Skip to content

chore(deps): update pypdf2 requirement from >=2.10.4 to >=3.0.1 in /utils#2623

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/pip/utils/pypdf2-gte-3.0.1
Open

chore(deps): update pypdf2 requirement from >=2.10.4 to >=3.0.1 in /utils#2623
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/pip/utils/pypdf2-gte-3.0.1

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Apr 23, 2026
edited
Loading

Updates the requirements on pypdf2 to permit the latest version.

Changelog

Sourced from pypdf2's changelog.

CHANGELOG

Version 6.10.2, 2026-04-15

Security (SEC)

  • Do not rely on possibly invalid /Size for incremental cloning (#3735)
  • Introduce limits for FlateDecode parameters and image decoding (#3734)

Full Changelog

Version 6.10.1, 2026-04-14

Security (SEC)

  • Limit the allowed size of xref and object streams (#3733)

Robustness (ROB)

  • Consider strict mode setting for decryption errors (#3731)

Documentation (DOC)

  • Use new parameter names for compress_identical_objects

Full Changelog

Version 6.10.0, 2026-04-10

Security (SEC)

  • Disallow custom XML entity declarations for XMP metadata (#3724)

New Features (ENH)

  • Skip MD5 key derivation for AES-256 encrypted PDFs (#3694)

Bug Fixes (BUG)

  • Use remove_orphans in compress_identical_objects (#3310)
  • Fix PdfReadError when xref table contains comments before trailer (#3710)
  • Correctly verify AES padding during decryption (#3699)
  • Fix stale object cache from non-authoritative object streams (#3698)
  • Fix extract_links pairing when annotations include non-links (#3687)

Documentation (DOC)

Full Changelog

Version 6.9.2, 2026-03-23

Security (SEC)

  • Avoid infinite loop in read_from_stream for broken files (#3693)

Robustness (ROB)

  • Resolve UnboundLocalError for xobjs in _get_image (#3684)

... (truncated)

Commits

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python Pull requests that update python code labels Apr 23, 2026
@dependabot dependabot Bot requested a review from a team as a code owner April 23, 2026 03:09
@dependabot dependabot Bot added the python Pull requests that update python code label Apr 23, 2026
@dependabot dependabot Bot requested review from myronkaifung and removed request for a team April 23, 2026 03:09
@vercel
Copy link
Copy Markdown

vercel Bot commented Apr 23, 2026
edited
Loading

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Actions Updated (UTC)
docs Ready Ready Preview, Comment Apr 30, 2026 8:12am

Request Review

@dependabot dependabot Bot force-pushed the dependabot/pip/utils/pypdf2-gte-3.0.1 branch from 341b29e to 720fb7b Compare April 23, 2026 08:06
@dependabot
chore(deps): update pypdf2 requirement in /utils
beccf7a 
Updates the requirements on [pypdf2](https://github.com/py-pdf/PyPDF2) to permit the latest version.
- [Release notes](https://github.com/py-pdf/PyPDF2/releases)
- [Changelog](https://github.com/py-pdf/pypdf/blob/main/CHANGELOG.md)
- [Commits](https://github.com/py-pdf/PyPDF2/commits)

---
updated-dependencies:
- dependency-name: pypdf2
  dependency-version: 3.0.1
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/pip/utils/pypdf2-gte-3.0.1 branch from 720fb7b to beccf7a Compare April 30, 2026 08:07
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@myronkaifung myronkaifung Awaiting requested review from myronkaifung myronkaifung is a code owner automatically assigned from mixpanel/docs-reviewers

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python Pull requests that update python code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants