python-pillow/Pillow
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
20,713 Commits 55 Branches 98 Tags 251 MiB
main
Commit Graph

514 Commits

Author SHA1 Message Date
Jeffrey 'Alex' Clark
0cb00acc92 Update docs/handbook/security.rst 
Co-authored-by: Andrew Murray <3112309+radarhere@users.noreply.github.com>
 2026-04-22 12:32:08 -04:00
Jeffrey 'Alex' Clark
da06640873 docs: fix nested inline markup in E-3 and E-4 headings 
RST does not allow inline markup (backticks) nested inside bold
markers. Remove backticks from the E-3 and E-4 heading text so
they render correctly.

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
 2026-04-21 11:58:06 -04:00
Jeffrey 'Alex' Clark
d3b73ea462
Update docs/handbook/security.rst 
Co-authored-by: Andrew Murray <3112309+radarhere@users.noreply.github.com>
 2026-04-21 11:33:48 -04:00
Jeffrey 'Alex' Clark
5af49b380e docs: address Andrew's review comments on security.rst 
- Add image.getexif() alongside image._getexif() in T-1 mitigations
- Remove 'appended bytes' from T-2 (Pillow does not preserve them on resave)
- Reframe R-1 threat as user-facing (not Pillow dev advice); add
  DecompressionBombError to the log/alert list
- Add blank line before E-3 heading
- Qualify dependency list in recommendation #4 as non-exhaustive

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
 2026-04-21 11:32:36 -04:00
Jeffrey 'Alex' Clark
1f026416f9
Update docs/handbook/security.rst 
Co-authored-by: Andrew Murray <3112309+radarhere@users.noreply.github.com>
 2026-04-21 11:23:54 -04:00
Jeffrey 'Alex' Clark
114e4d5695 docs: list all 8 C extensions in security threat model diagram 
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
 2026-04-21 11:22:58 -04:00
Jeffrey 'Alex' Clark
2911422753 s/littlecms/littlecms2/ 2026-04-21 11:11:00 -04:00
Jeffrey 'Alex' Clark
13433dc0a9 Update docs/handbook/security.rst 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
 2026-04-21 11:10:19 -04:00
Jeffrey 'Alex' Clark
74e07b5b8a Lint 2026-04-16 06:48:09 -04:00
Jeffrey 'Alex' Clark
07b20b3b33 Remove Sensitive exception messages 2026-04-16 06:45:55 -04:00
Jeffrey 'Alex' Clark
0c0bdf8d5a Update security docs 
- docs/handbook/security.rst
- .github/SECURITY.md

Co-authored-by: Andrew Murray <3112309+radarhere@users.noreply.github.com>
 2026-04-15 13:07:37 -04:00
Jeffrey 'Alex' Clark
b300e78838 Update docs/handbook/security.rst 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
 2026-04-15 13:07:30 -04:00
Jeffrey 'Alex' Clark
b71b4b98d9 Lint 2026-04-14 19:56:59 -04:00
Jeffrey 'Alex' Clark
9f24881521 Add STRIDE threat model to security docs 
- Update .github/SECURITY.md with threat model summary and link to handbook
- Add docs/handbook/security.rst with full STRIDE analysis (14 threats
  across Spoofing, Tampering, Repudiation, Information Disclosure,
  Denial of Service, and Elevation of Privilege categories)
- Add prioritised mitigation recommendations
- Link security.rst into the handbook toctree

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
 2026-04-14 12:13:45 -04:00
Gareth Davidson
2696e962c2
Add loader plugins: AMOS abk, Atari Degas, 40+ more obscure formats via Netpbm (#9482) 
Co-authored-by: Hugo van Kemenade <1324225+hugovk@users.noreply.github.com>
 2026-03-31 23:03:12 +03:00
Gareth Davidson
3a44ba1c75
Add Amiga Workbench .info loader to 3rd party plugins list (#9459) 2026-03-14 09:42:15 +11:00
Andrew Murray
f71d74eec2
Use versionadded 
Co-authored-by: Hugo van Kemenade <1324225+hugovk@users.noreply.github.com>
 2026-02-13 18:29:41 +11:00
Andrew Murray
657d0414f0 Merge PFM into PPM 2026-02-12 21:51:01 +11:00
Andrew Murray
2d589107fb Specify APNG duration type when opening 2026-01-02 03:49:56 +11:00
Andrew Murray
91f219fdcf Support saving float durations 2026-01-01 17:32:59 +11:00
Andrew Murray
b07dbc167c Fixed typo 2025-08-06 08:17:09 +10:00
Andrew Murray
4cfef00574 Added "Colors" to concepts 2025-07-08 06:37:03 +10:00
Kylian Ronfleux--Corail
be2b4e7864
Fix qtables and quality scaling (#8879) 
Co-authored-by: Andrew Murray <radarhere@users.noreply.github.com>
 2025-06-30 20:46:40 +10:00
Hugo van Kemenade
3d21c16977
Improve reading XPM images (#8874) 2025-06-27 17:53:34 +03:00
thisismypassport
ef0bab0c65
Support writing QOI images (#9007) 
Co-authored-by: Andrew Murray <radarhere@users.noreply.github.com>
 2025-06-19 18:16:26 +10:00
Andrew Murray
58e48745cc
Add list of third-party plugins (#8910) 
Co-authored-by: Hugo van Kemenade <1324225+hugovk@users.noreply.github.com>
 2025-04-21 12:14:08 +03:00
Hugo van Kemenade
348589a367
Docs: use sentence case for headers (#8914) 
Co-authored-by: Andrew Murray <3112309+radarhere@users.noreply.github.com>
 2025-04-21 19:03:31 +10:00
Andrew Murray
cf48bbf0c4 Removed indentation from list 2025-04-19 20:26:03 +10:00
Jeffrey A. Clark
8b1777b999 Move XV Thumbnails to read only section 2025-04-14 14:51:01 -04:00
Hugo van Kemenade
7a0092f207 Remove incomplete 11.2.0 release, bill as 11.2.1 instead 2025-04-12 18:56:38 +03:00
Andrew Murray
395bd6bd12 Allow more than 256 colours 2025-04-10 18:57:58 +10:00
Frankie Dintino
7d50816f0a
Add AVIF plugin (decoder + encoder using libavif) (#5201) 
Co-authored-by: Andrew Murray <3112309+radarhere@users.noreply.github.com>
Co-authored-by: Hugo van Kemenade <1324225+hugovk@users.noreply.github.com>
 2025-04-01 07:13:21 +03:00
Andrew Murray
10ccbd7788
If append_images is populated, default save_all to True (#8781) 
Co-authored-by: Andrew Murray <radarhere@users.noreply.github.com>
 2025-03-27 18:01:09 +02:00
Andrew Murray
700d36f2d2 Added release notes for #8807 2025-03-20 00:11:18 +11:00
Andrew Murray
7b725a8fc4 DXT3 images are read in RGBA mode 2025-03-15 13:04:26 +11:00
Hugo van Kemenade
00593ff3f8
Merge pull request #8780 from radarhere/save_all 
Allow encoderconfig and encoderinfo to be set for appended TIFF images
 2025-03-05 18:04:28 +02:00
Andrew Murray
c60682af67 JPEG comments are from the COM marker 2025-03-02 22:34:58 +11:00
Andrew Murray
5c93145061 Allow encoderconfig and encoderinfo to be set for appended TIFF images 2025-02-28 22:16:52 +11:00
Hugo van Kemenade
1e574e6f8b Replace slice and comparison with startswith 2025-02-17 23:39:33 +02:00
Andrew Murray
1de617fbe7 Added release notes 2024-12-31 11:13:14 +11:00
Andrew Murray
8bdcadcbe9 Renamed argument to big_tiff 2024-12-31 10:16:00 +11:00
Andrew Murray
2ac383028a Allow saving as BigTIFF 2024-12-31 01:26:13 +11:00
Andrew Murray
9bebecf36d Use versionadded 2024-12-28 22:18:02 +11:00
Andrew Murray
0220b025c5 Updated documentation for #7947 and #8592 2024-12-28 12:33:59 +11:00
Hugo van Kemenade
c5474ed433 Replace python-pillow.org with python-pillow.github.io 2024-12-06 20:26:07 +02:00
Andrew Murray
e1f4b5a68f Move MPO into "Fully supported formats" 2024-10-26 15:10:41 +11:00
Andrew Murray
a6f5f4dd43 Deprecate setting size to (width, height, scale) 2024-09-06 11:42:56 +10:00
Andrew Murray
e625f73119 Added scale argument to IcnsImageFile load() 2024-09-06 11:40:45 +10:00
Andrew Murray
d4c72da6b2 Added type hints to example code 2024-08-15 14:10:31 +10:00
Aleksandr Karpinskii
6180abc75c Remove WebP versions notes from docs 2024-08-13 09:34:49 +04:00