meta-openembedded

mirror of git://git.openembedded.org/meta-openembedded synced 2026-04-14 20:10:03 +00:00

Author	SHA1	Message	Date
Wang Mingyu	2b143a275a	python3-tornado: upgrade 6.5.2 -> 6.5.3 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 8ba97b66461e6dc9c8b073e43286932394d53ed0) Changelog: https://github.com/tornadoweb/tornado/blob/master/docs/releases/v6.5.3.rst - Fix CVE-2025-67724, CVE-2025-67725 and CVE-2025-67726 - Fix open redirect vulnerabilities in demos - Fix path traversal vulnerabilites in demos Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2026-02-19 08:20:25 +05:30
Gyorgy Sarvari	7049927e65	python3-pyjwt: ignore CVE-2025-45768 Details: https://nvd.nist.gov/vuln/detail/CVE-2025-45768 The CVE is disputed: though the vulnerability is there, but it comes from incorrect configuration of the library by the main application. Due to this, ignore this CVE. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2026-02-19 08:20:24 +05:30
Gyorgy Sarvari	f17cb75cac	python3-py: ignore CVE-2022-42969 Details: https://nvd.nist.gov/vuln/detail/CVE-2022-42969 Upstream could not reproduce the issue. The vulnerability has currently the "disputed" flag in the NVD database, and Github has revoked their related advisory[1]. Ignore this CVE due to this. [1]: https://github.com/advisories/GHSA-w596-4wvx-j9j6 Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 91f6b85b36316d5940ee194b1d195caf3ac040b1) Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2026-02-19 08:20:24 +05:30
Gyorgy Sarvari	67474b0bdc	python3-orjson: upgrade 3.10.17 -> 3.10.18 Changelog: Fix incorrect escaping of the vertical tabulation character. This was introduced in 3.10.17. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2026-02-19 08:20:23 +05:30
Wang Mingyu	a1538075cf	python3-marshmallow: upgrade 4.1.1 -> 4.1.2 Changelog: Merge error store messages without rebuilding collections. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 54691ea40a98cc617d374d8368c665d103ceaf07) Contains fix for CVE-2025-68480 Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2026-02-19 08:20:23 +05:30
Wang Mingyu	b67599470c	python3-marshmallow: upgrade 4.1.0 -> 4.1.1 Bug fix: Ensure URL validator is case-insensitive when using custom schemes Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 39335015913a8bcc1b40fb7318334f626a9b8285) Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2026-02-19 08:20:22 +05:30
Gyorgy Sarvari	341e1204be	python3-m2crypto: mark CVE-2020-25657 as patched Details: https://nvd.nist.gov/vuln/detail/CVE-2020-25657 The commit[1] that fixes the vulnerability has been part of the package since version 0.39.0 [1]: `84c53958de` Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit ba6468f7a09bf8e268ea5ac7939925c362ead876) Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2026-02-19 08:20:22 +05:30
Gyorgy Sarvari	49cf55619b	python3-m2crypto: ignore CVE-2009-0127 Details: https://nvd.nist.gov/vuln/detail/CVE-2009-0127 The vulnerability is disputed[1] by upstream: "There is no vulnerability in M2Crypto. Nowhere in the functions are the return values of OpenSSL functions interpreted incorrectly. The functions provide an interface to their users that may be considered confusing, but is not incorrect, nor it is a vulnerability." [1]: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2009-0127 Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit b46a5452a1c1a417f2971e494e151fa1f4022e36) Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2026-02-19 08:20:21 +05:30
Gyorgy Sarvari	8cbb786347	python3-lief: upgrade 0.17.1 -> 0.17.2 Contains fix for CVE-2025-15504 Changelog: - Differentiate Mach-O FAT magic bytes and Java class - Fix MinGW compilation for some configuration - Fix alignment issue when rebuilding PE relocations - Fix infinite loop when processing v2 dynamic relocation - Ensure that added DYN ELF sections are properly aligned - Fix GnuHash null dereference - Fix strong performance issue when parsing certain Mach-O Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit cc4aa9b9d0263de0ea172db4d97ea9f98ae022b3) Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2026-02-19 08:20:21 +05:30
Gyorgy Sarvari	ea22ad26ba	python3-flask-cors: upgrade 4.0.0 -> 4.0.2 Contains a fix for CVE-2024-6221 (related patch dropped) and CVE-2024-1681 Changelog: 4.0.1: - Fix Read the Docs builds - Update extension.py to clean request.path before logging it - Update CI to include Python 3.12 and flask 3.0.3 4.0.2: - Bump requests from 2.31.0 to 2.32.0 in /docs - Backwards Compatible Fix for CVE-2024-6221 - Add unit tests for Private-Network Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com> (cherry picked from commit fbe5524dc822317c1a4b7aad566a6dae5657cb22) Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2026-02-19 08:20:20 +05:30
Gyorgy Sarvari	891e25f9bf	python3-cbor2: patch CVE-2025-68131 Details: https://nvd.nist.gov/vuln/detail/CVE-2025-68131 The NVD report mentions a PR as the solution, however in the discussion of that PR it turned out that this is incorrect, and another patch is the solution. That patch was picked. Ptests passed successfully. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2026-02-19 08:20:16 +05:30
Gyorgy Sarvari	9bc066079f	python3-aiohttp: patch CVE-2025-69230 Details: https://nvd.nist.gov/vuln/detail/CVE-2025-69230 Backport the patch referenced by the NVD advisory. The tests were only partially backported, as the original patch touched some tests that don't exist in this version. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2026-02-05 06:59:42 +05:30
Gyorgy Sarvari	4814f0631c	python3-aiohttp: patch CVE-2025-69229 Details: https://nvd.nist.gov/vuln/detail/CVE-2025-69229 Backport the patches referenced by the NVD advisory. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2026-02-05 06:59:41 +05:30
Gyorgy Sarvari	6ac033a227	python3-aiohttp: patch CVE-2025-69228 Details: https://nvd.nist.gov/vuln/detail/CVE-2025-69228 Backport the patch that is referenced by the NVD advisory. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2026-02-05 06:59:41 +05:30
Gyorgy Sarvari	0ea6c04dde	python3-aiohttp: patch CVE-2025-69227 Details: https://nvd.nist.gov/vuln/detail/CVE-2025-69227 Backport the patch that is referenced by teh NVD advisory. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2026-02-05 06:59:40 +05:30
Gyorgy Sarvari	4ac10b5dbb	python3-aiohttp: patch CVE-2025-69226 Details: https://nvd.nist.gov/vuln/detail/CVE-2025-69226 Backport the patch that is referenced by the NVD advisory. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2026-02-05 06:59:40 +05:30
Gyorgy Sarvari	0b467f2380	python3-aiohttp: patch CVE-2025-69225 Details: https://nvd.nist.gov/vuln/detail/CVE-2025-69225 Backport the patch that is referenced by the NVD report. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2026-02-05 06:59:39 +05:30
Gyorgy Sarvari	c24b8f9ced	python3-aiohttp: patch CVE-2025-69224 Details: https://nvd.nist.gov/vuln/detail/CVE-2025-69224 Backport the patch indicated by the NVD advisory. Only a part of the tests were backported, because some of the new tests require a compression method that is not supported yet by this version. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2026-02-05 06:59:36 +05:30
Peter Marko	060d098b4f	python3-protobuf: upgrade 6.33.2 -> 6.33.5 Solves CVE-2026-0994. Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2026-02-02 08:13:01 +05:30
Liu Yiding	7529c8a3bd	python3-protobuf: upgrade 6.33.1 -> 6.33.2 Change log: https://github.com/protocolbuffers/protobuf/releases/tag/v33.2 Signed-off-by: Liu Yiding <liuyd.fnst@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2026-02-02 08:13:01 +05:30
Gyorgy Sarvari	c6849e7529	python3-django: upgrade 5.2.8 -> 5.2.9 Includes fix for CVE-2025-13372 and CVE-2025-64460 Changelog: https://github.com/django/django/blob/5.2.9/docs/releases/5.2.9.txt Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 2538918df1826b965215e0441c7aa6d0958f1911) Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2026-01-06 18:07:59 +05:30
Gyorgy Sarvari	9a6b60af3e	python3-django: upgrade 4.2.26 -> 4.2.27 Contains fix for CVE-2025-13372 and CVE-2025-64460 Changelog: https://github.com/django/django/blob/4.2.27/docs/releases/4.2.27.txt Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit fae6fe9b4156fae7696a7978700c823f414da8f7) Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2026-01-06 18:07:58 +05:30
Gyorgy Sarvari	b964b9858b	python3-configobj: ignore CVE-2023-26112 Details: https://nvd.nist.gov/vuln/detail/CVE-2023-26112 The used version (5.0.9) contains the fix[1] already - ignore the CVE. [1]: `7c618b0bba` Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2026-01-06 18:07:58 +05:30
Leon Anavi	16316689b0	python3-huey: Upgrade 2.5.4 -> 2.5.5 Upgrade to release 2.5.5: - Fix for pypi Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 7954f37b3ca479b4b086e887afc7ddc03d7f9eb2) Signed-off-by: Ankur Tyagi <ankur.tyagi85@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2025-12-17 14:00:27 +05:30
Leon Anavi	afeafe9ac3	python3-cloudpickle: Upgrade 3.1.1 -> 3.1.2 Upgrade to release 3.1.2: - Fix pickling of abstract base classes containing type annotations for Python 3.14. License-Update: Use file LICENSE Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit b428f675752f1f83bed691cb9b58adf48212aaea) Signed-off-by: Ankur Tyagi <ankur.tyagi85@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2025-12-17 14:00:27 +05:30
Leon Anavi	2ded78c56b	python3-polyline: Upgrade 2.0.3 -> 2.0.4 Upgrade to release 2.0.4: - Add py.typed marker Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 71055538b53c2fd60ea9c3a84a6d01fab5fa58ae) Signed-off-by: Ankur Tyagi <ankur.tyagi85@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2025-12-17 14:00:27 +05:30
Wang Mingyu	1f836596b9	python3-sqlparse: upgrade 0.5.3 -> 0.5.4 Changelog: ============= Enhancements --------------- * Add support for Python 3.14. * Add type annotations to top-level API functions and include py.typed marker for PEP 561 compliance, enabling type checking with mypy and other tools * Add pre-commit hook support. sqlparse can now be used as a pre-commit hook to automatically format SQL files. The CLI now supports multiple files and an '--in-place' flag for in-place editing * Add 'ATTACH' and 'DETACH' to PostgreSQL keywords * Add 'INTERSECT' to close keywords in WHERE clause * Support 'REGEXP BINARY' comparison operator Bug Fixes ---------- * Add additional protection against denial of service attacks when parsing very large lists of tuples. This enhances the existing recursion protections with configurable limits for token processing to prevent DoS through algorithmic complexity attacks. The new limits (MAX_GROUPING_DEPTH=100, MAX_GROUPING_TOKENS=10000) can be adjusted or disabled (by setting to None) if needed for legitimate large SQL statements. * Remove shebang from cli.py and remove executable flag * Fix strip_comments not removing all comments when input contains only comments * Fix splitting statements with IF EXISTS/IF NOT EXISTS inside BEGIN...END blocks * Fix splitting on semicolons inside BEGIN...END blocks Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 705abb20c1ec1d780183eef9ffd2a02894ef42e6) Signed-off-by: Ankur Tyagi <ankur.tyagi85@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2025-12-17 14:00:26 +05:30
Wang Mingyu	5f28ef7349	python3-pymodbus: upgrade 3.11.3 -> 3.11.4 Changelog: full support for python 3.14 and a number of packages (like mypy) have been updated. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit b745baf4784f01b1eed82607d0d69004df6ed025) Signed-off-by: Ankur Tyagi <ankur.tyagi85@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2025-12-17 14:00:26 +05:30
Wang Mingyu	6e0c4cd1a5	python3-pybcj: upgrade 1.0.6 -> 1.0.7 Changelog: ============ - Support for python 3.14 - ci: fix test and release workflows Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 797e29ed4222dad9539f72c846e3435c92d50604) Signed-off-by: Ankur Tyagi <ankur.tyagi85@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2025-12-17 14:00:25 +05:30
Wang Mingyu	0912147bde	python3-gmpy2: upgrade 2.2.1 -> 2.2.2 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit e274146fa454127ca6483a02f6a4c30ac733fa3c) Signed-off-by: Ankur Tyagi <ankur.tyagi85@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2025-12-17 14:00:25 +05:30
Wang Mingyu	8197b4ba79	python3-eventlet: upgrade 0.40.3 -> 0.40.4 Changelog: ============ * Remove legacy setuptools configuration files * add 3.14 to supported versions * Emit warning on startup that eventlet is deprecated * Fix Python 3.14 on macOS * Workaround for #1068 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 768580103b8df1bf41ffb3f2f81c141057c2d0d9) Signed-off-by: Ankur Tyagi <ankur.tyagi85@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2025-12-17 14:00:24 +05:30
Ankur Tyagi	4ef895e04c	python3-django: upgrade 4.2.25 -> 4.2.26 Release Notes: https://docs.djangoproject.com/en/dev/releases/4.2.26/ Signed-off-by: Ankur Tyagi <ankur.tyagi85@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 5551a12170f347cd9e50d2c57fefa3967a4f80c6) Signed-off-by: Ankur Tyagi <ankur.tyagi85@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2025-12-17 14:00:24 +05:30
Ankur Tyagi	1a96475ce5	python3-django: upgrade 5.2.7 -> 5.2.8 Release Notes: https://docs.djangoproject.com/en/dev/releases/5.2.8/ Signed-off-by: Ankur Tyagi <ankur.tyagi85@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 8247a68d540ed9154cecf92f4e4612f1c0ba0490) Signed-off-by: Ankur Tyagi <ankur.tyagi85@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2025-12-17 14:00:23 +05:30
Wang Mingyu	0e313f5b73	python3-rich-argparse: upgrade 1.7.1 -> 1.7.2 Changelog: Fix colors overlapping with Python 3.14.0+ which enabled colors by default in the help formatter. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 18aaa7d8a6f326c13d3963ac7501ce54aaa066e0) Signed-off-by: Ankur Tyagi <ankur.tyagi85@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2025-12-17 14:00:23 +05:30
Wang Mingyu	93be4fae40	python3-moteus: upgrade 0.3.95 -> 0.3.96 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit ddca2bae90f702c45a1c84e4af5fc086d52aaa50) Signed-off-by: Ankur Tyagi <ankur.tyagi85@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2025-12-17 14:00:22 +05:30
Yoann Congal	861d46b60e	python3-propcache: add BBCLASSEXTEND native & nativesdk Since commit 82c2959678a0 ("python3-yarl: add BBCLASSEXTEND = "native nativesdk""), python3-yarl-native (resp. nativesdk-python3-yarl) needs python3-propcache-native (nativesdk-python3-yarl) to build. Cc: Tom Geelen <t.f.g.geelen@gmail.com> Signed-off-by: Yoann Congal <yoann.congal@smile.fr> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-21 16:16:34 -08:00
Yoann Congal	9404c6d022	python3-pylddwrap: add BBCLASSEXTEND native & nativesdk nativesdk-python3-pylddwrap is needed for the dependency tree : `-> nativesdk-python3-checksec-py Cc: Martin Jansa <martin.jansa@gmail.com> Signed-off-by: Yoann Congal <yoann.congal@smile.fr> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-21 16:16:34 -08:00
Yoann Congal	2a4ba1eaba	python3-icontract: add BBCLASSEXTEND nativesdk nativesdk-python3-icontract is needed for the dependency tree : `-> nativesdk-python3-pylddwrap `-> nativesdk-python3-checksec-py Cc: Martin Jansa <martin.jansa@gmail.com> Signed-off-by: Yoann Congal <yoann.congal@smile.fr> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-21 16:16:34 -08:00
Yoann Congal	bc993e8f6c	python3-asttokens: add BBCLASSEXTEND nativesdk nativesdk-python3-asttokens is needed for the dependency tree : `-> nativesdk-python3-icontract `-> nativesdk-python3-pylddwrap `-> nativesdk-python3-checksec-py Cc: Martin Jansa <martin.jansa@gmail.com> Signed-off-by: Yoann Congal <yoann.congal@smile.fr> Acked-by: Martin Jansa <martin.jansa@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-21 16:16:34 -08:00
Leon Anavi	3d7894aa32	python3-pybind11: Upgrade 2.13.6 -> 3.0.1 Upgrade to version 3.0.1: - Fixed compilation error in `type_caster_enum_type` when casting pointer-to-enum types. Added pointer overload to handle dereferencing before enum conversion. - Implement binary version of `make_index_sequence` to reduce template depth requirements for functions with many parameters. - Subinterpreter-specific exception handling code was removed to resolve segfaults. - Fixed issue that caused ``PYBIND11_MODULE`` code to run again if the module was re-imported after being deleted from ``sys.modules``. - Prevent concurrent creation of sub-interpreters as a workaround for stdlib concurrency issues in Python 3.12. - Fixed potential crash when using `cpp_function` objects with sub-interpreters. - Fixed non-entrant check in `implicitly_convertible()`. - Support C++20 on platforms that have older c++ runtimes. - Fix compilation with clang on msys2. - Avoid `nullptr` dereference warning with GCC 13.3.0 and python 3.11.13. - Fix potential warning about number of threads being too large. - Fix gcc 11.4+ warning about serial compilation using CMake. This work was sponsored by GOVCERT.LU. Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-21 07:23:31 -08:00
Leon Anavi	5ac890daa0	python3-lief: Upgrade 0.16.7 -> 0.17.1 Upgrade to release 0.17.1: - Fix missing visibility - Fix incorrect paging computations that occurred when only a subset of formats was enabled. - Fix include issue with the COFF format This work was sponsored by GOVCERT.LU. License-Update: Update years Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-21 07:23:31 -08:00
Khem Raj	5bcd67a255	python3-google-auth: Skip mTLS tests from ptests They need a cert infrastructure to execute. Mutual TLS authentication requires client/server certificates and a proper PKI setup that doesn't exist in the minimal qemu ptest environment. These are integration tests that need real certificate infrastructure. Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-20 18:10:36 -08:00
Khem Raj	13b7798656	python3-google-auth-oauthlib: Upgrade to 1.2.3 Skip a failing ptest Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-20 14:54:55 -08:00
Leon Anavi	eb6fce8545	python3-pillow: Upgrade 11.3.0 -> 12.0.0 Upgrade to release 12.0.0: - Fix issue with forward references in parent TypedDict classes - Exclude fields with exclude_if from JSON Schema required fields - Revert URL percent-encoding of credentials in the build() method of the AnyUrl and Dsn types - Add type inference for IP address types - Avoid getting default values from defaultdict - Fix issue with field serializers on nested typed dictionaries This work was sponsored by GOVCERT.LU. Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-20 10:30:33 -08:00
Leon Anavi	af4866a429	python3-pydantic: Upgrade 2.12.0 -> 2.12.4 Upgrade to release python3-pydantic: - Fix issue with forward references in parent TypedDict classes - Exclude fields with exclude_if from JSON Schema required fields - Revert URL percent-encoding of credentials in the build() method of the AnyUrl and Dsn types - Add type inference for IP address types - Avoid getting default values from defaultdict - Fix issue with field serializers on nested typed dictionaries - Add more pydantic-core builds for the three-threaded version of Python 3.14 This work was sponsored by GOVCERT.LU Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-20 10:30:33 -08:00
Leon Anavi	80d071ba7e	python3-pydantic-core: Upgrade 2.41.1 -> 2.41.5 Upgrade to release 2.41.5: - Correct invalid serialization of date/datetime/time/timedelta by pulling downcast checks up - Avoid getting default values from defaultdict - ci: add more 3.14t builds, delete duplicate linux aarch64 build - JsonValue: Deduplicate keys before populating Dict - Fix: only percent-encode characters in the userinfo encode set - Bump jiter from 0.11.0 to 0.11.1 - Bump regex from 1.11.3 to 1.12.2 - Bump percent-encoding from 2.3.1 to 2.3.2 - Fix issue with field_serializers on nested typed dicts - Clean up GC traversal for some top-level types - Add type inference for serializing ip address types - Revert url credential encoding (to be reintroduced as an option in future) - optimizations in URL implementation This work was sponsored by GOVCERT.LU. Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-20 10:30:33 -08:00
Khem Raj	204b8f1a34	python3-parsimonious: Add ptest support Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-19 14:03:48 -08:00
Khem Raj	dabe41647f	python3-parsimonious: Switch to PEP-517 build backend It has pyproject.toml asking for setuptools.build.meta backend Fixes QA Issue: inherits setuptools3 but has pyproject.toml with setuptools.build_meta, use the correct class [pep517-backend] Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-19 14:03:47 -08:00
Khem Raj	a7082b9b7c	Revert "python3-argcomplete: Upgrade 3.6.2 -> 3.6.3" This reverts commit 809cb8f42473ea0ead9074f7d699619f66f13c05. It causes ptest regression in traitlets as seen here [1] We will have to fix this regression before we upgrade argcomplete module [1] https://github.com/ipython/traitlets/issues/925 Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-18 20:09:52 -08:00
Khem Raj	5f4bb77c6b	python3-arrow: Add missing rdeps on tzdata pre-commit modules These were missing pieces for ptests to work Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-18 20:07:55 -08:00

1 2 3 4 5 ...

8694 Commits