Movatterモバイル変換

[0]ホーム
URL:

Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly

 Sign up
Appearance settings

[3.11] gh-137134: Update SQLite to 3.50.4 for binary releases (GH-137135)#137457

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to ourterms of service andprivacy statement. We’ll occasionally send you account related emails.

Already on GitHub?Sign in to your account

Closed
hugovk wants to merge1 commit intopython:3.11fromhugovk:backport-532c376-3.11

Conversation

@hugovk
Copy link
Member

@hugovkhugovk commentedAug 6, 2025
edited by bedevere-appbot
Loading

  • Update SQLite to 3.50.3 for binary releases.
  • macOS and Windows news entries. what about Android?
  • update sbom hash
  • newline fix via regen-sbom
  • news wording
  • Update SQLite to 3.50.4 for binary releases.
  • update 3.50.4.0.tar.gz hash in sbom & regen-sbom to fix whitespace
  • Postpone to a separate PR the build-installer changes to support additional hash types (cherry picked from commit532c376)

…ythonGH-137135)* Update SQLite to 3.50.3 for binary releases.* macOS and Windows news entries. what about Android?* update sbom hash* newline fix via regen-sbom* news wording* Update SQLite to 3.50.4 for binary releases.* update 3.50.4.0.tar.gz hash in sbom & regen-sbom to fix whitespace* Postpone to a separate PR the build-installer changes to support additional hash types(cherry picked from commit532c376)Co-authored-by: Gregory P. Smith <68491+gpshead@users.noreply.github.com>Co-authored-by: Erlend E. Aasland <erlend.aasland@protonmail.com>Co-authored-by: Claude <noreply@anthropic.com>Co-authored-by: Ned Deily <nad@python.org>
@Yhg1s
Copy link
Member

Not backporting to security-only branches as it only affects installers, which we don't build for security-only branches.

@Yhg1sYhg1s closed thisAug 14, 2025
@LazyDodo
Copy link

Shipping the installer or not is irrelevant, someone building a security release from source shouldn't end up with a7.2 CVE on their hands out of the box.

@Yhg1s
Copy link
Member

Someone buildingfrom source wouldn't be using the prebuilt binaries or probably even the exact process we use to build the macOS / Windows installers. If there are people doing that, they probably have specific requirements for their own environments anyway. They should definitely vet and consider all the third-party dependencies they're building against.

Sign up for freeto join this conversation on GitHub. Already have an account?Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@hugovk@Yhg1s@LazyDodo@gpshead
[8]ページ先頭
©2009-2025 Movatter.jp