74d95d2437
Cause: protobuf affected by a JSON recursion depth bypass: A denial-of-service (DoS) vulnerability exists in google.protobuf.json_format.ParseDict() in Python, where the max_recursion_depth limit can be bypassed when parsing nested google.protobuf.Any messages. Due to missing recursion depth accounting inside the internal Any-handling logic, an attacker can supply deeply nested Any structures that bypass the intended recursion limit, eventually exhausting Python’s recursion stack and causing a RecursionError.
32 lines
499 B
TOML
32 lines
499 B
TOML
[[source]]
|
|
url = "https://pypi.org/simple"
|
|
verify_ssl = true
|
|
name = "pypi"
|
|
|
|
[packages]
|
|
colorama = "0.4.6"
|
|
opencv-contrib-python = "4.13.0.90"
|
|
numpy = "2.4.1"
|
|
# for macOS: opencv-contrib-python = "<=4.7.0"
|
|
pillow = "*"
|
|
pyzbar = "*"
|
|
protobuf = "6.33.5"
|
|
qrcode = "*"
|
|
qreader = "1.3.2"
|
|
|
|
[dev-packages]
|
|
build = "*"
|
|
flake8 = "*"
|
|
gfm-toc = "*"
|
|
mypy = "*"
|
|
mypy-protobuf = "*"
|
|
nuitka = "*"
|
|
pylint = "*"
|
|
pytest = "*"
|
|
pytest-cov = "*"
|
|
pytest-mock = "*"
|
|
types-protobuf = "*"
|
|
|
|
[requires]
|
|
python_version = "3.14"
|