Merge branch 'dev' into DDS-1822-Fix-CVE-2023-45803

ScilifelabDataCentre · Nov 7, 2023 · 3937576 · 3937576
2 parents 5e10379 + 198a929
commit 3937576
Show file tree

Hide file tree

Showing 2 changed files with 2 additions and 1 deletion.
diff --git a/SPRINTLOG.md b/SPRINTLOG.md
@@ -325,4 +325,5 @@ _Nothing merged in CLI during this sprint_
 
 # 2023-11-6 - 2023-11-17
 
+- Updated Pillow package version to address vulnerabities ([#1486](https://github.com/ScilifelabDataCentre/dds_web/pull/1486))
 - Updated urllib3 package version to address vulnerabities ([#1487](https://github.com/ScilifelabDataCentre/dds_web/pull/1487))
diff --git a/requirements.txt b/requirements.txt
@@ -42,7 +42,7 @@ MarkupSafe==2.1.1
 marshmallow==3.14.1
 marshmallow-sqlalchemy==0.27.0
 packaging==21.3
-Pillow==9.3.0 # required by qrcode
+Pillow==10.1.0 # required by qrcode
 pycparser==2.21
 PyMySQL==1.0.2
 PyNaCl==1.5.0
Original file line number	Diff line number	Diff line change
Expand Up		@@ -325,4 +325,5 @@ _Nothing merged in CLI during this sprint_

		# 2023-11-6 - 2023-11-17

		- Updated Pillow package version to address vulnerabities ([#1486](https://github.com/ScilifelabDataCentre/dds_web/pull/1486))
		- Updated urllib3 package version to address vulnerabities ([#1487](https://github.com/ScilifelabDataCentre/dds_web/pull/1487))