CVS commit: pkgsrc/security/py-pip-audit

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: pkgsrc/security/py-pip-audit
From: "Adam Ciarcinski" <adam%netbsd.org@localhost>
Date: Tue, 2 Dec 2025 13:02:54 +0000

Module Name:    pkgsrc
Committed By:   adam
Date:           Tue Dec  2 13:02:54 UTC 2025

Modified Files:
        pkgsrc/security/py-pip-audit: Makefile PLIST distinfo

Log Message:
py-pip-audit: updated to 2.10.0

2.10.0

Added

pip-audit now supports the --osv-url URL flag, which can be used to
retrieve vulnerabilities from a custom OSV service. This is useful for
organizations that host their own mirror of the OSV database, or that
have custom OSV records

pip-audit now supports the Ecosyste.ms vulnerability service with
--vulnerability-service=esms

Changed

The minimum version of Python is now 3.10

Fixed

Fixed a bug where pip-audit would fail to parse pyproject.toml files
containing TOML 1.0.0 features

CycloneDX JSON/XML output now correctly links vulnerabilities to their
affected components via the affects field


To generate a diff of this commit:
cvs rdiff -u -r1.41 -r1.42 pkgsrc/security/py-pip-audit/Makefile
cvs rdiff -u -r1.11 -r1.12 pkgsrc/security/py-pip-audit/PLIST
cvs rdiff -u -r1.33 -r1.34 pkgsrc/security/py-pip-audit/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Modified files:

Index: pkgsrc/security/py-pip-audit/Makefile
diff -u pkgsrc/security/py-pip-audit/Makefile:1.41 pkgsrc/security/py-pip-audit/Makefile:1.42
--- pkgsrc/security/py-pip-audit/Makefile:1.41  Sun Apr 20 21:12:57 2025
+++ pkgsrc/security/py-pip-audit/Makefile       Tue Dec  2 13:02:54 2025
@@ -1,6 +1,6 @@
-# $NetBSD: Makefile,v 1.41 2025/04/20 21:12:57 wiz Exp $
+# $NetBSD: Makefile,v 1.42 2025/12/02 13:02:54 adam Exp $
 
-DISTNAME=      pip_audit-2.9.0
+DISTNAME=      pip_audit-2.10.0
 PKGNAME=       ${PYPKGPREFIX}-${DISTNAME:S/_/-/}
 CATEGORIES=    security python
 MASTER_SITES=  ${MASTER_SITE_PYPI:=p/pip-audit/}
@@ -19,7 +19,8 @@ DEPENDS+=     ${PYPKGPREFIX}-pip-requirement
 DEPENDS+=      ${PYPKGPREFIX}-platformdirs>=4.2.0:../../misc/py-platformdirs
 DEPENDS+=      ${PYPKGPREFIX}-requests>=2.31.0:../../devel/py-requests
 DEPENDS+=      ${PYPKGPREFIX}-rich>=12.4:../../comms/py-rich
-DEPENDS+=      ${PYPKGPREFIX}-toml>=0.10:../../textproc/py-toml
+DEPENDS+=      ${PYPKGPREFIX}-tomli>=2.2.1:../../textproc/py-tomli
+DEPENDS+=      ${PYPKGPREFIX}-tomli_w>=1.2.0:../../textproc/py-tomli_w
 
 USE_LANGUAGES= # none
 

Index: pkgsrc/security/py-pip-audit/PLIST
diff -u pkgsrc/security/py-pip-audit/PLIST:1.11 pkgsrc/security/py-pip-audit/PLIST:1.12
--- pkgsrc/security/py-pip-audit/PLIST:1.11     Sun Apr 20 21:12:57 2025
+++ pkgsrc/security/py-pip-audit/PLIST  Tue Dec  2 13:02:54 2025
@@ -1,4 +1,4 @@
-@comment $NetBSD: PLIST,v 1.11 2025/04/20 21:12:57 wiz Exp $
+@comment $NetBSD: PLIST,v 1.12 2025/12/02 13:02:54 adam Exp $
 bin/pip-audit-${PYVERSSUFFIX}
 ${PYSITELIB}/${WHEEL_INFODIR}/METADATA
 ${PYSITELIB}/${WHEEL_INFODIR}/RECORD
@@ -62,6 +62,9 @@ ${PYSITELIB}/pip_audit/_format/markdown.
 ${PYSITELIB}/pip_audit/_service/__init__.py
 ${PYSITELIB}/pip_audit/_service/__init__.pyc
 ${PYSITELIB}/pip_audit/_service/__init__.pyo
+${PYSITELIB}/pip_audit/_service/esms.py
+${PYSITELIB}/pip_audit/_service/esms.pyc
+${PYSITELIB}/pip_audit/_service/esms.pyo
 ${PYSITELIB}/pip_audit/_service/interface.py
 ${PYSITELIB}/pip_audit/_service/interface.pyc
 ${PYSITELIB}/pip_audit/_service/interface.pyo

Index: pkgsrc/security/py-pip-audit/distinfo
diff -u pkgsrc/security/py-pip-audit/distinfo:1.33 pkgsrc/security/py-pip-audit/distinfo:1.34
--- pkgsrc/security/py-pip-audit/distinfo:1.33  Sun Apr 20 21:12:57 2025
+++ pkgsrc/security/py-pip-audit/distinfo       Tue Dec  2 13:02:54 2025
@@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.33 2025/04/20 21:12:57 wiz Exp $
+$NetBSD: distinfo,v 1.34 2025/12/02 13:02:54 adam Exp $
 
-BLAKE2s (pip_audit-2.9.0.tar.gz) = 3270dc949a342b94ff8bd550589b3772fa64cd37ec8306398ffe2b3452a4b278
-SHA512 (pip_audit-2.9.0.tar.gz) = 81b6a801ffad1427a790bc6d065d04a84844a97654d5246bbd98d6d8a2c51061341bb32b35d85fe26174fcef0018fe2b5bfd3ce36d97e8739249aeae999fbc8d
-Size (pip_audit-2.9.0.tar.gz) = 52089 bytes
+BLAKE2s (pip_audit-2.10.0.tar.gz) = 75d07a894ef6c0f2a80bf07baeedb6e73656d6f9d7752412078e146523fd761a
+SHA512 (pip_audit-2.10.0.tar.gz) = ad4c308528589b5a665ca55e95ac27a1bc6c05da5ffcc223bb7449f6de1807eaae26ce86a4f4f69dd748c3d82b891c7cdc0884ab3f8c90373a85a21d3ee7bb9b
+Size (pip_audit-2.10.0.tar.gz) = 53776 bytes

Prev by Date: CVS commit: pkgsrc/net/haproxy
Next by Date: CVS commit: pkgsrc/doc
Previous by Thread: CVS commit: pkgsrc/net/haproxy
Next by Thread: CVS commit: pkgsrc/doc
Indexes:

Home | Main Index | Thread Index | Old Index