Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package python-wheel for openSUSE:Factory checked in at 2026-02-05 17:57:05 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/python-wheel (Old) and /work/SRC/openSUSE:Factory/.python-wheel.new.1670 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "python-wheel" Thu Feb 5 17:57:05 2026 rev:41 rq:1329992 version:0.46.3 Changes: -------- --- /work/SRC/openSUSE:Factory/python-wheel/python-wheel.changes 2025-04-20 20:08:24.370214433 +0200 +++ /work/SRC/openSUSE:Factory/.python-wheel.new.1670/python-wheel.changes 2026-02-05 17:58:08.433920111 +0100 @@ -1,0 +2,29 @@ +Tue Jan 27 10:15:40 UTC 2026 - Nico Krapp <[email protected]> + +- Update to 0.46.3 + * Fixed ImportError: cannot import name '_setuptools_logging' from 'wheel' + when installed alongside an old version of setuptools and running the + bdist_wheel command +- Update to 0.46.2 (fixes CVE-2026-24049, bsc#1257100) + * Restored the bdist_wheel command for compatibility with setuptools older + than v70.1 + * Importing wheel.bdist_wheel now emits a FutureWarning instead of a + DeprecationWarning + * Fixed wheel unpack potentially altering the permissions of files outside + of the destination tree with maliciously crafted wheels (CVE-2026-24049) +- Update to 0.46.1 + * Temporarily restored the wheel.macosx_libfile module +- Update to 0.46.0 + * Dropped support for Python 3.8 + * Removed the bdist_wheel setuptools command implementation and entry point. + The wheel.bdist_wheel module is now just an alias to + setuptools.command.bdist_wheel, emitting a deprecation warning on import. + * Removed vendored packaging in favor of a run-time dependency on it + * Made the wheel.metadata module private (with a deprecation warning if it's + imported + * Made the wheel.cli package private (no deprecation warning) + * Fixed an exception when calling the convert command with an empty + description field +- drop tests.patch, merged upstream + +------------------------------------------------------------------- Old: ---- tests.patch wheel-0.45.1.tar.gz New: ---- wheel-0.46.3.tar.gz ----------(Old B)---------- Old: description field - drop tests.patch, merged upstream ----------(Old E)---------- ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ python-wheel.spec ++++++ --- /var/tmp/diff_new_pack.HfMu3o/_old 2026-02-05 17:58:09.557967262 +0100 +++ /var/tmp/diff_new_pack.HfMu3o/_new 2026-02-05 17:58:09.561967430 +0100 @@ -1,7 +1,7 @@ # # spec file for package python-wheel # -# Copyright (c) 2025 SUSE LLC +# Copyright (c) 2026 SUSE LLC and contributors # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -32,17 +32,15 @@ %endif %{?sle15_python_module_pythons} Name: python-wheel%{psuffix} -Version: 0.45.1 +Version: 0.46.3 Release: 0 Summary: A built-package format for Python License: MIT Group: Development/Languages/Python URL: https://github.com/pypa/wheel Source: https://github.com/pypa/wheel/archive/%{version}.tar.gz#/wheel-%{version}.tar.gz -# PATCH-FIX-UPSTREAM https://github.com/pypa/wheel/pull/651 fix test failures -Patch: tests.patch # Bootstrap: Don't BuildRequire setuptools or pip here! -BuildRequires: %{python_module base >= 3.8} +BuildRequires: %{python_module base >= 3.9} BuildRequires: %{python_module flit-core} BuildRequires: fdupes BuildRequires: python-rpm-macros >= 20210929 @@ -59,6 +57,7 @@ BuildRequires: %{python_module pytest >= 3.0.0} BuildRequires: %{python_module wheel >= %{version}} %endif +Requires: python-packaging >= 26.0 %python_subpackages %description @@ -100,7 +99,10 @@ export LC_ALL=en_US.utf8 export PYTHONDONTWRITEBYTECODE=1 # license tests failing with setuptools 77: https://github.com/pypa/wheel/issues/658 -%pytest -k "not (test_licenses_default or test_licenses_deprecated or test_licenses_override)" +skip="test_licenses_default or test_licenses_deprecated or test_licenses_override" +# requires packaging >= 26.0: https://github.com/pypa/wheel/issues/677 +skip+=" or test_pkginfo_to_metadata" +%pytest -vv -k "not (${skip})" %endif %if !%{with test} ++++++ wheel-0.45.1.tar.gz -> wheel-0.46.3.tar.gz ++++++ ++++ 9454 lines of diff (skipped)
