2015-11-03 04:29:40 by Alistair G. Crooks | Files touched by this commit (1995) |
Log message:
Add SHA512 digests for distfiles for devel category
Issues found with existing distfiles:
distfiles/eclipse-sourceBuild-srcIncluded-3.0.1.zip
distfiles/fortran-utils-1.1.tar.gz
distfiles/ivykis-0.39.tar.gz
distfiles/enum-1.11.tar.gz
distfiles/pvs-3.2-libraries.tgz
distfiles/pvs-3.2-linux.tgz
distfiles/pvs-3.2-solaris.tgz
distfiles/pvs-3.2-system.tgz
No changes made to these distinfo files.
Otherwise, existing SHA1 digests verified and found to be the same on
the machine holding the existing distfiles (morden). All existing
SHA1 digests retained for now as an audit trail.
|
2015-08-12 20:31:16 by Guillaume Lasmayous | Files touched by this commit (2) |
Log message:
Updated py-requests to 2.7.0
Upstream changes:
=================
2.7.0 (2015-05-03)
This is the first release that follows our new release process. For more, see
our documentation.
Bugfixes
Updated urllib3 to 1.10.4, resolving several bugs involving chunked
transfer encoding and response framing.
2.6.2 (2015-04-23)
Bugfixes
Fix regression where compressed data that was sent as chunked data was not
properly decompressed. (#2561)
2.6.1 (2015-04-22)
Bugfixes
Remove VendorAlias import machinery introduced in v2.5.2.
Simplify the PreparedRequest.prepare API: We no longer require the user to
pass an empty list to the hooks keyword argument. (c.f. #2552)
Resolve redirects now receives and forwards all of the original arguments
to the adapter. (#2503)
Handle UnicodeDecodeErrors when trying to deal with a unicode URL that
cannot be encoded in ASCII. (#2540)
Populate the parsed path of the URI field when performing Digest
Authentication. (#2426)
Copy a PreparedRequest's CookieJar more reliably when it is not an instance
of RequestsCookieJar. (#2527)
|
2015-03-16 14:58:37 by Thomas Klausner | Files touched by this commit (2) |
Log message:
Update to 2.6.0 for a security issue.
2.6.0 (2015-03-14)
++++++++++++++++++
**Bugfixes**
- Fix handling of cookies on redirect. Previously a cookie without a host
value set would use the hostname for the redirected URL exposing requests
users to session fixation attacks and potentially cookie stealing. This was
disclosed privately by Matthew Daley of `BugFuzz <https://bugfuzz.com>`_.
An CVE identifier has not yet been assigned for this. This affects all
versions of requests from v2.1.0 to v2.5.3 (inclusive on both ends).
- Fix error when requests is an ``install_requires`` dependency and ``python
setup.py test`` is run. (#2462)
- Fix error when urllib3 is unbundled and requests continues to use the
vendored import location.
- Include fixes to ``urllib3``'s header handling.
- Requests' handling of unvendored dependencies is now more restrictive.
**Features and Improvements**
- Support bytearrays when passed as parameters in the ``files`` argument.
(#2468)
- Avoid data duplication when creating a request with ``str``, ``bytes``, or
``bytearray`` input to the ``files`` argument.
|
2015-03-15 22:32:27 by Thomas Klausner | Files touched by this commit (1) |
Log message:
Remove unnecessary dependencies. From Christian Hattemer in PR 49746.
Bump PKGREVISION.
|
2015-03-09 17:57:04 by Emile iMil Heitor | Files touched by this commit (2) | ![Package updated](https://pkgsrc.se/images/update.gif) |
Log message:
Updated py-requests to version 2.5.3
Changes
2.5.3 (2015-02-24)
Bugfixes
Revert changes to our vendored certificate bundle. For more context see \
(#2455, #2456, and http://bugs.python.org/issue23476)
2.5.2 (2015-02-23)
Features and Improvements
Add sha256 fingerprint support. (shazow/urllib3#540)
Improve the performance of headers. (shazow/urllib3#544)
Bugfixes
Copy pipâs import machinery. When downstream redistributors remove \
requests.packages.urllib3 the import machinery will continue to let those same \
symbols work. Example usage in requestsâ documentation and 3rd-party \
libraries relying on the vendored copies of urllib3 will work without having to \
fallback to the system urllib3.
Attempt to quote parts of the URL on redirect if unquoting and then quoting \
fails. (#2356)
Fix filename type check for multipart form-data uploads. (#2411)
Properly handle the case where a server issuing digest authentication \
challenges provides both auth and auth-int qop-values. (#2408)
Fix a socket leak. (shazow/urllib3#549)
Fix multiple Set-Cookie headers properly. (shazow/urllib3#534)
Disable the built-in hostname verification. (shazow/urllib3#526)
Fix the behaviour of decoding an exhausted stream. (shazow/urllib3#535)
Security
Pulled in an updated cacert.pem.
Drop RC4 from the default cipher list. (shazow/urllib3#551)
|
2015-02-23 12:31:14 by Emile iMil Heitor | Files touched by this commit (2) |
Log message:
Updated py-requests to 2.5.1
Changed ftp.NetBSD.org to pypi.python.org
Behavioural Changes
Only catch HTTPErrors in raise_for_status (#2382)
Bugfixes
Handle LocationParseError from urllib3 (#2344)
Handle file-like object filenames that are not strings (#2379)
Unbreak HTTPDigestAuth handler. Allow new nonces to be negotiated (#2389)
|
2014-12-31 14:57:34 by Thomas Klausner | Files touched by this commit (125) |
Log message:
Improve EGG_NAME default to work for packages with '-' in their name.
Remove now unnecessary overrides in various packages.
|
2014-12-12 21:01:30 by Emile iMil Heitor | Files touched by this commit (1) |
Log message:
Changed MASTER_SITES to ftp.NetBSD.org because of mandatory HTTPS for pypi...
|
2014-12-12 20:54:31 by Emile iMil Heitor | Files touched by this commit (2) |
Log message:
Changed MASTER_SITES to pypi instead of github, bumped PKGREVISION
|
2014-12-07 13:34:09 by Emile iMil Heitor | Files touched by this commit (3) |
Log message:
Updated py-requests to version 2.5.0, patch provided by Jonathan Buschmann.
Full changelog is available here: https://pypi.python.org/pypi/requests
|