Bump pillow from 8.2.0 to 8.3.0

[dependabot]

Bumps pillow from 8.2.0 to 8.3.0.

Release notes

Sourced from pillow's releases.

8.3.0

https://pillow.readthedocs.io/en/stable/releasenotes/8.3.0.html

Changes

• Use snprintf instead of sprintf #5567 [@​radarhere]
• Limit TIFF strip size when saving with LibTIFF #5514 [@​kmilos]
• Allow ICNS save on all operating systems #4526 [@​newpanjing]
• De-zigzag JPEG's DQT when loading; deprecate convert_dict_qtables #4989 [@​gofr]
• Do not use background or transparency index for new color #5564 [@​radarhere]
• Simplified code #5315 [@​radarhere]
• Replaced xml.etree.ElementTree #5565 [@​radarhere]
• Corrected border position for P mode in ImageOps.expand() #5562 [@​radarhere]
• Moved CVE image to pillow-depends #5561 [@​radarhere]
• Added tag data for IFD groups #5554 [@​radarhere]
• Improved ImagePalette #5552 [@​radarhere]
• Add DDS saving #5402 [@​radarhere]
• Improved getxmp() #5455 [@​radarhere]
• Convert to float for comparison with float in IFDRational eq #5412 [@​radarhere]
• Allow getexif() to access TIFF tag_v2 data #5416 [@​radarhere]
• Read FITS image mode and size #5405 [@​radarhere]
• Merge parallel horizontal edges in ImagingDrawPolygon #5347 [@​radarhere]
• Use transparency behind first GIF frame and when disposing to background #5557 [@​radarhere]
• Fixed undefined variable in logging #5556 [@​radarhere]
• Avoid unstable nature of qsort in Quant.c #5367 [@​radarhere]
• Copy palette to new images in ImageOps expand #5551 [@​radarhere]
• Ensure palette string matches RGB mode #5549 [@​radarhere]
• Do not modify EXIF of original image instance in exif_transpose() #5547 [@​radarhere]
• Fixed default numresolution for small JPEG2000 images #5540 [@​radarhere]
• Fixed format warning #5535 [@​radarhere]
• Updated declaration to match definition #5534 [@​radarhere]
• Added DDS BC5 reading #5501 [@​radarhere]
• Raise an error if ImageDraw.textbbox is used without a TrueType font #5510 [@​radarhere]
• Added ICO saving in BMP format #5513 [@​radarhere]
• Ensure PNG seeks to end of previous chunk at start of load_end #5493 [@​radarhere]
• Do not allow TIFF to seek to a past frame #5473 [@​radarhere]
• Avoid race condition when displaying images with eog #5507 [@​mconst]
• Added specific error messages when ink has incorrect number of bands #5504 [@​radarhere]
• Allow converting an image to a numpy array to raise errors #5379 [@​radarhere]
• Use METH_NOARGS when no arguments are required #5488 [@​radarhere]
• Fixed typo #5505 [@​radarhere]
• Added CFAPattern, ExifVersion and FlashpixVersion UNDEFINED tags #5495 [@​radarhere]
• Removed DPI rounding from BMP, JPEG and PNG loading #5476 [@​radarhere]
• Removed WMF DPI rounding #5470 [@​radarhere]
• Remove spikes when drawing thin pieslices #5460 [@​xtsm]
• Updated default value for SAMPLESPERPIXEL TIFF tag #5452 [@​radarhere]
• HTTP link is not valid (wrong redirect) #5481 [@​homm]
• Removed TIFF DPI rounding #5446 [@​radarhere]
• Include code in WebP error #5471 [@​radarhere]

... (truncated)

Changelog

Sourced from pillow's changelog.

8.3.0 (2021-07-01)

• Use snprintf instead of sprintf. CVE-2021-34552 #5567 [radarhere]

• Limit TIFF strip size when saving with LibTIFF #5514 [kmilos]

• Allow ICNS save on all operating systems #4526 [baletu, radarhere, newpanjing, hugovk]

• De-zigzag JPEG's DQT when loading; deprecate convert_dict_qtables #4989 [gofr, radarhere]

• Replaced xml.etree.ElementTree #5565 [radarhere]

• Moved CVE image to pillow-depends #5561 [radarhere]

• Added tag data for IFD groups #5554 [radarhere]

• Improved ImagePalette #5552 [radarhere]

• Add DDS saving #5402 [radarhere]

• Improved getxmp() #5455 [radarhere]

• Convert to float for comparison with float in IFDRational eq #5412 [radarhere]

• Allow getexif() to access TIFF tag_v2 data #5416 [radarhere]

• Read FITS image mode and size #5405 [radarhere]

• Merge parallel horizontal edges in ImagingDrawPolygon #5347 [radarhere, hrdrq]

• Use transparency behind first GIF frame and when disposing to background #5557 [radarhere, zewt]

• Avoid unstable nature of qsort in Quant.c #5367 [radarhere]

... (truncated)

Commits

• 51591a8 8.3.0 version bump
• 8041c04 Update CHANGES.rst [ci skip]
• d254e58 Added release notes for #5567
• 31c4738 Merge pull request #5567 from radarhere/sprintf
• 23b2151 Update CHANGES.rst [ci skip]
• 861a031 Merge pull request #5514 from kmilos/fix_tiff_rowsperstrip
• f668368 Update CHANGES.rst [ci skip]
• 06f88dd Merge pull request #4526 from newpanjing/master
• 518ee37 Use snprintf instead of sprintf
• 43f5a5f Combined sizes and types into dictionary
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[miterion]

@dependabot merge