Hello community, here is the log from the commit of package python-pyramid for openSUSE:Factory checked in at 2015-08-05 06:51:47 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/python-pyramid (Old) and /work/SRC/openSUSE:Factory/.python-pyramid.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "python-pyramid" Changes: -------- --- /work/SRC/openSUSE:Factory/python-pyramid/python-pyramid.changes 2015-02-06 22:38:21.000000000 +0100 +++ /work/SRC/openSUSE:Factory/.python-pyramid.new/python-pyramid.changes 2015-08-05 06:51:49.000000000 +0200 @@ -1,0 +2,44 @@ +Thu Jul 30 14:16:47 UTC 2015 - h...@urpla.net + +- 1.5.7 (2015-04-28) + * Further fix the JSONP renderer by prefixing the returned content with a comment. + This should mitigate attacks from Flash (See CVE-2014-4671). + See https://github.com/Pylons/pyramid/pull/1648 + * Allow periods and brackets ([]) in the JSONP callback. The original fix was + overly-restrictive and broke Angular. See https://github.com/Pylons/pyramid/pull/1648 + +- 1.5.6 (2015-04-14) + * 1.5.5 was a brown-bag release which was missing files. + +- 1.5.5 (2015-04-14) + * The JSONP renderer created JavaScript code in such a way that a callback variable + could be used to arbitrarily inject javascript into the response object. + https://github.com/Pylons/pyramid/pull/1626 + +- 1.5.4 (2015-02-24) + * Fix regression where pserve --reload would not work when running as a daemon. + Backported from https://github.com/Pylons/pyramid/pull/1592 + +- 1.5.3 (2015-02-22) + * Work around an issue where pserve --reload would leave terminal echo disabled if it + reloaded during a pdb session. Backported from https://github.com/Pylons/pyramid/pull/1577 + * Fixed a failing unittest caused by differing mimetypes on various OS platforms. + See https://github.com/Pylons/pyramid/issues/1405 + * Overall improvments for the proutes command. Added --format and --glob arguments to the + command, introduced the method column for displaying available request methods, and + improved the view output by showing the module instead of just __repr__. + See: https://github.com/Pylons/pyramid/pull/1542 + * The pyramid.renderers.JSONP renderer would raise an exception if used without a request + object. It will now fallback to behave like the pyramid.renderers.JSON renderer if + there is no request object to derive a callback from. + See https://github.com/Pylons/pyramid/pull/1562 + * Prevent “parameters to load are deprecated” DeprecationWarning from setuptools>=11.3. + See https://github.com/Pylons/pyramid/pull/1541 + * Avoiding timing attacks against CSRF tokens. Backported from + https://github.com/Pylons/pyramid/pull/1574 + * pserve can now take a -b or --browser option to open the server URL in a web browser. + See https://github.com/Pylons/pyramid/pull/1533 + +- remove fix_mimetype_tests.patch, applied upstream + +------------------------------------------------------------------- Old: ---- fix_mimetype_tests.patch pyramid-1.5.2.tar.gz New: ---- pyramid-1.5.7.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ python-pyramid.spec ++++++ --- /var/tmp/diff_new_pack.k7YPuZ/_old 2015-08-05 06:51:50.000000000 +0200 +++ /var/tmp/diff_new_pack.k7YPuZ/_new 2015-08-05 06:51:50.000000000 +0200 @@ -1,7 +1,7 @@ # # spec file for package python-pyramid # -# Copyright (c) 2015 SUSE LINUX Products GmbH, Nuernberg, Germany. +# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany. # Copyright (c) 2015 LISA GmbH, Bingen, Germany. # # All modifications and additions to the file contributed by third parties @@ -18,14 +18,13 @@ Name: python-pyramid -Version: 1.5.2 +Version: 1.5.7 Release: 0 Url: http://pylonsproject.org -Summary: The Pyramid web application development framework, a Pylons project +Summary: The Pyramid web application development framework License: BSD-4-Clause and ZPL-2.1 and MIT Group: Development/Languages/Python Source: http://pypi.python.org/packages/source/p/pyramid/pyramid-%{version}.tar.gz -Patch1: fix_mimetype_tests.patch Requires: python-PasteDeploy >= 1.5.0 Requires: python-WebOb >= 1.3.1 Requires: python-repoze.lru >= 0.4 @@ -74,7 +73,7 @@ Pyramid was previously known as repoze.bfg (http://bfg.repoze.org). %package doc -Summary: The Pyramid web application development framework, a Pylons project +Summary: The Pyramid web application development framework Group: Development/Languages/Python Requires: %{name} = %{version} @@ -83,7 +82,6 @@ %prep %setup -q -n pyramid-%{version} -%patch1 -p1 %build python setup.py build ++++++ pyramid-1.5.2.tar.gz -> pyramid-1.5.7.tar.gz ++++++ ++++ 13963 lines of diff (skipped)