docs/conf.py | 4 1 + 3 - 0 !
1 file changed, 1 insertion(+), 3 deletions(-)

 docs build use deb_version_upstream

docs/index.rst | 1 0 + 1 - 0 !
1 file changed, 1 deletion(-)

 drop installation from docs contents

setup.py | 1 0 + 1 - 0 !
1 file changed, 1 deletion(-)

 drop pybind11 from setup.py

We are successfully providing pybind11 as a build-dep but ocrmypdf's
setup.py fails to detect it for some reason.

docs/tutorial.rst | 7 0 + 7 - 0 !
1 file changed, 7 deletions(-)

---

src/qpdf/pipeline.cpp | 4 2 + 2 - 0 !
src/qpdf/qpdf_inputsource.h | 3 1 + 2 - 0 !
src/qpdf/utils.cpp | 17 17 + 0 - 0 !
src/qpdf/utils.h | 3 3 + 0 - 0 !
4 files changed, 23 insertions(+), 4 deletions(-)

 fix compatibility with pybind11

src/qpdf/page.cpp | 5 4 + 1 - 0 !
1 file changed, 4 insertions(+), 1 deletion(-)

 fix externalize_inline_images for qpdf 10.1.0

(cherry picked from commit 7ac9b058104219b26747f3fc9761ac6b3c037402)

tests/test_filters.py | 13 6 + 7 - 0 !
1 file changed, 6 insertions(+), 7 deletions(-)

 libqpdf 10.1.0 raises different exception

tests/test_filters.py | 1 0 + 1 - 0 !
1 file changed, 1 deletion(-)

 fix test_tokenfilter_is_abstract

src/pikepdf/_xml.py | 30 30 + 0 - 0 !
src/pikepdf/models/metadata.py | 10 5 + 5 - 0 !
tests/test_metadata.py | 24 24 + 0 - 0 !
3 files changed, 59 insertions(+), 5 deletions(-)

 fix xxe vulnerability in xmp metadata parsing

For details:
https://portswigger.net/web-security/xxe

Reported by: Eric Therond eric.therond@sonarsource.com) of Sonarsource (https://www.sonarsource.com/)

(cherry picked from commit 3f38f73218e5e782fe411ccbb3b44a793c0b343a)