Skip to content

Bump pikepdf from 5.6.1 to 10.9.1 in /docker/readpdf#5446

Closed
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/pip/docker/readpdf/pikepdf-10.9.1
Closed

Bump pikepdf from 5.6.1 to 10.9.1 in /docker/readpdf#5446
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/pip/docker/readpdf/pikepdf-10.9.1

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 22, 2026

Copy link
Copy Markdown

Bumps pikepdf from 5.6.1 to 10.9.1.

Release notes

Sourced from pikepdf's releases.

v10.9.1

Fixed

  • Fixed a crash (SIGABRT via std::terminate) that could occur when a file-backed {class}pikepdf.Pdf was deallocated while a Python exception was already propagating -- for example when pikepdf.open(filename) appears as a transient element of a list/tuple literal whose later element raises. Opening from a filename closes the file in the input source destructor, which calls back into Python; with an exception already in flight that call raised an error that escaped the destructor. The in-flight exception is now preserved and propagates normally. (#732) Added a guard for a likely non-reproducible related case with DecimalPrecision.

v10.9.0

New features

  • Added {class}pikepdf.JobBuilder, a fluent, Pythonic builder for qpdf jobs. It assembles a job specification with chained, snake_case methods (input, output, encrypt, add_pages, split_pages, linearize, compress, add_attachment, add_overlay, limits, ...) and runs it via the existing {class}pikepdf.Job, without hand-writing qpdf's camelCase job JSON. Encryption permissions are expressed with the familiar {class}pikepdf.Permissions/{class}pikepdf.Encryption models, and a .set(**kwargs) escape hatch reaches any other job option. Additional methods cover image optimization (optimize_images, externalize_inline_images), page/content transforms (flatten_annotations, flatten_rotation, generate_appearances, coalesce_contents, normalize_content), content removal (remove_metadata, remove_info, remove_acroform, remove_structure, remove_page_labels), page labels (set_page_labels), version control (min_version, force_version), and reproducible/inspection helpers (deterministic_id, static_id, check).
  • Exposed several pieces of qpdf functionality that pikepdf had not previously bound:
    • Whole-document qpdf JSON: {meth}pikepdf.Pdf.write_qpdf_json, {meth}pikepdf.Pdf.from_qpdf_json and {meth}pikepdf.Pdf.update_from_qpdf_json serialize and reconstruct an entire PDF as qpdf JSON (the qpdf --json-output/--json-input format, version 2). This complements the existing object-level {meth}pikepdf.Object.to_json. Added {class}pikepdf.JSONStreamData to control how stream data is represented.
    • {meth}pikepdf.Pdf.get_xref_table returns the cross-reference table as structured data ({class}pikepdf.XrefEntry), complementing the print-only {meth}pikepdf.Pdf.show_xref_table.
    • {meth}pikepdf.Pdf.fix_dangling_references repairs references to objects that are not present in the file.
    • {meth}pikepdf.Page.flatten_rotation bakes a page's /Rotate value into its content stream.
    • {meth}pikepdf.Page.copy_annotations copies annotations (and associated form fields) from another page, applying a transformation matrix.

... (truncated)

Commits
  • 1cf65a1 Bump version: v10.9.1
  • b4fe173 harden: guard DecimalPrecision destructor against exception escape
  • 3634333 fix: prevent SIGABRT when Pdf is freed during exception unwind (#732)
  • 367702e Bump version: v10.9.0
  • 594a61f Update uv.lock (pyjwt security advisory)
  • 355c611 docs: document reordering pages without breaking links (#192)
  • d916070 docs: clarify AcroFormField.is_checked divergence from qpdf, add test
  • 5a7fe1c refactor: adopt newer qpdf convenience APIs in C++ layer
  • d4c846b Merge branch 'feature/named-dest-migration'
  • 722465b fix: bump QPDF_MIN_VERSION to 12.3.2 to fix sdist build
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [pikepdf](https://github.com/pikepdf/pikepdf) from 5.6.1 to 10.9.1.
- [Release notes](https://github.com/pikepdf/pikepdf/releases)
- [Commits](pikepdf/pikepdf@v5.6.1...v10.9.1)

---
updated-dependencies:
- dependency-name: pikepdf
  dependency-version: 10.9.1
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python Pull requests that update python code labels Jun 22, 2026
@dependabot @github

dependabot Bot commented on behalf of github Jul 10, 2026

Copy link
Copy Markdown
Author

Superseded by #5455.

@dependabot dependabot Bot closed this Jul 10, 2026
@dependabot dependabot Bot deleted the dependabot/pip/docker/readpdf/pikepdf-10.9.1 branch July 10, 2026 11:13
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file python Pull requests that update python code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants