Hello community, here is the log from the commit of package python-bandit for openSUSE:Leap:15.2 checked in at 2020-02-22 18:50:01 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Leap:15.2/python-bandit (Old) and /work/SRC/openSUSE:Leap:15.2/.python-bandit.new.26092 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "python-bandit" Sat Feb 22 18:50:01 2020 rev:1 rq:775556 version:1.6.2 Changes: -------- New Changes file: --- /dev/null 2019-12-19 10:12:34.003146842 +0100 +++ /work/SRC/openSUSE:Leap:15.2/.python-bandit.new.26092/python-bandit.changes 2020-02-22 18:50:02.320430757 +0100 @@ -0,0 +1,71 @@ +------------------------------------------------------------------- +Thu Nov 14 15:05:01 UTC 2019 - Tomáš Chvátal <[email protected]> + +- Skip out python2 build as the dependencies are unresolvable + +------------------------------------------------------------------- +Wed Jul 24 10:13:14 UTC 2019 - [email protected] + +- version update to 1.6.2 + * add test for regression and fix directory exclusion without wildcards (#489) + * add namespaces for parent attributes (#492) + * Performance fix (#502) + +------------------------------------------------------------------- +Thu May 16 17:29:13 UTC 2019 - Bryan Stephenson <[email protected]> + +- Update to version 1.6.0 + * Add namespaces for parent attributes + +------------------------------------------------------------------- +Fri Mar 8 02:46:11 UTC 2019 - John Vandenberg <[email protected]> + +- Add missing dependency on stestr >= 1.0.0 + +------------------------------------------------------------------- +Mon Feb 11 08:10:09 UTC 2019 - John Vandenberg <[email protected]> + +- Add remove-non-test-deps.patch to remove build dependencies not needed + to build, including hacking which requires an unavailable version of flake8 +- Activate tests +- Use %license +- Remove unnecessary devel build dependency +- Update to v1.5.1 + * Fixed crash on dynamic import traversal + * New plugin to check for ignoring host keys + * Adding test case for traversal crash +- from 1.5.0 + * Add Python 3.7 support + * Add experimental Python 3.8-dev to test with + * Remove the unused integration tests (#285) @ericwb + * Show support for Python 3.6 (#288) @ericwb + * Remove integration test playbooks (#290) @ericwb + * Django sql injection (#292) @ehooo + * Add detection for Django XSS (#295) @ehooo + * Fast fix for yaml import (#303) @ehooo + * Add missing B413 import_pycrypto in README (#308) @ericwb + * Add PyCryptodome to import blacklists (#307) @warthog9 + * Django sql injection (#292) @ehooo + * Add detection for Django XSS (#295) @ehooo + * Add missing documentation link for B703 (#314) @ericwb + * Improve shell (#298) @ehooo + * Remove openstack specific utils.exec checks (#328) @ericwb + * add os.tempnam() / os.tmpnam() to blacklist (#330) @chair6 + * Add subprocess.run to B602 (#334) @ericwb + * Repair some broken see also links in the doc (#336) @ericwb + * Use html.escape() instead of cgi.escape() (#339) @ericwb + * Re-enable functional tests as part of CI (#348) @ericwb + * Add more_info URL to XML output (#354) @stannum-l + * Report dill usage (#347) @calve + * Add emojis to issue types (#358) @ericwb + * Add more_info URL to text output (#359) @stannum-l + * Add more_info URL to screen formatter (#360) @stannum-l + * Add support to run bandit as python -m bandit (#363) @rtfpessoa + * Add more_info URL to csv formatter (#361) @stannum-l + * Add external documentation references (#368) @evqna + * Change ver 1.4.1 references to 1.5.0 (#370) @ericwb + +------------------------------------------------------------------- +Thu Nov 16 17:44:23 UTC 2017 - [email protected] + +- Initial version for v1.4.0 New: ---- bandit-1.6.2.tar.gz python-bandit.changes python-bandit.spec remove-non-test-deps.patch ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ python-bandit.spec ++++++ # # spec file for package python-bandit # # Copyright (c) 2019 SUSE LLC. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed # upon. The license for this file, and modifications and additions to the # file, is the same license as for the pristine package itself (unless the # license for the pristine package is not an Open Source License, in which # case the license is the MIT License). An "Open Source License" is a # license that conforms to the Open Source Definition (Version 1.9) # published by the Open Source Initiative. # Please submit bugfixes or comments via https://bugs.opensuse.org/ # %{?!python_module:%define python_module() python-%{**} python3-%{**}} # Tests require python-hacking, which isn't compatible with pycodestyle %bcond_without builddocs # dependencies are no longer py2 compatible %define skip_python2 1 Name: python-bandit Version: 1.6.2 Release: 0 Summary: Security oriented static analyser for Python code License: Apache-2.0 Group: Development/Languages/Python URL: https://github.com/PyCQA/bandit Source: https://files.pythonhosted.org/packages/source/b/bandit/bandit-%{version}.tar.gz Patch0: remove-non-test-deps.patch BuildRequires: %{python_module GitPython >= 1.0.1} BuildRequires: %{python_module PyYAML >= 3.13} BuildRequires: %{python_module beautifulsoup4 >= 4.6.0} BuildRequires: %{python_module fixtures >= 3.0.0} BuildRequires: %{python_module mock >= 2.0.0} BuildRequires: %{python_module pbr >= 1.8} BuildRequires: %{python_module python-subunit >= 0.0.18} BuildRequires: %{python_module setuptools} BuildRequires: %{python_module six >= 1.10.0} BuildRequires: %{python_module stestr >= 1.0.0} BuildRequires: %{python_module stevedore >= 1.20.0} BuildRequires: %{python_module testrepository >= 0.0.18} BuildRequires: %{python_module testscenarios >= 0.4} BuildRequires: %{python_module testtools >= 2.2.0} BuildRequires: fdupes BuildRequires: python-rpm-macros # doc requirements %if %{with builddocs} BuildRequires: %{python_module Sphinx >= 1.2.1} BuildRequires: %{python_module oslosphinx >= 4.7.0} BuildRequires: %{python_module oslotest >= 3.2.0} BuildRequires: %{python_module reno >= 1.8.0} %endif Requires: python-GitPython >= 1.0.1 Requires: python-PyYAML >= 3.13 Requires: python-six >= 1.10.0 Requires: python-stestr >= 1.0.0 Requires: python-stevedore >= 1.20.0 BuildArch: noarch Requires(post): update-alternatives Requires(postun): update-alternatives %python_subpackages %description Bandit is a tool designed to find common security issues in Python code. To do this Bandit processes each file, builds an AST from it, and runs appropriate plugins against the AST nodes. Once Bandit has finished scanning all the files it generates a report. %prep %setup -q -n bandit-%{version} %patch0 -p1 sed -i '/^#!/d' bandit/__main__.py %build %python_build %install %python_install %python_expand %fdupes %{buildroot}%{$python_sitelib} %python_clone -a %{buildroot}%{_bindir}/bandit %python_clone -a %{buildroot}%{_bindir}/bandit-config-generator %python_clone -a %{buildroot}%{_bindir}/bandit-baseline %check # Copy executables to py2/3 build areas, to be used for testing %{python_expand mkdir build/bin for filepath in %{buildroot}/%{_bindir}/bandit*-%{$python_bin_suffix}; do filename=$(basename $filepath) unsuffixed=${filename/-%{$python_bin_suffix}/} cp $filepath build/bin/$unsuffixed done } %{python_expand export PATH="$(pwd)/build/bin:$PATH" $python setup.py test } %post %{python_install_alternative bandit bandit-config-generator bandit-baseline } %postun %python_uninstall_alternative bandit %files %{python_files} %license LICENSE %doc AUTHORS ChangeLog README.rst %python_alternative %{_bindir}/bandit %python_alternative %{_bindir}/bandit-config-generator %python_alternative %{_bindir}/bandit-baseline %{python_sitelib}/* %changelog ++++++ remove-non-test-deps.patch ++++++ --- bandit-1.5.1.orig/test-requirements.txt 2018-05-03 03:31:37.000000000 +0700 +++ bandit-1.5.1/test-requirements.txt 2019-02-11 13:59:52.547483165 +0700 @@ -1,15 +1,10 @@ # The order of packages is significant, because pip processes them in the order # of appearance. Changing the order has an impact on the overall integration # process, which may cause wedges in the gate later. -coverage!=4.4,>=4.0 # Apache-2.0 fixtures>=3.0.0 # Apache-2.0/BSD -hacking>=1.0.0 # Apache-2.0 mock>=2.0.0 # BSD stestr>=1.0.0 # Apache-2.0 testscenarios>=0.4 # Apache-2.0/BSD testtools>=2.2.0 # MIT -oslotest>=3.2.0 # Apache-2.0 beautifulsoup4>=4.6.0 # MIT - -pylint==1.4.5 # GPLv2
