + "<1.5.2" + ], "specmatic": [ "<0.24.0" ], @@ -15341,6 +15447,9 @@ "tarantool": [ "<0.10.0" ], + "targetcli": [ + "<2.1.53" + ], "targetcli-fb": [ "<=2.1.52", "==2.1.50", @@ -15413,6 +15522,9 @@ "temporai": [ "<=0.0.3" ], + "temporalio": [ + "<1.9.0" + ], "tenable-jira-cloud": [ "<1.1.21" ], @@ -16034,7 +16146,8 @@ "<20240508.1" ], "timetagger": [ - "<21.3.3" + "<21.3.3", + "<24.12.2" ], "timezonefinder": [ "<6.0.2" @@ -16140,6 +16253,7 @@ "<6.3.2", "<6.3.3", "<6.4.1", + "<6.4.2", "<=6.4.0", ">=0,<3.2.2", ">=3.1.0,<4.2.1" @@ -16396,7 +16510,8 @@ "<0.5.1" ], "twyn": [ - "<2.5.7" + "<2.5.7", + "<2.8.9" ], "twyne": [ ">0" @@ -16468,7 +16583,11 @@ "<=5.1.0" ], "ultralytics": [ - "<8.0.5" + "<8.0.5", + "==8.3.41", + "==8.3.42", + "==8.3.45", + "==8.3.46" ], "uma-sdk": [ "<1.2.2" @@ -17261,6 +17380,9 @@ "yandex2lightroom": [ "<1.0.9.2" ], + "yandexcloud": [ + "<0.330.0" + ], "yaql": [ "<3.0.0" ], @@ -17330,6 +17452,7 @@ "yt-dlp": [ "<2023.02.17", "<2023.07.06", + "<2023.09.21.155918", "<2023.09.24", "<2024.04.09", "<2024.07.01", @@ -17367,6 +17490,10 @@ "zbar": [ ">=0,<=0.23.90" ], + "zebo": [ + "<=0", + ">=0" + ], "zeep": [ "<0.4.0" ], @@ -17403,7 +17530,8 @@ "<1.7.0.dev1" ], "zhmcclient": [ - "<0.21.0" + "<0.21.0", + "<1.18.1" ], "zibal": [ "==1.0.0"