Rosetta merge requestshttps://www.ict.inaf.it/gitlab/exact/Rosetta/-/merge_requests2021-11-04T17:00:08Zhttps://www.ict.inaf.it/gitlab/exact/Rosetta/-/merge_requests/10Bump django from 2.2.1 to 2.2.24 in /services/webapp2021-11-04T17:00:08ZStefano Alberto RussoBump django from 2.2.1 to 2.2.24 in /services/webapp*Created by: dependabot[bot]*
Bumps [django](https://github.com/django/django) from 2.2.1 to 2.2.24.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/django/django/commit/2da029d8540ab0b2e9edcba25c4d46c52853197f...*Created by: dependabot[bot]*
Bumps [django](https://github.com/django/django) from 2.2.1 to 2.2.24.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/django/django/commit/2da029d8540ab0b2e9edcba25c4d46c52853197f"><code>2da029d</code></a> [2.2.x] Bumped version for 2.2.24 release.</li>
<li><a href="https://github.com/django/django/commit/f27c38ab5d90f68c9dd60cabef248a570c0be8fc"><code>f27c38a</code></a> [2.2.x] Fixed CVE-2021-33571 -- Prevented leading zeros in IPv4 addresses.</li>
<li><a href="https://github.com/django/django/commit/053cc9534d174dc89daba36724ed2dcb36755b90"><code>053cc95</code></a> [2.2.x] Fixed CVE-2021-33203 -- Fixed potential path-traversal via admindocs'...</li>
<li><a href="https://github.com/django/django/commit/6229d8794ff7d3f471e29811857d72e67f24b608"><code>6229d87</code></a> [2.2.x] Confirmed release date for Django 2.2.24.</li>
<li><a href="https://github.com/django/django/commit/f163ad5c638f79d3fd0e76bed0e15e6928fae1f5"><code>f163ad5</code></a> [2.2.x] Added stub release notes and date for Django 2.2.24.</li>
<li><a href="https://github.com/django/django/commit/bed1755bc596b8c83351471e4276386b2e6643c0"><code>bed1755</code></a> [2.2.x] Changed IRC references to Libera.Chat.</li>
<li><a href="https://github.com/django/django/commit/63f0d7a0f6b6d762b8c15894c531b687ac843c66"><code>63f0d7a</code></a> [2.2.x] Refs <a href="https://github-redirect.dependabot.com/django/django/issues/32718">#32718</a> -- Fixed file_storage.test_generate_filename and model_fi...</li>
<li><a href="https://github.com/django/django/commit/5fe4970bd0b64a24ed6f9f18db3d4a80b5ac0a78"><code>5fe4970</code></a> [2.2.x] Post-release version bump.</li>
<li><a href="https://github.com/django/django/commit/61f814f9fab554d10f1e2c193bcf3a5c56c4e9ef"><code>61f814f</code></a> [2.2.x] Bumped version for 2.2.23 release.</li>
<li><a href="https://github.com/django/django/commit/b8ecb0643619a0650a4447b282478ce5257856e2"><code>b8ecb06</code></a> [2.2.x] Fixed <a href="https://github-redirect.dependabot.com/django/django/issues/32718">#32718</a> -- Relaxed file name validation in FileField.</li>
<li>Additional commits viewable in <a href="https://github.com/django/django/compare/2.2.1...2.2.24">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=django&package-manager=pip&previous-version=2.2.1&new-version=2.2.24)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/sarusso/Rosetta/network/alerts).
</details>https://www.ict.inaf.it/gitlab/exact/Rosetta/-/merge_requests/9Bump django from 2.2.1 to 2.2.22 in /services/webapp2021-06-10T19:48:22ZStefano Alberto RussoBump django from 2.2.1 to 2.2.22 in /services/webapp*Created by: dependabot[bot]*
Bumps [django](https://github.com/django/django) from 2.2.1 to 2.2.22.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/django/django/commit/df9fd4661e203d41c189054d8b23d256815e14fc...*Created by: dependabot[bot]*
Bumps [django](https://github.com/django/django) from 2.2.1 to 2.2.22.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/django/django/commit/df9fd4661e203d41c189054d8b23d256815e14fc"><code>df9fd46</code></a> [2.2.x] Bumped version for 2.2.22 release.</li>
<li><a href="https://github.com/django/django/commit/d9594c4ea57b6309d93879805302cec9ae9f23ff"><code>d9594c4</code></a> [2.2.x] Fixed <a href="https://github-redirect.dependabot.com/django/django/issues/32713">#32713</a>, Fixed CVE-2021-32052 -- Prevented newlines and tabs fro...</li>
<li><a href="https://github.com/django/django/commit/163700388cda2305c8dbcdb3ac1542a442f3e955"><code>1637003</code></a> [2.2.x] Refs CVE-2021-31542 -- Skipped mock AWS storage test on Windows.</li>
<li><a href="https://github.com/django/django/commit/bcafd9ba848d736769870b4fc940b2ebbf87a70a"><code>bcafd9b</code></a> [2.2.x] Added CVE-2021-31542 to security archive.</li>
<li><a href="https://github.com/django/django/commit/3931dc765177b2793fe806b4a02122b1a718b1c3"><code>3931dc7</code></a> [2.2.x] Post-release version bump.</li>
<li><a href="https://github.com/django/django/commit/ff1385ae45d267f455b1744fb39a9ab5de688d05"><code>ff1385a</code></a> [2.2.x] Bumped version for 2.2.21 release.</li>
<li><a href="https://github.com/django/django/commit/04ac1624bdc2fa737188401757cf95ced122d26d"><code>04ac162</code></a> [2.2.x] Fixed CVE-2021-31542 -- Tightened path & file name sanitation in file...</li>
<li><a href="https://github.com/django/django/commit/7f1b088ab4a4342a87a11496096471703994a006"><code>7f1b088</code></a> [2.2.x] Added CVE-2021-28658 to security archive.</li>
<li><a href="https://github.com/django/django/commit/e95fbb6a7653a5f199d5d8c90a282cdf9e58fc22"><code>e95fbb6</code></a> [2.2.x] Post-release version bump.</li>
<li><a href="https://github.com/django/django/commit/ad9fa56a17bf9691615e9bb6e41d08d51cfe8a5d"><code>ad9fa56</code></a> [2.2.x] Bumped version for 2.2.20 release.</li>
<li>Additional commits viewable in <a href="https://github.com/django/django/compare/2.2.1...2.2.22">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=django&package-manager=pip&previous-version=2.2.1&new-version=2.2.22)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/sarusso/Rosetta/network/alerts).
</details>https://www.ict.inaf.it/gitlab/exact/Rosetta/-/merge_requests/8Bump django from 2.2.1 to 2.2.21 in /services/webapp2021-06-09T18:55:44ZStefano Alberto RussoBump django from 2.2.1 to 2.2.21 in /services/webapp*Created by: dependabot[bot]*
Bumps [django](https://github.com/django/django) from 2.2.1 to 2.2.21.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/django/django/commit/ff1385ae45d267f455b1744fb39a9ab5de688d05...*Created by: dependabot[bot]*
Bumps [django](https://github.com/django/django) from 2.2.1 to 2.2.21.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/django/django/commit/ff1385ae45d267f455b1744fb39a9ab5de688d05"><code>ff1385a</code></a> [2.2.x] Bumped version for 2.2.21 release.</li>
<li><a href="https://github.com/django/django/commit/04ac1624bdc2fa737188401757cf95ced122d26d"><code>04ac162</code></a> [2.2.x] Fixed CVE-2021-31542 -- Tightened path & file name sanitation in file...</li>
<li><a href="https://github.com/django/django/commit/7f1b088ab4a4342a87a11496096471703994a006"><code>7f1b088</code></a> [2.2.x] Added CVE-2021-28658 to security archive.</li>
<li><a href="https://github.com/django/django/commit/e95fbb6a7653a5f199d5d8c90a282cdf9e58fc22"><code>e95fbb6</code></a> [2.2.x] Post-release version bump.</li>
<li><a href="https://github.com/django/django/commit/ad9fa56a17bf9691615e9bb6e41d08d51cfe8a5d"><code>ad9fa56</code></a> [2.2.x] Bumped version for 2.2.20 release.</li>
<li><a href="https://github.com/django/django/commit/4036d62bda0e9e9f6172943794b744a454ca49c2"><code>4036d62</code></a> [2.2.x] Fixed CVE-2021-28658 -- Fixed potential directory-traversal via uploa...</li>
<li><a href="https://github.com/django/django/commit/6e58828f8bcd33dfc91f236a972ae5fd23c9b0bc"><code>6e58828</code></a> [2.2.x] Added CVE-2021-23336 to security archive.</li>
<li><a href="https://github.com/django/django/commit/1fb4628a83ab597da41bf88011a3b3ae1980b458"><code>1fb4628</code></a> [2.2.x] Post-release version bump.</li>
<li><a href="https://github.com/django/django/commit/21a5547793a24357a985390970b489aeeca06d45"><code>21a5547</code></a> [2.2.x] Bumped version for 2.2.19 release.</li>
<li><a href="https://github.com/django/django/commit/fd6b6afd5959b638c62dbf4839ccff97e7f7dfda"><code>fd6b6af</code></a> [2.2.x] Fixed CVE-2021-23336 -- Fixed web cache poisoning via django.utils.ht...</li>
<li>Additional commits viewable in <a href="https://github.com/django/django/compare/2.2.1...2.2.21">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=django&package-manager=pip&previous-version=2.2.1&new-version=2.2.21)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/sarusso/Rosetta/network/alerts).
</details>https://www.ict.inaf.it/gitlab/exact/Rosetta/-/merge_requests/7Bump django from 2.2.1 to 2.2.20 in /services/webapp2021-06-04T23:29:04ZStefano Alberto RussoBump django from 2.2.1 to 2.2.20 in /services/webapp*Created by: dependabot[bot]*
Bumps [django](https://github.com/django/django) from 2.2.1 to 2.2.20.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/django/django/commit/ad9fa56a17bf9691615e9bb6e41d08d51cfe8a5d...*Created by: dependabot[bot]*
Bumps [django](https://github.com/django/django) from 2.2.1 to 2.2.20.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/django/django/commit/ad9fa56a17bf9691615e9bb6e41d08d51cfe8a5d"><code>ad9fa56</code></a> [2.2.x] Bumped version for 2.2.20 release.</li>
<li><a href="https://github.com/django/django/commit/4036d62bda0e9e9f6172943794b744a454ca49c2"><code>4036d62</code></a> [2.2.x] Fixed CVE-2021-28658 -- Fixed potential directory-traversal via uploa...</li>
<li><a href="https://github.com/django/django/commit/6e58828f8bcd33dfc91f236a972ae5fd23c9b0bc"><code>6e58828</code></a> [2.2.x] Added CVE-2021-23336 to security archive.</li>
<li><a href="https://github.com/django/django/commit/1fb4628a83ab597da41bf88011a3b3ae1980b458"><code>1fb4628</code></a> [2.2.x] Post-release version bump.</li>
<li><a href="https://github.com/django/django/commit/21a5547793a24357a985390970b489aeeca06d45"><code>21a5547</code></a> [2.2.x] Bumped version for 2.2.19 release.</li>
<li><a href="https://github.com/django/django/commit/fd6b6afd5959b638c62dbf4839ccff97e7f7dfda"><code>fd6b6af</code></a> [2.2.x] Fixed CVE-2021-23336 -- Fixed web cache poisoning via django.utils.ht...</li>
<li><a href="https://github.com/django/django/commit/226d8319181b94b093708b8cdd4ab5e257a79df6"><code>226d831</code></a> [2.2.x] Added documentation extlink for bugs.python.org.</li>
<li><a href="https://github.com/django/django/commit/34010d8ffaae5fb2400789720af17d9dfccd4fad"><code>34010d8</code></a> [2.2.x] Added CVE-2021-3281 to security archive.</li>
<li><a href="https://github.com/django/django/commit/06ae7e0742e65fca7abc6c8ccc7ce1d21bd303ed"><code>06ae7e0</code></a> [2.2.x] Post-release version bump.</li>
<li><a href="https://github.com/django/django/commit/fc0c8cfa492b2d7b82263e71e486f3829ad7c43a"><code>fc0c8cf</code></a> [2.2.x] Bumped version for 2.2.18 release.</li>
<li>Additional commits viewable in <a href="https://github.com/django/django/compare/2.2.1...2.2.20">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=django&package-manager=pip&previous-version=2.2.1&new-version=2.2.20)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/sarusso/Rosetta/network/alerts).
</details>https://www.ict.inaf.it/gitlab/exact/Rosetta/-/merge_requests/6Bump djangorestframework from 3.9.3 to 3.11.2 in /services/webapp2021-11-04T17:00:02ZStefano Alberto RussoBump djangorestframework from 3.9.3 to 3.11.2 in /services/webapp*Created by: dependabot[bot]*
Bumps [djangorestframework](https://github.com/encode/django-rest-framework) from 3.9.3 to 3.11.2.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/encode/django-rest-framework/comm...*Created by: dependabot[bot]*
Bumps [djangorestframework](https://github.com/encode/django-rest-framework) from 3.9.3 to 3.11.2.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/encode/django-rest-framework/commit/4121b01b912668c049b26194a9a107c27a332429"><code>4121b01</code></a> Deprecate urlize_quoted_links in favor of Django's built-in urlize</li>
<li><a href="https://github.com/encode/django-rest-framework/commit/f3d9d68970562a6d1e6247b028ce67a2fcc6fa1d"><code>f3d9d68</code></a> Version 3.11.1</li>
<li><a href="https://github.com/encode/django-rest-framework/commit/eb2c4c2dc71ade5b8376acd9d574bb7382116e4b"><code>eb2c4c2</code></a> Version 3.11.1</li>
<li><a href="https://github.com/encode/django-rest-framework/commit/de497a9bf12605b8b71bf7c21da57bc2a8238786"><code>de497a9</code></a> Version 3.11 (<a href="https://github-redirect.dependabot.com/encode/django-rest-framework/issues/7083">#7083</a>)</li>
<li><a href="https://github.com/encode/django-rest-framework/commit/3c1428ff799e4fe19e1eb28ed63a7d54c6180f1d"><code>3c1428f</code></a> Fix NotImplementedError for Field.to_internal_value and Field.to_representati...</li>
<li><a href="https://github.com/encode/django-rest-framework/commit/b8c369c4cf4fef055cb69e60fefe4eb7f1821e62"><code>b8c369c</code></a> Fix serializer multiple inheritance bug (<a href="https://github-redirect.dependabot.com/encode/django-rest-framework/issues/6980">#6980</a>)</li>
<li><a href="https://github.com/encode/django-rest-framework/commit/7c5459626d3850537e054a11d4fe0035a4f0de24"><code>7c54596</code></a> Declare Django versions in install_requires (<a href="https://github-redirect.dependabot.com/encode/django-rest-framework/issues/7063">#7063</a>)</li>
<li><a href="https://github.com/encode/django-rest-framework/commit/236667b717309934e9c9cae91dbcb0abf4a5e04c"><code>236667b</code></a> Fix UniqueTogetherValidator with field sources (<a href="https://github-redirect.dependabot.com/encode/django-rest-framework/issues/7086">#7086</a>)</li>
<li><a href="https://github.com/encode/django-rest-framework/commit/f744da74d2878b480220ebaf9d8117ff9b79a947"><code>f744da7</code></a> Improve the docstring on <a href="https://github.com/action"><code>@​action</code></a> (<a href="https://github-redirect.dependabot.com/encode/django-rest-framework/issues/6951">#6951</a>)</li>
<li><a href="https://github.com/encode/django-rest-framework/commit/de9f1d56c45557638725bc18733387beac27ad1e"><code>de9f1d5</code></a> Followup to set_context removal (<a href="https://github-redirect.dependabot.com/encode/django-rest-framework/issues/7076">#7076</a>)</li>
<li>Additional commits viewable in <a href="https://github.com/encode/django-rest-framework/compare/3.9.3...3.11.2">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=djangorestframework&package-manager=pip&previous-version=3.9.3&new-version=3.11.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/sarusso/Rosetta/network/alerts).
</details>https://www.ict.inaf.it/gitlab/exact/Rosetta/-/merge_requests/5Bump django from 2.2.1 to 2.2.18 in /services/webapp2021-04-08T21:23:11ZStefano Alberto RussoBump django from 2.2.1 to 2.2.18 in /services/webapp*Created by: dependabot[bot]*
Bumps [django](https://github.com/django/django) from 2.2.1 to 2.2.18.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/django/django/commit/fc0c8cfa492b2d7b82263e71e486f3829ad7c43a...*Created by: dependabot[bot]*
Bumps [django](https://github.com/django/django) from 2.2.1 to 2.2.18.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/django/django/commit/fc0c8cfa492b2d7b82263e71e486f3829ad7c43a"><code>fc0c8cf</code></a> [2.2.x] Bumped version for 2.2.18 release.</li>
<li><a href="https://github.com/django/django/commit/21e7622dec1f8612c85c2fc37fe8efbfd3311e37"><code>21e7622</code></a> [2.2.x] Fixed CVE-2021-3281 -- Fixed potential directory-traversal via archiv...</li>
<li><a href="https://github.com/django/django/commit/ee9d623831681b7130565e4d58933861a660a82f"><code>ee9d623</code></a> [2.2.x] Fixed GeoIPTest.test04_city() failure with the latest GeoIP2 database.</li>
<li><a href="https://github.com/django/django/commit/e8e28e747f0d9332df62dc706d7ffb07779d0c3b"><code>e8e28e7</code></a> [2.2.x] Updated CVE URL.</li>
<li><a href="https://github.com/django/django/commit/e893c0ad8b0b5b0a1e5be3345c287044868effc4"><code>e893c0a</code></a> [2.2.x] Fixed <a href="https://github-redirect.dependabot.com/django/django/issues/31850">#31850</a> -- Fixed BasicExtractorTests.test_extraction_warning wit...</li>
<li><a href="https://github.com/django/django/commit/3da29a30c67cd7ac49dea9ee32296ade189c6014"><code>3da29a3</code></a> [2.2.x] Post-release version bump.</li>
<li><a href="https://github.com/django/django/commit/c769f65c98339b9e769b0d2762d9fdf39a728cd2"><code>c769f65</code></a> [2.2.x] Bumped version for 2.2.17 release.</li>
<li><a href="https://github.com/django/django/commit/3db9a7aa8b45387835ec6aaf3b9308676ebca30b"><code>3db9a7a</code></a> [2.2.x] Set release date for 2.2.17.</li>
<li><a href="https://github.com/django/django/commit/b4b8ca489534621ba2633a4037e5b9b4710bf88f"><code>b4b8ca4</code></a> [2.2.x] Refs <a href="https://github-redirect.dependabot.com/django/django/issues/31040">#31040</a> -- Doc'd Python 3.9 compatibility.</li>
<li><a href="https://github.com/django/django/commit/01742aa932890423e39a08e414aadbb616f95c71"><code>01742aa</code></a> [2.2.x] Refs <a href="https://github-redirect.dependabot.com/django/django/issues/31040">#31040</a> -- Fixed Python PendingDeprecationWarning in select_for_u...</li>
<li>Additional commits viewable in <a href="https://github.com/django/django/compare/2.2.1...2.2.18">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=django&package-manager=pip&previous-version=2.2.1&new-version=2.2.18)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/sarusso/Rosetta/network/alerts).
</details>https://www.ict.inaf.it/gitlab/exact/Rosetta/-/merge_requests/4Bump django from 2.2.1 to 2.2.13 in /services/webapp2021-01-17T22:19:51ZStefano Alberto RussoBump django from 2.2.1 to 2.2.13 in /services/webapp*Created by: dependabot[bot]*
Bumps [django](https://github.com/django/django) from 2.2.1 to 2.2.13.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/django/django/commit/8093aaa8ff9dd7386a069c6eb49fcc1c5980c033...*Created by: dependabot[bot]*
Bumps [django](https://github.com/django/django) from 2.2.1 to 2.2.13.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/django/django/commit/8093aaa8ff9dd7386a069c6eb49fcc1c5980c033"><code>8093aaa</code></a> [2.2.x] Bumped version for 2.2.13 release.</li>
<li><a href="https://github.com/django/django/commit/07e59caa02831c4569bbebb9eb773bdd9cb4b206"><code>07e59ca</code></a> [2.2.x] Fixed CVE-2020-13254 -- Enforced cache key validation in memcached ba...</li>
<li><a href="https://github.com/django/django/commit/6d61860b22875f358fac83d903dc629897934815"><code>6d61860</code></a> [2.0.x] Fixed CVE-2020-13596 -- Fixed potential XSS in admin ForeignKeyRawIdW...</li>
<li><a href="https://github.com/django/django/commit/7e1084ead07b10e36d391f5366f411c58fbcc4c2"><code>7e1084e</code></a> [2.2.x] Added release date for 2.2.13.</li>
<li><a href="https://github.com/django/django/commit/2b69680264aabb94661b4f67a8e70d522070dc2a"><code>2b69680</code></a> [2.2.x] Refs <a href="https://github-redirect.dependabot.com/django/django/issues/31485">#31485</a> -- Backported jQuery upgrade to 3.5.1.</li>
<li><a href="https://github.com/django/django/commit/8301bc9cfad588074375edadfe0f19024dc217f8"><code>8301bc9</code></a> [2.2.x] Fixed E128, E741 flake8 warnings.</li>
<li><a href="https://github.com/django/django/commit/c7bab8d2b7160a635a6f55e4d89e0a2e66d1679c"><code>c7bab8d</code></a> [2.2.x] Fixed term warning on Sphinx 3.0.1+.</li>
<li><a href="https://github.com/django/django/commit/79baf338aef2ac21d3d29ee56e85f69678eef1a1"><code>79baf33</code></a> [2.2.x] Fixed highlightlang deprecation warning on Sphinx 1.8+.</li>
<li><a href="https://github.com/django/django/commit/151a83e92c1a457baf028160ed9191405b869df6"><code>151a83e</code></a> [2.2.x] Fixed CodeBlock deprecation warning on Sphinx 2.1+.</li>
<li><a href="https://github.com/django/django/commit/b0d810a77bbed01d45f92df93195f7bdc8d4da62"><code>b0d810a</code></a> [2.2.x] Fixed Sphinx warnings on duplicate object descriptions.</li>
<li>Additional commits viewable in <a href="https://github.com/django/django/compare/2.2.1...2.2.13">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=django&package-manager=pip&previous-version=2.2.1&new-version=2.2.13)](https://help.github.com/articles/configuring-automated-security-fixes)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/sarusso/Rosetta/network/alerts).
</details>https://www.ict.inaf.it/gitlab/exact/Rosetta/-/merge_requests/3Bump django from 2.2.1 to 2.2.10 in /services/webapp2020-06-06T01:26:12ZStefano Alberto RussoBump django from 2.2.1 to 2.2.10 in /services/webapp*Created by: dependabot[bot]*
Bumps [django](https://github.com/django/django) from 2.2.1 to 2.2.10.
<details>
<summary>Commits</summary>
- [`b2c33a5`](https://github.com/django/django/commit/b2c33a57b3b98f1e90bbc2a2be2c5a6d814eed29) [...*Created by: dependabot[bot]*
Bumps [django](https://github.com/django/django) from 2.2.1 to 2.2.10.
<details>
<summary>Commits</summary>
- [`b2c33a5`](https://github.com/django/django/commit/b2c33a57b3b98f1e90bbc2a2be2c5a6d814eed29) [2.2.x] Bumped version for 2.2.10 release.
- [`c67a368`](https://github.com/django/django/commit/c67a368c16e4680b324b4f385398d638db4d8147) [2.2.x] Fixed CVE-2020-7471 -- Properly escaped StringAgg(delimiter) parameter.
- [`96d6443`](https://github.com/django/django/commit/96d644312106337d714790cbedfcb227f0faa609) [2.2.x] Fixed timezones tests for PyYAML 5.3+.
- [`813b33e`](https://github.com/django/django/commit/813b33eec4d3fef8c5c3d4bfbc6ac90a248680c6) [2.2.x] Added CVE-2019-19844 to the security archive.
- [`e728612`](https://github.com/django/django/commit/e7286122b42d863bc1e97a846330cc63303f1c21) [2.2.x] Post-release version bump.
- [`c494d90`](https://github.com/django/django/commit/c494d90c195a739a7298b073eaa6ed987c2fd0bc) [2.2.x] Bumped version for 2.2.9 release.
- [`4d334be`](https://github.com/django/django/commit/4d334bea06cac63dc1272abcec545b85136cca0e) [2.2.x] Fixed CVE-2019-19844 -- Used verified user email for password reset r...
- [`86befcc`](https://github.com/django/django/commit/86befcc172c23170a720b3e0c06db51a99b3da59) [2.2.x] Refs [#31073](https://github-redirect.dependabot.com/django/django/issues/31073) -- Added release notes for 02eff7ef60466da108b1a33f1e4dc0...
- [`f33be1e`](https://github.com/django/django/commit/f33be1e8ae2efbca5f209e2365fa35c2aaee340c) [2.2.x] Fixed [#31073](https://github-redirect.dependabot.com/django/django/issues/31073) -- Prevented CheckboxInput.get_context() from mutating a...
- [`e8b0903`](https://github.com/django/django/commit/e8b0903976077b951795938b260211214ed7fe41) [2.2.x] Fixed [#31006](https://github-redirect.dependabot.com/django/django/issues/31006) -- Doc'd backslash escaping in date/time template filters.
- Additional commits viewable in [compare view](https://github.com/django/django/compare/2.2.1...2.2.10)
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=django&package-manager=pip&previous-version=2.2.1&new-version=2.2.10)](https://help.github.com/articles/configuring-automated-security-fixes)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/sarusso/Rosetta/network/alerts).
</details>https://www.ict.inaf.it/gitlab/exact/Rosetta/-/merge_requests/2Bump django from 2.2.1 to 2.2.10 in /images/webapp2021-01-17T22:19:51ZStefano Alberto RussoBump django from 2.2.1 to 2.2.10 in /images/webapp*Created by: dependabot[bot]*
Bumps [django](https://github.com/django/django) from 2.2.1 to 2.2.10.
<details>
<summary>Commits</summary>
- [`b2c33a5`](https://github.com/django/django/commit/b2c33a57b3b98f1e90bbc2a2be2c5a6d814eed29) [...*Created by: dependabot[bot]*
Bumps [django](https://github.com/django/django) from 2.2.1 to 2.2.10.
<details>
<summary>Commits</summary>
- [`b2c33a5`](https://github.com/django/django/commit/b2c33a57b3b98f1e90bbc2a2be2c5a6d814eed29) [2.2.x] Bumped version for 2.2.10 release.
- [`c67a368`](https://github.com/django/django/commit/c67a368c16e4680b324b4f385398d638db4d8147) [2.2.x] Fixed CVE-2020-7471 -- Properly escaped StringAgg(delimiter) parameter.
- [`96d6443`](https://github.com/django/django/commit/96d644312106337d714790cbedfcb227f0faa609) [2.2.x] Fixed timezones tests for PyYAML 5.3+.
- [`813b33e`](https://github.com/django/django/commit/813b33eec4d3fef8c5c3d4bfbc6ac90a248680c6) [2.2.x] Added CVE-2019-19844 to the security archive.
- [`e728612`](https://github.com/django/django/commit/e7286122b42d863bc1e97a846330cc63303f1c21) [2.2.x] Post-release version bump.
- [`c494d90`](https://github.com/django/django/commit/c494d90c195a739a7298b073eaa6ed987c2fd0bc) [2.2.x] Bumped version for 2.2.9 release.
- [`4d334be`](https://github.com/django/django/commit/4d334bea06cac63dc1272abcec545b85136cca0e) [2.2.x] Fixed CVE-2019-19844 -- Used verified user email for password reset r...
- [`86befcc`](https://github.com/django/django/commit/86befcc172c23170a720b3e0c06db51a99b3da59) [2.2.x] Refs [#31073](https://github-redirect.dependabot.com/django/django/issues/31073) -- Added release notes for 02eff7ef60466da108b1a33f1e4dc0...
- [`f33be1e`](https://github.com/django/django/commit/f33be1e8ae2efbca5f209e2365fa35c2aaee340c) [2.2.x] Fixed [#31073](https://github-redirect.dependabot.com/django/django/issues/31073) -- Prevented CheckboxInput.get_context() from mutating a...
- [`e8b0903`](https://github.com/django/django/commit/e8b0903976077b951795938b260211214ed7fe41) [2.2.x] Fixed [#31006](https://github-redirect.dependabot.com/django/django/issues/31006) -- Doc'd backslash escaping in date/time template filters.
- Additional commits viewable in [compare view](https://github.com/django/django/compare/2.2.1...2.2.10)
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=django&package-manager=pip&previous-version=2.2.1&new-version=2.2.10)](https://help.github.com/articles/configuring-automated-security-fixes)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/sarusso/Rosetta/network/alerts).
</details>https://www.ict.inaf.it/gitlab/exact/Rosetta/-/merge_requests/1Bump django from 2.2.1 to 2.2.8 in /images/webapp2020-02-12T03:20:55ZStefano Alberto RussoBump django from 2.2.1 to 2.2.8 in /images/webapp*Created by: dependabot[bot]*
Bumps [django](https://github.com/django/django) from 2.2.1 to 2.2.8.
<details>
<summary>Commits</summary>
- [`b8782c5`](https://github.com/django/django/commit/b8782c52c99175916a1dceaece758608ac5856d0) [2...*Created by: dependabot[bot]*
Bumps [django](https://github.com/django/django) from 2.2.1 to 2.2.8.
<details>
<summary>Commits</summary>
- [`b8782c5`](https://github.com/django/django/commit/b8782c52c99175916a1dceaece758608ac5856d0) [2.2.x] Bumped version for 2.2.8 release.
- [`d6fa509`](https://github.com/django/django/commit/d6fa50995261bf8863a4292845b95d396f43b507) [2.2.x] Added release dates for 2.1.15, 2.2.8 and 3.0.
- [`36f580a`](https://github.com/django/django/commit/36f580a17f0b3cb087deadf3b65eea024f479c21) Fixed CVE-2019-19118 -- Required edit permissions on parent model for editabl...
- [`70311e1`](https://github.com/django/django/commit/70311e1d00ef5b6bbbc8961eac81b5c814396a43) [2.2.x] Refs [#30953](https://github-redirect.dependabot.com/django/django/issues/30953) -- Added 2.1.15 release note for 0107e3d1058f653f66032f7f...
- [`6cf3b6f`](https://github.com/django/django/commit/6cf3b6f5cf0cc3b11e86e511ec5201999913286f) [2.2.x] Fixed [#30953](https://github-redirect.dependabot.com/django/django/issues/30953) -- Made select_for_update() lock queryset's model when u...
- [`9a17ae5`](https://github.com/django/django/commit/9a17ae50c61a3a0ea6c552ce4e3eab27f796d094) [2.2.x] Fixed [#31021](https://github-redirect.dependabot.com/django/django/issues/31021) -- Fixed proxy model permissions data migration crash wi...
- [`019a1b9`](https://github.com/django/django/commit/019a1b9274c645db82593bc5898a279d134b464b) [2.2.x] Fixed [#31029](https://github-redirect.dependabot.com/django/django/issues/31029) -- Used more specific links to RFCs.
- [`57f5a7e`](https://github.com/django/django/commit/57f5a7e36b514e078fc92f9014771f94b945acb4) [2.2.x] Refs [#31029](https://github-redirect.dependabot.com/django/django/issues/31029) -- Added note about :rfc: role in writing documentation d...
- [`3cf70df`](https://github.com/django/django/commit/3cf70df468d4453fb315cb74db0232ac9a1e89be) [2.2.x] Fixed [#31018](https://github-redirect.dependabot.com/django/django/issues/31018) -- Removed django-nonrel in NoSQL databases FAQ.
- [`e82a1bc`](https://github.com/django/django/commit/e82a1bcf622e5c9cf37f28bde21af8176b6dd118) [2.2.x] Improved custom MultiWidget example in docs.
- Additional commits viewable in [compare view](https://github.com/django/django/compare/2.2.1...2.2.8)
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=django&package-manager=pip&previous-version=2.2.1&new-version=2.2.8)](https://help.github.com/articles/configuring-automated-security-fixes)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot ignore this [patch|minor|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/sarusso/Rosetta/network/alerts).
</details>