Bump pypdf from 6.6.2 to 6.9.2 in /Training Assistant in the pip group across 1 directory by dependabot[bot] · Pull Request #10 · rod-trent/JunkDrawer

dependabot · 2026-03-26T01:16:39Z

Bumps the pip group with 1 update in the /Training Assistant directory: pypdf.

Updates pypdf from 6.6.2 to 6.9.2

Release notes

Version 6.9.2, 2026-03-23

What's new

Security (SEC)

Avoid infinite loop in read_from_stream for broken files (#3693) by @stefan6419846

Robustness (ROB)

Resolve UnboundLocalError for xobjs in _get_image (#3684) by @Yuki9814

Full Changelog

Version 6.9.1, 2026-03-17

What's new

Security (SEC)

Improve performance and limit length of array-based content streams (#3686) by @stefan6419846

Full Changelog

Version 6.9.0, 2026-03-15

What's new

New Features (ENH)

Expose /Perms verification result on Encryption object (#3672) by @costajohnt

Performance Improvements (PI)

Fix O(n²) performance in NameObject read/write (#3679) by @dmitry-kostin

Batch-parse all objects in ObjStm on first access (#3677) by @dmitry-kostin

Bug Fixes (BUG)

Avoid sharing array-based content streams between pages (#3681) by @stefan6419846

Avoid accessing invalid page when inserting blank page under some conditions (#3529) by @j-t-1

Full Changelog

Version 6.8.0, 2026-03-09

What's new

Security (SEC)

Limit allowed /Length value of stream (#3675) by @stefan6419846

New Features (ENH)

Add /IRT (in-reply-to) support for markup annotations (#3631) by @costajohnt

Documentation (DOC)

Avoid using PageObject.replace_contents on PdfReader (#3669) by @stefan6419846

Document how to disable jbig2dec calls by @stefan6419846

Full Changelog

... (truncated)

Changelog

Sourced from pypdf's changelog.

Version 6.9.2, 2026-03-23

Security (SEC)

Avoid infinite loop in read_from_stream for broken files (#3693)

Robustness (ROB)

Resolve UnboundLocalError for xobjs in _get_image (#3684)

Full Changelog

Version 6.9.1, 2026-03-17

Security (SEC)

Improve performance and limit length of array-based content streams (#3686)

Full Changelog

Version 6.9.0, 2026-03-15

New Features (ENH)

Expose /Perms verification result on Encryption object (#3672)

Performance Improvements (PI)

Fix O(n²) performance in NameObject read/write (#3679)

Batch-parse all objects in ObjStm on first access (#3677)

Bug Fixes (BUG)

Avoid sharing array-based content streams between pages (#3681)

Avoid accessing invalid page when inserting blank page under some conditions (#3529)

Full Changelog

Version 6.8.0, 2026-03-09

Security (SEC)

Limit allowed /Length value of stream (#3675)

New Features (ENH)

Add /IRT (in-reply-to) support for markup annotations (#3631)

Documentation (DOC)

Avoid using PageObject.replace_contents on PdfReader (#3669)

Document how to disable jbig2dec calls

Full Changelog

Version 6.7.5, 2026-03-02

Security (SEC)

Improve the performance of the ASCIIHexDecode filter (#3666)

... (truncated)

Commits

da867f4 REL: 6.9.2
02b1345 SEC: Avoid infinite loop in read_from_stream for broken files (#3693)
3bef339 MAINT: Prefer bytearray over bytes in image_inline (#3692)
04b0a38 ROB: Resolve UnboundLocalError for xobjs in _get_image (#3684)
0e5157c REL: 6.9.1
0b5d05d SEC: Improve performance and limit length of array-based content streams (#3686)
87aa1d4 DEV: Remove unused reverse encoding dicts (#3685)
84f5266 MAINT: Use placeholder-based approach for logger_error (#3673)
8f1f4aa REL: 6.9.0
5a9a0da BUG: Avoid sharing array-based content streams between pages (#3681)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
You can disable automated security fix PRs for this repo from the Security Alerts page.

Bumps the pip group with 1 update in the /Training Assistant directory: [pypdf](https://github.com/py-pdf/pypdf). Updates `pypdf` from 6.6.2 to 6.9.2 - [Release notes](https://github.com/py-pdf/pypdf/releases) - [Changelog](https://github.com/py-pdf/pypdf/blob/main/CHANGELOG.md) - [Commits](py-pdf/pypdf@6.6.2...6.9.2) --- updated-dependencies: - dependency-name: pypdf dependency-version: 6.9.2 dependency-type: direct:production dependency-group: pip ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot · 2026-03-26T15:52:59Z

Superseded by #11.

dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update python code labels Mar 26, 2026

dependabot bot mentioned this pull request Mar 26, 2026

Bump pypdf from 6.6.2 to 6.7.1 in /Training Assistant in the pip group across 1 directory #8

Closed

dependabot bot closed this Mar 26, 2026

dependabot bot deleted the dependabot/pip/Training-Assistant/pip-adff239520 branch March 26, 2026 15:53

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump pypdf from 6.6.2 to 6.9.2 in /Training Assistant in the pip group across 1 directory#10

Bump pypdf from 6.6.2 to 6.9.2 in /Training Assistant in the pip group across 1 directory#10
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/pip/Training-Assistant/pip-adff239520

dependabot bot commented on behalf of github Mar 26, 2026

Uh oh!

dependabot bot commented on behalf of github Mar 26, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot bot commented on behalf of github Mar 26, 2026

Version 6.9.2, 2026-03-23

What's new

Security (SEC)

Robustness (ROB)

Version 6.9.1, 2026-03-17

What's new

Security (SEC)

Version 6.9.0, 2026-03-15

What's new

New Features (ENH)

Performance Improvements (PI)

Bug Fixes (BUG)

Version 6.8.0, 2026-03-09

What's new

Security (SEC)

New Features (ENH)

Documentation (DOC)

Version 6.9.2, 2026-03-23

Security (SEC)

Robustness (ROB)

Version 6.9.1, 2026-03-17

Security (SEC)

Version 6.9.0, 2026-03-15

New Features (ENH)

Performance Improvements (PI)

Bug Fixes (BUG)

Version 6.8.0, 2026-03-09

Security (SEC)

New Features (ENH)

Documentation (DOC)

Version 6.7.5, 2026-03-02

Security (SEC)

Uh oh!

dependabot bot commented on behalf of github Mar 26, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants