[Security] Bump django from 2.1.11 to 2.2.7 #182
Conversation
dependabot-preview
bot
added
the
dependencies
dependabot-preview
bot
force-pushed
the
dependabot/pip/django-2.2.7
branch
from
d2aa588 to
c83f19d
Compare
Bumps [django](https://github.com/django/django) from 2.1.11 to 2.2.7. - [Release notes](https://github.com/django/django/releases) - [Commits](django/django@2.1.11...2.2.7) Signed-off-by: dependabot-preview[bot] <[email protected]>
dependabot-preview
bot
force-pushed
the
dependabot/pip/django-2.2.7
branch
from
c83f19d to
058df44
Compare
|
We've just been alerted that this update fixes a security vulnerability: Sourced from The GitHub Security Advisory Database.
|
dependabot-preview
bot
changed the title
dependabot-preview
bot
added
the
security issue
|
Superseded by #184. |
Bumps django from 2.1.11 to 2.2.7.
Commits
27f2b44[2.2.x] Bumped version for 2.2.7 release.1cbf607[2.2.x] Updated man page for Django 2.2.6f26693[2.2.x] Added release dates for 2.2.7, 2.1.14, and 1.11.26.785d170[2.2.x] Fixed #30931 -- Restored ability to override Model.get_FIELD_display().eb8a53c[2.2.x] Fixed typo in docs/ref/signals.txt.3ca4457[2.2.x] Corrected error message in Many-to-many relationships docs.972eef6[2.2.x] Fixed #30927 -- Simplified an example of test for the deprecation war...9d15f1e[2.2.x] Fixed #30917 -- Clarified formsets topic documentation.4cc1549[2.2.x] Fixed #13750 -- Clarified need to reopen models.ImageField.image file...4d992bc[2.2.x] Fixed typo in docs/topics/files.txt.Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot will not automatically merge this PR because it includes a minor update to a production dependency.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)@dependabot use these labelswill set the current labels as the default for future PRs for this repo and language@dependabot use these reviewerswill set the current reviewers as the default for future PRs for this repo and language@dependabot use these assigneeswill set the current assignees as the default for future PRs for this repo and language@dependabot use this milestonewill set the current milestone as the default for future PRs for this repo and language@dependabot badge mewill comment on this PR with code to add a "Dependabot enabled" badge to your readmeAdditionally, you can set the following in your Dependabot dashboard: