Skip to content

chore(deps): bump social-auth-core from 4.8.3 to 4.8.5#14291

Merged
Maffooch merged 1 commit intodevfrom
dependabot/pip/dev/social-auth-core-4.8.5
Feb 13, 2026
Merged

chore(deps): bump social-auth-core from 4.8.3 to 4.8.5#14291
Maffooch merged 1 commit intodevfrom
dependabot/pip/dev/social-auth-core-4.8.5

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 10, 2026

Bumps social-auth-core from 4.8.3 to 4.8.5.

Release notes

Sourced from social-auth-core's releases.

Release 4.8.5

Changed

  • Fixed partial pipeline handling for unauthenticated users

Donations

This project welcomes donations to make the development sustainable. The following platforms are available for funding Python Social Auth:

Release 4.8.4

Changed

  • Improved type annotations
  • Code cleanups
  • Improved error handling in SAML

Added

  • Add Azure AD(Entra ID) federated client assertion support (FIC)

Donations

This project welcomes donations to make the development sustainable. The following platforms are available for funding Python Social Auth:

Changelog

Sourced from social-auth-core's changelog.

4.8.5 - 2026-02-10

Changed

  • Fixed partial pipeline handling for unauthenticated users

4.8.4 - 2026-02-10

Changed

  • Improved type annotations
  • Code cleanups
  • Improved error handling in SAML

Added

  • Add Azure AD(Entra ID) federated client assertion support (FIC)
Commits
  • ce4448b fix: authentication pipeline returning wrong user
  • cd1cf47 chore: release 4.8.4
  • 21af6ea Replace 1024-bit RSA test key with 2048-bit key to eliminate InsecureKeyLengt...
  • 0812ceb chore: simplify azure testing (#1563)
  • f9f9524 chore: remove unused variables
  • 2287ed1 fix(deps): update dependency coverage to v7.13.4 (#1562)
  • 1822c4f feat: Add Azure AD(Entra ID) federated client assertion support (FIC) (#1553)
  • 3bcfb46 chore(deps): update astral-sh/setup-uv action to v7.3.0 (#1561)
  • d68dec7 chore(deps): update dependency astral-sh/uv to v0.10.0 (#1560)
  • fddbd24 chore(deps): update github/codeql-action digest to 45cbd0c (#1559)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
chore(deps): bump social-auth-core from 4.8.3 to 4.8.5
60c745c 
Bumps [social-auth-core](https://github.com/python-social-auth/social-core) from 4.8.3 to 4.8.5.
- [Release notes](https://github.com/python-social-auth/social-core/releases)
- [Changelog](https://github.com/python-social-auth/social-core/blob/master/CHANGELOG.md)
- [Commits](python-social-auth/social-core@4.8.3...4.8.5)

---
updated-dependencies:
- dependency-name: social-auth-core
  dependency-version: 4.8.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Feb 10, 2026
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Feb 10, 2026
mtesauro
mtesauro approved these changes Feb 10, 2026
View reviewed changes
Copy link
Contributor

@mtesauro mtesauro left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Approved

@Maffooch Maffooch merged commit d175b2b into dev Feb 13, 2026
148 checks passed
@dependabot dependabot bot deleted the dependabot/pip/dev/social-auth-core-4.8.5 branch February 13, 2026 00:49
fopina pushed a commit to fopina/django-DefectDojo that referenced this pull request Feb 16, 2026
@dependabot
chore(deps): bump social-auth-core from 4.8.3 to 4.8.5 (DefectDojo#14291
7dcc1af 
)

Bumps [social-auth-core](https://github.com/python-social-auth/social-core) from 4.8.3 to 4.8.5.
- [Release notes](https://github.com/python-social-auth/social-core/releases)
- [Changelog](https://github.com/python-social-auth/social-core/blob/master/CHANGELOG.md)
- [Commits](python-social-auth/social-core@4.8.3...4.8.5)

---
updated-dependencies:
- dependency-name: social-auth-core
  dependency-version: 4.8.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@mtesauro mtesauro mtesauro approved these changes

@Maffooch Maffooch Maffooch approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python Pull requests that update Python code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@mtesauro @Maffooch