Skip to content
This repository has been archived by the owner on Jul 8, 2019. It is now read-only.

Scheduled monthly dependency update for February #15

Closed
wants to merge 24 commits into from

Conversation

pyup-bot
Copy link
Contributor

@pyup-bot pyup-bot commented Feb 1, 2018

Updates

Here's a list of all the updates bundled in this pull request. I've added some links to make it easier for you to find all the information you need.

wheel 0.29.0 » 0.30.0 PyPI | Changelog | Repo
django-braces 1.11.0 » 1.12.0 PyPI | Changelog | Repo
django-crispy-forms 1.6.1 » 1.7.0 PyPI | Changelog | Repo
django-model-utils 3.0.0 » 3.1.1 PyPI | Changelog | Repo
django-atom 0.15.3 » 0.16.2 PyPI | Changelog | Repo
Pillow 4.2.1 » 5.0.0 PyPI | Changelog | Homepage
mysqlclient 1.3.11 » 1.3.12 PyPI | Changelog | Repo
pytz 2017.2 » 2017.3 PyPI | Homepage | Docs
django-import-export 0.5.1 » 0.7.0 PyPI | Changelog | Repo
coverage 4.4.1 » 4.4.2 PyPI | Changelog | Repo
Sphinx 1.6.3 » 1.6.6 PyPI | Changelog | Homepage
django-extensions 1.9.0 » 1.9.9 PyPI | Changelog | Repo | Docs
Werkzeug 0.12.2 » 0.14.1 PyPI | Changelog | Homepage
factory-boy 2.9.2 » 2.10.0 PyPI | Changelog | Repo
django-debug-toolbar 1.8 » 1.9.1 PyPI | Changelog | Repo
django 1.10.7 » 1.10.8 PyPI | Changelog | Homepage
Collectfast 0.5.2 » 0.6.0 PyPI | Changelog | Repo
django-anymail 0.11.1 » 1.2 PyPI | Changelog | Repo
raven 6.1.0 » 6.5.0 PyPI | Changelog | Repo
flake8 3.4.1 » 3.5.0 PyPI | Changelog | Repo
django-test-plus 1.0.18 » 1.0.22 PyPI | Changelog | Repo

Changelogs

wheel 0.29.0 -> 0.30.0

0.30.0

======

  • Added py-limited-api {cp32|cp33|cp34|...} flag to produce cpNN.abi3.{arch}
    tags on CPython 3.
  • Documented the license_file metadata key
  • Improved Python, abi tagging for wheel convert. Thanks Ales Erjavec.
  • Fixed > being prepended to lines starting with "From" in the long description
  • Added support for specifying a build number (as per PEP 427).
    Thanks Ian Cordasco.
  • Made the order of files in generated ZIP files deterministic.
    Thanks Matthias Bach.
  • Made the order of requirements in metadata deterministic. Thanks Chris Lamb.
  • Fixed wheel install clobbering existing files
  • Improved the error message when trying to verify an unsigned wheel file
  • Removed support for Python 2.6, 3.2 and 3.3.

django-crispy-forms 1.6.1 -> 1.7.0

1.7.0

  • Fixes compatibility with Django 2.0
  • Various other fixes.

See 1.7 Milestone
for full issue list.

django-model-utils 3.0.0 -> 3.1.1

3.1.1


  • Update classifiers and README via GH-306, fixes GH-305

3.1.0


  • Support for Django 2.0 via GH-298, fixes GH-297
  • Remove old travis script via GH-300
  • Fix codecov and switch to py.test 301

django-atom 0.15.3 -> 0.16.2

0.16.1

  • Fix redirect_unauthenticated_users support in atom.ext.guardian.views

0.16.0

  • Add atom.ext.guardian.views.RaisePermissionRequiredMixin
  • Add atom.ext.guardian.views.AttrPermissionRequiredMixin

Pillow 4.2.1 -> 5.0.0

5.0.0


  • Docs: Added docstrings from documentation 2914
    [radarhere]
  • Test: Switch from nose to pytest 2815
    [hugovk]
  • Rework Source directory layout, preventing accidental import of PIL. 2911
    [wiredfool]
  • Dynamically link libraqm 2753
    [wiredfool]

  • Removed scripts directory 2901
    [wiredfool]

  • TIFF: Run all compressed tiffs through libtiff decoder 2899
    [wiredfool]

  • GIF: Add disposal option when saving GIFs 2902
    [linnil1, wiredfool]

  • EPS: Allow for an empty line in EPS header data 2903
    [radarhere]
  • PNG: Add support for sRGB and cHRM chunks, permit sRGB when no iCCP chunk present 2898
    [wiredfool]
  • Dependencies: Update Tk Tcl to 8.6.8 2905
    [radarhere]
  • Decompression bomb error now raised for images 2x larger than a decompression bomb warning 2583
    [wiredfool]
  • Test: avoid random failure in test_effect_noise 2894
    [hugovk]
  • Increased epsilon for test_file_eps.py:test_showpage due to Arch update. 2896
    [wiredfool]
  • Removed check parameter from _save in BmpImagePlugin, PngImagePlugin, ImImagePlugin, PalmImagePlugin, and PcxImagePlugin. 2873
    [radarhere]
  • Make PngImagePlugin.add_text() zip argument type bool 2890
    [jdufresne]
  • Depends: Updated libwebp to 0.6.1 2880
    [radarhere]
  • Remove unnecessary bool() calls in Image.registered_extensions and skipKnownBadTests 2891
    [jdufresne]
  • Fix count of BITSPERSAMPLE items in broken TIFF files 2883
    [homm]
  • Fillcolor parameter for Image.Transform 2852
    [wiredfool]
  • Test: Display differences for test failures 2862
    [wiredfool]
  • Added executable flag to file with shebang line 2884
    [radarhere]
  • Setup: Specify compatible Python versions for pip 2877
    [hugovk]
  • Dependencies: Updated libimagequant to 2.11.4 2878
    [radarhere]
  • Setup: Warn if trying to install for Py3.7 on Windows 2855
    [hugovk]
  • Doc: Fonts can be loaded from a file-like object, not just filename 2861
    [robin-norwood]
  • Add eog support for Ubuntu Image Viewer 2864
    [NafisFaysal]
  • Test: Test on 3.7-dev on Travis.ci 2870
    [hugovk]
  • Dependencies: Update libtiff to 4.0.9 2871
    [radarhere]
  • Setup: Replace deprecated platform.dist with file existence check 2869
    [wiredfool]
  • Build: Fix setup.py on Debian 2853
    [wiredfool]
  • Docs: Correct error in ImageDraw documentation 2858
    [meribold]
  • Test: Drop Ubuntu Precise, Fedora 24, Fedora 25, add Fedora 27, Centos 7, Amazon v2 CI Support 2854, 2843, 2895, 2897
    [wiredfool]
  • Dependencies: Updated libimagequant to 2.11.3 2849
    [radarhere]
  • Test: Fix test_image.py to use tempfile 2841
    [radarhere]
  • Replace PIL.OleFileIO deprecation warning with descriptive ImportError 2833
    [hugovk]
  • WebP: Add support for animated WebP files 2761
    [jd20]
  • PDF: Set encoderinfo for images when saving multi-page PDF. Fixes 2804. 2805
    [ixio]
  • Allow the olefile dependency to be optional 2789
    [jdufresne]
  • GIF: Permit LZW code lengths up to 12 bits in GIF decode 2813
    [wiredfool]
  • Fix unterminiated string and unchecked exception in _font_text_asBytes. 2825
    [wiredfool]
  • PPM: Use fixed list of whitespace, rather relying on locale, fixes 272. 2831
    [markmiscavage]
  • Added support for generators when using append_images 2829, 2835
    [radarhere]
  • Doc: Correct PixelAccess.rst 2824
    [hasahmed]
  • Depends: Update raqm to 0.3.0 2822
    [radarhere]
  • Docs: Link to maintained version of aggdraw 2809
    [hugovk]
  • Include license file in the generated wheel packages 2801
    [jdufresne]
  • Depends: Update openjpeg to 2.3.0 2791
    [radarhere]
  • Add option to Makefile to build and install with C coverage 2781
    [hugovk]
  • Add context manager support to ImageFile.Parser and PngImagePlugin.ChunkStream 2793
    [radarhere]
  • ImageDraw.textsize: fix zero length error 2788
    [wiredfool, hugovk]

4.3.0


  • Fix warning on pointer cast in isblock 2775, 2778
    [cgohlke]
  • Doc: Added macOS High Sierra tested Pillow version 2777
    [radarhere]
  • Use correct Windows handle type on 64 bit in imagingcms 2774
    [cgohlke]
  • 64 Bit Windows fix for block storage 2773
    [cgohlke]
  • Fix "expression result unused" warning 2764
    [radarhere]
  • Add 16bit Read/Write and RLE read support to SgiImageFile 2769
    [jbltx, wiredfool]
  • Block & array hybrid storage 2738
    [homm]
  • Common seek frame position check 1849
    [radarhere]
  • Doc: Add note about aspect ratio to Image thumbnail script 2281
    [wilsonge]
  • Fix ValueError: invalid version number '1.0.0rc1' in scipy release candidate 2771
    [cgohlke]
  • Unfreeze requirements.txt 2766
    [hugovk]
  • Test: ResourceWarning tests 2756
    [hugovk]
  • Use n_frames to determine is_animated if possible 2315
    [radarhere]
  • Doc: Corrected parameters in documentation 2768
    [radarhere]
  • Avoid unnecessary Image operations 1891
    [radarhere]
  • Added register_extensions method 1860
    [radarhere]
  • Fix TIFF support for I;16S, I;16BS, and I;32BS rawmodes 2748
    [wiredfool]
  • Fixed doc syntax in ImageDraw 2752
    [radarhere]
  • Fixed support for building on Windows/msys2. Added Appveyor CI coverage for python3 on msys2 2476
    [wiredfool]
  • Fix ValueError in Exif/Tiff IFD 2719
    [wiredfool]
  • Use pathlib2 for Path objects on Python < 3.4 2291
    [asergi]
  • Export only required properties in unsafe_ptrs 2740
    [homm]
  • Alpha composite fixes 2709
    [homm]
  • Faster Transpose operations, added 'Transverse' option 2730
    [homm]
  • Deprecate ImageOps undocumented functions gaussian_blur, gblur, unsharp_mask, usm and box_blur in favor of ImageFilter implementations 2735
    [homm]
  • Dependencies: Updated freetype to 2.8.1 2741
    [radarhere]
  • Bug: Player skipped first image 2742
    [radarhere]
  • Faster filter operations for Kernel, Gaussian, and Unsharp Mask filters 2679
    [homm]
  • EPS: Add showpage to force rendering of some EPS images 2636
    [kaplun]
  • DOC: Fix type of palette parameter in Image.quantize. 2703
    [kkopachev]
  • DOC: Fix Ico docs to match code 2712
    [hugovk]
  • Added file pointer save to SpiderImagePlugin 2647
    [radarhere]
  • Add targa version 2 footer 2713
    [jhultgre]
  • Removed redundant lines 2714
    [radarhere]
  • Travis CI: Use default pypy/pypy3 2721
    [hugovk]
  • Fix for SystemError when rendering an empty string, added in 4.2.0 2706
    [wiredfool]
  • Fix for memory leaks in font handling added in 4.2.0 2634
    [wiredfool]
  • Tests: cleanup, more tests. Fixed WMF save handler 2689
    [radarhere]
  • Removed debugging interface for Image.core.grabclipboard 2708
    [radarhere]
  • Doc syntax fix 2710
    [radarhere]
  • Faster packing and unpacking for RGB, LA, and related storage modes 2693
    [homm]
  • Use RGBX rawmode for RGB JPEG images where possible 1989
    [homm]
  • Remove palettes from non-palette modes in _new 2702
    [wiredfool]
  • Delete transparency info when convert'ing RGB/L to RGBA 2633
    [olt]
  • Code tweaks to ease type annotations 2687
    [neiljp]
  • Fixed incorrect use of 's' to byteslike object 2691
    [wiredfool]
  • Fix JPEG subsampling labels for subsampling=2 2698
    [homm]
  • Region of interest (box) for resampling 2254
    [homm]
  • Basic support for Termux (android) in setup.py 2684
    [wiredfool]
  • Bug: Fix Image.fromarray for numpy.bool type. 2683
    [wiredfool]
  • CI: Add Fedora 24 and 26 to Docker tests
    [wiredfool]
  • JPEG: Fix ZeroDivisionError when EXIF contains invalid DPI (0/0). 2667
    [vytisb]
  • Depends: Updated openjpeg to 2.2.0 2669
    [radarhere]
  • Depends: Updated Tk Tcl to 8.6.7 2668
    [radarhere]
  • Depends: Updated libimagequant to 2.10.2 2660
    [radarhere]
  • Test: Added test for ImImagePlugin tell() 2675
    [radarhere]
  • Test: Additional tests for SGIImagePlugin 2659
    [radarhere]
  • New Image.getchannel method 2661
    [homm]
  • Remove unused im.copy2 and core.copy methods 2657
    [homm]
  • Fast Image.merge() 2677
    [homm]
  • Fast Image.split() 2676
    [homm]
  • Fast image allocation 2655
    [homm]
  • Storage cleanup 2654
    [homm]
  • FLI: Use frame count from FLI header 2674
    [radarhere]
  • Test: Test animated FLI file 2650
    [hugovk]
  • Bug: Fixed uninitialized memory in bc5 decoding 2648
    [ifeherva]
  • Moved SgiImagePlugin save error to before the start of write operations 2646
    [radarhere]
  • Move createfontdatachunk.py so isn't installed globally 2645
    [hugovk]
  • Bug: Fix unexpected keyword argument 'align' 2641
    [hugovk]
  • Add newlines to error message for clarity 2640
    [hugovk]
  • Docs: Updated redirected URL 2637
    [radarhere]
  • Bug: Fix JPEG DPI when EXIF is invalid 2632
    [wiredfool]
  • Bug: Fix for font getsize on empty string 2624
    [radarhere]
  • Docs: Improved ImageDraw documentation 2626
    [radarhere]
  • Docs: Corrected alpha_composite args documentation 2627
    [radarhere]
  • Docs: added the description of the filename attribute to images.rst 2621
    [dasdachs]
  • Dependencies: Updated libimagequant to 2.10.1 2616
    [radarhere]
  • PDF: Renamed parameter to not shadow built-in dict 2612
    [kijeong]

mysqlclient 1.3.11 -> 1.3.12

1.3.12

======================

Fix tuple argument again (201)

InterfaceError is raised when Connection.query() is called for closed connection (202)

======================

django-import-export 0.5.1 -> 0.7.0

0.7.0


  • skip_row override example (702)
  • Testing against Django 2.0 should not fail (709)
  • Refactor transaction handling (690)
  • Resolves 703 fields shadowed (703)
  • discourage installation as a zipped egg (548)
  • Fixed middleware settings in test app for Django 2.x (696)

0.6.1


  • Refactors and optimizations (686, 632, 684, 636, 631, 629, 635, 683)
  • Travis tests for Django 2.0.x (691)

0.6.0


  • Refactor import_row call by using keyword arguments (585)
  • Added {{ block.super }} call in block bodyclass in admin/base_site.html (582)
  • Add support for the Django DurationField with DurationWidget (575)
  • GitHub bmihelac -> django-import-export Account Update (574)
  • Add intersphinx links to documentation (572)
  • Add Resource.get_import_fields() (569)
  • Fixed readme mistake (568)
  • Bugfix/fix m2m widget clean (515)
  • Allow injection of context data for template rendered by import_action() and export_action() (544)
  • Bugfix/fix exception in generate_log_entries() (543)
  • Process import dataset and result in separate methods (542)
  • Bugfix/fix error in converting exceptions to strings (526)
  • Fix admin integration tests for the new "Import finished..." message, update Czech translations to 100% coverage. (596)
  • Make import form type easier to override (604)
  • Add saves_null_values attribute to Field to control whether null values are saved on the object (611)
  • Add Bulgarian translations (656)
  • Add django 1.11 to TravisCI (621)
  • Make Signals code example format correctly in documentation (553)
  • Add Django as requirement to setup.py (634)
  • Update import of reverse for django 2.x (620)
  • Add Django-version classifiers to setup.py’s CLASSIFIERS (616)
  • Some fixes for Django 2.0 (672)
  • Strip whitespace when looking up ManyToMany fields (668)
  • Fix all ResourceWarnings during tests in Python 3.x (637)
  • Remove downloads count badge from README since shields.io no longer supports it for PyPi (677)
  • Add coveralls support and README badge (678)

coverage 4.4.1 -> 4.4.2

4.4.2


  • Support for Python 3.7. In some cases, class and module docstrings are no
    longer counted in statement totals, which could slightly change your total
    results.
  • Specifying both --source and --include no longer silently ignores the
    include setting, instead it displays a warning. Thanks, Loïc Dachary. Closes
    issue 265_ and issue 101_.
  • Fixed a race condition when saving data and multiple threads are tracing
    (issue 581_). It could produce a "dictionary changed size during iteration"
    RuntimeError. I believe this mostly but not entirely fixes the race
    condition. A true fix would likely be too expensive. Thanks, Peter Baughman
    for the debugging, and Olivier Grisel for the fix with tests.
  • Configuration values which are file paths will now apply tilde-expansion,
    closing issue 589_.
  • Now secondary config files like tox.ini and setup.cfg can be specified
    explicitly, and prefixed sections like [coverage:run] will be read. Fixes
    issue 588_.
  • Be more flexible about the command name displayed by help, fixing
    issue 600_. Thanks, Ben Finney.

.. _issue 101: https://bitbucket.org/ned/coveragepy/issues/101/settings-under-report-affect-running
.. _issue 581: https://bitbucket.org/ned/coveragepy/issues/581/race-condition-when-saving-data-under
.. _issue 588: https://bitbucket.org/ned/coveragepy/issues/588/using-rcfile-path-to-toxini-uses-run
.. _issue 589: https://bitbucket.org/ned/coveragepy/issues/589/allow-expansion-in-coveragerc
.. _issue 600: https://bitbucket.org/ned/coveragepy/issues/600/get-program-name-from-command-line-when

.. _changes_441:

Sphinx 1.6.3 -> 1.6.6

1.6.6

=====================================

Features added

  • 4181: autodoc: Sort dictionary keys when possible
  • VerbatimHighlightColor is a new
    :ref:LaTeX &#39;sphinxsetup&#39; &lt;latexsphinxsetup&gt; key (refs: 4285)
  • Easier customizability of LaTeX macros involved in rendering of code-blocks
  • Show traceback if conf.py raises an exception (refs: 4369)
  • Add :confval:smartquotes to disable smart quotes through conf.py
    (refs: 3967)
  • Add :confval:smartquotes_action and :confval:smartquotes_excludes
    (refs: 4142, 4357)

Bugs fixed

  • 4334: sphinx-apidoc: Don't generate references to non-existing files in TOC
  • 4206: latex: reST label between paragraphs loses paragraph break
  • 4231: html: Apply fixFirefoxAnchorBug only under Firefox
  • 4221: napoleon depends on autodoc, but users need to load it manually
  • 2298: automodule fails to document a class attribute
  • 4099: C++: properly link class reference to class from inside constructor
  • 4267: PDF build broken by Unicode U+2116 NUMERO SIGN character
  • 4249: PDF output: Pygments error highlighting increases line spacing in
    code blocks
  • 1238: Support :emphasize-lines: in PDF output
  • 4279: Sphinx crashes with pickling error when run with multiple processes and
    remote image
  • 1421: Respect the quiet flag in sphinx-quickstart
  • 4281: Race conditions when creating output directory
  • 4315: For PDF 'howto' documents, latex_toplevel_sectioning=&#39;part&#39; generates
    \chapter commands
  • 4214: Two todolist directives break sphinx-1.6.5
  • Fix links to external option docs with intersphinx (refs: 3769)
  • 4091: Private members not documented without :undoc-members:

1.6.5

=====================================

Features added

  • 4107: Make searchtools.js compatible with pre-Sphinx1.5 templates
  • 4112: Don't override the smart_quotes setting if it was already set
  • 4125: Display reference texts of original and translated passages on
    i18n warning message
  • 4147: Include the exception when logging PO/MO file read/write

Bugs fixed

  • 4085: Failed PDF build from image in parsed-literal using :align: option
  • 4100: Remove debug print from autodoc extension
  • 3987: Changing theme from alabaster causes HTML build to fail
  • 4096: C++, don't crash when using the wrong role type. Thanks to mitya57.
  • 4070, 4111: crashes when the warning message contains format strings (again)
  • 4108: Search word highlighting breaks SVG images
  • 3692: Unable to build HTML if writing .buildinfo failed
  • 4152: HTML writer crashes if a field list is placed on top of the document
  • 4063: Sphinx crashes when labeling directive .. todolist::
  • 4134: [doc] :file:docutils.conf is not documented explicitly
  • 4169: Chinese language doesn't trigger Chinese search automatically
  • 1020: ext.todo todolist not linking to the page in pdflatex
  • 3965: New quickstart generates wrong SPHINXBUILD in Makefile
  • 3739: :module: option is ignored at content of pyobjects
  • 4149: Documentation: Help choosing :confval:latex_engine
  • 4090: [doc] :confval:latex_additional_files with extra LaTeX macros should
    not use .tex extension
  • Failed to convert reST parser error to warning (refs: 4132)

1.6.4

=====================================

Features added

  • 3926: Add autodoc_warningiserror to suppress the behavior of -W
    option during importing target modules on autodoc

Bugs fixed

  • 3924: docname lost after dynamically parsing RST in extension
  • 3946: Typo in sphinx.sty (this was a bug with no effect in default context)
  • :pep: and :rfc: does not supports default-role directive (refs: 3960)
  • 3960: default_role = 'guilabel' not functioning
  • Missing texinputs_win/Makefile to be used in latexpdf builder on windows.
  • 4026: nature: Fix macOS Safari scrollbar color
  • 3877: Fix for C++ multiline signatures.
  • 4006: Fix crash on parallel build
  • 3969: private instance attributes causes AttributeError
  • 4041: C++, remove extra name linking in function pointers.
  • 4038: C, add missing documentation of member role.
  • 4044: An empty multicolumn cell causes extra row height in PDF output
  • 4049: Fix typo in output of sphinx-build -h
  • 4062: hashlib.sha1() must take bytes, not unicode on Python 3
  • Avoid indent after index entries in latex (refs: 4066)
  • 4070: crashes when the warning message contains format strings
  • 4067: Return non-zero exit status when make subprocess fails
  • 4055: graphviz: the :align: option does not work for SVG output
  • 4055: graphviz: the :align: center option does not work for latex output
  • 4051: warn() function for HTML theme outputs 'None' string

django-extensions 1.9.0 -> 1.9.9

1.9.9


Changes:

  • Fix: runserver_plus, fix for Django 2.0 middleware handling
  • Fix: shell_plus, fixed app_name resolving
  • Fix: AutoSlugfield, deconstruct did not match construction values
  • Fix: runjob, not compatible with apps that use AppConfig in INSTALLED_APPS
  • Improvement: runserver_plus, added configuring paths to certificates
  • Improvement: sample.py template, add newline to avoid linter warnings
  • Improvement: jobs, add integration tests for runjob and runjobs management commands
  • New: merge_model_instances, new management command for de-duplicating model instances

1.9.8


Changes:

  • Fix: show_urls, fix for Django 2.0 (Locale URL Resolvers are still broken)
  • Fix: runserver_plus, fix rendering of ipv6 link
  • Improvement: validate_templates, allow relative paths
  • Improvement: validate_templates, automatically include app templates
  • Improvement: pip_checker, could not find some packages
  • Docs: shell_plus, --print-sql usage clearification

1.9.7


This release add checking types with MyPy to the test suite. At this point
only a few lines of code are explicitly typed.

Changes:

  • Improvement: shell_plus, Collision resolver implemented.
  • Improvement: shell_plus, Skipping all models importing feature added.
  • Improvement: runscript, Script execution directory policy feature added.
  • django-extensions now requires the typing package.

1.9.6


Fix boo-boo with release version in django_extensions/init.py

1.9.4


Changes:

  • Fix missing test case

1.9.3


Changes:

  • Tests: shell_plus, simple test for get_imported_objects

1.9.2


Changes:

  • Fix: mail_debug, regression in mail_debug for older Pythons
  • Fix: shell_plus, SyntaxError on exec(), python compatibility
  • Fix: ForeignKeyAutocompleteAdminMixin, use text/plain

1.9.1


Changes:

  • Fix: graph_models, fix json option
  • Fix: runserver_plus, avoid duplicate messages logged to console
  • Fix: mail_debug, python3 fix
  • Improvement: sqldiff, basic support for array types in postgresql
  • Improvement: runscript, handle import errors better
  • Docs: updated documentation for model extensions

Werkzeug 0.12.2 -> 0.14.1

0.14.1


Released on December 31st 2017

  • Resolved a regression with status code handling in the integrated
    development server.

0.14


Released on December 31st 2017

  • HTTP exceptions are now automatically caught by
    Request.application.
  • Added support for edge as browser.
  • Added support for platforms that lack SpooledTemporaryFile.
  • Add support for etag handling through if-match
  • Added support for the SameSite cookie attribute.
  • Added werkzeug.wsgi.ProxyMiddleware
  • Implemented has for NullCache
  • get_multi on cache clients now returns lists all the time.
  • Improved the watchdog observer shutdown for the reloader to not crash
    on exit on older Python versions.
  • Added support for filename* filename attributes according to
    RFC 2231
  • Resolved an issue where machine ID for the reloader PIN was not
    read accurately on windows.
  • Added a workaround for syntax errors in init files in the reloader.
  • Added support for using the reloader with console scripts on windows.
  • The built-in HTTP server will no longer close a connection in cases
    where no HTTP body is expected (204, 204, HEAD requests etc.)
  • The EnvironHeaders object now skips over empty content type and
    lengths if they are set to falsy values.
  • Werkzeug will no longer send the content-length header on 1xx or
    204/304 responses.
  • Cookie values are now also permitted to include slashes and equal
    signs without quoting.
  • Relaxed the regex for the routing converter arguments.
  • If cookies are sent without values they are now assumed to have an
    empty value and the parser accepts this. Previously this could have
    corrupted cookies that followed the value.
  • The test Client and EnvironBuilder now support mimetypes like
    the request object does.
  • Added support for static weights in URL rules.
  • Better handle some more complex reloader scenarios where sys.path
    contained non directory paths.
  • EnvironHeaders no longer raises weird errors if non string keys
    are passed to it.

0.13


Released on December 7th 2017

  • Deprecate support for Python 2.6 and 3.3. CI tests will not run
    for these versions, and support will be dropped completely in the next
    version. (pallets/meta24_)
  • Raise TypeError when port is not an integer. (1088_)
  • Fully deprecate werkzeug.script. Use Click_ instead. (1090_)
  • response.age is parsed as a timedelta. Previously, it was
    incorrectly treated as a datetime. The header value is an integer
    number of seconds, not a date string. (414_)
  • Fix a bug in TypeConversionDict where errors are not propagated
    when using the converter. (1102_)
  • Authorization.qop is a string instead of a set, to comply with
    RFC 2617. (984_)
  • An exception is raised when an encoded cookie is larger than, by
    default, 4093 bytes. Browsers may silently ignore cookies larger than
    this. BaseResponse has a new attribute max_cookie_size and
    dump_cookie has a new argument max_size to configure this.
    (780, 1109)
  • Fix a TypeError in werkzeug.contrib.lint.GuardedIterator.close.
    (1116_)
  • BaseResponse.calculate_content_length now correctly works for
    Unicode responses on Python 3. It first encodes using
    iter_encoded. (705_)
  • Secure cookie contrib works with string secret key on Python 3.
    (1205_)
  • Shared data middleware accepts a list instead of a dict of static
    locations to preserve lookup order. (1197_)
  • HTTP header values without encoding can contain single quotes.
    (1208_)
  • The built-in dev server supports receiving requests with chunked
    transfer encoding. (1198_)

.. _Click: https://www.palletsprojects.com/p/click/
.. _pallets/meta24: https://github.com/pallets/meta/issues/24
.. _414: pallets/werkzeug#414
.. _705: pallets/werkzeug#705
.. _780: pallets/werkzeug#780
.. _984: pallets/werkzeug#984
.. _1088: pallets/werkzeug#1088
.. _1090: pallets/werkzeug#1090
.. _1102: pallets/werkzeug#1102
.. _1109: pallets/werkzeug#1109
.. _1116: pallets/werkzeug#1116
.. _1197: pallets/werkzeug#1197
.. _1198: pallets/werkzeug#1198
.. _1205: pallets/werkzeug#1205
.. _1208: pallets/werkzeug#1208

factory-boy 2.9.2 -> 2.10.0

2.10.0


Bugfix:

  • :issue:443: Don't crash when calling :meth:factory.Iterator.reset() on a brand new iterator.

New:

  • :issue:397: Allow a :class:factory.Maybe to contain a :class:~factory.PostGenerationDeclaration.
    This also applies to :class:factory.Trait, since they use a :class:factory.Maybe declaration internally.

django-debug-toolbar 1.8 -> 1.9.1

1.9


This version is compatible with Django 2.0 and requires Django 1.8 or
later.

Bugfixes

  • The profiling panel now escapes reported data resulting in valid HTML.
  • Many minor cleanups and bugfixes.

django 1.10.7 -> 1.10.8

1.10.8

===========================

September 5, 2017

Django 1.10.8 fixes a security issue in 1.10.7.

CVE-2017-12794: Possible XSS in traceback section of technical 500 debug page

In older versions, HTML autoescaping was disabled in a portion of the template
for the technical 500 debug page. Given the right circumstances, this allowed
a cross-site scripting attack. This vulnerability shouldn't affect most
production sites since you shouldn't run with DEBUG = True (which makes
this page accessible) in your production settings.

===========================

Collectfast 0.5.2 -> 0.6.0

0.6.0

  • support for AWS_IS_GZIPPED
  • use of public API on storage
  • support for django 1.11 and 2.0

django-anymail 0.11.1 -> 1.2

1.2

New features

  • Postmark: Support new click webhook in normalized tracking events

1.1

Bug fixes

  • Mailgun: Support metadata in opened/clicked/unsubscribed tracking webhooks, and fix potential problems if metadata keys collided with Mailgun event parameter names. (See 76, 77)

Other changes

  • Internal: Rework Anymail's ParsedEmail class and rename to EmailAddress to align it with similar functionality in the Python 3.6 email package, in preparation for future inbound support. ParsedEmail was not documented for use outside Anymail's internals (so this change does not bump the semver major version), but if you were using it in an undocumented way you will need to update your code.

1.0

It's official: Anymail is no longer "pre-1.0." The API has been stable for many months, and there's no reason not to use Anymail in production.

Breaking changes

  • There are no new breaking changes in the 1.0 release, but a breaking change introduced several months ago in v0.8 is now strictly enforced. If you still have an EMAIL_BACKEND setting that looks like "anymail.backends.espname.EspNameBackend", you'll need to change it to just "anymail.backends.espname.EmailBackend". (Earlier versions had issued a DeprecationWarning. See the v0.8 release notes.)

New features and other changes

1.0.rc0

Breaking changes

  • All backends: The old EspNameBackend names that were deprecated in v0.8 have been removed. Attempting to use the old names will now fail, rather than issue a DeprecationWarning. See the v0.8 release notes.

New features

  • Anymail's Test EmailBackend is now documented (and cleaned up)

raven 6.1.0 -> 6.5.0

6.5.0


  • [Core] Fixed missing deprecation on processors.SanitizePasswordsProcessor
  • [Core] Improve exception handling in Serializer.transform
  • [Core] Fixed celery.register_logger_signal ignoring subclasses
  • [Core] Fixed sanitizer skipping byte instances
  • [Lambda] Fixed AttributeError when requestContext not present

6.4.0


  • [Core] Support for defining sanitized_keys on the client (pr/990)
  • [Django] Support for Django 2.0 Urlresolver
  • [Docs] Several fixes and improvements

6.3.0


  • [Core] Changed default timeout on http calls to 5 seconds
  • [Core] Fixed relative paths for traces generated on Windows
  • [Django] Fixed import issues for Django projects < 1.7
  • [Django] Fixed django management command data option
  • [Django/DRF] Added application/octet-stream to non-cacheable types in middleware
  • [Django] Added parsing X-Forwarded-For for user.ip_address
  • [Flask] Added request.remote_addr as fallback for ip addresses
  • [Lambda] Added initial AWS Lambda support with contrib.awslambda.LambdaClient

6.2.1


  • [Core] Fixed requirements in setup.py

6.2.0


  • [Core] get_frame_locals properly using max_var_size
  • [Core] Fixed raven initialization when logging._srcfile is None
  • [Core] Fixed import locking to avoid recursion
  • [Django] Fixed several issues for Django 1.11 and Django 2.0
  • [Django/DRF] Fixed issue with unavailable request data
  • [Flask] Added app.logger instrumentation
  • [Flask] Added signal on setup_logging
  • [ZConfig] Added standalone ZConfig support
  • [Celery] Fixed several issues related to Celery

flake8 3.4.1 -> 3.5.0

3.5.0


You can view the 3.5.0 milestone_ on GitLab for more details.

New Dependency Information

  • Allow for PyFlakes 1.6.0 (See also GitLab359_)
  • Start using new PyCodestyle checks for bare excepts and ambiguous identifier
    (See also GitLab361_)

Features

  • Print out information about configuring VCS hooks (See also GitLab335_)
  • Allow users to develop plugins "local" to a repository without using
    setuptools. See our documentation on local plugins for more information.
    (See also GitLab357_)

Bugs Fixed

  • Catch and helpfully report UnicodeDecodeError\ s when parsing
    configuration files. (See also GitLab358_)

.. all links
.. _3.5.0 milestone:
https://gitlab.com/pycqa/flake8/milestones/20

.. issue links
.. _GitLab335:
https://gitlab.com/pycqa/flake8/issues/335
.. _GitLab357:
https://gitlab.com/pycqa/flake8/issues/357
.. _GitLab358:
https://gitlab.com/pycqa/flake8/issues/358
.. _GitLab359:
https://gitlab.com/pycqa/flake8/issues/359
.. _GitLab361:
https://gitlab.com/pycqa/flake8/issues/361

.. merge request links

django-test-plus 1.0.18 -> 1.0.22

1.0.22


  • Fix bug where we did not pass data dictionary to RequestFactory.get() properly

1.0.21


  • Add response_204 method

1.0.20


  • The Halloween Release!
  • Fixes to CI to ensure we really test Django 2.0

1.0.19


  • Django 2.0 support
  • Dropped support for Python 3.3
  • Dropped support for Django < 1.8
  • Added APITestCase for better DRF testing

That's it for now!

Happy merging! 🤖

@coveralls
Copy link

coveralls commented Feb 1, 2018

Coverage Status

Coverage remained the same at 57.961% when pulling 2d19f56 on pyup-scheduled-update-02-01-2018 into fefbabf on master.

@pyup-bot
Copy link
Contributor Author

pyup-bot commented Mar 1, 2018

Closing this in favor of #16

@pyup-bot pyup-bot closed this Mar 1, 2018
@mik-laj mik-laj deleted the pyup-scheduled-update-02-01-2018 branch March 1, 2018 16:32
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants