Version 2.10.6-1 of pydantic is marked for autoremoval from testing on Sat 10 May 2025. It depends (transitively) on pydantic-core, affected by #1101417. You should try to prevent the removal by fixing these RC bugs.
A new upstream version 2.11.3 is available, you should consider packaging it.
debian/patches: 1 patch with invalid metadata, 1 patch to forward upstream
high
Among the 2 debian patches
available in version 2.10.6-2 of the package,
we noticed the following issues:
1 patch with
invalid metadata that ought to be fixed.
1 patch
where the metadata indicates that the patch has not yet been forwarded
upstream. You should either forward the patch upstream or update the
metadata to document its real status.
The package has not entered testing even though the delay is over
normal
The package has not entered testing even though the 2-day delay is over.Check why.
1 issue left for the package maintainer to handle:
CVE-2024-3772:
(needs triaging)
Regular expression denial of service in Pydanic < 2.4.0, < 1.10.13 allows remote attackers to cause denial of service via a crafted email string.
![[bug history graph]](https://qa.debian.org/data/bts/graphs/p/pydantic.png){kind=link}