Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix(deps): update dependency rpyc to v6 #269

Closed
wants to merge 1 commit into from
Closed

fix(deps): update dependency rpyc to v6 #269

wants to merge 1 commit into from

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented May 3, 2024
edited
Loading

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
rpyc ~=5.3.1 -> ~=6.0.1 age adoption passing confidence

Release Notes

tomerfiliba-org/rpyc (rpyc)

v6.0.1

Compare Source

=====
Date: 2024-09-24

  • Minor fixes to class module id packs and related unittest assertions
  • #559_ closes #558_ which reported issues with proxy cache referrant race conditions, get_method errors, and stream issues
  • #557_ fix pytest issues reported in #544_

.. _#559:https://github.com/tomerfiliba-org/rpyc/pull/5599
.. _#558https://github.com/tomerfiliba-org/rpyc/issues/55858
.. _#55https://github.com/tomerfiliba-org/rpyc/pull/557557
.. _#5https://github.com/tomerfiliba-org/rpyc/issues/544/544

v6.0.0

Compare Source

=====
Date: 2024-02-23

  • #551_ Resolves security issue that results in RCE. The fix breaks backwards compatibility for those that rely on the __array__ attribute used by numpy. This RCE is only exploitable when the server-side gets the attribute __array__ and calls it (e.g., np.array(x)). This issues effects all versions since major release 4.

.. _#551:https://github.com/tomerfiliba-org/rpyc/issues/5511

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot force-pushed the renovate/rpyc-6.x branch 2 times, most recently from 227ae92 to 7f76328 Compare May 10, 2024 09:11
@renovate renovate bot force-pushed the renovate/rpyc-6.x branch 3 times, most recently from a04fa74 to c38e00e Compare May 24, 2024 02:49
@renovate renovate bot force-pushed the renovate/rpyc-6.x branch 2 times, most recently from 3497139 to 75efd9a Compare May 28, 2024 09:33
@renovate renovate bot force-pushed the renovate/rpyc-6.x branch 4 times, most recently from c195edc to 738bfff Compare June 14, 2024 21:46
@renovate renovate bot force-pushed the renovate/rpyc-6.x branch 2 times, most recently from 31b1597 to 007e14a Compare June 28, 2024 21:31
@renovate renovate bot force-pushed the renovate/rpyc-6.x branch 5 times, most recently from dcdab89 to 119d523 Compare July 8, 2024 13:51
@renovate renovate bot changed the title chore(deps): update dependency rpyc to v6 Update dependency rpyc to v6 Jul 8, 2024
@renovate renovate bot force-pushed the renovate/rpyc-6.x branch 3 times, most recently from 92b46fb to 27bddda Compare July 17, 2024 06:01
@renovate renovate bot force-pushed the renovate/rpyc-6.x branch 5 times, most recently from 81c07de to a6de5a8 Compare July 29, 2024 13:02
@renovate renovate bot force-pushed the renovate/rpyc-6.x branch 2 times, most recently from afd1b0d to 83d4b48 Compare August 1, 2024 13:07
@renovate renovate bot force-pushed the renovate/rpyc-6.x branch 2 times, most recently from 6832b04 to 5b2fab0 Compare September 5, 2024 17:48
@renovate renovate bot force-pushed the renovate/rpyc-6.x branch 4 times, most recently from 9c8ada4 to cf006d1 Compare September 12, 2024 13:21
@renovate renovate bot force-pushed the renovate/rpyc-6.x branch 5 times, most recently from 4a3caf4 to 321f8e7 Compare October 1, 2024 17:21
@renovate renovate bot force-pushed the renovate/rpyc-6.x branch 3 times, most recently from b3df741 to 85df3ac Compare October 8, 2024 16:16
@renovate renovate bot changed the title chore(deps): update dependency rpyc to v6 Update dependency rpyc to v6 Oct 8, 2024
@renovate renovate bot force-pushed the renovate/rpyc-6.x branch 3 times, most recently from 4d7dbc7 to f3f894d Compare October 21, 2024 13:32
@renovate renovate bot changed the title Update dependency rpyc to v6 chore(deps): update dependency rpyc to v6 Oct 21, 2024
@renovate renovate bot changed the title chore(deps): update dependency rpyc to v6 fix(deps): update dependency rpyc to v6 Oct 28, 2024
@renovate renovate bot force-pushed the renovate/rpyc-6.x branch 3 times, most recently from 037608e to 8c69491 Compare November 5, 2024 19:43
@p-gentili
Copy link
Contributor

Not yet compatible with service side.

@p-gentili p-gentili closed this Nov 7, 2024
@renovate Renovate
Copy link
Contributor Author

renovate bot commented Nov 7, 2024

Renovate Ignore Notification

Because you closed this PR without merging, Renovate will ignore this update. You will not get PRs for any future 6.x releases. But if you manually upgrade to 6.x then Renovate will re-enable minor and patch updates automatically.

If you accidentally closed this PR, or if you changed your mind: rename this PR to get a fresh replacement PR.

@renovate renovate bot deleted the renovate/rpyc-6.x branch November 7, 2024 09:42
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@p-gentili