Bump wagtail from 7.2 to 7.2.2 #47

Merged

dependabot[bot] merged 1 commit from dependabot/uv/wagtail-7.2.2 into master

2026-02-16 22:31:15 +00:00

dependabot[bot] commented

2026-02-16 22:28:57 +00:00

(Migrated from github.com)

Bumps wagtail from 7.2 to 7.2.2.

Release notes

Sourced from wagtail's releases.

7.2.2

Fix: Prevent conflicting IDs in nested StructBlocks with blocks named content (Sage Abdullah, Serkan Korkusuz)

Fix: CVE-2026-25517: Improper permission handling on admin preview endpoints (thxtech, Matt Westcott, Jake Howard)

7.2.1

Fix: Allow userbar in page previews to render without needing to configure site record (Sage Abdullah)

Fix: Disable usage count ordering when searching on documents and images listing views, to prevent unsupported search query (Sage Abdullah)

Fix: Do not replace existing document or image title when uploading a new file (Sage Abdullah)

Fix: Use a more efficient query for fetching usage counts on image and document listings when not ordering by usage count (Sage Abdullah)

Fix: Add composite indexes to improve reference index performance (Sage Abdullah)

Maintenance: Remove use of _WAGTAILSEARCH_FORCE_AUTO_UPDATE in search tests (Matt Westcott)

Changelog

Sourced from wagtail's changelog.

7.2.2 (03.02.2026)
 * Fix: Prevent conflicting IDs in nested `StructBlock`s with blocks named `content` (Sage Abdullah, Serkan Korkusuz)
 * Fix: CVE-2026-25517: Improper permission handling on admin preview endpoints (thxtech, Matt Westcott, Jake Howard)
7.2.1 (26.11.2025)
Fix: Allow userbar in page previews to render without needing to configure site record (Sage Abdullah)

Fix: Disable usage count ordering when searching on documents and images listing views, to prevent unsupported search query (Sage Abdullah)

Fix: Do not replace existing document or image title when uploading a new file (Sage Abdullah)

Fix: Use a more efficient query for fetching usage counts on image and document listings when not ordering by usage count (Sage Abdullah)

Fix: Add composite indexes to improve reference index performance (Sage Abdullah)

Maintenance: Remove use of _WAGTAILSEARCH_FORCE_AUTO_UPDATE in search tests (Matt Westcott)

Commits

e1e1783 Version bump to 7.2.2
4fa8b5d Fill in release date for 7.2.2
1354600 Release note for CVE-2026-25517 in 7.2.2
ff16b5b Fill in release date for 7.1.3
63f186e Release note for CVE-2026-25517 in 7.1.3
245d4f9 Fill in release date for 7.0.4
3e6e68c Release note for CVE-2026-25517 in 7.0.4
a601cc4 Fill in release date for 6.3.6
fa33bea Release note for CVE-2026-25517 in 6.3.6
5f09b6d Apply permission checks to page, snippet and site setting preview endpoints
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the Security Alerts page.

Bumps [wagtail](https://github.com/wagtail/wagtail) from 7.2 to 7.2.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/wagtail/wagtail/releases">wagtail's releases</a>.</em></p> <blockquote> <h2>7.2.2</h2> <ul> <li>Fix: Prevent conflicting IDs in nested <code>StructBlock</code>s with blocks named <code>content</code> (Sage Abdullah, Serkan Korkusuz)</li> <li>Fix: CVE-2026-25517: Improper permission handling on admin preview endpoints (thxtech, Matt Westcott, Jake Howard)</li> </ul> <h2>7.2.1</h2> <ul> <li>Fix: Allow userbar in page previews to render without needing to configure site record (Sage Abdullah)</li> <li>Fix: Disable usage count ordering when searching on documents and images listing views, to prevent unsupported search query (Sage Abdullah)</li> <li>Fix: Do not replace existing document or image title when uploading a new file (Sage Abdullah)</li> <li>Fix: Use a more efficient query for fetching usage counts on image and document listings when not ordering by usage count (Sage Abdullah)</li> <li>Fix: Add composite indexes to improve reference index performance (Sage Abdullah)</li> <li>Maintenance: Remove use of <code>_WAGTAILSEARCH_FORCE_AUTO_UPDATE</code> in search tests (Matt Westcott)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/wagtail/wagtail/blob/main/CHANGELOG.txt">wagtail's changelog</a>.</em></p> <blockquote> <p>7.2.2 (03.02.2026)</p> <pre><code> * Fix: Prevent conflicting IDs in nested `StructBlock`s with blocks named `content` (Sage Abdullah, Serkan Korkusuz) * Fix: CVE-2026-25517: Improper permission handling on admin preview endpoints (thxtech, Matt Westcott, Jake Howard) <p>7.2.1 (26.11.2025)<br /> </code></pre></p> <ul> <li>Fix: Allow userbar in page previews to render without needing to configure site record (Sage Abdullah)</li> <li>Fix: Disable usage count ordering when searching on documents and images listing views, to prevent unsupported search query (Sage Abdullah)</li> <li>Fix: Do not replace existing document or image title when uploading a new file (Sage Abdullah)</li> <li>Fix: Use a more efficient query for fetching usage counts on image and document listings when not ordering by usage count (Sage Abdullah)</li> <li>Fix: Add composite indexes to improve reference index performance (Sage Abdullah)</li> <li>Maintenance: Remove use of <code>_WAGTAILSEARCH_FORCE_AUTO_UPDATE</code> in search tests (Matt Westcott)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/wagtail/wagtail/commit/e1e1783f9cfbe81f80c4f3b6140b0b7cef1a3513"><code>e1e1783</code></a> Version bump to 7.2.2</li> <li><a href="https://github.com/wagtail/wagtail/commit/4fa8b5d76d47f80efd8ddeae6ecc9554fc1581ee"><code>4fa8b5d</code></a> Fill in release date for 7.2.2</li> <li><a href="https://github.com/wagtail/wagtail/commit/13546003e42e2520124e1a8a55743bb1dfc9be36"><code>1354600</code></a> Release note for CVE-2026-25517 in 7.2.2</li> <li><a href="https://github.com/wagtail/wagtail/commit/ff16b5b8cdab3e7654bfe141705b2a6588747d38"><code>ff16b5b</code></a> Fill in release date for 7.1.3</li> <li><a href="https://github.com/wagtail/wagtail/commit/63f186e9d916b4a7f82eac5bae2b15145dc11383"><code>63f186e</code></a> Release note for CVE-2026-25517 in 7.1.3</li> <li><a href="https://github.com/wagtail/wagtail/commit/245d4f94bc96349b6e16f2c4185c85916099076d"><code>245d4f9</code></a> Fill in release date for 7.0.4</li> <li><a href="https://github.com/wagtail/wagtail/commit/3e6e68cb7a700e02036d42a51b18a7b71a41dcd4"><code>3e6e68c</code></a> Release note for CVE-2026-25517 in 7.0.4</li> <li><a href="https://github.com/wagtail/wagtail/commit/a601cc489fd8396ba0c486be2dc353a5fedbc2b8"><code>a601cc4</code></a> Fill in release date for 6.3.6</li> <li><a href="https://github.com/wagtail/wagtail/commit/fa33bea65e37cc003a95cbdd3b1e63bdd2c08043"><code>fa33bea</code></a> Release note for CVE-2026-25517 in 6.3.6</li> <li><a href="https://github.com/wagtail/wagtail/commit/5f09b6da61e779b0e8499bdbba52bf2f7bd3241f"><code>5f09b6d</code></a> Apply permission checks to page, snippet and site setting preview endpoints</li> <li>Additional commits viewable in <a href="https://github.com/wagtail/wagtail/compare/v7.2...v7.2.2">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=wagtail&package-manager=uv&previous-version=7.2&new-version=7.2.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/22mahmoud/mahmoudashraf.dev/network/alerts). </details>

No reviewers

No labels

No milestone

No project

No assignees

1 participant

Notifications

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

mashrafdev/mahmoudashraf.dev!47

No description provided.

Rows
Columns