Workflow

Cairosvg

Latest version: v2.7.1

Safety actively analyzes 681844 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 1 of 10

2.7.1

====================================

* Don’t draw clipPath when defined after reference
* Handle evenodd fill rule with gradients and patterns
* Fix ratio and clip for "image" tags with no size
* Handle data-URLs in safe mode
* Use f-strings

2.7.0

====================================

**WARNING:** this is a security update.

When processing SVG files, CairoSVG could access other files online, possibly
leading to very long renderings or other security problems.

This feature is now disabled by default. External resources can still be
accessed using the "unsafe" or the "url_fetcher" parameter.

2.6.0

Not secure
====================================

* Drop support of Python 3.5 and 3.6, add support of Python 3.9, 3.10 and 3.11
* Support crispEdges value for text antialiasing
* Don’t crash when including CMYK images
* Only update docstrings when not optimized
* Don’t restore current point after empty paths
* Assume that 1ch equals 0.5em
* Fix various deprecation warnings

2.5.2

Not secure
====================================

* Fix marker path scale

2.5.1

Not secure
====================================

**WARNING:** this is a security update.

When processing SVG files, CairoSVG was using two regular expressions which are
vulnerable to Regular Expression Denial of Service (REDoS).

If an attacker provided a malicious SVG, it could make CairoSVG get stuck
processing the file for a very long time.

Other bug fixes:

* Fix marker positions for unclosed paths
* Follow hint when only output_width or output_height is set
* Handle opacity on raster images
* Don’t crash when use tags reference unknown tags
* Take care of the next letter when A/a is replaced by l
* Fix misalignment in node.vertices

2.5.0

Not secure
====================================

* Drop support of Python 3.5, add support of Python 3.9.
* Add EPS export
* Add background-color, negate-colors, and invert-images options
* Improve support for font weights
* Fix opacity of patterns and gradients
* Support auto-start-reverse value for orient
* Draw images contained in defs
* Add Exif transposition support
* Handle dominant-baseline
* Support transform-origin

Page 1 of 10

Links

Releases

Has known vulnerabilities

Next

© 2024 Safety CLI Cybersecurity Inc. All Rights Reserved.