Skip to content

Update lxml to 4.6.4#227

Closed
pyup-bot wants to merge 1 commit intomasterfrom
pyup-update-lxml-4.6.2-to-4.6.4
Closed

Update lxml to 4.6.4#227
pyup-bot wants to merge 1 commit intomasterfrom
pyup-update-lxml-4.6.2-to-4.6.4

Conversation

@pyup-bot
Copy link
Contributor

@pyup-bot pyup-bot commented Nov 3, 2021

This PR updates lxml from 4.6.2 to 4.6.4.

Changelog

4.6.3

==================

Bugs fixed
----------

* A vulnerability (CVE-2021-28957) was discovered in the HTML Cleaner by Kevin Chung,
which allowed JavaScript to pass through.  The cleaner now removes the HTML5
``formaction`` attribute.
Links

@pyup-bot pyup-bot mentioned this pull request Nov 3, 2021
Closed
@codecov
Copy link

codecov bot commented Nov 3, 2021

Codecov Report

Merging #227 (6a57712) into master (a2f0d23) will not change coverage.
The diff coverage is n/a.

@@           Coverage Diff           @@
##           master     #227   +/-   ##
=======================================
  Coverage   98.06%   98.06%           
=======================================
  Files          27       27           
  Lines        1293     1293           
=======================================
  Hits         1268     1268           
  Misses         25       25

@pyup-bot
Copy link
Contributor Author

pyup-bot commented Dec 12, 2021

Closing this in favor of #230

@pyup-bot pyup-bot closed this Dec 12, 2021
@jraddaoui jraddaoui deleted the pyup-update-lxml-4.6.2-to-4.6.4 branch December 12, 2021 23:11
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@pyup-bot