Skip to content

Bump pyasn1 from 0.6.2 to 0.6.3 in /sdks/python/container/ml/py310#37877

Closed
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/pip/sdks/python/container/ml/py310/pyasn1-0.6.3
Closed

Bump pyasn1 from 0.6.2 to 0.6.3 in /sdks/python/container/ml/py310#37877
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/pip/sdks/python/container/ml/py310/pyasn1-0.6.3

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Mar 17, 2026
edited
Loading

Bumps pyasn1 from 0.6.2 to 0.6.3.

Release notes

Sourced from pyasn1's releases.

Release 0.6.3

It's a minor release.

  • Added nesting depth limit to ASN.1 decoder to prevent stack overflow from deeply nested structures (CVE-2026-30922).
  • Fixed OverflowError from oversized BER length field.
  • Fixed DeprecationWarning stacklevel for deprecated attributes.
  • Fixed asDateTime incorrect fractional seconds parsing.

All changes are noted in the CHANGELOG.

Changelog

Sourced from pyasn1's changelog.

Revision 0.6.3, released 16-03-2026

Commits
  • af65c3b Prepare release 0.6.3
  • 5a49bd1 Merge commit from fork
  • 5494ba4 Fix asDateTime incorrect fractional seconds parsing (#102)
  • 71f486e Fix DeprecationWarning stacklevel for deprecated attributes (#101)
  • d7cb42d Fix OverflowError from oversized BER length field (#100)
  • See full diff in compare view

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python labels Mar 17, 2026
@github-actions
Copy link
Copy Markdown
Contributor

github-actions Bot commented Mar 18, 2026

Checks are failing. Will not request review until checks are succeeding. If you'd like to override that behavior, comment assign set of reviewers

@derrickaw
Copy link
Copy Markdown
Collaborator

derrickaw commented Apr 28, 2026

@dependabot rebase

@dependabot
Bump pyasn1 from 0.6.2 to 0.6.3 in /sdks/python/container/ml/py310
f25af11 
Bumps [pyasn1](https://github.com/pyasn1/pyasn1) from 0.6.2 to 0.6.3.
- [Release notes](https://github.com/pyasn1/pyasn1/releases)
- [Changelog](https://github.com/pyasn1/pyasn1/blob/main/CHANGES.rst)
- [Commits](pyasn1/pyasn1@v0.6.2...v0.6.3)

---
updated-dependencies:
- dependency-name: pyasn1
  dependency-version: 0.6.3
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/pip/sdks/python/container/ml/py310/pyasn1-0.6.3 branch from 94f8dd0 to f25af11 Compare April 28, 2026 20:08
@derrickaw
Copy link
Copy Markdown
Collaborator

derrickaw commented Apr 30, 2026

@dependabot ignore this major version

@dependabot dependabot Bot closed this Apr 30, 2026
@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot Bot commented on behalf of github Apr 30, 2026

OK, I won't notify you about version 0.x.x again, unless you re-open this PR.

@dependabot dependabot Bot deleted the dependabot/pip/sdks/python/container/ml/py310/pyasn1-0.6.3 branch April 30, 2026 17:15
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file docker python

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@derrickaw