Bump pillow from 9.5.0 to 10.0.1 #5657

dependabot · 2023-10-04T01:33:03Z

Bumps pillow from 9.5.0 to 10.0.1.

Release notes

10.0.1

https://pillow.readthedocs.io/en/stable/releasenotes/10.0.1.html

Changes

Updated libwebp to 1.3.2 #7395 [@radarhere]

Updated zlib to 1.3 #7344 [@radarhere]

10.0.0

https://pillow.readthedocs.io/en/stable/releasenotes/10.0.0.html

Changes

Fixed deallocating mask images #7246 [@radarhere]

Added ImageFont.MAX_STRING_LENGTH #7244 [@radarhere]

Fix Windows build with pyproject.toml #7230 [@nulano]

Do not close provided file handles with libtiff #7199 [@radarhere]

Convert to HSV if mode is HSV in getcolor() #7226 [@radarhere]

Added alpha_only argument to getbbox() #7123 [@radarhere]

Prioritise speed in repr_png #7242 [@radarhere]

Limit size even if one dimension is zero in decompression bomb check #7235 [@radarhere]

Restored 32-bit support #7234 [@radarhere]

Removed deleted file from codecov.yml and increased coverage threshold #7232 [@radarhere]

Removed support for 32-bit #7228 [@radarhere]

Use --config-settings instead of deprecated --global-option #7171 [@radarhere]

Better C integer definitions #6645 [@Yay295]

Fixed finding dependencies on Cygwin #7175 [@radarhere]

Improved checks in font_render #7218 [@radarhere]

Change grabclipboard() to use PNG compression on macOS #7219 [@abey79]

Added PyPy 3.10 and removed PyPy 3.8 #7216 [@radarhere]

Added in_place argument to ImageOps.exif_transpose() #7092 [@radarhere]

Corrected error code #7177 [@radarhere]

Use "not in" #7174 [@radarhere]

Only call text_layout once in getmask2 #7206 [@radarhere]

Fixed calling putpalette() on L and LA images before load() #7187 [@radarhere]

Removed unused INT64 definition #7180 [@radarhere]

Updated xz to 5.4.3 #7136 [@radarhere]

Fixed saving TIFF multiframe images with LONG8 tag types #7078 [@radarhere]

Do not set size unnecessarily if image fails to open #7056 [@radarhere]

Removed unused code #7210 [@radarhere]

Removed unused variables #7205 [@radarhere]

Fixed signedness comparison warning #7203 [@radarhere]

Fixed combining single duration across duplicate APNG frames #7146 [@radarhere]

Remove temporary file when error is raised #7148 [@radarhere]

Do not use temporary file when grabbing clipboard on Linux #7200 [@radarhere]

If the clipboard fails to open on Windows, wait and try again #7141 [@radarhere]

Fixed saving multiple 1 mode frames to GIF #7181 [@radarhere]

Replaced absolute PIL import with relative import #7173 [@radarhere]

Removed files and types override #7194 [@radarhere]

... (truncated)

Changelog

Sourced from pillow's changelog.

10.0.1 (2023-09-15)

Updated libwebp to 1.3.2 #7395 [radarhere]

Updated zlib to 1.3 #7344 [radarhere]

10.0.0 (2023-07-01)

Fixed deallocating mask images #7246 [radarhere]

Added ImageFont.MAX_STRING_LENGTH #7244 [radarhere, hugovk]

Fix Windows build with pyproject.toml #7230 [hugovk, nulano, radarhere]

Do not close provided file handles with libtiff #7199 [radarhere]

Convert to HSV if mode is HSV in getcolor() #7226 [radarhere]

Added alpha_only argument to getbbox() #7123 [radarhere. hugovk]

Prioritise speed in repr_png #7242 [radarhere]

Do not use CFFI access by default on PyPy #7236 [radarhere]

Limit size even if one dimension is zero in decompression bomb check #7235 [radarhere]

Use --config-settings instead of deprecated --global-option #7171 [radarhere]

Better C integer definitions #6645 [Yay295, hugovk]

Fixed finding dependencies on Cygwin #7175 [radarhere]

Changed grabclipboard() to use PNG instead of JPG compression on macOS #7219 [abey79, radarhere]

... (truncated)

Commits

e34d346 Updated order
a62f240 10.0.1 version bump
d50250d Added release notes for 10.0.1
b4c7d4b Update CHANGES.rst [ci skip]
730f746 Updated libwebp to 1.3.2
b0e2804 Updated zlib to 1.3
6e28ed1 10.0.0 version bump
c827f3b Merge pull request #7246 from radarhere/deallocate
39a3b1d Fixed deallocating mask images
8c1dc81 Update CHANGES.rst [ci skip]
Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the Security Alerts page.

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

Bumps [pillow](https://github.com/python-pillow/Pillow) from 9.5.0 to 10.0.1. - [Release notes](https://github.com/python-pillow/Pillow/releases) - [Changelog](https://github.com/python-pillow/Pillow/blob/main/CHANGES.rst) - [Commits](python-pillow/Pillow@9.5.0...10.0.1) --- updated-dependencies: - dependency-name: pillow dependency-type: direct:production ... Signed-off-by: dependabot[bot] <[email protected]>

netlify · 2023-10-04T01:33:07Z

✅ Deploy Preview for inventree-web-pui-preview canceled.

Name	Link
🔨 Latest commit	`c77b398`
🔍 Latest deploy log	https://app.netlify.com/sites/inventree-web-pui-preview/deploys/65496bb729d25e000864ca9f

SchrodingersGat · 2023-10-04T03:22:40Z

To merge this, we will need to un-pin django-stdimage - which may require further investigation as we have a note from 2022-06-29 that django-stdimage > 6.0 breaks serialization of tasks in django-q

Ref: #3273

matmair · 2023-10-04T08:52:24Z

@SchrodingersGat are you tackeling this or should we create an issue?

SchrodingersGat · 2023-10-04T13:12:29Z

I'll try to integrate a fix into this PR

- Return True if the task runs or was offloaded - Improved warning information

- Check return value of offload_task - Check log output

…illow-10.0.1 # Conflicts: # InvenTree/InvenTree/tasks.py # InvenTree/InvenTree/tests.py

SchrodingersGat · 2023-10-18T14:11:35Z

Will likely require codingjoe/django-stdimage#324 before this passes

SchrodingersGat · 2023-11-03T13:31:50Z

Removing from 0.13.0 milestone for now, still waiting for the changes to django-stdimage

…illow-10.0.1

atanisoft · 2023-12-17T22:18:52Z

requirements.in

@@ -37,7 +37,7 @@ drf-spectacular                         # DRF API documentation
 feedparser                              # RSS newsfeed parser
 gunicorn                                # Gunicorn web server
 pdf2image                               # PDF to image conversion
-pillow==9.5.0                           # Image manipulation # FIXED 2023-07-04 as we require PIL.Image.ANTIALIAS
+pillow                                  # Image manipulation


@SchrodingersGat Unfortunately this line change breaks the inventree-brother-plugin due to brother_ql needing a fix seen in pklaus/brother_ql#143. Any suggestions on how to get this back to working?

@atanisoft we are using a fork of brother_ql - https://github.com/matmair/brother_ql-inventree so we can just update that

That would be great if that could be updated, can a new version be pushed for both to pick up that fix?

New version is released, 1.1 includes the fix and seems to work

Thanks, after shutting down and starting up the docker containers it seems to have fixed it with the newer version.

@atanisoft good to hear! And @matmair thanks for the quick fix

dependabot bot requested a review from SchrodingersGat as a code owner October 4, 2023 01:33

dependabot bot added dependency Relates to a project dependency python Pull requests that update Python code labels Oct 4, 2023

Patch requirements files

da9969f

SchrodingersGat added this to the 0.13.0 milestone Oct 18, 2023

SchrodingersGat added 4 commits October 19, 2023 00:29

Update package requirements

583c4ce

Improve offload_task function:

d0fc2a1

- Return True if the task runs or was offloaded - Improved warning information

Improve unit tests for task offloading

d224668

- Check return value of offload_task - Check log output

Merge remote-tracking branch 'inventree/master' into dependabot/pip/p…

742dadb

…illow-10.0.1 # Conflicts: # InvenTree/InvenTree/tasks.py # InvenTree/InvenTree/tests.py

SchrodingersGat removed this from the 0.13.0 milestone Nov 3, 2023

SchrodingersGat added this to the 0.13.0 milestone Nov 6, 2023

SchrodingersGat added the security Relates to a security issue label Nov 6, 2023

SchrodingersGat added 3 commits November 7, 2023 09:39

Bump django-stdimage

c0015f3

Merge remote-tracking branch 'inventree/master' into dependabot/pip/p…

46b3784

…illow-10.0.1

Fix tasks.py

c77b398

SchrodingersGat merged commit 26b2e90 into master Nov 6, 2023
37 of 39 checks passed

SchrodingersGat deleted the dependabot/pip/pillow-10.0.1 branch November 6, 2023 23:08

atanisoft reviewed Dec 17, 2023

View reviewed changes

matmair mentioned this pull request Dec 17, 2023

fix ANTIALIAS matmair/brother_ql-inventree#36

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump pillow from 9.5.0 to 10.0.1 #5657

Bump pillow from 9.5.0 to 10.0.1 #5657

dependabot bot commented on behalf of github Oct 4, 2023 •

edited

Loading

netlify bot commented Oct 4, 2023 •

edited

Loading

SchrodingersGat commented Oct 4, 2023 •

edited

Loading

matmair commented Oct 4, 2023

SchrodingersGat commented Oct 4, 2023

SchrodingersGat commented Oct 18, 2023

SchrodingersGat commented Nov 3, 2023

atanisoft Dec 17, 2023

matmair Dec 17, 2023

atanisoft Dec 17, 2023

matmair Dec 17, 2023

atanisoft Dec 17, 2023

SchrodingersGat Dec 17, 2023

Bump pillow from 9.5.0 to 10.0.1 #5657

Bump pillow from 9.5.0 to 10.0.1 #5657

Conversation

dependabot bot commented on behalf of github Oct 4, 2023 • edited Loading

10.0.1

Changes

10.0.0

Changes

10.0.1 (2023-09-15)

10.0.0 (2023-07-01)

netlify bot commented Oct 4, 2023 • edited Loading

✅ Deploy Preview for inventree-web-pui-preview canceled.

SchrodingersGat commented Oct 4, 2023 • edited Loading

matmair commented Oct 4, 2023

SchrodingersGat commented Oct 4, 2023

SchrodingersGat commented Oct 18, 2023

SchrodingersGat commented Nov 3, 2023

atanisoft Dec 17, 2023

Choose a reason for hiding this comment

matmair Dec 17, 2023

Choose a reason for hiding this comment

atanisoft Dec 17, 2023

Choose a reason for hiding this comment

matmair Dec 17, 2023

Choose a reason for hiding this comment

atanisoft Dec 17, 2023

Choose a reason for hiding this comment

SchrodingersGat Dec 17, 2023

Choose a reason for hiding this comment

dependabot bot commented on behalf of github Oct 4, 2023 •

edited

Loading

netlify bot commented Oct 4, 2023 •

edited

Loading

SchrodingersGat commented Oct 4, 2023 •

edited

Loading