-
Notifications
You must be signed in to change notification settings - Fork 1.6k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
libvips: security, use libpng version range, bump deps #23130
Conversation
I detected other pull requests that are modifying libvips/all recipe: This message is automatically generated by https://github.com/ericLemanissier/conan-center-conflicting-prs so don't hesitate to report issues/improvements there. |
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
if self.options.with_heif: | ||
self.requires("libheif/1.16.2") | ||
if self.options.get_safe("with_highway"): | ||
self.requires("highway/1.0.7") | ||
if self.options.with_jpeg == "libjpeg": | ||
self.requires("libjpeg/9e") | ||
elif self.options.with_jpeg == "libjpeg-turbo": | ||
self.requires("libjpeg-turbo/3.0.1") | ||
self.requires("libjpeg-turbo/3.0.2") |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
needs bump: conflicts with libtiff, opencv, jasper, openimageio
if self.options.with_openjpeg: | ||
self.requires("openjpeg/2.5.0") | ||
self.requires("openjpeg/2.5.2") |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
needs bump: conflicts with opencv
@@ -159,15 +159,15 @@ def requirements(self): | |||
if self.options.with_matio: | |||
self.requires("matio/1.5.24") | |||
if self.options.with_openexr: | |||
self.requires("openexr/3.2.1") | |||
self.requires("openexr/3.2.3") |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
needs bump: conflicts with opencv + known security issues #23277
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Thanks!
This comment has been minimized.
This comment has been minimized.
Conan v1 pipeline ✔️All green in build 12 (
Conan v2 pipeline ✔️
All green in build 12 ( |
This PR has been automatically merged due to |
* libvips: use libpng version range, bump deps * bump deps * bump expat * bump openexr * use version range for expat --------- Co-authored-by: Uilian Ries <uilianries@gmail.com>
Specify library name and version: libvips/all
fix use of vulnerable version of expat: #23277