Skip to content

chore(deps): bump pypdf from 6.11.0 to 6.13.0#67

Merged
nelsonduarte merged 1 commit into
mainfrom
dependabot/pip/pypdf-6.12.2
Jun 5, 2026
Merged

chore(deps): bump pypdf from 6.11.0 to 6.13.0#67
nelsonduarte merged 1 commit into
mainfrom
dependabot/pip/pypdf-6.12.2

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 27, 2026
edited
Loading

Bumps pypdf from 6.11.0 to 6.13.0.

Release notes

Sourced from pypdf's releases.

Version 6.13.0, 2026-06-05

What's new

Security (SEC)

New Features (ENH)

Robustness (ROB)

Maintenance (MAINT)

Full Changelog

Version 6.12.2, 2026-05-26

What's new

Security (SEC)

Full Changelog

Version 6.12.1, 2026-05-22

What's new

Security (SEC)

Robustness (ROB)

Full Changelog

Version 6.12.0, 2026-05-21

What's new

Security (SEC)

New Features (ENH)

... (truncated)

Changelog

Sourced from pypdf's changelog.

Version 6.13.0, 2026-06-05

Security (SEC)

  • Avoid infinite loops for outlines and text extraction (#3830)

New Features (ENH)

  • Add Japanese predefined CMaps (#3800)
  • Font: Collect all character widths, not only those that can be unicode mapped (#3798)

Robustness (ROB)

  • Recover a corrupt trailing startxref pointer (closes #3238) (#3826)
  • Handle /Pages node without /Kids during flattening (#3825)
  • Accept inline image EI marker at the end of a content stream (#3827)

Maintenance (MAINT)

  • Type the always-raising deprecation helpers as NoReturn (#3819)

Full Changelog

Version 6.12.2, 2026-05-26

Security (SEC)

  • Optimize _decode_png_prediction regarding memory and speed (#3806)
  • Improve loop control in text extraction (#3805)

Full Changelog

Version 6.12.1, 2026-05-22

Security (SEC)

  • Limit input size and element count for XMP metadata (#3796)

Robustness (ROB)

  • Prevent cyclic parent hierarchies for inherited dictionaries (#3795)
  • Deal with invalid first code in LZW decoder (#3794)

Full Changelog

Version 6.12.0, 2026-05-21

Security (SEC)

  • Disallow cross-reference streams with zero-only width values (#3791)
  • Avoid excessive whitespace in layout mode text extraction (#3790)

New Features (ENH)

  • Implement SASLprep (RFC 4013) for AES-256 password normalization (#3780)
  • CID font resource from font file to encode more characters (#3652)

Performance Improvements (PI)

  • Optimize retrieval of named destinatinos in reader (#3442)

... (truncated)

Commits
  • 98afb45 REL: 6.13.0
  • 68822de SEC: Avoid infinite loops for outlines and text extraction (#3830)
  • ddd3485 ROB: Recover a corrupt trailing startxref pointer (closes #3238) (#3826)
  • 5cebe5e ROB: Handle /Pages node without /Kids during flattening (#3825)
  • be173fe ROB: Accept inline image EI marker at the end of a content stream (#3827)
  • e0d443c ROB: Handle object numbers above 2**31 in _make_crypt_filter (#3824)
  • dad0f5e ROB: Stop reading past truncated /Nums in get_label_from_nums (#3823)
  • 52545c5 ROB: Pad truncated data in bits2byte instead of reading out of bounds (#3820)
  • 56e0784 ENH: Add Japanese predefined CMaps (#3800)
  • 0d048ee MAINT: Add ABC as a base class (#3818)
  • Additional commits viewable in compare view

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python Pull requests that update python code labels May 27, 2026
@dependabot dependabot Bot changed the title chore(deps): bump pypdf from 6.11.0 to 6.12.2 chore(deps): bump pypdf from 6.11.0 to 6.13.0 Jun 5, 2026
@dependabot dependabot Bot force-pushed the dependabot/pip/pypdf-6.12.2 branch from dd543ec to 395d4af Compare June 5, 2026 19:46
@dependabot
chore(deps): bump pypdf from 6.11.0 to 6.13.0
11d89b5 
Bumps [pypdf](https://github.com/py-pdf/pypdf) from 6.11.0 to 6.13.0.
- [Release notes](https://github.com/py-pdf/pypdf/releases)
- [Changelog](https://github.com/py-pdf/pypdf/blob/main/CHANGELOG.md)
- [Commits](py-pdf/pypdf@6.11.0...6.13.0)

---
updated-dependencies:
- dependency-name: pypdf
  dependency-version: 6.12.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/pip/pypdf-6.12.2 branch from 395d4af to 11d89b5 Compare June 5, 2026 19:48
@nelsonduarte nelsonduarte merged commit c35691e into main Jun 5, 2026
2 checks passed
@nelsonduarte nelsonduarte deleted the dependabot/pip/pypdf-6.12.2 branch June 5, 2026 19:48
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python Pull requests that update python code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@nelsonduarte