Skip to content

chore(deps): bump matplotlib from 3.10.8 to 3.10.9#90

Merged
Lucia-Poma merged 1 commit into
mainfrom
dependabot/uv/matplotlib-3.10.9
May 8, 2026
Merged

chore(deps): bump matplotlib from 3.10.8 to 3.10.9#90
Lucia-Poma merged 1 commit into
mainfrom
dependabot/uv/matplotlib-3.10.9

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github May 4, 2026

Copy link
Copy Markdown
Contributor

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.


Bumps matplotlib from 3.10.8 to 3.10.9.

Release notes

Sourced from matplotlib's releases.

v3.10.9

This is a micro release of the v3.10.x series. Highlights of this release include:

  • Various minor bug and doc fixes
  • Security hardening validation of cyclers - Removing eval usage
  • Security hardening in Latex and PS calls - Removing shell escapes
Commits
  • dd8d78b REL: v3.10.9
  • 2fb1891 REL: Release prep v3.10.9
  • d0e923a Merge branch 'v3.10.8-doc' into v3.10.x
  • 1637932 Merge pull request #31558 from meeseeksmachine/auto-backport-of-pr-31556-on-v...
  • a83faac Backport PR #31556: FIX: Inverted PyErr_Occurred check in enum type caster (_...
  • a4f57ab Merge pull request #31545 from ksunden/backport-of-pr-31282-on-v3.10.x
  • 063288d Merge pull request #31544 from ksunden/backport-of-pr-31248-on-v3.10.x
  • b2ed196 Backport PR #31248: SEC: Remove eval() from validate_cycler
  • acc6024 Merge pull request #31282 from scottshambaugh/tex_no_shell
  • e3fb541 Merge pull request #31078 from meeseeksmachine/auto-backport-of-pr-31075-on-v...
  • Additional commits viewable in compare view

@dependabot @github

dependabot Bot commented on behalf of github May 4, 2026

Copy link
Copy Markdown
Contributor Author

Labels

The following labels could not be found: python. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

@dependabot dependabot Bot force-pushed the dependabot/uv/matplotlib-3.10.9 branch from d11fde9 to 07fd96f Compare May 8, 2026 16:17
Bumps [matplotlib](https://github.com/matplotlib/matplotlib) from 3.10.8 to 3.10.9.
- [Release notes](https://github.com/matplotlib/matplotlib/releases)
- [Commits](matplotlib/matplotlib@v3.10.8...v3.10.9)

---
updated-dependencies:
- dependency-name: matplotlib
  dependency-version: 3.10.9
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/uv/matplotlib-3.10.9 branch from 07fd96f to 99f12fe Compare May 8, 2026 16:22
@Lucia-Poma Lucia-Poma merged commit 7dd6df2 into main May 8, 2026
12 of 13 checks passed
@Lucia-Poma Lucia-Poma deleted the dependabot/uv/matplotlib-3.10.9 branch May 8, 2026 16:25
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant