Your message dated Wed, 30 Aug 2023 19:20:09 +0000
with message-id <[email protected]>
and subject line Bug#1050867: fixed in jekyll 4.3.2+dfsg-1
has caused the Debian Bug report #1050867,
regarding support for YAML aliases broken by switch from safe_yaml to Psych
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
1050867: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1050867
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: jekyll
Version: 4.3.1+dfsg-2
Severity: normal
Tags: patch
Dear Maintainers,
In jekyll 4.3.1+dfsg-1, a Debian-specific patch was added to rely on Psych
instead of safe_yaml for reading YAML files (see #1026427).
This change has however broken support for YAML aliases. More precisely, I’m no
longer able to use the minimal-mistakes theme, because this theme triggers the
parsing of the following YAML file:
https://github.com/mmistakes/minimal-mistakes/blob/master/_data/ui-text.yml
This YAML file has aliases (symbol names starting with an ampersand), which are
not supported by the Psych.safe_load() method with its default arguments. I
thus get this error message (truncated trace):
/usr/lib/ruby/3.1.0/psych/visitors/to_ruby.rb:430:in `visit_Psych_Nodes_Alias':
Unknown alias: DEFAULT_EN (Psych::BadAlias)
from /usr/lib/ruby/3.1.0/psych/visitors/visitor.rb:30:in `visit'
from /usr/lib/ruby/3.1.0/psych/visitors/visitor.rb:6:in `accept'
from /usr/lib/ruby/3.1.0/psych/visitors/to_ruby.rb:35:in `accept'
from /usr/lib/ruby/3.1.0/psych/visitors/to_ruby.rb:345:in `block in
revive_hash'
from /usr/lib/ruby/3.1.0/psych/visitors/to_ruby.rb:343:in `each'
from /usr/lib/ruby/3.1.0/psych/visitors/to_ruby.rb:343:in `each_slice'
from /usr/lib/ruby/3.1.0/psych/visitors/to_ruby.rb:343:in `revive_hash'
from /usr/lib/ruby/3.1.0/psych/visitors/to_ruby.rb:167:in
`visit_Psych_Nodes_Mapping'
from /usr/lib/ruby/3.1.0/psych/visitors/visitor.rb:30:in `visit'
from /usr/lib/ruby/3.1.0/psych/visitors/visitor.rb:6:in `accept'
from /usr/lib/ruby/3.1.0/psych/visitors/to_ruby.rb:35:in `accept'
from /usr/lib/ruby/3.1.0/psych/visitors/to_ruby.rb:345:in `block in
revive_hash'
from /usr/lib/ruby/3.1.0/psych/visitors/to_ruby.rb:343:in `each'
from /usr/lib/ruby/3.1.0/psych/visitors/to_ruby.rb:343:in `each_slice'
from /usr/lib/ruby/3.1.0/psych/visitors/to_ruby.rb:343:in `revive_hash'
from /usr/lib/ruby/3.1.0/psych/visitors/to_ruby.rb:167:in
`visit_Psych_Nodes_Mapping'
from /usr/lib/ruby/3.1.0/psych/visitors/visitor.rb:30:in `visit'
from /usr/lib/ruby/3.1.0/psych/visitors/visitor.rb:6:in `accept'
from /usr/lib/ruby/3.1.0/psych/visitors/to_ruby.rb:35:in `accept'
from /usr/lib/ruby/3.1.0/psych/visitors/to_ruby.rb:318:in
`visit_Psych_Nodes_Document'
from /usr/lib/ruby/3.1.0/psych/visitors/visitor.rb:30:in `visit'
from /usr/lib/ruby/3.1.0/psych/visitors/visitor.rb:6:in `accept'
from /usr/lib/ruby/3.1.0/psych/visitors/to_ruby.rb:35:in `accept'
from /usr/lib/ruby/3.1.0/psych.rb:335:in `safe_load'
from
/usr/share/rubygems-integration/all/gems/jekyll-4.3.1/lib/jekyll/utils.rb:321:in
`safe_load_yaml'
from
/usr/share/rubygems-integration/all/gems/jekyll-4.3.1/lib/jekyll/utils.rb:330:in
`safe_load_yaml_file'
[…]
An easy fix is to explicitly allow aliases. I attach a patch (which must be
applied on top of 0016-Drop-usage-of-safe_yaml.patch).
Thanks for your work,
--
⢀⣴⠾⠻⢶⣦⠀ Sébastien Villemot
⣾⠁⢠⠒⠀⣿⡁ Debian Developer
⢿⡄⠘⠷⠚⠋⠀ https://sebastien.villemot.name
⠈⠳⣄⠀⠀⠀⠀ https://www.debian.org
--- /usr/share/rubygems-integration/all/gems/jekyll-4.3.1/lib/jekyll/utils.rb
2023-04-16 23:35:56.000000000 +0200
+++ utils.rb 2023-08-30 15:56:26.028936881 +0200
@@ -318,7 +318,7 @@
# Safely load YAML strings
def safe_load_yaml(yaml)
- Psych.safe_load(yaml, :permitted_classes => [Date, Time])
+ Psych.safe_load(yaml, :permitted_classes => [Date, Time], aliases: true)
rescue ArgumentError
# Psych versions < 3.1 had a different safe_load API and used
# problematic language.
--- End Message ---
--- Begin Message ---
Source: jekyll
Source-Version: 4.3.2+dfsg-1
Done: Antonio Terceiro <[email protected]>
We believe that the bug you reported is fixed in the latest version of
jekyll, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Antonio Terceiro <[email protected]> (supplier of updated jekyll package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Wed, 30 Aug 2023 15:12:35 -0300
Source: jekyll
Architecture: source
Version: 4.3.2+dfsg-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Ruby Team
<[email protected]>
Changed-By: Antonio Terceiro <[email protected]>
Closes: 1050867
Changes:
jekyll (4.3.2+dfsg-1) unstable; urgency=medium
.
[ Daniel Leidert ]
* New upstream version 4.3.2+dfsg
.
[ Sébastien Villemot ]
* Allow YAML aliases (Closes: #1050867)
.
[ Antonio Terceiro ]
* Revert test changes meant for jekyll-sass-converter 3.x
Checksums-Sha1:
71926ac161cec1dfe86a905f3c983ee02c81c650 2711 jekyll_4.3.2+dfsg-1.dsc
0bd64833c1076f17ff79b06d636e7cbfc41169b1 1224564 jekyll_4.3.2+dfsg.orig.tar.xz
33cca54abecd7a0407d94d6b7befb1f4423b8405 40172
jekyll_4.3.2+dfsg-1.debian.tar.xz
4079da774d0827268595e551f9d996fbe27d7c05 25448
jekyll_4.3.2+dfsg-1_source.buildinfo
Checksums-Sha256:
2bf34f70ba87fe75836bc1646e067dc0bf4682a890cff54a77948af4847bf8b5 2711
jekyll_4.3.2+dfsg-1.dsc
931fe43e8575308ad194978f59b5eb5bf49c10f88b6e89cee784aded954df89f 1224564
jekyll_4.3.2+dfsg.orig.tar.xz
d19129211cab90ec4b6899b684d2452083fbb1f9ef3556e978848416f3f17e41 40172
jekyll_4.3.2+dfsg-1.debian.tar.xz
ef8c634ecbfd4b5ca9b54971dac9241ec56d7a99dc8644d4f91a7420baf17d6d 25448
jekyll_4.3.2+dfsg-1_source.buildinfo
Files:
14b45e8fd145e9b9066b311268260d0a 2711 web optional jekyll_4.3.2+dfsg-1.dsc
ba2d54ccecaaeccc60a02f029918bb0a 1224564 web optional
jekyll_4.3.2+dfsg.orig.tar.xz
5c3d8405be4fdb52cfa7b5a66214a445 40172 web optional
jekyll_4.3.2+dfsg-1.debian.tar.xz
9ebcf186ba4aa5c1bbd263056f4f0de7 25448 web optional
jekyll_4.3.2+dfsg-1_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=JNmf
-----END PGP SIGNATURE-----
--- End Message ---
_______________________________________________
Pkg-ruby-extras-maintainers mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
