GitHub
07/12/2023, 9:58 PMGitHub
07/12/2023, 10:01 PM<https://github.com/flyteorg/flytekit/tree/master|master>
by eapolinario
<https://github.com/flyteorg/flytekit/commit/480c41e9c7c66598ff3d7c8b4e7becf610ded241|480c41e9>
- Carry over hash from literal maps and collections in cache key computation (#1720)
flyteorg/flytekitGitHub
07/12/2023, 10:02 PMGitHub
07/13/2023, 12:27 AMGitHub
07/13/2023, 11:26 AM@task(
task_config=Elastic(
nnodes=1,
nproc_per_node=1,
),
)
def train():
raise FooException("foo")
This currently results in this stack trace:
FlyteScopedUserException:
…
raise FooException("foo")
FooException: foo
============================================================
During handling of the above exception, another exception occurred:
…
729 return exception_scopes.user_entry_point(self._workflow_function)(**kwargs)
/home/fabiogratz/miniconda3/envs/flyte-dev/lib/python3.10/site-packages/flytekit/exceptions/scopes.py:202 in user_entry_point
202 raise exc.type(f"Error encountered while executing '{fn_name}':\n {exc.
TypeError: Encountered error while executing workflow 'wf':
ChildFailedError.__init__() missing 1 required positional argument: 'failures'
The original FooException
is not the last exception the user sees!
Reason:
• The worker process crashes with FooException
• `elastic_launch` in the elastic task raises ChildFailedError
• Since all this is executed within exception_scopes.user_entry_point(self._execute)(**kwargs)
here, we re-raise the ChildFailedError
using raise exc.type(f"Error encountered while executing '{fn_name}':\n {exc.value}") from exc
here.
• However, ChildFailedError
needs an additional argument called `failures` so exc.type("some message")
fails.
In this PR, I therefore catch the ChildFailedError
and re-raise a RuntimeError
with the message of the original ChildFailedError
.
* * *
Unfortunately torch elastic launch gives us access to the exception in the child process only as a message in string format. We don't know the type of the original exception in the child process (or would have to try to parse this from the string). This means we don't know whether the exception in the child process is recoverable. Therefore I add a warning to the user that they should use the Elastic(..., max_retries)
argument to control retries for elastic tasks. (This means that not the pod is restarted but the worker processes within the elastic task while the main agent process doesn't crash.)
Tracking Issue
NA
Follow-up issue
NA
flyteorg/flytekit
✅ All checks have passed
30/30 successful checksGitHub
07/13/2023, 5:01 PM<https://github.com/flyteorg/flyteadmin/tree/master|master>
by wild-endeavor
<https://github.com/flyteorg/flyteadmin/commit/b93457f2baa690dd4074edbcb645d55fa0b96952|b93457f2>
- Remove content md5 requirement (#587)
flyteorg/flyteadminGitHub
07/13/2023, 5:41 PMGitHub
07/13/2023, 6:26 PM<https://github.com/flyteorg/flyte-conference-talks/tree/main|main>
by cosmicBboy
<https://github.com/flyteorg/flyte-conference-talks/commit/306fc232a4e961d26ea5e944fd4d028798facbb9|306fc232>
- cleanup
flyteorg/flyte-conference-talksGitHub
07/13/2023, 7:11 PMGitHub
07/13/2023, 8:13 PM<https://github.com/flyteorg/flyteadmin/tree/master|master>
by EngHabu
<https://github.com/flyteorg/flyteadmin/commit/fb359bc1714c3784e1542402810746d8d6f7cabb|fb359bc1>
- Propagate request id on incoming and outgoing requests (#582)
flyteorg/flyteadminGitHub
07/13/2023, 8:55 PMGitHub
07/13/2023, 10:56 PMGitHub
07/13/2023, 11:44 PMGitHub
07/14/2023, 4:47 AM<https://github.com/flyteorg/flyte/tree/master|master>
by samhita-alla
<https://github.com/flyteorg/flyte/commit/3d3d72d2d44b3c6c9f011e1de559dfeabd71abf9|3d3d72d2>
- Development Environment Setup Guide for Flyte Components (#3811)
flyteorg/flyteGitHub
07/14/2023, 11:15 AM<https://github.com/flyteorg/static-resources/tree/main|main>
by davidmirror-ops
<https://github.com/flyteorg/static-resources/commit/856b9e4705855c5a4d48dd83db2ed099883f070f|856b9e47>
- Add auth arch diagram (#22)
flyteorg/static-resourcesGitHub
07/14/2023, 3:09 PM<https://github.com/flyteorg/flytekit/tree/master|master>
by fg91
<https://github.com/flyteorg/flytekit/commit/5bd8956816bb6c6491de2f5ac9141ba9fd67cab1|5bd89568>
- Fix: Improve error handling in elastic tasks (#1739)
flyteorg/flytekitGitHub
07/14/2023, 3:31 PMfrom flytekit import task, workflow, Resources
from typing import List, Tuple
from dataclasses_json import dataclass_json
from dataclasses import dataclass
from mashumaro.mixins.json import DataClassJSONMixin
from enum import Enum
@dataclass
class CurrencyPosition(DataClassJSONMixin):
currency: str
balance: float
@dataclass
class StockPosition(DataClassJSONMixin):
ticker: str
name: str
balance: int
@dataclass
class OP(DataClassJSONMixin):
currencies: List[CurrencyPosition]
stocks: List[StockPosition]
@task(requests=Resources(mem="1Gi",cpu="1"),limits=Resources(mem="1Gi",cpu="1"),disable_deck=False)
def t1(obj: OP) -> OP:
return obj
@task(requests=Resources(mem="1Gi",cpu="1"),limits=Resources(mem="1Gi",cpu="1"),disable_deck=False)
def t2(obj: OP) -> OP:
return obj
@task(requests=Resources(mem="1Gi",cpu="1"),limits=Resources(mem="1Gi",cpu="1"),disable_deck=False)
def t3(obj: OP) -> OP:
return obj
@workflow
def wf() -> OP:
my_op = OP(
currencies=[
CurrencyPosition("USD", 238.67),
CurrencyPosition("EUR", 361.84),
],
stocks=[
StockPosition("AAPL", "Apple", 10),
StockPosition("AMZN", "Amazon", 10),
]
)
res = t1(obj=my_op)
res = t2(obj=res)
res = t3(obj=res)
return res
Performance Compare
• We compare three items by running the three items 3 times for each then find the avergae time of to_literal and to_python val
• the result shows, we reach 1.5x faster than previous version of DataClassTransformer with DataclassJSONMixin as input
1. gcp_dataclass_json_new, test the dataclass_json version of workflow (by simply change the input) with new version of DataClassTransformer
2. gcp_dataclassJSONMixin, test the DataclassJSONMixin version of workflow (by simply change the input) with new version of DataClassTransformer
3. gcp_dataclass_json_old, test the dataclass_json version of workflow (by simply change the input) with older version of DataClassTransformer
Compare to_literal
image▾
image▾
GitHub
07/14/2023, 4:27 PMProtocol Buffers v3.19.5
C++
• Reduce memory consumption of MessageSet parsing
• This release addresses a Security Advisory for C++ and Python usersCommits • `b464cfb` Updating changelog • `40859fb` Updating version.json and repo version numbers to: 19.5 • `3b175f1` Merge pull request #10543 from deannagarcia/3.19.x • `c05b5f3` Add missing includes • `0299c03` Apply patch • `0a722f1` Update version.json with "lts": true (#10533) • `d5eb60a` Merge pull request #10530 from protocolbuffers/deannagarcia-patch-6 • `6cf1f78` Update version.json • `97fc844` Merge pull request #10504 from deannagarcia/3.19.x • `29d60a2` Add version file • Additional commits viewable in compare view Dependabot compatibility score You can trigger a rebase of this PR by commenting
@dependabot rebase
.
* * *
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
• @dependabot rebase
will rebase this PR
• @dependabot recreate
will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge
will merge this PR after your CI passes on it
• @dependabot squash and merge
will squash and merge this PR after your CI passes on it
• @dependabot cancel merge
will cancel a previously requested merge and block automerging
• @dependabot reopen
will reopen this PR if it is closed
• @dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels
will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers
will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees
will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone
will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the Security Alerts page.
Note > Automatic rebases have been disabled on this pull request as it has been open for over 30 days.flyteorg/flytesnacks GitHub Actions: Mark github pre-release as Release GitHub Actions: Publish artifacts to github release GitHub Actions: Create Prerelease GitHub Actions: Bump Version ✅ 26 other checks have passed 26/30 successful checks
GitHub
07/14/2023, 4:27 PMProtocol Buffers v3.20.2
C++
• Reduce memory consumption of MessageSet parsing
• This release addresses a Security Advisory for C++ and Python usersCommits • `a20c65f` Updating changelog • `c49fe79` Updating version.json and repo version numbers to: 20.2 • `806d7e4` Merge pull request #10544 from deannagarcia/3.20.x • `ae718b3` Add missing includes • `b4c395a` Apply patch • `6439c5c` Merge pull request #10531 from protocolbuffers/deannagarcia-patch-7 • `22c79e6` Update version.json • `c1a2d2e` Fix python release on macos (#10512) • `a826282` Merge pull request #10505 from deannagarcia/3.20.x • `7639a71` Add version file • Additional commits viewable in compare view Dependabot compatibility score You can trigger a rebase of this PR by commenting
@dependabot rebase
.
* * *
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
• @dependabot rebase
will rebase this PR
• @dependabot recreate
will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge
will merge this PR after your CI passes on it
• @dependabot squash and merge
will squash and merge this PR after your CI passes on it
• @dependabot cancel merge
will cancel a previously requested merge and block automerging
• @dependabot reopen
will reopen this PR if it is closed
• @dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels
will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers
will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees
will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone
will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the Security Alerts page.
Note > Automatic rebases have been disabled on this pull request as it has been open for over 30 days.flyteorg/flytesnacks GitHub Actions: Mark github pre-release as Release GitHub Actions: Publish artifacts to github release GitHub Actions: Create Prerelease GitHub Actions: Bump Version ✅ 26 other checks have passed 26/30 successful checks
GitHub
07/14/2023, 4:28 PMProtocol Buffers v3.20.2
C++
• Reduce memory consumption of MessageSet parsing
• This release addresses a Security Advisory for C++ and Python usersCommits • `a20c65f` Updating changelog • `c49fe79` Updating version.json and repo version numbers to: 20.2 • `806d7e4` Merge pull request #10544 from deannagarcia/3.20.x • `ae718b3` Add missing includes • `b4c395a` Apply patch • `6439c5c` Merge pull request #10531 from protocolbuffers/deannagarcia-patch-7 • `22c79e6` Update version.json • `c1a2d2e` Fix python release on macos (#10512) • `a826282` Merge pull request #10505 from deannagarcia/3.20.x • `7639a71` Add version file • Additional commits viewable in compare view Dependabot compatibility score You can trigger a rebase of this PR by commenting
@dependabot rebase
.
* * *
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
• @dependabot rebase
will rebase this PR
• @dependabot recreate
will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge
will merge this PR after your CI passes on it
• @dependabot squash and merge
will squash and merge this PR after your CI passes on it
• @dependabot cancel merge
will cancel a previously requested merge and block automerging
• @dependabot reopen
will reopen this PR if it is closed
• @dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels
will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers
will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees
will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone
will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the Security Alerts page.
Note > Automatic rebases have been disabled on this pull request as it has been open for over 30 days.flyteorg/flytesnacks GitHub Actions: Mark github pre-release as Release GitHub Actions: Publish artifacts to github release GitHub Actions: Create Prerelease GitHub Actions: Bump Version GitHub Actions: Serialize & Register Flytesnacks workflow / Register example to sandbox ✅ 25 other checks have passed 25/30 successful checks
GitHub
07/14/2023, 4:28 PMProtocol Buffers v3.20.2
C++
• Reduce memory consumption of MessageSet parsing
• This release addresses a Security Advisory for C++ and Python usersCommits • `a20c65f` Updating changelog • `c49fe79` Updating version.json and repo version numbers to: 20.2 • `806d7e4` Merge pull request #10544 from deannagarcia/3.20.x • `ae718b3` Add missing includes • `b4c395a` Apply patch • `6439c5c` Merge pull request #10531 from protocolbuffers/deannagarcia-patch-7 • `22c79e6` Update version.json • `c1a2d2e` Fix python release on macos (#10512) • `a826282` Merge pull request #10505 from deannagarcia/3.20.x • `7639a71` Add version file • Additional commits viewable in compare view Dependabot compatibility score You can trigger a rebase of this PR by commenting
@dependabot rebase
.
* * *
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
• @dependabot rebase
will rebase this PR
• @dependabot recreate
will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge
will merge this PR after your CI passes on it
• @dependabot squash and merge
will squash and merge this PR after your CI passes on it
• @dependabot cancel merge
will cancel a previously requested merge and block automerging
• @dependabot reopen
will reopen this PR if it is closed
• @dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels
will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers
will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees
will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone
will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the Security Alerts page.
Note > Automatic rebases have been disabled on this pull request as it has been open for over 30 days.flyteorg/flytesnacks GitHub Actions: Mark github pre-release as Release GitHub Actions: Publish artifacts to github release GitHub Actions: Create Prerelease GitHub Actions: Bump Version GitHub Actions: Serialize & Register Flytesnacks workflow / Register example to sandbox GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/integrations/kubernetes/ray_example) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/integrations/kubernetes/pod) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/integrations/kubernetes/kftensorflow) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/integrations/kubernetes/kfpytorch) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/integrations/kubernetes/kfmpi) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/integrations/kubernetes/k8s_spark) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/integrations/flytekit_plugins/whylogs_examples) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/integrations/flytekit_plugins/sql) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/integrations/flytekit_plugins/papermilltasks) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/integrations/flytekit_plugins/pandera_examples) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/integrations/flytekit_plugins/onnx_examples) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/integrations/flytekit_plugins/modin_examples) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/integrations/flytekit_plugins/greatexpectations) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/integrations/flytekit_plugins/dolt) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/integrations/aws/sagemaker_training) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/integrations/aws/sagemaker_pytorch) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/integrations/aws/batch) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/integrations/aws/athena) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/core) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/case_studies/ml_training/spark_horovod) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/case_studies/ml_training/pima_diabetes) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/case_studies/ml_training/mnist_classifier) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/case_studies/ml_training/house_price_prediction) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/case_studies/feature_engineering/feast_integration) ✅ 1 other check has passed 1/30 successful checks
GitHub
07/14/2023, 4:29 PMProtocol Buffers v3.20.2
C++
• Reduce memory consumption of MessageSet parsing
• This release addresses a Security Advisory for C++ and Python users
Protocol Buffers v3.20.1
PHP
• Fix building packaged PHP extension (#9727)
• Fixed composer.json to only advertise compatibility with PHP 7.0+. (#9819)
Ruby
• Disable the aarch64 build on macOS until it can be fixed. (#9816)
Other
• Fix versioning issues in 3.20.0
Protocol Buffers v3.20.1-rc1
#PHP
• Fix building packaged PHP extension (#9727)
#Other
• Fix versioning issues in 3.20.0Commits • `a20c65f` Updating changelog • `c49fe79` Updating version.json and repo version numbers to: 20.2 • `806d7e4` Merge pull request #10544 from deannagarcia/3.20.x • `ae718b3` Add missing includes • `b4c395a` Apply patch • `6439c5c` Merge pull request #10531 from protocolbuffers/deannagarcia-patch-7 • `22c79e6` Update version.json • `c1a2d2e` Fix python release on macos (#10512) • `a826282` Merge pull request #10505 from deannagarcia/3.20.x • `7639a71` Add version file • Additional commits viewable in compare view Dependabot compatibility score You can trigger a rebase of this PR by commenting
@dependabot rebase
.
* * *
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
• @dependabot rebase
will rebase this PR
• @dependabot recreate
will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge
will merge this PR after your CI passes on it
• @dependabot squash and merge
will squash and merge this PR after your CI passes on it
• @dependabot cancel merge
will cancel a previously requested merge and block automerging
• @dependabot reopen
will reopen this PR if it is closed
• @dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels
will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers
will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees
will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone
will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the Security Alerts page.
Note > Automatic rebases have been disabled on this pull request as it has been open for over 30 days.flyteorg/flytesnacks GitHub Actions: Mark github pre-release as Release GitHub Actions: Publish artifacts to github release GitHub Actions: Create Prerelease GitHub Actions: Bump Version ✅ 26 other checks have passed 26/30 successful checks
GitHub
07/14/2023, 4:29 PMProtocol Buffers v3.20.2
C++
• Reduce memory consumption of MessageSet parsing
• This release addresses a Security Advisory for C++ and Python users
Protocol Buffers v3.20.1
PHP
• Fix building packaged PHP extension (#9727)
• Fixed composer.json to only advertise compatibility with PHP 7.0+. (#9819)
Ruby
• Disable the aarch64 build on macOS until it can be fixed. (#9816)
Other
• Fix versioning issues in 3.20.0
Protocol Buffers v3.20.1-rc1
#PHP
• Fix building packaged PHP extension (#9727)
#Other
• Fix versioning issues in 3.20.0Commits • `a20c65f` Updating changelog • `c49fe79` Updating version.json and repo version numbers to: 20.2 • `806d7e4` Merge pull request #10544 from deannagarcia/3.20.x • `ae718b3` Add missing includes • `b4c395a` Apply patch • `6439c5c` Merge pull request #10531 from protocolbuffers/deannagarcia-patch-7 • `22c79e6` Update version.json • `c1a2d2e` Fix python release on macos (#10512) • `a826282` Merge pull request #10505 from deannagarcia/3.20.x • `7639a71` Add version file • Additional commits viewable in compare view Dependabot compatibility score You can trigger a rebase of this PR by commenting
@dependabot rebase
.
* * *
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
• @dependabot rebase
will rebase this PR
• @dependabot recreate
will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge
will merge this PR after your CI passes on it
• @dependabot squash and merge
will squash and merge this PR after your CI passes on it
• @dependabot cancel merge
will cancel a previously requested merge and block automerging
• @dependabot reopen
will reopen this PR if it is closed
• @dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels
will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers
will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees
will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone
will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the Security Alerts page.
Note > Automatic rebases have been disabled on this pull request as it has been open for over 30 days.flyteorg/flytesnacks GitHub Actions: Mark github pre-release as Release GitHub Actions: Publish artifacts to github release GitHub Actions: Create Prerelease GitHub Actions: Bump Version ✅ 26 other checks have passed 26/30 successful checks
GitHub
07/14/2023, 4:29 PMProtocol Buffers v3.20.2
C++
• Reduce memory consumption of MessageSet parsing
• This release addresses a Security Advisory for C++ and Python users
Protocol Buffers v3.20.1
PHP
• Fix building packaged PHP extension (#9727)
• Fixed composer.json to only advertise compatibility with PHP 7.0+. (#9819)
Ruby
• Disable the aarch64 build on macOS until it can be fixed. (#9816)
Other
• Fix versioning issues in 3.20.0
Protocol Buffers v3.20.1-rc1
#PHP
• Fix building packaged PHP extension (#9727)
#Other
• Fix versioning issues in 3.20.0Commits • `a20c65f` Updating changelog • `c49fe79` Updating version.json and repo version numbers to: 20.2 • `806d7e4` Merge pull request #10544 from deannagarcia/3.20.x • `ae718b3` Add missing includes • `b4c395a` Apply patch • `6439c5c` Merge pull request #10531 from protocolbuffers/deannagarcia-patch-7 • `22c79e6` Update version.json • `c1a2d2e` Fix python release on macos (#10512) • `a826282` Merge pull request #10505 from deannagarcia/3.20.x • `7639a71` Add version file • Additional commits viewable in compare view Dependabot compatibility score You can trigger a rebase of this PR by commenting
@dependabot rebase
.
* * *
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
• @dependabot rebase
will rebase this PR
• @dependabot recreate
will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge
will merge this PR after your CI passes on it
• @dependabot squash and merge
will squash and merge this PR after your CI passes on it
• @dependabot cancel merge
will cancel a previously requested merge and block automerging
• @dependabot reopen
will reopen this PR if it is closed
• @dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels
will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers
will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees
will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone
will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the Security Alerts page.
Note > Automatic rebases have been disabled on this pull request as it has been open for over 30 days.flyteorg/flytesnacks GitHub Actions: Mark github pre-release as Release GitHub Actions: Publish artifacts to github release GitHub Actions: Create Prerelease GitHub Actions: Bump Version ✅ 26 other checks have passed 26/30 successful checks
GitHub
07/14/2023, 4:29 PM2.1.1
Documentation updates
• Fix local extensions documentation (#1686) `@alkatar21`
Bugfixes
• Sanitize Mercurial branch information before checkout. (#1689) `@ericof`
This release is made by wonderful contributors:
`@alkatar21`, `@ericof` and `@jensens`
2.1.0
Preamble
This release log lists all changes from 1.7.3 to this release. It includes the log of the 2.0.x releases, which were never published on PyPI. Because of that it might look a bit blurry.
We release the current stable state of the project, knowing there are a bunch of open pull requests. Those will be reviewed by the core-committers and merged or dropped.
Future releases will happen more frequently. Stay tuned.
Fetch fresh from PyPI https://pypi.org/project/cookiecutter/2.1.0/
Changes
• Move contributors and backers to credits section (#1599) `@doobrie`
• test_generate_file_verbose_template_syntax_error fixed (#1671) `@MaciejPatro`
• Removed changes related to setuptools_scm (#1629) `@ozer550`
• Release 2.0.1 (#1620) `@audreyfeldroy`
Breaking Changes
• Release preparation for 2.0.1rc1 (#1608) `@audreyfeldroy`
• Replace poyo with pyyaml. (#1489) `@dHannasch`
• Added: Path templates will be rendered when copy_without_render used (#839) `@noirbizarre`
• Added: End of line detection and configuration. (#1407) `@insspb`
• Remove support for python2.7 (#1386) `@ssbarnea`
Minor Changes
• Documentation overhaul (#1677) `@jensens`
• Feature/local extensions (#1240) `@mwesterhof`
• Adopt setuptools-scm packaging (#1577) `@ssbarnea`
• Log the error message when git clone fails, not just the return code (#1505) `@logworthy`
• allow jinja 3.0.0 (#1548) `@wouterdb`
• Added uuid extension to be able to generate uuids (#1493) `@jonaswre`... (truncated) Changelog Sourced from cookiecutter's changelog.
2.1.1 (2022-06-01)
Documentation updates
• Fix local extensions documentation (#1686) `@alkatar21`
Bugfixes
• Sanitize Mercurial branch information before checkout. (#1689) `@ericof`
This release is made by wonderfull contributors:
`@alkatar21`, `@ericof` and `@jensens`
2.1.0 (2022-05-30)
Changes
• Move contributors and backers to credits section (#1599) `@doobrie`
• test_generate_file_verbose_template_syntax_error fixed (#1671) `@MaciejPatro`
• Removed changes related to setuptools_scm (#1629) `@ozer550`
• Feature/local extensions (#1240) `@mwesterhof`
CI/CD and QA changes
• Check manifest: pre-commit, fixes, cleaning (#1683) `@jensens`
• Follow PyPA guide to release package using GitHub Actions. (#1682) `@ericof`
Documentation updates
• Fix typo in dict_variables.rst (#1680) `@ericof`
• Documentation overhaul (#1677) `@jensens`
• Fixed incorrect link on docs. (#1649) `@luzfcb`
Bugfixes
• Restore accidentally deleted support for click 8.x (#1643) `@jaklan`
This release was made possible by our wonderful contributors:
`@doobrie`, `@jensens`, `@ericof`, `@luzfcb`
2.0.2 (2021-12-27)
Remark: This release never made it to official PyPI
• Fix Python version number in cookiecutter --version and test on Python 3.10 (#1621) `@ozer550`
• Removed changes related to setuptools_scm (#1629) `@audreyfeldroy` `@ozer550`... (truncated) Commits • `f9376a9` Prepare release 2.1.1 • `fdffddb` Merge pull reque… flyteorg/flytesnacks GitHub Actions: Mark github pre-release as Release GitHub Actions: Publish artifacts to github release GitHub Actions: Create Prerelease GitHub Actions: Bump Version GitHub Actions: Serialize & Register Flytesnacks workflow / Register example to sandbox GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/case_studies/ml_training/spark_horovod) ✅ 24 other checks have passed 24/30 successful checks
GitHub
07/14/2023, 4:30 PM2.1.1
Documentation updates
• Fix local extensions documentation (#1686) `@alkatar21`
Bugfixes
• Sanitize Mercurial branch information before checkout. (#1689) `@ericof`
This release is made by wonderful contributors:
`@alkatar21`, `@ericof` and `@jensens`
2.1.0
Preamble
This release log lists all changes from 1.7.3 to this release. It includes the log of the 2.0.x releases, which were never published on PyPI. Because of that it might look a bit blurry.
We release the current stable state of the project, knowing there are a bunch of open pull requests. Those will be reviewed by the core-committers and merged or dropped.
Future releases will happen more frequently. Stay tuned.
Fetch fresh from PyPI https://pypi.org/project/cookiecutter/2.1.0/
Changes
• Move contributors and backers to credits section (#1599) `@doobrie`
• test_generate_file_verbose_template_syntax_error fixed (#1671) `@MaciejPatro`
• Removed changes related to setuptools_scm (#1629) `@ozer550`
• Release 2.0.1 (#1620) `@audreyfeldroy`
Breaking Changes
• Release preparation for 2.0.1rc1 (#1608) `@audreyfeldroy`
• Replace poyo with pyyaml. (#1489) `@dHannasch`
• Added: Path templates will be rendered when copy_without_render used (#839) `@noirbizarre`
• Added: End of line detection and configuration. (#1407) `@insspb`
• Remove support for python2.7 (#1386) `@ssbarnea`
Minor Changes
• Documentation overhaul (#1677) `@jensens`
• Feature/local extensions (#1240) `@mwesterhof`
• Adopt setuptools-scm packaging (#1577) `@ssbarnea`
• Log the error message when git clone fails, not just the return code (#1505) `@logworthy`
• allow jinja 3.0.0 (#1548) `@wouterdb`
• Added uuid extension to be able to generate uuids (#1493) `@jonaswre`... (truncated) Changelog Sourced from cookiecutter's changelog.
2.1.1 (2022-06-01)
Documentation updates
• Fix local extensions documentation (#1686) `@alkatar21`
Bugfixes
• Sanitize Mercurial branch information before checkout. (#1689) `@ericof`
This release is made by wonderfull contributors:
`@alkatar21`, `@ericof` and `@jensens`
2.1.0 (2022-05-30)
Changes
• Move contributors and backers to credits section (#1599) `@doobrie`
• test_generate_file_verbose_template_syntax_error fixed (#1671) `@MaciejPatro`
• Removed changes related to setuptools_scm (#1629) `@ozer550`
• Feature/local extensions (#1240) `@mwesterhof`
CI/CD and QA changes
• Check manifest: pre-commit, fixes, cleaning (#1683) `@jensens`
• Follow PyPA guide to release package using GitHub Actions. (#1682) `@ericof`
Documentation updates
• Fix typo in dict_variables.rst (#1680) `@ericof`
• Documentation overhaul (#1677) `@jensens`
• Fixed incorrect link on docs. (#1649) `@luzfcb`
Bugfixes
• Restore accidentally deleted support for click 8.x (#1643) `@jaklan`
This release was made possible by our wonderful contributors:
`@doobrie`, `@jensens`, `@ericof`, `@luzfcb`
2.0.2 (2021-12-27)
Remark: This release never made it to official PyPI
• Fix Python version number in cookiecutter --version and test on Python 3.10 (#1621) `@ozer550`
• Removed changes related to setuptools_scm (#1629) `@audreyfeldroy` `@ozer550`... (truncated) Commits • `f9376a9` Prepare release 2.1.1 • `fdffddb` Merge pull reque… flyteorg/flytesnacks GitHub Actions: Mark github pre-release as Release GitHub Actions: Publish artifacts to github release GitHub Actions: Create Prerelease GitHub Actions: Bump Version GitHub Actions: Serialize & Register Flytesnacks workflow / Register example to sandbox ✅ 25 other checks have passed 25/30 successful checks
GitHub
07/14/2023, 4:30 PM2.1.1
Documentation updates
• Fix local extensions documentation (#1686) `@alkatar21`
Bugfixes
• Sanitize Mercurial branch information before checkout. (#1689) `@ericof`
This release is made by wonderful contributors:
`@alkatar21`, `@ericof` and `@jensens`
2.1.0
Preamble
This release log lists all changes from 1.7.3 to this release. It includes the log of the 2.0.x releases, which were never published on PyPI. Because of that it might look a bit blurry.
We release the current stable state of the project, knowing there are a bunch of open pull requests. Those will be reviewed by the core-committers and merged or dropped.
Future releases will happen more frequently. Stay tuned.
Fetch fresh from PyPI https://pypi.org/project/cookiecutter/2.1.0/
Changes
• Move contributors and backers to credits section (#1599) `@doobrie`
• test_generate_file_verbose_template_syntax_error fixed (#1671) `@MaciejPatro`
• Removed changes related to setuptools_scm (#1629) `@ozer550`
• Release 2.0.1 (#1620) `@audreyfeldroy`
Breaking Changes
• Release preparation for 2.0.1rc1 (#1608) `@audreyfeldroy`
• Replace poyo with pyyaml. (#1489) `@dHannasch`
• Added: Path templates will be rendered when copy_without_render used (#839) `@noirbizarre`
• Added: End of line detection and configuration. (#1407) `@insspb`
• Remove support for python2.7 (#1386) `@ssbarnea`
Minor Changes
• Documentation overhaul (#1677) `@jensens`
• Feature/local extensions (#1240) `@mwesterhof`
• Adopt setuptools-scm packaging (#1577) `@ssbarnea`
• Log the error message when git clone fails, not just the return code (#1505) `@logworthy`
• allow jinja 3.0.0 (#1548) `@wouterdb`
• Added uuid extension to be able to generate uuids (#1493) `@jonaswre`... (truncated) Changelog Sourced from cookiecutter's changelog.
2.1.1 (2022-06-01)
Documentation updates
• Fix local extensions documentation (#1686) `@alkatar21`
Bugfixes
• Sanitize Mercurial branch information before checkout. (#1689) `@ericof`
This release is made by wonderfull contributors:
`@alkatar21`, `@ericof` and `@jensens`
2.1.0 (2022-05-30)
Changes
• Move contributors and backers to credits section (#1599) `@doobrie`
• test_generate_file_verbose_template_syntax_error fixed (#1671) `@MaciejPatro`
• Removed changes related to setuptools_scm (#1629) `@ozer550`
• Feature/local extensions (#1240) `@mwesterhof`
CI/CD and QA changes
• Check manifest: pre-commit, fixes, cleaning (#1683) `@jensens`
• Follow PyPA guide to release package using GitHub Actions. (#1682) `@ericof`
Documentation updates
• Fix typo in dict_variables.rst (#1680) `@ericof`
• Documentation overhaul (#1677) `@jensens`
• Fixed incorrect link on docs. (#1649) `@luzfcb`
Bugfixes
• Restore accidentally deleted support for click 8.x (#1643) `@jaklan`
This release was made possible by our wonderful contributors:
`@doobrie`, `@jensens`, `@ericof`, `@luzfcb`
2.0.2 (2021-12-27)
Remark: This release never made it to official PyPI
• Fix Python version number in cookiecutter --version and test on Python 3.10 (#1621) `@ozer550`
• Removed changes related to setuptools_scm (#1629) `@audreyfeldroy` `@ozer550`... (truncated) Commits • `f9376a9` Prepare release 2.1.1 • `fdffddb` Merge pull reque… flyteorg/flytesnacks GitHub Actions: Mark github pre-release as Release GitHub Actions: Publish artifacts to github release GitHub Actions: Create Prerelease GitHub Actions: Bump Version GitHub Actions: Serialize & Register Flytesnacks workflow / Register example to sandbox ✅ 25 other checks have passed 25/30 successful checks
GitHub
07/14/2023, 4:30 PM2.1.1
Documentation updates
• Fix local extensions documentation (#1686) `@alkatar21`
Bugfixes
• Sanitize Mercurial branch information before checkout. (#1689) `@ericof`
This release is made by wonderful contributors:
`@alkatar21`, `@ericof` and `@jensens`
2.1.0
Preamble
This release log lists all changes from 1.7.3 to this release. It includes the log of the 2.0.x releases, which were never published on PyPI. Because of that it might look a bit blurry.
We release the current stable state of the project, knowing there are a bunch of open pull requests. Those will be reviewed by the core-committers and merged or dropped.
Future releases will happen more frequently. Stay tuned.
Fetch fresh from PyPI https://pypi.org/project/cookiecutter/2.1.0/
Changes
• Move contributors and backers to credits section (#1599) `@doobrie`
• test_generate_file_verbose_template_syntax_error fixed (#1671) `@MaciejPatro`
• Removed changes related to setuptools_scm (#1629) `@ozer550`
• Release 2.0.1 (#1620) `@audreyfeldroy`
Breaking Changes
• Release preparation for 2.0.1rc1 (#1608) `@audreyfeldroy`
• Replace poyo with pyyaml. (#1489) `@dHannasch`
• Added: Path templates will be rendered when copy_without_render used (#839) `@noirbizarre`
• Added: End of line detection and configuration. (#1407) `@insspb`
• Remove support for python2.7 (#1386) `@ssbarnea`
Minor Changes
• Documentation overhaul (#1677) `@jensens`
• Feature/local extensions (#1240) `@mwesterhof`
• Adopt setuptools-scm packaging (#1577) `@ssbarnea`
• Log the error message when git clone fails, not just the return code (#1505) `@logworthy`
• allow jinja 3.0.0 (#1548) `@wouterdb`
• Added uuid extension to be able to generate uuids (#1493) `@jonaswre`... (truncated) Changelog Sourced from cookiecutter's changelog.
2.1.1 (2022-06-01)
Documentation updates
• Fix local extensions documentation (#1686) `@alkatar21`
Bugfixes
• Sanitize Mercurial branch information before checkout. (#1689) `@ericof`
This release is made by wonderfull contributors:
`@alkatar21`, `@ericof` and `@jensens`
2.1.0 (2022-05-30)
Changes
• Move contributors and backers to credits section (#1599) `@doobrie`
• test_generate_file_verbose_template_syntax_error fixed (#1671) `@MaciejPatro`
• Removed changes related to setuptools_scm (#1629) `@ozer550`
• Feature/local extensions (#1240) `@mwesterhof`
CI/CD and QA changes
• Check manifest: pre-commit, fixes, cleaning (#1683) `@jensens`
• Follow PyPA guide to release package using GitHub Actions. (#1682) `@ericof`
Documentation updates
• Fix typo in dict_variables.rst (#1680) `@ericof`
• Documentation overhaul (#1677) `@jensens`
• Fixed incorrect link on docs. (#1649) `@luzfcb`
Bugfixes
• Restore accidentally deleted support for click 8.x (#1643) `@jaklan`
This release was made possible by our wonderful contributors:
`@doobrie`, `@jensens`, `@ericof`, `@luzfcb`
2.0.2 (2021-12-27)
Remark: This release never made it to official PyPI
• Fix Python version number in cookiecutter --version and test on Python 3.10 (#1621) `@ozer550`
• Removed changes related to setuptools_scm (#1629) `@audreyfeldroy` `@ozer550`... (truncated) Commits • `f9376a9` Prepare release 2.1.1 • `fdffddb` Merge pull reque… flyteorg/flytesnacks GitHub Actions: Mark github pre-release as Release GitHub Actions: Publish artifacts to github release GitHub Actions: Create Prerelease GitHub Actions: Bump Version ✅ 26 other checks have passed 26/30 successful checks
GitHub
07/14/2023, 4:31 PM9.1.1
This release addresses several security problems.
CVE-2022-30595: When reading a TGA file with RLE packets that cross scan lines, Pillow reads the information past the end of the first line without deducting that from the length of the remaining file data. This vulnerability was introduced in Pillow 9.1.0, and can cause a heap buffer overflow.
Opening an image with a zero or negative height has been found to bypass a decompression bomb check. This will now raise a `SyntaxError` instead, in turn raising aChangelog Sourced from pillow's changelog..PIL.UnidentifiedImageError
9.1.1 (2022-05-17)
• When reading past the end of a TGA scan line, reduce bytes left. CVE-2022-30595 [radarhere]
• Do not open images with zero or negative height #6269 [radarhere]Commits • `0f44136` 9.1.1 version bump • `f66f5e1` pre-commit: update Black to fix Click • `0153b37` Skip test_realloc_overflow unless libtiff 4.0.4 or higher • `6fcd31b` Added release notes for 9.1.1 • `c846cc8` When reading past the end of a scan line, reduce bytes left • `184b73e` Do not open images with zero or negative height • See full diff in compare view Dependabot compatibility score You can trigger a rebase of this PR by commenting
@dependabot rebase
.
* * *
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
• @dependabot rebase
will rebase this PR
• @dependabot recreate
will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge
will merge this PR after your CI passes on it
• @dependabot squash and merge
will squash and merge this PR after your CI passes on it
• @dependabot cancel merge
will cancel a previously requested merge and block automerging
• @dependabot reopen
will reopen this PR if it is closed
• @dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels
will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers
will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees
will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone
will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the Security Alerts page.
Note > Automatic rebases have been disabled on this pull request as it has been open for over 30 days.flyteorg/flytesnacks GitHub Actions: Mark github pre-release as Release GitHub Actions: Publish artifacts to github release GitHub Actions: Create Prerelease GitHub Actions: Bump Version GitHub Actions: Serialize & Register Flytesnacks workflow / Register example to sandbox GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/integrations/kubernetes/pod) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/integrations/kubernetes/kftensorflow) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/integrations/kubernetes/kfpytorch) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/integrations/kubernetes/kfmpi) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/integrations/kubernetes/k8s_spark) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/integrations/flytekit_plugins/sql) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/integrations/flytekit_plugins/papermilltasks) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/integrations/flytekit_plugins/pandera_examples) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/integrations/flytekit_plugins/modin_examples) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/integrations/flytekit_plugins/greatexpectations) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/integrations/flytekit_plugins/dolt) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/integrations/aws/sagemaker_training) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/integrations/aws/sagemaker_pytorch) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/integrations/aws/athena) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/core) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/case_studies/ml_training/spark_horovod) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/case_studies/ml_training/pima_diabetes) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/case_studies/ml_training/mnist_classifier) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/case_studies/ml_training/house_price_prediction) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/case_studies/feature_engineering/feast_integration) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/case_studies/feature_engineering/eda) GitHub Actions: Serialize & Register Flytesnacks workflow / Serialize Example (cookbook/case_studies/bioinformatics/blast) GitHub Actions: Build & Push to GHCR (cookbook/integrations/kubernetes/pod) ✅ 2 other checks have passed 2/30 successful checks
GitHub
07/14/2023, 4:31 PM9.1.1
This release addresses several security problems.
CVE-2022-30595: When reading a TGA file with RLE packets that cross scan lines, Pillow reads the information past the end of the first line without deducting that from the length of the remaining file data. This vulnerability was introduced in Pillow 9.1.0, and can cause a heap buffer overflow.
Opening an image with a zero or negative height has been found to bypass a decompression bomb check. This will now raise a `SyntaxError` instead, in turn raising aChangelog Sourced from pillow's changelog..PIL.UnidentifiedImageError
9.1.1 (2022-05-17)
• When reading past the end of a TGA scan line, reduce bytes left. CVE-2022-30595 [radarhere]
• Do not open images with zero or negative height #6269 [radarhere]Commits • `0f44136` 9.1.1 version bump • `f66f5e1` pre-commit: update Black to fix Click • `0153b37` Skip test_realloc_overflow unless libtiff 4.0.4 or higher • `6fcd31b` Added release notes for 9.1.1 • `c846cc8` When reading past the end of a scan line, reduce bytes left • `184b73e` Do not open images with zero or negative height • See full diff in compare view Dependabot compatibility score You can trigger a rebase of this PR by commenting
@dependabot rebase
.
* * *
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
• @dependabot rebase
will rebase this PR
• @dependabot recreate
will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge
will merge this PR after your CI passes on it
• @dependabot squash and merge
will squash and merge this PR after your CI passes on it
• @dependabot cancel merge
will cancel a previously requested merge and block automerging
• @dependabot reopen
will reopen this PR if it is closed
• @dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels
will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers
will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees
will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone
will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the Security Alerts page.
Note > Automatic rebases have been disabled on this pull request as it has been open for over 30 days.flyteorg/flytesnacks GitHub Actions: Mark github pre-release as Release GitHub Actions: Publish artifacts to github release GitHub Actions: Create Prerelease GitHub Actions: Bump Version ✅ 26 other checks have passed 26/30 successful checks