diff options
author | kleink <kleink@pkgsrc.org> | 2018-11-10 17:27:36 +0000 |
---|---|---|
committer | kleink <kleink@pkgsrc.org> | 2018-11-10 17:27:36 +0000 |
commit | 3f133ec6407e377108bfa6a78848e3ece7e5fe20 (patch) | |
tree | 798564c438b9e9ce68206eed77165085e4309c04 | |
parent | 90935ce525c12d5487caa3097141528325bdae3b (diff) | |
download | pkgsrc-3f133ec6407e377108bfa6a78848e3ece7e5fe20.tar.gz |
Update py-itsdangerous to 1.1.0.
Version 1.1.0
-------------
Released 2018-10-26
- Change default signing algorithm back to SHA-1. (`#113`_)
- Added a default SHA-512 fallback for users who used the yanked 1.0.0
release which defaulted to SHA-512. (`#114`_)
- Add support for fallback algorithms during deserialization to
support changing the default in the future without breaking existing
signatures. (`#113`_)
- Changed capitalization of packages back to lowercase as the change
in capitalization broke some tooling. (`#113`_)
.. _#113: https://github.com/pallets/itsdangerous/pull/113
.. _#114: https://github.com/pallets/itsdangerous/pull/114
Version 1.0.0
-------------
Released 2018-10-18
YANKED
*Note*: This release was yanked from PyPI because it changed the default
algorithm to SHA-512. This decision was reverted in 1.1.0 and it remains
at SHA1.
- Drop support for Python 2.6 and 3.3.
- Refactor code from a single module to a package. Any object in the
API docs is still importable from the top-level ``itsdangerous``
name, but other imports will need to be changed. A future release
will remove many of these compatibility imports. (`#107`_)
- Optimize how timestamps are serialized and deserialized. (`#13`_)
- ``base64_decode`` raises ``BadData`` when it is passed invalid data.
(`#27`_)
- Ensure value is bytes when signing to avoid a ``TypeError`` on
Python 3. (`#29`_)
- Add a ``serializer_kwargs`` argument to ``Serializer``, which is
passed to ``dumps`` during ``dump_payload``. (`#36`_)
- More compact JSON dumps for unicode strings. (`#38`_)
- Use the full timestamp rather than an offset, allowing dates before
2011. (`#46`_)
- Detect a ``sep`` character that may show up in the signature itself
and raise a ``ValueError``. (`#62`_)
- Use a consistent signature for keyword arguments for
``Serializer.load_payload`` in subclasses. (`#74`_, `#75`_)
- Change default intermediate hash from SHA-1 to SHA-512. (`#80`_)
- Convert JWS exp header to an int when loading. (`#99`_)
.. _#13: https://github.com/pallets/itsdangerous/pull/13
.. _#27: https://github.com/pallets/itsdangerous/pull/27
.. _#29: https://github.com/pallets/itsdangerous/issues/29
.. _#36: https://github.com/pallets/itsdangerous/pull/36
.. _#38: https://github.com/pallets/itsdangerous/issues/38
.. _#46: https://github.com/pallets/itsdangerous/issues/46
.. _#62: https://github.com/pallets/itsdangerous/issues/62
.. _#74: https://github.com/pallets/itsdangerous/issues/74
.. _#75: https://github.com/pallets/itsdangerous/pull/75
.. _#80: https://github.com/pallets/itsdangerous/pull/80
.. _#99: https://github.com/pallets/itsdangerous/pull/99
.. _#107: https://github.com/pallets/itsdangerous/pull/107
-rw-r--r-- | security/py-itsdangerous/Makefile | 4 | ||||
-rw-r--r-- | security/py-itsdangerous/PLIST | 36 | ||||
-rw-r--r-- | security/py-itsdangerous/distinfo | 10 |
3 files changed, 38 insertions, 12 deletions
diff --git a/security/py-itsdangerous/Makefile b/security/py-itsdangerous/Makefile index 52987254daa..dc223768455 100644 --- a/security/py-itsdangerous/Makefile +++ b/security/py-itsdangerous/Makefile @@ -1,6 +1,6 @@ -# $NetBSD: Makefile,v 1.7 2016/06/08 17:43:38 wiz Exp $ +# $NetBSD: Makefile,v 1.8 2018/11/10 17:27:36 kleink Exp $ -DISTNAME= itsdangerous-0.24 +DISTNAME= itsdangerous-1.1.0 PKGNAME= ${PYPKGPREFIX}-${DISTNAME} CATEGORIES= security python MASTER_SITES= ${MASTER_SITE_PYPI:=i/itsdangerous/} diff --git a/security/py-itsdangerous/PLIST b/security/py-itsdangerous/PLIST index c1408fe63f8..4a5ad60d4d8 100644 --- a/security/py-itsdangerous/PLIST +++ b/security/py-itsdangerous/PLIST @@ -1,9 +1,35 @@ -@comment $NetBSD: PLIST,v 1.1 2013/06/14 09:41:01 kleink Exp $ +@comment $NetBSD: PLIST,v 1.2 2018/11/10 17:27:36 kleink Exp $ ${PYSITELIB}/${EGG_INFODIR}/PKG-INFO ${PYSITELIB}/${EGG_INFODIR}/SOURCES.txt ${PYSITELIB}/${EGG_INFODIR}/dependency_links.txt -${PYSITELIB}/${EGG_INFODIR}/not-zip-safe ${PYSITELIB}/${EGG_INFODIR}/top_level.txt -${PYSITELIB}/itsdangerous.py -${PYSITELIB}/itsdangerous.pyc -${PYSITELIB}/itsdangerous.pyo +${PYSITELIB}/itsdangerous/__init__.py +${PYSITELIB}/itsdangerous/__init__.pyo +${PYSITELIB}/itsdangerous/__init__.pyc +${PYSITELIB}/itsdangerous/_compat.pyo +${PYSITELIB}/itsdangerous/_compat.pyc +${PYSITELIB}/itsdangerous/_json.pyo +${PYSITELIB}/itsdangerous/_json.pyc +${PYSITELIB}/itsdangerous/encoding.pyo +${PYSITELIB}/itsdangerous/encoding.pyc +${PYSITELIB}/itsdangerous/exc.pyo +${PYSITELIB}/itsdangerous/exc.pyc +${PYSITELIB}/itsdangerous/jws.pyo +${PYSITELIB}/itsdangerous/jws.pyc +${PYSITELIB}/itsdangerous/serializer.pyo +${PYSITELIB}/itsdangerous/serializer.pyc +${PYSITELIB}/itsdangerous/signer.pyo +${PYSITELIB}/itsdangerous/signer.pyc +${PYSITELIB}/itsdangerous/timed.pyo +${PYSITELIB}/itsdangerous/timed.pyc +${PYSITELIB}/itsdangerous/url_safe.pyo +${PYSITELIB}/itsdangerous/url_safe.pyc +${PYSITELIB}/itsdangerous/_compat.py +${PYSITELIB}/itsdangerous/_json.py +${PYSITELIB}/itsdangerous/encoding.py +${PYSITELIB}/itsdangerous/exc.py +${PYSITELIB}/itsdangerous/jws.py +${PYSITELIB}/itsdangerous/serializer.py +${PYSITELIB}/itsdangerous/signer.py +${PYSITELIB}/itsdangerous/timed.py +${PYSITELIB}/itsdangerous/url_safe.py diff --git a/security/py-itsdangerous/distinfo b/security/py-itsdangerous/distinfo index 6783ca2d1b3..415ad356bbd 100644 --- a/security/py-itsdangerous/distinfo +++ b/security/py-itsdangerous/distinfo @@ -1,6 +1,6 @@ -$NetBSD: distinfo,v 1.5 2015/11/04 01:18:04 agc Exp $ +$NetBSD: distinfo,v 1.6 2018/11/10 17:27:36 kleink Exp $ -SHA1 (itsdangerous-0.24.tar.gz) = 0a6ae9c20cd72e89d75314ebc7b0f390f93e6a0d -RMD160 (itsdangerous-0.24.tar.gz) = 870c1cef9d39c74f2d376be07b50d0e11f343018 -SHA512 (itsdangerous-0.24.tar.gz) = 2863b6e5fda178db59bd214c6d24d04422c1021bb41bf11598aba1cbc43053aff3bb1e0539940b5769de04b68c03e8bd01d728dcbfc4bd0ba05867688574a297 -Size (itsdangerous-0.24.tar.gz) = 46541 bytes +SHA1 (itsdangerous-1.1.0.tar.gz) = b79fef5caacdd247f7def3fe59e6def34bc86905 +RMD160 (itsdangerous-1.1.0.tar.gz) = 3a1b71343357fd9cef28039753c78f0bf24d91ff +SHA512 (itsdangerous-1.1.0.tar.gz) = 61bab3fce5f87a3b5fc8fad61e735a63df6aa039416ee3494e1c99a2a1162b4fb72793bc5dc949de0985724c40121810b159513606c4c3976a7666dba3a1b93d +Size (itsdangerous-1.1.0.tar.gz) = 53219 bytes |