Bump pillow from 8.4.0 to 9.4.0 #121

Open
dependabot[bot] wants to merge 1 commits from dependabot-pip-pillow-9.4.0 into master
dependabot[bot] commented 2023-01-02 23:01:07 +01:00 (Migrated from github.com)

Bumps pillow from 8.4.0 to 9.4.0.

Release notes

Sourced from pillow's releases.

9.4.0

https://pillow.readthedocs.io/en/stable/releasenotes/9.4.0.html

Changes

... (truncated)

Changelog

Sourced from pillow's changelog.

9.4.0 (2023-01-02)

  • Fixed null pointer dereference crash with malformed font #6846 [wiredfool, radarhere]

  • Return from ImagingFill early if image has a zero dimension #6842 [radarhere]

  • Reversed deprecations for Image constants, except for duplicate Resampling attributes #6830 [radarhere]

  • Improve exception traceback readability #6836 [hugovk, radarhere]

  • Do not attempt to read IFD1 if absent #6840 [radarhere]

  • Fixed writing int as ASCII tag #6800 [radarhere]

  • If available, use wl-paste or xclip for grabclipboard() on Linux #6783 [radarhere]

  • Added signed option when saving JPEG2000 images #6709 [radarhere]

  • Patch OpenJPEG to include ARM64 fix #6718 [radarhere]

  • Added support for I;16 modes in putdata() #6825 [radarhere]

  • Added conversion from RGBa to RGB #6708 [radarhere]

  • Added DDS support for uncompressed L and LA images #6820 [radarhere, REDxEYE]

  • Added LightSource tag values to ExifTags #6749 [radarhere]

  • Fixed PyAccess after changing ICO size #6821 [radarhere]

  • Do not use EXIF from info when saving PNG images #6819 [radarhere]

  • Fixed saving EXIF data to MPO #6817 [radarhere]

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Bumps [pillow](https://github.com/python-pillow/Pillow) from 8.4.0 to 9.4.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/python-pillow/Pillow/releases">pillow's releases</a>.</em></p> <blockquote> <h2>9.4.0</h2> <p><a href="https://pillow.readthedocs.io/en/stable/releasenotes/9.4.0.html">https://pillow.readthedocs.io/en/stable/releasenotes/9.4.0.html</a></p> <h2>Changes</h2> <ul> <li>Updated copyright year <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6845">#6845</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Fixed null pointer dereference crash with malformed font <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6846">#6846</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Return from ImagingFill early if image has a zero dimension <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6842">#6842</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Reversed deprecations for Image constants, except for duplicate Resampling attributes <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6830">#6830</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Improve exception traceback readability <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6836">#6836</a> [<a href="https://github.com/hugovk"><code>@​hugovk</code></a>]</li> <li>Fix version mismatch <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6841">#6841</a> [<a href="https://github.com/smb123w64gb"><code>@​smb123w64gb</code></a>]</li> <li>Do not attempt to read IFD1 if absent <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6840">#6840</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Fixed writing int as ASCII tag <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6800">#6800</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>If available, use wl-paste or xclip for grabclipboard() on Linux <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6783">#6783</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Added signed option when saving JPEG2000 images <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6709">#6709</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Patch OpenJPEG to include ARM64 fix <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6718">#6718</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Added support for I;16 modes in putdata() <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6825">#6825</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Added conversion from RGBa to RGB <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6708">#6708</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Added DDS support for uncompressed L and LA images <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6820">#6820</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Added LightSource tag values to ExifTags <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6749">#6749</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Updated libtiff shared library name <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6826">#6826</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Fixed PyAccess after changing ICO size <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6821">#6821</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Do not use EXIF from info when saving PNG images <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6819">#6819</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Fixed saving EXIF data to MPO <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6817">#6817</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Added Exif hide_offsets() <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6762">#6762</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Only compare to previous frame when checking for duplicate GIF frames while saving <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6787">#6787</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Always initialize all plugins in registered_extensions() <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6811">#6811</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Initialize unsigned char variables <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6818">#6818</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Updated deprecated NumPy alias <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6814">#6814</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Ignore non-opaque WebP background when saving as GIF <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6792">#6792</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Only set tile in ImageFile <strong>setstate</strong> <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6793">#6793</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Fixed BytesWarnings <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6816">#6816</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>When reading BLP, do not trust JPEG decoder to determine image is CMYK <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6767">#6767</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Updated xz to 5.4.0 <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6802">#6802</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Added IFD enum to ExifTags <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6748">#6748</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Fixed bug combining GIF frame durations <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6779">#6779</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Remove unnecessary Pipfile <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6790">#6790</a> [<a href="https://github.com/hugovk"><code>@​hugovk</code></a>]</li> <li>Support saving JPEG comments <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6774">#6774</a> [<a href="https://github.com/smason"><code>@​smason</code></a>]</li> <li>Add support for PyPy3.9, drop PyPy3.7 <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6782">#6782</a> [<a href="https://github.com/hugovk"><code>@​hugovk</code></a>]</li> <li>[pre-commit.ci] pre-commit autoupdate <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6780">#6780</a> [<a href="https://github.com/pre-commit-ci"><code>@​pre-commit-ci</code></a>]</li> <li>Use compile_python_fuzzer <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6775">#6775</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Remove specific number of jobs from comment <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6772">#6772</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Fix WebP dealloc method definitions <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6763">#6763</a> [<a href="https://github.com/Yay295"><code>@​Yay295</code></a>]</li> <li>Added getxmp() to WebPImagePlugin <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6758">#6758</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Use stdlib for setuptools on Cygwin <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6760">#6760</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Added &quot;exact&quot; option when saving WebP <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6747">#6747</a> [<a href="https://github.com/ashafaei"><code>@​ashafaei</code></a>]</li> <li>Use fractional coordinates when drawing text <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6722">#6722</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Fixed writing int as BYTE tag <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6740">#6740</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Remove Tidelift alignment action and badge <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6739">#6739</a> [<a href="https://github.com/aclark4life"><code>@​aclark4life</code></a>]</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/python-pillow/Pillow/blob/main/CHANGES.rst">pillow's changelog</a>.</em></p> <blockquote> <h2>9.4.0 (2023-01-02)</h2> <ul> <li> <p>Fixed null pointer dereference crash with malformed font <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6846">#6846</a> [wiredfool, radarhere]</p> </li> <li> <p>Return from ImagingFill early if image has a zero dimension <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6842">#6842</a> [radarhere]</p> </li> <li> <p>Reversed deprecations for Image constants, except for duplicate Resampling attributes <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6830">#6830</a> [radarhere]</p> </li> <li> <p>Improve exception traceback readability <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6836">#6836</a> [hugovk, radarhere]</p> </li> <li> <p>Do not attempt to read IFD1 if absent <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6840">#6840</a> [radarhere]</p> </li> <li> <p>Fixed writing int as ASCII tag <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6800">#6800</a> [radarhere]</p> </li> <li> <p>If available, use wl-paste or xclip for grabclipboard() on Linux <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6783">#6783</a> [radarhere]</p> </li> <li> <p>Added signed option when saving JPEG2000 images <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6709">#6709</a> [radarhere]</p> </li> <li> <p>Patch OpenJPEG to include ARM64 fix <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6718">#6718</a> [radarhere]</p> </li> <li> <p>Added support for I;16 modes in putdata() <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6825">#6825</a> [radarhere]</p> </li> <li> <p>Added conversion from RGBa to RGB <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6708">#6708</a> [radarhere]</p> </li> <li> <p>Added DDS support for uncompressed L and LA images <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6820">#6820</a> [radarhere, REDxEYE]</p> </li> <li> <p>Added LightSource tag values to ExifTags <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6749">#6749</a> [radarhere]</p> </li> <li> <p>Fixed PyAccess after changing ICO size <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6821">#6821</a> [radarhere]</p> </li> <li> <p>Do not use EXIF from info when saving PNG images <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6819">#6819</a> [radarhere]</p> </li> <li> <p>Fixed saving EXIF data to MPO <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6817">#6817</a> [radarhere]</p> </li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/python-pillow/Pillow/commit/a5bbab1c1e63b439de191ef2040173713b26d2da"><code>a5bbab1</code></a> 9.4.0 version bump</li> <li><a href="https://github.com/python-pillow/Pillow/commit/cdd3d8ec77524b83ba85348b0bf26d4e741d6af8"><code>cdd3d8e</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6851">#6851</a> from radarhere/size</li> <li><a href="https://github.com/python-pillow/Pillow/commit/38a93a05718bc4fd871fff4254c0ce2cbce5a054"><code>38a93a0</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6850">#6850</a> from radarhere/releasenotes</li> <li><a href="https://github.com/python-pillow/Pillow/commit/d4d981dc9ff923a099f0e5be95eb9a2449b74f35"><code>d4d981d</code></a> Updated size parameter descriptions</li> <li><a href="https://github.com/python-pillow/Pillow/commit/e908afea40ec54c43954c9a70be78af670dfb442"><code>e908afe</code></a> Updated security descriptions</li> <li><a href="https://github.com/python-pillow/Pillow/commit/0efda9189e68d30d92682bb9a365c12d7154971f"><code>0efda91</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6845">#6845</a> from radarhere/copyright</li> <li><a href="https://github.com/python-pillow/Pillow/commit/35b4c433b33da3fa1e9a3193809c3fd7ec58d042"><code>35b4c43</code></a> Added release notes for <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6846">#6846</a></li> <li><a href="https://github.com/python-pillow/Pillow/commit/a632b7a3e71a0122caa9be27fb0b1701ffb49e26"><code>a632b7a</code></a> Added release notes for <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6842">#6842</a></li> <li><a href="https://github.com/python-pillow/Pillow/commit/009bbe25ecbcb14f4e238089f11915d01dfcf1b4"><code>009bbe2</code></a> Update CHANGES.rst [ci skip]</li> <li><a href="https://github.com/python-pillow/Pillow/commit/c4cc48764a66bad94c0c3fe39744bc52f38b2b8e"><code>c4cc487</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6846">#6846</a> from radarhere/font_crash</li> <li>Additional commits viewable in <a href="https://github.com/python-pillow/Pillow/compare/8.4.0...9.4.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pillow&package-manager=pip&previous-version=8.4.0&new-version=9.4.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details>
chychkan (Migrated from github.com) reviewed 2023-01-02 23:01:07 +01:00
This pull request can be merged automatically.
You are not authorized to merge this pull request.
View command line instructions

Checkout

From your project repository, check out a new branch and test the changes.
git fetch -u origin dependabot-pip-pillow-9.4.0:dependabot-pip-pillow-9.4.0
git checkout dependabot-pip-pillow-9.4.0
Sign in to join this conversation.