omnipkg v1.5.7 - Security Update

1minds3t released this 23 Oct 16:30

· 262 commits to main since this release

9828f83

🔒 Security Update

Fixed

Security vulnerability in uv dependency - Updated uv from 0.8.20 to 0.9.5 to address CVE related to CWE-843
- Impact: Type confusion vulnerability in tar extraction with PAX headers
- Severity: Low
- Affected versions: uv <= 0.9.4
- Resolution: Upgraded to uv >= 0.9.5

Changed

Updated pyproject.toml to enforce minimum uv version (>= 0.9.5)
Regenerated requirements.txt with updated dependencies

Full Changelog: v1.5.6...v1.5.7

Assets 3