Skip to content

bump django #11

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
heliocodacy wants to merge 1 commit into
base: master
Choose a base branch
from
Open

bump django #11

heliocodacy wants to merge 1 commit into from

Conversation

@heliocodacy
Copy link

@heliocodacy heliocodacy commented Nov 4, 2025

No description provided.

@codacy-production
Copy link

codacy-production bot commented Nov 4, 2025
edited
Loading

Coverage summary from Codacy

See diff coverage on Codacy

Coverage variation Diff coverage
+0.00% (target: -1.00%) (target: 70.00%)
Coverage variation details
Coverable lines Covered lines Coverage
Common ancestor commit (ce26c19) 30 25 83.33%
Head commit (a8c0ceb) 30 (+0) 25 (+0) 83.33% (+0.00%)

Coverage variation is the difference between the coverage for the head and common ancestor commits of the pull request branch: <coverage of head commit> - <coverage of common ancestor commit>

Diff coverage details
Coverable lines Covered lines Diff coverage
Pull request (#11) 0 0 ∅ (not applicable)

Diff coverage is the percentage of lines that are covered by tests out of the coverable lines that the pull request added or modified: <covered lines added or modified>/<coverable lines added or modified> * 100%

See your quality gate settings    Change summary preferences

@heliocodacy heliocodacy enabled auto-merge November 4, 2025 12:46
@heliocodacy heliocodacy added this pull request to the merge queue Nov 4, 2025
codacy-production[bot]
codacy-production bot reviewed Nov 4, 2025
View reviewed changes
python/requirements.txt
@@ -1,3 +1,3 @@
flask==1.0.2
django==1.11.29
django==4.2.24
Copy link

@codacy-production codacy-production bot Nov 4, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

ℹ️ Codacy found a minor Security issue: Insecure dependency pypi/django@4.2.24 (CVE-2025-59682: django: Potential partial directory-traversal via archive.extract()) (update to 4.2.25)

The issue identified by the Trivy linter is a security vulnerability in Django version 4.2.24, specifically a potential partial directory-traversal vulnerability that could be exploited via the archive.extract() method. This vulnerability is classified under CVE-2025-59682. To mitigate this security risk, it is recommended to update Django to a patched version, which is 4.2.25 or later.

To fix this issue, you simply need to update the version of Django in your requirements file. Here’s the code suggestion to apply the fix:

Suggested change
django==4.2.24
django==4.2.25

This comment was generated by an experimental AI tool.

@github-merge-queue github-merge-queue bot removed this pull request from the merge queue due to no response for status checks Nov 4, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@codacy-production codacy-production[bot] codacy-production[bot] left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@heliocodacy