Skip to content

build(deps): bump flare-capa from 9.3.1 to 9.4.0 in /requirements#3672

Open
dependabot[bot] wants to merge 1 commit intodevelopfrom
dependabot/pip/requirements/develop/flare-capa-9.4.0
Open

build(deps): bump flare-capa from 9.3.1 to 9.4.0 in /requirements#3672
dependabot[bot] wants to merge 1 commit intodevelopfrom
dependabot/pip/requirements/develop/flare-capa-9.4.0

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Apr 28, 2026

Bumps flare-capa from 9.3.1 to 9.4.0.

Release notes

Sourced from flare-capa's releases.

v9.4.0

This release includes Ghidra PyGhidra support, performance improvements, dependency updates, and 26 new rules. We'd like to thank the following contributors: @​devs6186, Daniel Adeboye (@​adeboyedn), Aditya Pandey (@​EclipseAditya), aryanyk, Ben Knutson (@​blenbot), @​cosmoworker, kamran ul haq (@​kami922), @​Maijin, @​res2500, and others!

New Features

Breaking Changes

New Rules (26)

Bug Fixes

  • main: suggest --os flag in unsupported OS error message to help users override ELF OS detection @​devs6186 #2577
  • render: escape sample-controlled strings before passing to Rich to prevent MarkupError @​devs6186 #2699
  • rules: handle empty or invalid YAML documents gracefully in Rule.from_yaml and get_rules @​devs6186 #2900
  • Fixed insecure deserialization vulnerability in YAML loading @​0x1622 (#2770)
  • loader: gracefully handle ELF files with unsupported architectures kamranulhaq2002@gmail.com #2800
  • loader: handle SegmentationViolation for malformed ELF files @​kami922 #2799
  • lint: disable rule caching during linting @​Maijin #2817
  • vmray: skip processes with invalid PID or missing filename @​EclipseAditya #2807
  • features: fix Regex.get_value_str() returning escaped pattern instead of raw regex @​EclipseAditya #1909
  • render: use default styling for dynamic -vv API/call details so they are easier to see @​devs6186 #1865

... (truncated)

Changelog

Sourced from flare-capa's changelog.

v9.4.0

This release includes Ghidra PyGhidra support, performance improvements, dependency updates, and 26 new rules. We'd like to thank the following contributors: @​0x1622, Daniel Adeboye (@​adeboyedn), Aditya Pandey (@​EclipseAditya), aryanyk, Ben Knutson (@​blenbot), @​cosmoworker, @​devs6186, @​doomedraven, kamran ul haq (@​kami922), @​Maijin, @​res2500, and others!

New Features

Breaking Changes

New Rules (26)

Bug Fixes

... (truncated)

Commits
  • 7a79f79 Merge pull request #2982 from mandiant/fix/workflow-zip-env
  • 4e4e163 ci: fix ZIP_NAME environment variable in build workflow
  • 3276e35 Prepare release v9.4.0 (#2981)
  • d9b05ed Sync capa rules submodule
  • c5fd75f build(deps): bump pyasn1 from 0.5.1 to 0.6.3 (#2939)
  • b82c07d Merge pull request #2980 from mandiant/dependabot/pip/pygments-2.20.0
  • 0933594 build(deps): bump pygments from 2.19.1 to 2.20.0
  • db84b2c Merge pull request #2978 from mandiant/dependabot/pip/pygithub-2.9.0
  • 693233e Merge pull request #2977 from mandiant/dependabot/pip/types-requests-2.33.0.2...
  • 66a26d0 build(deps): bump pygments from 2.18.0 to 2.20.0 in /web/rules (#2979)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
build(deps): bump flare-capa from 9.3.1 to 9.4.0 in /requirements
3df3813 
Bumps [flare-capa](https://github.com/mandiant/capa) from 9.3.1 to 9.4.0.
- [Release notes](https://github.com/mandiant/capa/releases)
- [Changelog](https://github.com/mandiant/capa/blob/master/CHANGELOG.md)
- [Commits](mandiant/capa@v9.3.1...v9.4.0)

---
updated-dependencies:
- dependency-name: flare-capa
  dependency-version: 9.4.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Apr 28, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python Pull requests that update Python code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants