You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Update dependency django to v5.1.8 [SECURITY] (#2161)
This PR contains the following updates:
| Package | Update | Change |
|---|---|---|
| [django](https://redirect.github.com/django/django)
([changelog](https://docs.djangoproject.com/en/stable/releases/)) |
patch | `==5.1.7` -> `==5.1.8` |
---
> [!WARNING]
> Some dependencies could not be looked up. Check the Dependency
Dashboard for more information.
### GitHub Vulnerability Alerts
#### [CVE-2025-27556](https://nvd.nist.gov/vuln/detail/CVE-2025-27556)
An issue was discovered in Django 5.1 before 5.1.8 and 5.0 before
5.0.14. The NFKC normalization is slow on Windows. As a consequence,
django.contrib.auth.views.LoginView,
django.contrib.auth.views.LogoutView, and django.views.i18n.set_language
are subject to a potential denial-of-service attack via certain inputs
with a very large number of Unicode characters.
---
### Release Notes
<details>
<summary>django/django (django)</summary>
###
[`v5.1.8`](https://redirect.github.com/django/django/compare/5.1.7...5.1.8)
[Compare
Source](https://redirect.github.com/django/django/compare/5.1.7...5.1.8)
</details>
---
### Configuration
📅 **Schedule**: Branch creation - "" (UTC), Automerge - "every weekday"
(UTC).
🚦 **Automerge**: Enabled.
♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the
rebase/retry checkbox.
🔕 **Ignore**: Close this PR and you won't be reminded about this update
again.
---
- [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check
this box
---
This PR has been generated by [Renovate
Bot](https://redirect.github.com/renovatebot/renovate).
<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS4xOS4wIiwidXBkYXRlZEluVmVyIjoiMzkuMTkuMCIsInRhcmdldEJyYW5jaCI6Im1hc3RlciIsImxhYmVscyI6WyJkZXBlbmRlbmNpZXMiLCJpbXBhY3Qvbm8tY2hhbmdlbG9nLXJlcXVpcmVkIl19-->
Co-authored-by: pulumi-renovate[bot] <189166143+pulumi-renovate[bot]@users.noreply.github.com>
![pulumi-renovate[bot]](https://avatars.githubusercontent.com/u/21992475?v=4&size=40){kind=avatar}
0 commit comments