Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package python-defusedxml for
openSUSE:Factory checked in at 2021-04-01 14:15:51
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/python-defusedxml (Old)
and /work/SRC/openSUSE:Factory/.python-defusedxml.new.2401 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "python-defusedxml"
Thu Apr 1 14:15:51 2021 rev:7 rq:880820 version:0.7.1
Changes:
--------
--- /work/SRC/openSUSE:Factory/python-defusedxml/python-defusedxml.changes
2021-03-12 13:31:08.662142766 +0100
+++
/work/SRC/openSUSE:Factory/.python-defusedxml.new.2401/python-defusedxml.changes
2021-04-01 14:15:53.447856059 +0200
@@ -1,0 +2,8 @@
+Tue Mar 23 20:19:43 UTC 2021 - Dirk M??ller <[email protected]>
+
+- update to 0.7.1:
+ - Fix regression ``defusedxml.ElementTree.ParseError`` (#63)
+ The ``ParseError`` exception is now the same class object as
+ ``xml.etree.ElementTree.ParseError`` again.
+
+-------------------------------------------------------------------
Old:
----
defusedxml-0.7.0.tar.gz
New:
----
defusedxml-0.7.1.tar.gz
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ python-defusedxml.spec ++++++
--- /var/tmp/diff_new_pack.kvcrtx/_old 2021-04-01 14:15:54.711858251 +0200
+++ /var/tmp/diff_new_pack.kvcrtx/_new 2021-04-01 14:15:54.711858251 +0200
@@ -19,7 +19,7 @@
%{?!python_module:%define python_module() python-%{**} python3-%{**}}
%bcond_without tests
Name: python-defusedxml
-Version: 0.7.0
+Version: 0.7.1
Release: 0
Summary: XML bomb protection for Python stdlib modules
License: Python-2.0
++++++ defusedxml-0.7.0.tar.gz -> defusedxml-0.7.1.tar.gz ++++++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/defusedxml-0.7.0/.github/workflows/main.yml
new/defusedxml-0.7.1/.github/workflows/main.yml
--- old/defusedxml-0.7.0/.github/workflows/main.yml 2021-01-15
10:06:21.000000000 +0100
+++ new/defusedxml-0.7.1/.github/workflows/main.yml 2021-03-08
11:56:59.000000000 +0100
@@ -1,14 +1,20 @@
on:
push:
- branches: ["master"]
+ branches:
+ - master
+ - main
+ - v*.x
pull_request:
- branches: ["master"]
+ branches:
+ - master
+ - main
+ - v*.x
workflow_dispatch:
jobs:
tests:
name: "Python ${{ matrix.python-version }}"
- runs-on: "ubuntu-latest"
+ runs-on: "ubuntu-20.04"
strategy:
fail-fast: false
matrix:
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/defusedxml-0.7.0/CHANGES.txt
new/defusedxml-0.7.1/CHANGES.txt
--- old/defusedxml-0.7.0/CHANGES.txt 2021-03-04 10:40:13.000000000 +0100
+++ new/defusedxml-0.7.1/CHANGES.txt 2021-03-08 11:57:23.000000000 +0100
@@ -1,6 +1,16 @@
Changelog
=========
+defusedxml 0.7.1
+---------------------
+
+*Release date: 08-Mar-2021*
+
+- Fix regression ``defusedxml.ElementTree.ParseError`` (#63)
+ The ``ParseError`` exception is now the same class object as
+ ``xml.etree.ElementTree.ParseError`` again.
+
+
defusedxml 0.7.0
----------------
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/defusedxml-0.7.0/PKG-INFO
new/defusedxml-0.7.1/PKG-INFO
--- old/defusedxml-0.7.0/PKG-INFO 2021-03-04 10:44:36.114280000 +0100
+++ new/defusedxml-0.7.1/PKG-INFO 2021-03-08 11:59:07.593425000 +0100
@@ -1,6 +1,6 @@
Metadata-Version: 1.2
Name: defusedxml
-Version: 0.7.0
+Version: 0.7.1
Summary: XML bomb protection for Python stdlib modules
Home-page: https://github.com/tiran/defusedxml
Author: Christian Heimes
@@ -821,6 +821,16 @@
Changelog
=========
+ defusedxml 0.7.1
+ ---------------------
+
+ *Release date: 08-Mar-2021*
+
+ - Fix regression ``defusedxml.ElementTree.ParseError`` (#63)
+ The ``ParseError`` exception is now the same class object as
+ ``xml.etree.ElementTree.ParseError`` again.
+
+
defusedxml 0.7.0
----------------
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/defusedxml-0.7.0/README.html
new/defusedxml-0.7.1/README.html
--- old/defusedxml-0.7.0/README.html 2021-03-04 10:40:56.000000000 +0100
+++ new/defusedxml-0.7.1/README.html 2021-03-08 11:57:28.000000000 +0100
@@ -560,18 +560,19 @@
<li><a class="reference internal" href="#acknowledgements"
id="id45">Acknowledgements</a></li>
<li><a class="reference internal" href="#references"
id="id46">References</a></li>
<li><a class="reference internal" href="#changelog" id="id47">Changelog</a><ul>
-<li><a class="reference internal" href="#defusedxml-0-7-0"
id="id48">defusedxml 0.7.0</a></li>
-<li><a class="reference internal" href="#defusedxml-0-7-0rc2"
id="id49">defusedxml 0.7.0rc2</a></li>
-<li><a class="reference internal" href="#defusedxml-0-7-0rc1"
id="id50">defusedxml 0.7.0rc1</a></li>
-<li><a class="reference internal" href="#defusedxml-0-6-0"
id="id51">defusedxml 0.6.0</a></li>
-<li><a class="reference internal" href="#defusedxml-0-6-0rc1"
id="id52">defusedxml 0.6.0rc1</a></li>
-<li><a class="reference internal" href="#defusedxml-0-5-0"
id="id53">defusedxml 0.5.0</a></li>
-<li><a class="reference internal" href="#defusedxml-0-5-0-rc1"
id="id54">defusedxml 0.5.0.rc1</a></li>
-<li><a class="reference internal" href="#defusedxml-0-4-1"
id="id55">defusedxml 0.4.1</a></li>
-<li><a class="reference internal" href="#defusedxml-0-4" id="id56">defusedxml
0.4</a></li>
-<li><a class="reference internal" href="#defusedxml-0-3" id="id57">defusedxml
0.3</a></li>
-<li><a class="reference internal" href="#defusedxml-0-2" id="id58">defusedxml
0.2</a></li>
-<li><a class="reference internal" href="#defusedxml-0-1" id="id59">defusedxml
0.1</a></li>
+<li><a class="reference internal" href="#defusedxml-0-7-1"
id="id48">defusedxml 0.7.1</a></li>
+<li><a class="reference internal" href="#defusedxml-0-7-0"
id="id49">defusedxml 0.7.0</a></li>
+<li><a class="reference internal" href="#defusedxml-0-7-0rc2"
id="id50">defusedxml 0.7.0rc2</a></li>
+<li><a class="reference internal" href="#defusedxml-0-7-0rc1"
id="id51">defusedxml 0.7.0rc1</a></li>
+<li><a class="reference internal" href="#defusedxml-0-6-0"
id="id52">defusedxml 0.6.0</a></li>
+<li><a class="reference internal" href="#defusedxml-0-6-0rc1"
id="id53">defusedxml 0.6.0rc1</a></li>
+<li><a class="reference internal" href="#defusedxml-0-5-0"
id="id54">defusedxml 0.5.0</a></li>
+<li><a class="reference internal" href="#defusedxml-0-5-0-rc1"
id="id55">defusedxml 0.5.0.rc1</a></li>
+<li><a class="reference internal" href="#defusedxml-0-4-1"
id="id56">defusedxml 0.4.1</a></li>
+<li><a class="reference internal" href="#defusedxml-0-4" id="id57">defusedxml
0.4</a></li>
+<li><a class="reference internal" href="#defusedxml-0-3" id="id58">defusedxml
0.3</a></li>
+<li><a class="reference internal" href="#defusedxml-0-2" id="id59">defusedxml
0.2</a></li>
+<li><a class="reference internal" href="#defusedxml-0-1" id="id60">defusedxml
0.1</a></li>
</ul>
</li>
</ul>
@@ -1311,15 +1312,24 @@
</div>
<div class="section" id="changelog">
<h1><a class="toc-backref" href="#id47">Changelog</a></h1>
+<div class="section" id="defusedxml-0-7-1">
+<h2><a class="toc-backref" href="#id48">defusedxml 0.7.1</a></h2>
+<p><em>Release date: 08-Mar-2021</em></p>
+<ul class="simple">
+<li>Fix regression <tt class="docutils
literal">defusedxml.ElementTree.ParseError</tt> (#63)
+The <tt class="docutils literal">ParseError</tt> exception is now the same
class object as
+<tt class="docutils literal">xml.etree.ElementTree.ParseError</tt> again.</li>
+</ul>
+</div>
<div class="section" id="defusedxml-0-7-0">
-<h2><a class="toc-backref" href="#id48">defusedxml 0.7.0</a></h2>
+<h2><a class="toc-backref" href="#id49">defusedxml 0.7.0</a></h2>
<p><em>Release date: 4-Mar-2021</em></p>
<ul class="simple">
<li>No changes</li>
</ul>
</div>
<div class="section" id="defusedxml-0-7-0rc2">
-<h2><a class="toc-backref" href="#id49">defusedxml 0.7.0rc2</a></h2>
+<h2><a class="toc-backref" href="#id50">defusedxml 0.7.0rc2</a></h2>
<p><em>Release date: 12-Jan-2021</em></p>
<ul class="simple">
<li>Re-add and deprecate <tt class="docutils
literal">defusedxml.cElementTree</tt></li>
@@ -1328,7 +1338,7 @@
</ul>
</div>
<div class="section" id="defusedxml-0-7-0rc1">
-<h2><a class="toc-backref" href="#id50">defusedxml 0.7.0rc1</a></h2>
+<h2><a class="toc-backref" href="#id51">defusedxml 0.7.0rc1</a></h2>
<p><em>Release date: 04-May-2020</em></p>
<ul class="simple">
<li>Add support for Python 3.9</li>
@@ -1337,7 +1347,7 @@
</ul>
</div>
<div class="section" id="defusedxml-0-6-0">
-<h2><a class="toc-backref" href="#id51">defusedxml 0.6.0</a></h2>
+<h2><a class="toc-backref" href="#id52">defusedxml 0.6.0</a></h2>
<p><em>Release date: 17-Apr-2019</em></p>
<ul class="simple">
<li>Increase test coverage.</li>
@@ -1345,7 +1355,7 @@
</ul>
</div>
<div class="section" id="defusedxml-0-6-0rc1">
-<h2><a class="toc-backref" href="#id52">defusedxml 0.6.0rc1</a></h2>
+<h2><a class="toc-backref" href="#id53">defusedxml 0.6.0rc1</a></h2>
<p><em>Release date: 14-Apr-2019</em></p>
<ul class="simple">
<li>Test on Python 3.7 stable and 3.8-dev</li>
@@ -1363,14 +1373,14 @@
</ul>
</div>
<div class="section" id="defusedxml-0-5-0">
-<h2><a class="toc-backref" href="#id53">defusedxml 0.5.0</a></h2>
+<h2><a class="toc-backref" href="#id54">defusedxml 0.5.0</a></h2>
<p><em>Release date: 07-Feb-2017</em></p>
<ul class="simple">
<li>No changes</li>
</ul>
</div>
<div class="section" id="defusedxml-0-5-0-rc1">
-<h2><a class="toc-backref" href="#id54">defusedxml 0.5.0.rc1</a></h2>
+<h2><a class="toc-backref" href="#id55">defusedxml 0.5.0.rc1</a></h2>
<p><em>Release date: 28-Jan-2017</em></p>
<ul class="simple">
<li>Add compatibility with Python 3.6</li>
@@ -1379,7 +1389,7 @@
</ul>
</div>
<div class="section" id="defusedxml-0-4-1">
-<h2><a class="toc-backref" href="#id55">defusedxml 0.4.1</a></h2>
+<h2><a class="toc-backref" href="#id56">defusedxml 0.4.1</a></h2>
<p><em>Release date: 28-Mar-2013</em></p>
<ul class="simple">
<li>Add more demo exploits, e.g. python_external.py and Xalan XSLT demos.</li>
@@ -1387,7 +1397,7 @@
</ul>
</div>
<div class="section" id="defusedxml-0-4">
-<h2><a class="toc-backref" href="#id56">defusedxml 0.4</a></h2>
+<h2><a class="toc-backref" href="#id57">defusedxml 0.4</a></h2>
<p><em>Release date: 25-Feb-2013</em></p>
<ul class="simple">
<li>As per <a class="reference external"
href="http://seclists.org/oss-sec/2013/q1/340";>http://seclists.org/oss-sec/2013/q1/340</a>
please REJECT
@@ -1400,14 +1410,14 @@
</ul>
</div>
<div class="section" id="defusedxml-0-3">
-<h2><a class="toc-backref" href="#id57">defusedxml 0.3</a></h2>
+<h2><a class="toc-backref" href="#id58">defusedxml 0.3</a></h2>
<p><em>Release date: 19-Feb-2013</em></p>
<ul class="simple">
<li>Improve documentation</li>
</ul>
</div>
<div class="section" id="defusedxml-0-2">
-<h2><a class="toc-backref" href="#id58">defusedxml 0.2</a></h2>
+<h2><a class="toc-backref" href="#id59">defusedxml 0.2</a></h2>
<p><em>Release date: 15-Feb-2013</em></p>
<ul class="simple">
<li>Rename ExternalEntitiesForbidden to ExternalReferenceForbidden</li>
@@ -1422,7 +1432,7 @@
</ul>
</div>
<div class="section" id="defusedxml-0-1">
-<h2><a class="toc-backref" href="#id59">defusedxml 0.1</a></h2>
+<h2><a class="toc-backref" href="#id60">defusedxml 0.1</a></h2>
<p><em>Release date: 08-Feb-2013</em></p>
<ul class="simple">
<li>Initial and internal release for PSRT review</li>
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/defusedxml-0.7.0/README.md
new/defusedxml-0.7.1/README.md
--- old/defusedxml-0.7.0/README.md 2021-03-04 10:40:56.000000000 +0100
+++ new/defusedxml-0.7.1/README.md 2021-03-08 11:57:27.000000000 +0100
@@ -716,6 +716,14 @@
Injection](https://www.owasp.org/index.php/Testing_for_XML_Injection_\(OWASP-DV-008\))
# Changelog
+## defusedxml 0.7.1
+
+*Release date: 08-Mar-2021*
+
+ - Fix regression `defusedxml.ElementTree.ParseError` (\#63) The
+ `ParseError` exception is now the same class object as
+ `xml.etree.ElementTree.ParseError` again.
+
## defusedxml 0.7.0
*Release date: 4-Mar-2021*
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/defusedxml-0.7.0/defusedxml/ElementTree.py
new/defusedxml-0.7.1/defusedxml/ElementTree.py
--- old/defusedxml-0.7.0/defusedxml/ElementTree.py 2021-01-15
10:06:21.000000000 +0100
+++ new/defusedxml-0.7.1/defusedxml/ElementTree.py 2021-03-08
11:56:59.000000000 +0100
@@ -9,6 +9,7 @@
import sys
import warnings
+from xml.etree.ElementTree import ParseError
from xml.etree.ElementTree import TreeBuilder as _TreeBuilder
from xml.etree.ElementTree import parse as _parse
from xml.etree.ElementTree import tostring
@@ -20,7 +21,6 @@
else:
from xml.etree.ElementTree import XMLParser as _XMLParser
from xml.etree.ElementTree import iterparse as _iterparse
- from xml.etree.ElementTree import ParseError
from .common import (
@@ -63,13 +63,15 @@
_XMLParser = pure_pymod.XMLParser
_iterparse = pure_pymod.iterparse
- ParseError = pure_pymod.ParseError
+ # patch pure module to use ParseError from C extension
+ pure_pymod.ParseError = ParseError
- return _XMLParser, _iterparse, ParseError
+ return _XMLParser, _iterparse
if PY3:
- _XMLParser, _iterparse, ParseError = _get_py3_cls()
+ _XMLParser, _iterparse = _get_py3_cls()
+
_sentinel = object()
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/defusedxml-0.7.0/defusedxml/__init__.py
new/defusedxml-0.7.1/defusedxml/__init__.py
--- old/defusedxml-0.7.0/defusedxml/__init__.py 2021-03-04 10:40:27.000000000
+0100
+++ new/defusedxml-0.7.1/defusedxml/__init__.py 2021-03-08 11:56:59.000000000
+0100
@@ -56,7 +56,7 @@
return defused
-__version__ = "0.7.0"
+__version__ = "0.7.1"
__all__ = [
"DefusedXmlException",
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/defusedxml-0.7.0/defusedxml/cElementTree.py
new/defusedxml-0.7.1/defusedxml/cElementTree.py
--- old/defusedxml-0.7.0/defusedxml/cElementTree.py 2021-01-15
10:06:21.000000000 +0100
+++ new/defusedxml-0.7.1/defusedxml/cElementTree.py 2021-03-08
11:56:59.000000000 +0100
@@ -18,7 +18,19 @@
# iterparse from ElementTree!
from xml.etree.ElementTree import iterparse as _iterparse
-from .ElementTree import DefusedXMLParser
+# This module is an alias for ElementTree just like xml.etree.cElementTree
+from .ElementTree import (
+ XML,
+ XMLParse,
+ XMLParser,
+ XMLTreeBuilder,
+ fromstring,
+ iterparse,
+ parse,
+ tostring,
+ DefusedXMLParser,
+ ParseError,
+)
__origin__ = "xml.etree.cElementTree"
@@ -38,6 +50,7 @@
XML = fromstring
__all__ = [
+ "ParseError",
"XML",
"XMLParse",
"XMLParser",
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/defusedxml-0.7.0/defusedxml.egg-info/PKG-INFO
new/defusedxml-0.7.1/defusedxml.egg-info/PKG-INFO
--- old/defusedxml-0.7.0/defusedxml.egg-info/PKG-INFO 2021-03-04
10:44:35.000000000 +0100
+++ new/defusedxml-0.7.1/defusedxml.egg-info/PKG-INFO 2021-03-08
11:59:07.000000000 +0100
@@ -1,6 +1,6 @@
Metadata-Version: 1.2
Name: defusedxml
-Version: 0.7.0
+Version: 0.7.1
Summary: XML bomb protection for Python stdlib modules
Home-page: https://github.com/tiran/defusedxml
Author: Christian Heimes
@@ -821,6 +821,16 @@
Changelog
=========
+ defusedxml 0.7.1
+ ---------------------
+
+ *Release date: 08-Mar-2021*
+
+ - Fix regression ``defusedxml.ElementTree.ParseError`` (#63)
+ The ``ParseError`` exception is now the same class object as
+ ``xml.etree.ElementTree.ParseError`` again.
+
+
defusedxml 0.7.0
----------------
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/defusedxml-0.7.0/tests.py
new/defusedxml-0.7.1/tests.py
--- old/defusedxml-0.7.0/tests.py 2021-01-15 10:06:21.000000000 +0100
+++ new/defusedxml-0.7.1/tests.py 2021-03-08 11:56:59.000000000 +0100
@@ -214,6 +214,15 @@
self.assertIs(orig_elementtree, second_elementtree)
+ def test_orig_parseerror(self):
+ # https://github.com/tiran/defusedxml/issues/63
+ self.assertIs(self.module.ParseError, orig_elementtree.ParseError)
+ try:
+ self.parseString("invalid")
+ except Exception as e:
+ self.assertIsInstance(e, orig_elementtree.ParseError)
+ self.assertIsInstance(e, self.module.ParseError)
+
class TestDefusedcElementTree(TestDefusedElementTree):
module = cElementTree
