Skip to content

chore(deps): bump mako from 1.3.11 to 1.3.12 in /projects/ai/agents/examples/deep-search#531

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/uv/projects/ai/agents/examples/deep-search/mako-1.3.12
Open

chore(deps): bump mako from 1.3.11 to 1.3.12 in /projects/ai/agents/examples/deep-search#531
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/uv/projects/ai/agents/examples/deep-search/mako-1.3.12

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 8, 2026
edited
Loading

Bumps mako from 1.3.11 to 1.3.12.

Release notes

Sourced from mako's releases.

1.3.12

Released: Tue Apr 28 2026

bug

  • [bug] [template] Fixed issue in TemplateLookup where a URI with backslash path separators (e.g. \..\secret.txt) could bypass the directory traversal check on Windows, allowing reads of arbitrary files outside of the template directory. Backslash characters in URIs are now normalized to forward slashes before path resolution.

    References: #435

Commits

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code labels May 8, 2026
@dependabot dependabot Bot requested a review from allen-stephen as a code owner May 8, 2026 01:25
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code labels May 8, 2026
@github-actions
Copy link
Copy Markdown

github-actions Bot commented May 8, 2026

Super-linter summary

Language Validation result
EDITORCONFIG Pass ✅
GITLEAKS Pass ✅
GIT_COMMITLINT Pass ✅
GIT_MERGE_CONFLICT_MARKERS Pass ✅
SPELL_CODESPELL Pass ✅

All files and directories linted successfully

For more information, see the
GitHub Actions workflow run

Powered by Super-linter

@dependabot dependabot Bot force-pushed the dependabot/uv/projects/ai/agents/examples/deep-search/mako-1.3.12 branch from 9b61d08 to 2a16095 Compare May 18, 2026 17:57
@github-actions
Copy link
Copy Markdown

github-actions Bot commented May 18, 2026

Super-linter summary

Language Validation result
EDITORCONFIG Pass ✅
GITLEAKS Pass ✅
GIT_COMMITLINT Pass ✅
GIT_MERGE_CONFLICT_MARKERS Pass ✅
SPELL_CODESPELL Pass ✅

All files and directories linted successfully

For more information, see the
GitHub Actions workflow run

Powered by Super-linter

@dependabot
chore(deps): bump mako in /projects/ai/agents/examples/deep-search
5b18fe3 
Bumps [mako](https://github.com/sqlalchemy/mako) from 1.3.11 to 1.3.12.
- [Release notes](https://github.com/sqlalchemy/mako/releases)
- [Changelog](https://github.com/sqlalchemy/mako/blob/main/CHANGES)
- [Commits](https://github.com/sqlalchemy/mako/commits)

---
updated-dependencies:
- dependency-name: mako
  dependency-version: 1.3.12
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot Bot force-pushed the dependabot/uv/projects/ai/agents/examples/deep-search/mako-1.3.12 branch from 2a16095 to 5b18fe3 Compare May 19, 2026 02:51
@github-actions
Copy link
Copy Markdown

github-actions Bot commented May 19, 2026

Super-linter summary

Language Validation result
EDITORCONFIG Pass ✅
GITLEAKS Pass ✅
GIT_COMMITLINT Pass ✅
GIT_MERGE_CONFLICT_MARKERS Pass ✅
SPELL_CODESPELL Pass ✅

All files and directories linted successfully

For more information, see the
GitHub Actions workflow run

Powered by Super-linter

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@allen-stephen allen-stephen Awaiting requested review from allen-stephen allen-stephen is a code owner

Assignees

@allen-stephen allen-stephen

Labels

dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@allen-stephen