pkgsrc-Changes-HG archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

[pkgsrc/trunk]: pkgsrc/security/py-itsdangerous Update py-itsdangerous to 1.1.0.



details:   https://anonhg.NetBSD.org/pkgsrc/rev/fcd942b975c6
branches:  trunk
changeset: 387159:fcd942b975c6
user:      kleink <kleink%pkgsrc.org@localhost>
date:      Sat Nov 10 17:27:36 2018 +0000

description:
Update py-itsdangerous to 1.1.0.


Version 1.1.0
-------------

Released 2018-10-26

-   Change default signing algorithm back to SHA-1. (`#113`_)
-   Added a default SHA-512 fallback for users who used the yanked 1.0.0
    release which defaulted to SHA-512. (`#114`_)
-   Add support for fallback algorithms during deserialization to
    support changing the default in the future without breaking existing
    signatures. (`#113`_)
-   Changed capitalization of packages back to lowercase as the change
    in capitalization broke some tooling. (`#113`_)

.. _#113: https://github.com/pallets/itsdangerous/pull/113
.. _#114: https://github.com/pallets/itsdangerous/pull/114


Version 1.0.0
-------------

Released 2018-10-18

YANKED

*Note*: This release was yanked from PyPI because it changed the default
algorithm to SHA-512. This decision was reverted in 1.1.0 and it remains
at SHA1.

-   Drop support for Python 2.6 and 3.3.
-   Refactor code from a single module to a package. Any object in the
    API docs is still importable from the top-level ``itsdangerous``
    name, but other imports will need to be changed. A future release
    will remove many of these compatibility imports. (`#107`_)
-   Optimize how timestamps are serialized and deserialized. (`#13`_)
-   ``base64_decode`` raises ``BadData`` when it is passed invalid data.
    (`#27`_)
-   Ensure value is bytes when signing to avoid a ``TypeError`` on
    Python 3. (`#29`_)
-   Add a ``serializer_kwargs`` argument to ``Serializer``, which is
    passed to ``dumps`` during ``dump_payload``. (`#36`_)
-   More compact JSON dumps for unicode strings. (`#38`_)
-   Use the full timestamp rather than an offset, allowing dates before
    2011. (`#46`_)
-   Detect a ``sep`` character that may show up in the signature itself
    and raise a ``ValueError``. (`#62`_)
-   Use a consistent signature for keyword arguments for
    ``Serializer.load_payload`` in subclasses. (`#74`_, `#75`_)
-   Change default intermediate hash from SHA-1 to SHA-512. (`#80`_)
-   Convert JWS exp header to an int when loading. (`#99`_)

.. _#13: https://github.com/pallets/itsdangerous/pull/13
.. _#27: https://github.com/pallets/itsdangerous/pull/27
.. _#29: https://github.com/pallets/itsdangerous/issues/29
.. _#36: https://github.com/pallets/itsdangerous/pull/36
.. _#38: https://github.com/pallets/itsdangerous/issues/38
.. _#46: https://github.com/pallets/itsdangerous/issues/46
.. _#62: https://github.com/pallets/itsdangerous/issues/62
.. _#74: https://github.com/pallets/itsdangerous/issues/74
.. _#75: https://github.com/pallets/itsdangerous/pull/75
.. _#80: https://github.com/pallets/itsdangerous/pull/80
.. _#99: https://github.com/pallets/itsdangerous/pull/99
.. _#107: https://github.com/pallets/itsdangerous/pull/107

diffstat:

 security/py-itsdangerous/Makefile |   4 ++--
 security/py-itsdangerous/PLIST    |  36 +++++++++++++++++++++++++++++++-----
 security/py-itsdangerous/distinfo |  10 +++++-----
 3 files changed, 38 insertions(+), 12 deletions(-)

diffs (71 lines):

diff -r 35448359928b -r fcd942b975c6 security/py-itsdangerous/Makefile
--- a/security/py-itsdangerous/Makefile Sat Nov 10 16:42:52 2018 +0000
+++ b/security/py-itsdangerous/Makefile Sat Nov 10 17:27:36 2018 +0000
@@ -1,6 +1,6 @@
-# $NetBSD: Makefile,v 1.7 2016/06/08 17:43:38 wiz Exp $
+# $NetBSD: Makefile,v 1.8 2018/11/10 17:27:36 kleink Exp $
 
-DISTNAME=      itsdangerous-0.24
+DISTNAME=      itsdangerous-1.1.0
 PKGNAME=       ${PYPKGPREFIX}-${DISTNAME}
 CATEGORIES=    security python
 MASTER_SITES=  ${MASTER_SITE_PYPI:=i/itsdangerous/}
diff -r 35448359928b -r fcd942b975c6 security/py-itsdangerous/PLIST
--- a/security/py-itsdangerous/PLIST    Sat Nov 10 16:42:52 2018 +0000
+++ b/security/py-itsdangerous/PLIST    Sat Nov 10 17:27:36 2018 +0000
@@ -1,9 +1,35 @@
-@comment $NetBSD: PLIST,v 1.1 2013/06/14 09:41:01 kleink Exp $
+@comment $NetBSD: PLIST,v 1.2 2018/11/10 17:27:36 kleink Exp $
 ${PYSITELIB}/${EGG_INFODIR}/PKG-INFO
 ${PYSITELIB}/${EGG_INFODIR}/SOURCES.txt
 ${PYSITELIB}/${EGG_INFODIR}/dependency_links.txt
-${PYSITELIB}/${EGG_INFODIR}/not-zip-safe
 ${PYSITELIB}/${EGG_INFODIR}/top_level.txt
-${PYSITELIB}/itsdangerous.py
-${PYSITELIB}/itsdangerous.pyc
-${PYSITELIB}/itsdangerous.pyo
+${PYSITELIB}/itsdangerous/__init__.py
+${PYSITELIB}/itsdangerous/__init__.pyo
+${PYSITELIB}/itsdangerous/__init__.pyc
+${PYSITELIB}/itsdangerous/_compat.pyo
+${PYSITELIB}/itsdangerous/_compat.pyc
+${PYSITELIB}/itsdangerous/_json.pyo
+${PYSITELIB}/itsdangerous/_json.pyc
+${PYSITELIB}/itsdangerous/encoding.pyo
+${PYSITELIB}/itsdangerous/encoding.pyc
+${PYSITELIB}/itsdangerous/exc.pyo
+${PYSITELIB}/itsdangerous/exc.pyc
+${PYSITELIB}/itsdangerous/jws.pyo
+${PYSITELIB}/itsdangerous/jws.pyc
+${PYSITELIB}/itsdangerous/serializer.pyo
+${PYSITELIB}/itsdangerous/serializer.pyc
+${PYSITELIB}/itsdangerous/signer.pyo
+${PYSITELIB}/itsdangerous/signer.pyc
+${PYSITELIB}/itsdangerous/timed.pyo
+${PYSITELIB}/itsdangerous/timed.pyc
+${PYSITELIB}/itsdangerous/url_safe.pyo
+${PYSITELIB}/itsdangerous/url_safe.pyc
+${PYSITELIB}/itsdangerous/_compat.py
+${PYSITELIB}/itsdangerous/_json.py
+${PYSITELIB}/itsdangerous/encoding.py
+${PYSITELIB}/itsdangerous/exc.py
+${PYSITELIB}/itsdangerous/jws.py
+${PYSITELIB}/itsdangerous/serializer.py
+${PYSITELIB}/itsdangerous/signer.py
+${PYSITELIB}/itsdangerous/timed.py
+${PYSITELIB}/itsdangerous/url_safe.py
diff -r 35448359928b -r fcd942b975c6 security/py-itsdangerous/distinfo
--- a/security/py-itsdangerous/distinfo Sat Nov 10 16:42:52 2018 +0000
+++ b/security/py-itsdangerous/distinfo Sat Nov 10 17:27:36 2018 +0000
@@ -1,6 +1,6 @@
-$NetBSD: distinfo,v 1.5 2015/11/04 01:18:04 agc Exp $
+$NetBSD: distinfo,v 1.6 2018/11/10 17:27:36 kleink Exp $
 
-SHA1 (itsdangerous-0.24.tar.gz) = 0a6ae9c20cd72e89d75314ebc7b0f390f93e6a0d
-RMD160 (itsdangerous-0.24.tar.gz) = 870c1cef9d39c74f2d376be07b50d0e11f343018
-SHA512 (itsdangerous-0.24.tar.gz) = 2863b6e5fda178db59bd214c6d24d04422c1021bb41bf11598aba1cbc43053aff3bb1e0539940b5769de04b68c03e8bd01d728dcbfc4bd0ba05867688574a297
-Size (itsdangerous-0.24.tar.gz) = 46541 bytes
+SHA1 (itsdangerous-1.1.0.tar.gz) = b79fef5caacdd247f7def3fe59e6def34bc86905
+RMD160 (itsdangerous-1.1.0.tar.gz) = 3a1b71343357fd9cef28039753c78f0bf24d91ff
+SHA512 (itsdangerous-1.1.0.tar.gz) = 61bab3fce5f87a3b5fc8fad61e735a63df6aa039416ee3494e1c99a2a1162b4fb72793bc5dc949de0985724c40121810b159513606c4c3976a7666dba3a1b93d
+Size (itsdangerous-1.1.0.tar.gz) = 53219 bytes



Home | Main Index | Thread Index | Old Index