Subject: CVS commit: pkgsrc/www/py-flask-cors
From: Klaus Klein
Date: 2020-08-31 23:53:43
Message id: 20200831215343.E4D51FB27@cvs.NetBSD.org

Log Message:
py-flask-cors: Update to 3.0.9.

## 3.0.9
### Security
 - Escape path before evaluating resource rules (thanks to Colby Morgan).
   Prior to this, flask-cors incorrectly evaluated CORS resource matching
   before path expansion. E.g. "/api/../foo.txt" would incorrectly match
   resources for "/api/*" whereas the path actually expands simply to
   "/foo.txt"

Files:
RevisionActionfile
1.3modifypkgsrc/www/py-flask-cors/distinfo
1.3modifypkgsrc/www/py-flask-cors/Makefile