CVS commit: pkgsrc/security/py-pip-audit

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: pkgsrc/security/py-pip-audit
From: "Adam Ciarcinski" <adam%netbsd.org@localhost>
Date: Thu, 16 Mar 2023 08:48:03 +0000

Module Name:    pkgsrc
Committed By:   adam
Date:           Thu Mar 16 08:48:03 UTC 2023

Modified Files:
        pkgsrc/security/py-pip-audit: Makefile distinfo

Log Message:
py-pip-audit: updated to 2.4.14

2.4.14

Fixed

* Fixed a dependency resolution failure caused by incorrect handling of
  a PEP 440 edge case around prerelease versions

2.4.13

Fixed

* Added a lower bound on `packaging` to ensure that non-normalized versions
  are handled correctly

2.4.12

Fixed

* Fixed `pip-audit`'s virtual environment creation and upgrade behavior,
  preventing spurious vulnerability reports

* Users are now warned if a `pip-audit` invocation is ambiguous, e.g.
  if they've installed `pip-audit` globally but are asking for an audit
  of a loaded virtual environment

2.4.11

Fixed

* Fixed a crash triggered when a package specifies an invalid version
  specifier for its `requires-python` version

2.4.10

Fixed

* Fixed a crash triggered when no vulnerabilities are found with some
  configurations

2.4.9

Fixed

* The `--output` flag will no longer produce an empty file in the event
  of a failure within `pip-audit` itself, making it easier to distinguish
  between audit failures being reported by `pip-audit` and `pip-audit`'s
  own errors

* Removed pin on `packaging` now that our dependency pins it for us

2.4.8

Fixed

* Pin maximum version of `packaging` dependency to avoid installing the new
  22.0 version which is incompatible with `pip-requirements-parser`


To generate a diff of this commit:
cvs rdiff -u -r1.21 -r1.22 pkgsrc/security/py-pip-audit/Makefile
cvs rdiff -u -r1.18 -r1.19 pkgsrc/security/py-pip-audit/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Modified files:

Index: pkgsrc/security/py-pip-audit/Makefile
diff -u pkgsrc/security/py-pip-audit/Makefile:1.21 pkgsrc/security/py-pip-audit/Makefile:1.22
--- pkgsrc/security/py-pip-audit/Makefile:1.21  Wed Nov 30 16:50:27 2022
+++ pkgsrc/security/py-pip-audit/Makefile       Thu Mar 16 08:48:02 2023
@@ -1,6 +1,6 @@
-# $NetBSD: Makefile,v 1.21 2022/11/30 16:50:27 adam Exp $
+# $NetBSD: Makefile,v 1.22 2023/03/16 08:48:02 adam Exp $
 
-DISTNAME=      pip-audit-2.4.7
+DISTNAME=      pip_audit-2.4.14
 PKGNAME=       ${PYPKGPREFIX}-${DISTNAME}
 CATEGORIES=    security python
 # pypi file does not include tests
@@ -19,9 +19,9 @@ TOOL_DEPENDS+=        ${PYPKGPREFIX}-flit_core-
 DEPENDS+=      ${PYPKGPREFIX}-cachecontrol>=0.12.10:../../devel/py-cachecontrol
 DEPENDS+=      ${PYPKGPREFIX}-cyclonedx-python-lib>=2.0.0:../../security/py-cyclonedx-python-lib
 DEPENDS+=      ${PYPKGPREFIX}-html5lib>=1.1:../../textproc/py-html5lib
-DEPENDS+=      ${PYPKGPREFIX}-packaging>=21.0.0:../../devel/py-packaging
+DEPENDS+=      ${PYPKGPREFIX}-packaging>=23.0.0:../../devel/py-packaging
 DEPENDS+=      ${PYPKGPREFIX}-pip-api>=0.0.28:../../devel/py-pip-api
-DEPENDS+=      ${PYPKGPREFIX}-pip-requirements-parser>=31.2.0:../../devel/py-pip-requirements-parser
+DEPENDS+=      ${PYPKGPREFIX}-pip-requirements-parser>=32.0.0:../../devel/py-pip-requirements-parser
 DEPENDS+=      ${PYPKGPREFIX}-resolvelib>=0.8.0:../../devel/py-resolvelib
 DEPENDS+=      ${PYPKGPREFIX}-rich>=12.4:../../comms/py-rich
 DEPENDS+=      ${PYPKGPREFIX}-toml>=0.10:../../textproc/py-toml

Index: pkgsrc/security/py-pip-audit/distinfo
diff -u pkgsrc/security/py-pip-audit/distinfo:1.18 pkgsrc/security/py-pip-audit/distinfo:1.19
--- pkgsrc/security/py-pip-audit/distinfo:1.18  Wed Nov 30 16:50:27 2022
+++ pkgsrc/security/py-pip-audit/distinfo       Thu Mar 16 08:48:02 2023
@@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.18 2022/11/30 16:50:27 adam Exp $
+$NetBSD: distinfo,v 1.19 2023/03/16 08:48:02 adam Exp $
 
-BLAKE2s (pip-audit-2.4.7.tar.gz) = 634e31bc3daab265c0999075c3046439e1d5bfab8aa7464c5c6753795890bcd5
-SHA512 (pip-audit-2.4.7.tar.gz) = 3187fb54e4f19739f8007fd20a0a2a2ebbd015309ec42255eb751579a7cf2809b37974941f8d6c257a0caba2ac3782c60b045025930311d520ae5957995945d2
-Size (pip-audit-2.4.7.tar.gz) = 71553 bytes
+BLAKE2s (pip_audit-2.4.14.tar.gz) = a7bf015e61521f34ecaa49d5f00c2d86d79be58d428c02dd83cc3f0afdf4a2f4
+SHA512 (pip_audit-2.4.14.tar.gz) = c4c21b3b1863c10a7917ab957c646022901e70b5d580c22217cd2b32269380a75ef671cdafea4a941f35e88004a2cd04082defba1d713decb26968ad941cd818
+Size (pip_audit-2.4.14.tar.gz) = 75131 bytes

Prev by Date: CVS commit: pkgsrc/doc
Next by Date: CVS commit: pkgsrc/doc
Previous by Thread: CVS commit: pkgsrc/doc
Next by Thread: CVS commit: pkgsrc/doc
Indexes:

Home | Main Index | Thread Index | Old Index