apunkt/dograh
1
0
Fork 0
mirror of https://github.com/dograh-hq/dograh.git synced 2026-06-07 07:55:16 +02:00
Code Issues Projects Releases Packages Wiki Activity
dograh/api
History
@aaronjmars 332754a809
fix(security): bump python-multipart 0.0.20 -> 0.0.27 (#332) 
Closes three known advisories in python-multipart, all reachable
from the FastAPI multipart form-parser used across the API
(transcribe_audio, knowledge_base uploads, presigned upload flows):

- GHSA-wp53-j4wj-2cfg (HIGH, CWE-22) — arbitrary file write via
  non-default configuration. Fixed in 0.0.22.
- GHSA-pp6c-gr5w-3c5g (HIGH, CWE-400) — DoS via unbounded multipart
  part headers. Fixed in 0.0.27.
- GHSA-mj87-hwqh-73pj (MOD, CWE-400) — DoS via large multipart
  preamble or epilogue. Fixed in 0.0.26.

0.0.27 is a patch-level bump within the same 0.0.x line, no API
changes; fastapi==0.135.3 only requires python-multipart>=0.0.7 so
the upper bound is unaffected.

Detected by Aeon + osv-scanner.

Co-authored-by: aeonframework <aeon@aaronjmars.com>
2026-05-21 15:29:27 +05:30
..
alembic feat: add chat based testing for voice agent (#308) 2026-05-21 15:20:02 +05:30
assets feat: telephony call transfer (#155) 2026-02-16 14:33:33 +05:30
db feat: add chat based testing for voice agent (#308) 2026-05-21 15:20:02 +05:30
errors Feat/inbound telephony (#113) 2026-01-12 10:10:30 +05:30
mcp_server test(mcp): guard instructions.py against tool drift 2026-05-20 18:44:18 +05:30
native/rnnoise Initial Commit 🚀 🚀 2025-09-09 14:37:32 +05:30
routes feat: add chat based testing for voice agent (#308) 2026-05-21 15:20:02 +05:30
schemas feat: agent stream for cloudonix OPBX (#261) 2026-05-02 15:53:58 +05:30
services feat: add chat based testing for voice agent (#308) 2026-05-21 15:20:02 +05:30
tasks feat: add Tuner Integration to Dograh (#311) 2026-05-20 14:37:33 +05:30
tests feat: add chat based testing for voice agent (#308) 2026-05-21 15:20:02 +05:30
utils feat: add workflow graph constraints fixtures 2026-05-08 16:02:51 +05:30
.cursorignore Initial Commit 🚀 🚀 2025-09-09 14:37:32 +05:30
.dockerignore Initial Commit 🚀 🚀 2025-09-09 14:37:32 +05:30
.env.example fix: number pool initialization in multi telephony setup 2026-05-08 14:48:53 +05:30
.gitignore Initial Commit 🚀 🚀 2025-09-09 14:37:32 +05:30
__init__.py Initial Commit 🚀 🚀 2025-09-09 14:37:32 +05:30
AGENTS.md feat: add chat based testing for voice agent (#308) 2026-05-21 15:20:02 +05:30
alembic.ini chore: bump pipecat version and fix tests (#263) 2026-05-04 21:35:37 +05:30
app.py feat: refactor node spec and add mcp tools (#244) 2026-04-21 07:56:16 +05:30
CLAUDE.md Chore/add setup and contributing docs (#90) 2025-12-27 09:25:20 +05:30
conftest.py chore: bump pipecat version and fix tests (#263) 2026-05-04 21:35:37 +05:30
constants.py feat: add Tuner Integration to Dograh (#311) 2026-05-20 14:37:33 +05:30
Dockerfile feat(mcp): generic MCP tool source with per-node function filtering (#301) 2026-05-19 16:10:00 +05:30
enums.py feat: add chat based testing for voice agent (#308) 2026-05-21 15:20:02 +05:30
logging_config.py feat: add headless mode, redesign floating widget, refactor lifecycle callbacks (#268) 2026-05-07 12:23:41 +05:30
pyproject.toml chore(main): release dograh 1.30.1 (#304) 2026-05-17 20:48:55 +05:30
pytest.ini feat: refactor node spec and add mcp tools (#244) 2026-04-21 07:56:16 +05:30
requirements.dev.txt feat: add headless mode, redesign floating widget, refactor lifecycle callbacks (#268) 2026-05-07 12:23:41 +05:30
requirements.txt fix(security): bump python-multipart 0.0.20 -> 0.0.27 (#332) 2026-05-21 15:29:27 +05:30
sdk_expose.py feat: refactor node spec and add mcp tools (#244) 2026-04-21 07:56:16 +05:30