Merge pull request #2787 from mandiant/dependabot/pip/msgspec-0.20.0

build(deps): bump msgspec from 0.19.0 to 0.20.0
Merge pull request #2786 from mandiant/dependabot/pip/black-25.12.0
2025-12-12 07:40:38 -08:00 · 2025-12-11 11:17:57 +01:00 · 2025-12-11 11:17:33 +01:00 · 2025-12-11 11:17:14 +01:00 · 2025-12-11 11:16:51 +01:00 · 2025-12-08 14:02:34 +00:00
15 changed files with 76 additions and 58 deletions
--- a/.bumpversion.toml
+++ b/.bumpversion.toml
@@ -1,5 +1,5 @@
 [tool.bumpversion]
-current_version = "9.3.0"
+current_version = "9.3.1"

 [[tool.bumpversion.files]]
 filename = "capa/version.py"
--- a/.github/workflows/build.yml
+++ b/.github/workflows/build.yml
@@ -46,8 +46,8 @@ jobs:
          #  artifact_name: capa.exe
          #  asset_name: windows-arm64
          #  python_version: '3.12'
-          - os: macos-13
-            # use older macOS for assumed better portability
+          - os: macos-15-intel
+            # macos-15-intel is the lowest native intel build
            artifact_name: capa
            asset_name: macos
            python_version: '3.10'
--- a/.github/workflows/tests.yml
+++ b/.github/workflows/tests.yml
@@ -42,10 +42,10 @@ jobs:
    - name: Checkout capa
      uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
    # use latest available python to take advantage of best performance
-    - name: Set up Python 3.12
+    - name: Set up Python 3.13
      uses: actions/setup-python@0a5c61591373683505ea898e09a3ea4f39ef2b9c # v5.0.0
      with:
-        python-version: "3.12"
+        python-version: "3.13"
    - name: Install dependencies
      run: |
        pip install -r requirements.txt
@@ -70,10 +70,10 @@ jobs:
      uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
      with:
        submodules: recursive
-    - name: Set up Python 3.12
+    - name: Set up Python 3.13
      uses: actions/setup-python@0a5c61591373683505ea898e09a3ea4f39ef2b9c # v5.0.0
      with:
-        python-version: "3.12"
+        python-version: "3.13"
    - name: Install capa
      run: |
        pip install -r requirements.txt
@@ -88,13 +88,11 @@ jobs:
    strategy:
      fail-fast: false
      matrix:
-        os: [ubuntu-22.04, windows-2022, macos-13]
+        os: [ubuntu-22.04, ubuntu-22.04-arm, windows-2022, macos-15-intel, macos-14]
        # across all operating systems
-        python-version: ["3.10", "3.11"]
+        python-version: ["3.10", "3.13"]
        include:
          # on Ubuntu run these as well
-          - os: ubuntu-22.04
-            python-version: "3.10"
          - os: ubuntu-22.04
            python-version: "3.11"
          - os: ubuntu-22.04
@@ -131,7 +129,7 @@ jobs:
    strategy:
      fail-fast: false
      matrix:
-        python-version: ["3.10", "3.11"]
+        python-version: ["3.10", "3.13"]
    steps:
    - name: Checkout capa with submodules
      # do only run if BN_SERIAL is available, have to do this in every step, see https://github.com/orgs/community/discussions/26726#discussioncomment-3253118
@@ -173,7 +171,7 @@ jobs:
    strategy:
      fail-fast: false
      matrix:
-        python-version: ["3.10", "3.11"]
+        python-version: ["3.10", "3.13"]
        java-version: ["17"]
        ghidra-version: ["11.0.1"]
        public-version: ["PUBLIC_20240130"] # for ghidra releases
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -6,11 +6,16 @@

 ### Breaking Changes

-### New Rules (0)
+### New Rules (4)

+- nursery/run-as-nodejs-native-module mehunhoff@google.com
+- nursery/inject-shellcode-using-thread-pool-work-insertion-with-tp_io still@teamt5.org
+- nursery/inject-shellcode-using-thread-pool-work-insertion-with-tp_timer still@teamt5.org
+- nursery/inject-shellcode-using-thread-pool-work-insertion-with-tp_work still@teamt5.org
 -

 ### Bug Fixes
+- Fixed insecure deserialization vulnerability in YAML loading @0x1622 (#2770)

 ### capa Explorer Web

@@ -18,6 +23,24 @@

 ### Development

+- ci: deprecate macos-13 runner and use Python v3.13 for testing @mike-hunhoff #2777
+
+### Raw diffs
+- [capa v9.3.1...master](https://github.com/mandiant/capa/compare/v9.3.1...master)
+- [capa-rules v9.3.1...master](https://github.com/mandiant/capa-rules/compare/v9.3.1...master)
+
+## v9.3.1
+
+This patch release fixes a missing import for the capa explorer plugin for IDA Pro.
+
+### Bug Fixes
+
+- add missing ida-netnode dependency to project.toml @mike-hunhoff #2765
+
+### Development
+
+- ci: bump binja min version @mike-hunhoff #2763
+
 ### Raw diffs
 - [capa v9.3.0...master](https://github.com/mandiant/capa/compare/v9.3.0...master)
 - [capa-rules v9.3.0...master](https://github.com/mandiant/capa-rules/compare/v9.3.0...master)
--- a/capa/ida/plugin/ida-plugin.json
+++ b/capa/ida/plugin/ida-plugin.json
@@ -3,7 +3,7 @@
  "plugin": {
    "name": "capa",
    "entryPoint": "capa_explorer.py",
-    "version": "9.3.0",
+    "version": "9.3.1",
    "idaVersions": ">=7.4",
    "description": "Identify capabilities in executable files using FLARE's capa framework",
    "license": "Apache-2.0",
@@ -12,7 +12,7 @@
      "api-scripting-and-automation",
      "ui-ux-and-visualization"
    ],
-    "pythonDependencies": ["flare-capa==9.3.0"],
+    "pythonDependencies": ["flare-capa==9.3.1"],
    "urls": {
      "repository": "https://github.com/mandiant/capa"
    },
--- a/capa/main.py
+++ b/capa/main.py
@@ -392,6 +392,7 @@ class ShouldExitError(Exception):
    """raised when a main-related routine indicates the program should exit."""

    def __init__(self, status_code: int):
+        super().__init__(status_code)
        self.status_code = status_code


--- a/capa/rules/init.py
+++ b/capa/rules/init.py
@@ -274,12 +274,8 @@ SUPPORTED_FEATURES[Scope.FUNCTION].update(SUPPORTED_FEATURES[Scope.BASIC_BLOCK])


 class InvalidRule(ValueError):
-    def __init__(self, msg):
-        super().__init__()
-        self.msg = msg
-
    def __str__(self):
-        return f"invalid rule: {self.msg}"
+        return f"invalid rule: {super().__str__()}"

    def __repr__(self):
        return str(self)
@@ -289,20 +285,15 @@ class InvalidRuleWithPath(InvalidRule):
    def __init__(self, path, msg):
        super().__init__(msg)
        self.path = path
-        self.msg = msg
        self.__cause__ = None

    def __str__(self):
-        return f"invalid rule: {self.path}: {self.msg}"
+        return f"invalid rule: {self.path}: {super(InvalidRule, self).__str__()}"


 class InvalidRuleSet(ValueError):
-    def __init__(self, msg):
-        super().__init__()
-        self.msg = msg
-
    def __str__(self):
-        return f"invalid rule set: {self.msg}"
+        return f"invalid rule set: {super().__str__()}"

    def __repr__(self):
        return str(self)
@@ -1102,15 +1093,15 @@ class Rule:
    @lru_cache()
    def _get_yaml_loader():
        try:
-            # prefer to use CLoader to be fast, see #306
+            # prefer to use CLoader to be fast, see #306 / CSafeLoader is the same as CLoader but with safe loading
            # on Linux, make sure you install libyaml-dev or similar
            # on Windows, get WHLs from pyyaml.org/pypi
-            logger.debug("using libyaml CLoader.")
-            return yaml.CLoader
+            logger.debug("using libyaml CSafeLoader.")
+            return yaml.CSafeLoader
        except Exception:
-            logger.debug("unable to import libyaml CLoader, falling back to Python yaml parser.")
+            logger.debug("unable to import libyaml CSafeLoader, falling back to Python yaml parser.")
            logger.debug("this will be slower to load rules.")
-            return yaml.Loader
+            return yaml.SafeLoader

    @staticmethod
    def _get_ruamel_yaml_parser():
--- a/capa/version.py
+++ b/capa/version.py
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.

-__version__ = "9.3.0"
+__version__ = "9.3.1"


 def get_major_version():
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -74,6 +74,7 @@ dependencies = [
    # comments and context.
    "pyyaml>=6",
    "colorama>=0.4",
+    "ida-netnode>=3.0",
    "ida-settings>=3.1.0",
    "ruamel.yaml>=0.18",
    "pefile>=2023.2.7",
@@ -121,14 +122,14 @@ dev = [
    # we want all developer environments to be consistent.
    # These dependencies are not used in production environments
    # and should not conflict with other libraries/tooling.
-    "pre-commit==4.2.0",
+    "pre-commit==4.5.0",
    "pytest==8.0.0",
    "pytest-sugar==1.1.1",
    "pytest-instafail==0.5.0",
    "flake8==7.3.0",
-    "flake8-bugbear==24.12.12",
+    "flake8-bugbear==25.11.29",
    "flake8-encodings==0.5.1",
-    "flake8-comprehensions==3.16.0",
+    "flake8-comprehensions==3.17.0",
    "flake8-logging-format==0.9.0",
    "flake8-no-implicit-concat==0.3.5",
    "flake8-print==5.0.0",
@@ -136,8 +137,8 @@ dev = [
    "flake8-simplify==0.22.0",
    "flake8-use-pathlib==0.3.0",
    "flake8-copyright==0.2.4",
-    "ruff==0.12.0",
-    "black==25.1.0",
+    "ruff==0.14.7",
+    "black==25.12.0",
    "isort==6.0.0",
    "mypy==1.17.1",
    "mypy-protobuf==3.6.0",
@@ -147,7 +148,7 @@ dev = [
    "types-backports==0.1.3",
    "types-colorama==0.4.15.11",
    "types-PyYAML==6.0.8",
-    "types-psutil==7.0.0.20250218",
+    "types-psutil==7.1.3.20251202",
    "types_requests==2.32.0.20240712",
    "types-protobuf==6.32.1.20250918",
    "deptry==0.23.0"
@@ -157,7 +158,7 @@ build = [
    # we want all developer environments to be consistent.
    # These dependencies are not used in production environments
    # and should not conflict with other libraries/tooling.
-    "pyinstaller==6.14.1",
+    "pyinstaller==6.16.0",
    "setuptools==80.9.0",
    "build==1.3.0"
 ]
--- a/requirements.txt
+++ b/requirements.txt
@@ -12,7 +12,7 @@ cxxfilt==0.3.0
 dncil==1.0.2
 dnfile==0.17.0
 funcy==2.0
-humanize==4.13.0
+humanize==4.14.0
 ida-netnode==3.0
 ida-settings==3.2.2
 intervaltree==3.1.0
@@ -22,16 +22,16 @@ msgpack==1.0.8
 networkx==3.4.2
 pefile==2024.8.26
 pip==25.3
-protobuf==6.31.1
+protobuf==6.33.1
 pyasn1==0.5.1
 pyasn1-modules==0.3.0
-pycparser==2.22
+pycparser==2.23
 pydantic==2.12.4
 # pydantic pins pydantic-core, 
 # but dependabot updates these separately (which is broken) and is annoying,
 # so we rely on pydantic to pull in the right version of pydantic-core.
 # pydantic-core==2.23.4
-xmltodict==0.14.2
+xmltodict==1.0.2
 pyelftools==0.32
 pygments==2.19.1
 python-flirt==0.9.2
@@ -44,5 +44,5 @@ six==1.17.0
 sortedcontainers==2.4.0
 viv-utils==0.8.0
 vivisect==1.2.1
-msgspec==0.19.0
+msgspec==0.20.0
 bump-my-version==1.2.4
--- a/2
+++ b/2
--- a/tests/data
+++ b/tests/data
--- a/tests/test_binja_features.py
+++ b/tests/test_binja_features.py
@@ -70,4 +70,4 @@ def test_standalone_binja_backend():
@pytest.mark.skipif(binja_present is False, reason="Skip binja tests if the binaryninja Python API is not installed")
 def test_binja_version():
    version = binaryninja.core_version_info()
-    assert version.major == 5 and version.minor == 1
+    assert version.major == 5 and version.minor == 2
--- a/web/explorer/package-lock.json
+++ b/web/explorer/package-lock.json
@@ -2272,10 +2272,11 @@
            }
        },
        "node_modules/glob": {
-            "version": "10.4.2",
-            "resolved": "https://registry.npmjs.org/glob/-/glob-10.4.2.tgz",
-            "integrity": "sha512-GwMlUF6PkPo3Gk21UxkCohOv0PLcIXVtKyLlpEI28R/cO/4eNOdmLk3CMW1wROV/WR/EsZOWAfBbBOqYvs88/w==",
+            "version": "10.5.0",
+            "resolved": "https://registry.npmjs.org/glob/-/glob-10.5.0.tgz",
+            "integrity": "sha512-DfXN8DfhJ7NH3Oe7cFmu3NCu1wKbkReJ8TorzSAFbSKrlNaQSKfIzqYqVY8zlbs2NLBbWpRiU52GX2PbaBVNkg==",
            "dev": true,
+            "license": "ISC",
            "dependencies": {
                "foreground-child": "^3.1.0",
                "jackspeak": "^3.1.2",
@@ -2287,9 +2288,6 @@
            "bin": {
                "glob": "dist/esm/bin.mjs"
            },
-            "engines": {
-                "node": ">=16 || 14 >=14.18"
-            },
            "funding": {
                "url": "https://github.com/sponsors/isaacs"
            }
@@ -2641,10 +2639,11 @@
            }
        },
        "node_modules/js-yaml": {
-            "version": "4.1.0",
-            "resolved": "https://registry.npmjs.org/js-yaml/-/js-yaml-4.1.0.tgz",
-            "integrity": "sha512-wpxZs9NoxZaJESJGIZTyDEaYpl0FKSA+FB9aJiyemKhMwkxQg63h4T1KJgUGHpTqPDNRcmmYLugrRjJlBtWvRA==",
+            "version": "4.1.1",
+            "resolved": "https://registry.npmjs.org/js-yaml/-/js-yaml-4.1.1.tgz",
+            "integrity": "sha512-qQKT4zQxXl8lLwBtHMWwaTcGfFOZviOJet3Oy/xmGk2gZH677CJM9EvtfdSkgWcATZhj/55JZ0rmy3myCT5lsA==",
            "dev": true,
+            "license": "MIT",
            "dependencies": {
                "argparse": "^2.0.1"
            },
--- a/web/public/index.html
+++ b/web/public/index.html
@@ -212,6 +212,11 @@

      <h2 class="mt-3">Tool Updates</h2>

+      <h3 class="mt-2">v9.3.1 (<em>2025-11-19</em>)</h3>
+      <p class="mt-0">
+        This patch release fixes a missing import for the capa explorer plugin for IDA Pro.
+      </p>
+
      <h3 class="mt-2">v9.3.0 (<em>2025-11-12</em>)</h3>
      <p class="mt-0">
        capa v9.3.0 comes with over 20 new and/or impoved rules.
Author	SHA1	Message	Date
Moritz	40b01f0998	Merge pull request #2787 from mandiant/dependabot/pip/msgspec-0.20.0 build(deps): bump msgspec from 0.19.0 to 0.20.0	2025-12-11 11:17:57 +01:00
Moritz	b96a3b6b23	Merge pull request #2786 from mandiant/dependabot/pip/black-25.12.0 build(deps-dev): bump black from 25.11.0 to 25.12.0	2025-12-11 11:17:33 +01:00
Moritz	43e5e60901	Merge pull request #2785 from mandiant/dependabot/pip/types-psutil-7.1.3.20251202 build(deps-dev): bump types-psutil from 7.0.0.20250218 to 7.1.3.20251202	2025-12-11 11:17:14 +01:00
Moritz	0f9f72dbd5	build(deps-dev): bump flake8-bugbear from 25.10.21 to 25.11.29 (#2784 ) Bumps [flake8-bugbear](https://github.com/PyCQA/flake8-bugbear) from 25.10.21 to 25.11.29. - [Release notes](https://github.com/PyCQA/flake8-bugbear/releases) - [Commits](https://github.com/PyCQA/flake8-bugbear/compare/25.10.21...25.11.29) --- updated-dependencies: - dependency-name: flake8-bugbear dependency-version: 25.11.29 dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-12-11 11:16:51 +01:00
dependabot[bot]	fd9f584cc4	build(deps): bump msgspec from 0.19.0 to 0.20.0 Bumps [msgspec](https://github.com/jcrist/msgspec) from 0.19.0 to 0.20.0. - [Release notes](https://github.com/jcrist/msgspec/releases) - [Changelog](https://github.com/jcrist/msgspec/blob/main/docs/changelog.md) - [Commits](https://github.com/jcrist/msgspec/compare/0.19.0...0.20.0) --- updated-dependencies: - dependency-name: msgspec dependency-version: 0.20.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2025-12-08 14:02:34 +00:00
dependabot[bot]	c3b785e217	build(deps-dev): bump black from 25.11.0 to 25.12.0 Bumps [black](https://github.com/psf/black) from 25.11.0 to 25.12.0. - [Release notes](https://github.com/psf/black/releases) - [Changelog](https://github.com/psf/black/blob/main/CHANGES.md) - [Commits](https://github.com/psf/black/compare/25.11.0...25.12.0) --- updated-dependencies: - dependency-name: black dependency-version: 25.12.0 dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2025-12-08 14:02:27 +00:00
dependabot[bot]	6ae17f7ef4	build(deps-dev): bump types-psutil from 7.0.0.20250218 to 7.1.3.20251202 Bumps [types-psutil](https://github.com/typeshed-internal/stub_uploader) from 7.0.0.20250218 to 7.1.3.20251202. - [Commits](https://github.com/typeshed-internal/stub_uploader/commits) --- updated-dependencies: - dependency-name: types-psutil dependency-version: 7.1.3.20251202 dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2025-12-08 14:02:22 +00:00
dependabot[bot]	13297ad324	build(deps-dev): bump flake8-bugbear from 25.10.21 to 25.11.29 Bumps [flake8-bugbear](https://github.com/PyCQA/flake8-bugbear) from 25.10.21 to 25.11.29. - [Release notes](https://github.com/PyCQA/flake8-bugbear/releases) - [Commits](https://github.com/PyCQA/flake8-bugbear/compare/25.10.21...25.11.29) --- updated-dependencies: - dependency-name: flake8-bugbear dependency-version: 25.11.29 dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2025-12-08 14:02:19 +00:00
dependabot[bot]	9b42b45d21	build(deps-dev): bump flake8-bugbear from 24.12.12 to 25.10.21 (#2773 ) * build(deps-dev): bump flake8-bugbear from 24.12.12 to 25.10.21 Bumps [flake8-bugbear](https://github.com/PyCQA/flake8-bugbear) from 24.12.12 to 25.10.21. - [Release notes](https://github.com/PyCQA/flake8-bugbear/releases) - [Commits](https://github.com/PyCQA/flake8-bugbear/compare/24.12.12...25.10.21) --- updated-dependencies: - dependency-name: flake8-bugbear dependency-version: 25.10.21 dependency-type: direct:development update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> * fix flake8 raised bugs * use super --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: mr-tz <moritz.raabe@mandiant.com> Co-authored-by: Moritz <mr-tz@users.noreply.github.com>	2025-12-04 10:19:16 -07:00
Capa Bot	d17264c928	Sync capa rules submodule	2025-12-04 17:17:51 +00:00
Capa Bot	f313852e70	Sync capa rules submodule	2025-12-04 12:11:09 +00:00
Capa Bot	c0ae1352c6	Sync capa-testfiles submodule	2025-12-03 21:00:48 +00:00
dependabot[bot]	ccb3e6de74	build(deps-dev): bump flake8-comprehensions from 3.16.0 to 3.17.0 (#2782 ) Bumps [flake8-comprehensions](https://github.com/adamchainz/flake8-comprehensions) from 3.16.0 to 3.17.0. - [Changelog](https://github.com/adamchainz/flake8-comprehensions/blob/main/CHANGELOG.rst) - [Commits](https://github.com/adamchainz/flake8-comprehensions/compare/3.16.0...3.17.0) --- updated-dependencies: - dependency-name: flake8-comprehensions dependency-version: 3.17.0 dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-12-01 11:27:08 -07:00
dependabot[bot]	26c6ffd62d	build(deps-dev): bump ruff from 0.12.0 to 0.14.7 (#2781 ) Bumps [ruff](https://github.com/astral-sh/ruff) from 0.12.0 to 0.14.7. - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/0.12.0...0.14.7) --- updated-dependencies: - dependency-name: ruff dependency-version: 0.14.7 dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-12-01 11:26:34 -07:00
Capa Bot	18923601c7	Sync capa rules submodule	2025-11-25 20:39:18 +00:00
0x1622	1568ce4832	Use SafeLoader for YAML (#2776 )	2025-11-25 07:01:23 -07:00
Mike Hunhoff	ffce77b13d	ci: deprecate macos-13 runner and use Python v3.13 for testing (#2777 )	2025-11-24 19:53:39 -07:00
dependabot[bot]	895b2440c0	build(deps-dev): bump pre-commit from 4.2.0 to 4.5.0 (#2772 ) Bumps [pre-commit](https://github.com/pre-commit/pre-commit) from 4.2.0 to 4.5.0. - [Release notes](https://github.com/pre-commit/pre-commit/releases) - [Changelog](https://github.com/pre-commit/pre-commit/blob/main/CHANGELOG.md) - [Commits](https://github.com/pre-commit/pre-commit/compare/v4.2.0...v4.5.0) --- updated-dependencies: - dependency-name: pre-commit dependency-version: 4.5.0 dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-11-24 08:40:13 -07:00
dependabot[bot]	c901f809a2	build(deps-dev): bump black from 25.1.0 to 25.11.0 (#2771 ) Bumps [black](https://github.com/psf/black) from 25.1.0 to 25.11.0. - [Release notes](https://github.com/psf/black/releases) - [Changelog](https://github.com/psf/black/blob/main/CHANGES.md) - [Commits](https://github.com/psf/black/compare/25.1.0...25.11.0) --- updated-dependencies: - dependency-name: black dependency-version: 25.11.0 dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-11-24 08:39:17 -07:00
dependabot[bot]	308b3e5c1c	build(deps): bump xmltodict from 0.14.2 to 1.0.2 (#2774 ) Bumps [xmltodict](https://github.com/martinblech/xmltodict) from 0.14.2 to 1.0.2. - [Release notes](https://github.com/martinblech/xmltodict/releases) - [Changelog](https://github.com/martinblech/xmltodict/blob/master/CHANGELOG.md) - [Commits](https://github.com/martinblech/xmltodict/compare/v0.14.2...v1.0.2) --- updated-dependencies: - dependency-name: xmltodict dependency-version: 1.0.2 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-11-24 08:30:16 -07:00
Mike Hunhoff	7844ebb144	v9.3.1 (#2769 )	2025-11-20 08:37:49 -07:00
dependabot[bot]	e393cff0e1	build(deps): bump glob from 10.4.2 to 10.5.0 in /web/explorer (#2766 ) Bumps [glob](https://github.com/isaacs/node-glob) from 10.4.2 to 10.5.0. - [Changelog](https://github.com/isaacs/node-glob/blob/main/changelog.md) - [Commits](https://github.com/isaacs/node-glob/compare/v10.4.2...v10.5.0) --- updated-dependencies: - dependency-name: glob dependency-version: 10.5.0 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-11-19 08:34:25 -07:00
Mike Hunhoff	7780b9e8a8	explorer: add missing ida-netnode dependency to project.toml (#2765 )	2025-11-18 08:55:57 -07:00
Mike Hunhoff	8d39765e7b	ci: bump binja minor version (#2763 )	2025-11-17 11:10:46 -07:00
dependabot[bot]	dec0bcfe79	build(deps-dev): bump js-yaml from 4.1.0 to 4.1.1 in /web/explorer (#2758 ) Bumps [js-yaml](https://github.com/nodeca/js-yaml) from 4.1.0 to 4.1.1. - [Changelog](https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md) - [Commits](https://github.com/nodeca/js-yaml/compare/4.1.0...4.1.1) --- updated-dependencies: - dependency-name: js-yaml dependency-version: 4.1.1 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-11-17 10:02:54 -07:00
dependabot[bot]	99ccecba4e	build(deps): bump humanize from 4.13.0 to 4.14.0 (#2762 ) Bumps [humanize](https://github.com/python-humanize/humanize) from 4.13.0 to 4.14.0. - [Release notes](https://github.com/python-humanize/humanize/releases) - [Commits](https://github.com/python-humanize/humanize/compare/4.13.0...4.14.0) --- updated-dependencies: - dependency-name: humanize dependency-version: 4.14.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-11-17 09:10:40 -07:00
dependabot[bot]	af27463c37	build(deps-dev): bump pyinstaller from 6.14.1 to 6.16.0 (#2761 ) Bumps [pyinstaller](https://github.com/pyinstaller/pyinstaller) from 6.14.1 to 6.16.0. - [Release notes](https://github.com/pyinstaller/pyinstaller/releases) - [Changelog](https://github.com/pyinstaller/pyinstaller/blob/develop/doc/CHANGES.rst) - [Commits](https://github.com/pyinstaller/pyinstaller/compare/v6.14.1...v6.16.0) --- updated-dependencies: - dependency-name: pyinstaller dependency-version: 6.16.0 dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-11-17 09:10:30 -07:00
dependabot[bot]	f4f47b4d55	build(deps): bump protobuf from 6.31.1 to 6.33.1 (#2760 ) Bumps [protobuf](https://github.com/protocolbuffers/protobuf) from 6.31.1 to 6.33.1. - [Release notes](https://github.com/protocolbuffers/protobuf/releases) - [Changelog](https://github.com/protocolbuffers/protobuf/blob/main/protobuf_release.bzl) - [Commits](https://github.com/protocolbuffers/protobuf/commits) --- updated-dependencies: - dependency-name: protobuf dependency-version: 6.33.1 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-11-17 09:10:19 -07:00
dependabot[bot]	adc2401136	build(deps): bump pycparser from 2.22 to 2.23 (#2759 ) Bumps [pycparser](https://github.com/eliben/pycparser) from 2.22 to 2.23. - [Release notes](https://github.com/eliben/pycparser/releases) - [Changelog](https://github.com/eliben/pycparser/blob/main/CHANGES) - [Commits](https://github.com/eliben/pycparser/compare/release_v2.22...release_v2.23) --- updated-dependencies: - dependency-name: pycparser dependency-version: '2.23' dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-11-17 09:10:09 -07:00