9243 Commits

Author	SHA1	Message	Date
Leon Anavi	88ae17fd8f	python3-libevdev: Upgrade 0.12 -> 0.13.1 ... Add ptest and upgrade to release 0.13.1: - pyproject.toml: add pytest as dev dependency - Import Self from type_checking if needed to be compat with 3.9 - CI: run pytest via uv - CI: test against multiple python versions Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-13 08:28:59 -08:00
Leon Anavi	0c94f27fda	python3-huey: Upgrade 2.5.5 -> 2.6.0 ... Upgrade to release 2.6.0: - "Modernize" build system to use pyproject.toml and github actions. Fixes: WARNING: python3-huey-2.6.0-r0 do_check_backend: QA Issue: inherits setuptools3 but has pyproject.toml with setuptools.build_meta, use the correct class [pep517-backend] Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-13 08:28:59 -08:00
Leon Anavi	ded508de23	python3-filelock: Upgrade 3.20.2 -> 3.20.3 ... Upgrade to release 3.20.3: - Fix TOCTOU symlink vulnerability in SoftFileLock Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-13 08:28:59 -08:00
Leon Anavi	7a273013c7	python3-aenum: Upgrade 3.1.15 -> 3.1.16 ... Upgrade to release 3.1.16: - standardized handling of negative numbers in flags - support dictionary-like key access to NamedTuple - remove newer setup.py option include_package_data Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-13 08:28:59 -08:00
Leon Anavi	50f0473ee1	python3-pylint: Upgrade 4.0.3 -> 4.0.4 ... Upgrade to release 4.0.4: - Fixed false positive for ``invalid-name`` where module-level constants were incorrectly classified as variables when a class-level attribute with the same name exists. - Fix a false positive for ``invalid-name`` on an UPPER_CASED name inside an ``if`` branch that assigns an object. Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-13 08:28:58 -08:00
Liu Yiding	6ad8b50af8	python3-google-auth: upgrade 2.45.0 -> 2.47.0 ... 1. Changelog https://github.com/googleapis/google-auth-library-python/blob/main/CHANGELOG.md 2. Drop 0001-make-the-TLS-tests-skip-when-pyopenssl-isn-t-availab.patch as it was merged upstream. Signed-off-by: Liu Yiding <liuyd.fnst@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-13 08:28:58 -08:00
Leon Anavi	52c747c540	python3-aiodns: Upgrade 3.6.1 -> 4.0.0 ... Upgrade to release 4.0.0: - Added new query_dns() method returning native pycares 5.x DNSResult types - Deprecated query() method - still works with backward-compatible result types - Deprecated gethostbyname() method - use getaddrinfo() instead - Added compatibility layer for pycares 4.x result types to ease migration - Updated dependencies Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-12 10:25:57 -08:00
Leon Anavi	c18c531c88	python3-pycares: Upgrade 4.11.0 -> 5.0.1 ... Upgrade to release 5.0.1: - Use Literal for type - Use CMake for compiling c-ares - Move project metadata to pyproject.toml - Remove gethostbyname - Remove getsock - Replace ares_{get,set}servers with ares_{get,set}_servers_csv - Remove ares_init and ares_mkquery, they are unused - Make c-ares thread-safety mandatory - Migrate API to c-ares' dnsrec variants - Build wheels in parallel - Update bundled c-ares to v1.34.6 - Make callback a mandatory kwarg-only argument - Return bytes data for TXT records - Add support for TLSA, HTTP and URI queries - Remove event_thread option, make it implicit - Fix IDNA 2008 test Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-12 10:25:57 -08:00
Leon Anavi	4ca56224e6	python3-langtable: Upgrade 0.0.68 -> 0.0.69 ... Upgrade to release 0.0.69: - Add Georgian console fonts - Add Adlm script to SN - Add dra, Tutg, ath, cmc, Cham, tai - Remove License classifier (license tag with SPDX license expression is already there) Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-12 10:25:57 -08:00
Leon Anavi	d58da103e1	python3-identify: Upgrade 2.6.13 -> 2.6.15 ... Upgrade to release 2.6.15: - Add .piskel extension - Fix: make PKGBUILD files a superset of .bash - [pre-commit.ci] pre-commit autoupdate Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-12 10:25:57 -08:00
Gyorgy Sarvari	b891bc7cac	python3-filelock: add ptest support ... The tests take <15s to execute. Sample output: root@qemux86-64:~# ptest-runner START: ptest-runner 2026-01-09T18:00 BEGIN: /usr/lib/python3-filelock/ptest PASS: tests/test_async_filelock.py:test_simple[a-str-AsyncUnixFileLock] PASS: tests/test_async_filelock.py:test_simple[a-str-AsyncSoftFileLock] PASS: tests/test_async_filelock.py:test_simple[a-PurePath-AsyncUnixFileLock] PASS: tests/test_async_filelock.py:test_simple[a-PurePath-AsyncSoftFileLock] PASS: tests/test_async_filelock.py:test_simple[a-Path-AsyncUnixFileLock] PASS: tests/test_async_filelock.py:test_simple[a-Path-AsyncSoftFileLock] [...many lines...] PASS: tests/test_filelock.py:test_mtime_zero_exit_branch[SoftFileLock-TimeoutError] PASS: tests/test_filelock.py:test_mtime_zero_exit_branch[UnixFileLock-PermissionError] PASS: tests/test_virtualenv.py:test_virtualenv ============================================================================ Testsuite summary DURATION: 10 END: /usr/lib/python3-filelock/ptest 2026-01-09T18:00 STOP: ptest-runner TOTAL: 1 FAIL: 0 (There are 20 Windows-only tests, which are skipped) Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-12 08:53:50 -08:00
Leon Anavi	56f4b30c99	python3-gcovr: Upgrade 8.3 -> 8.5 ... Upgrade to release 8.5: Breaking changes: - The option --lcov-test-name doesn't accept values with spaces anymore. - The option --lcov-format-1.x is deprecated and mapped to --lcov-format-version=1.x. - Changes to HTML templates. New features and notable changes: - Due to added support for LLVM source based code coverage format some configuration file keys got changed. The old gcov named options are still supported but they also affect the LLVM toolchain. Bug fixes and small improvements: - Fix coveralls report if there are several coverage elements per line. - Fix not excluded conditions if branches are excluded by comments. - Fix reported excluded branches in LCOV report. - Fix exclusion filter --gcov-exclude. - Add --json-trace-data-source to include the trace data source in the JSON report independent from --verbose. - Remove generated gcov files on error and catch additional gcov error message. - Change default HTML theme excluded line color. - Move theme colors to a separate CSS file so they can be overridden with a simple --html-template-dir directory with only the style.colors.css file. - Fix regular expression for detecting a version mismatch between gcc and gcov. - Improve logging messages for GCOV execution errors to not print information twice and add trace messages for gcov execution. - Fix handling of lines after function specialization. - Improve performance by changing logging messages (level and lazy interpolation). - Fix text report for covered decisions. - Fix runtime problem introduced with 8.4. - Fix wrong entries in data source attribute of JSON report. - Fix nested HTML report without coverage data. - Add warning if coverage data is empty. - Add warning if function lines are missing in external generated GCOV files. - Extend support for zipped reports. If last suffix is .xz then LZMA is used to compress the report. - Fix function exclusion in report generation. - Do not ignore lines without functions, e.g. from inlined code. - Ignore all whitespaces instead of only spaces for detection of noncode lines. - Add support for temporary merging line coverage objects without modifying the data model. - Change internal behavior of --exclude-function-lines to exclude the line of function definition instead of removing it completely. - Ensure that all functions have a line coverage element in LCOV report. License-Update: Update years Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-12 08:53:49 -08:00
Leon Anavi	988b5182c9	python3-xmlschema: Upgrade 4.2.0 -> 4.3.0 ... Upgrade to release 4.3.0: - Add arguments validation for schemas and validation methods (by validation contexts) - Add custom XPath parser for find/findall/iterfind APIs on schemas for match singleton sequence also if position is a number greater than 1 in predicate expression - Improve build of XSD elements and groups, using a three-state built flag for components - Extend and fix memory tests (Python 3.14+ seems to consume more memory) - Drop support for Python 3.9 and add development support for Python 3.15 License-Update: Update years Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-12 08:53:49 -08:00
Leon Anavi	26ef11eac6	python3-fsspec: Upgrade 2025.5.1 -> 2025.12.0 ... Upgrade to release 2025.12.0: - fsspec.parquet to support filters and multiple files - passing withdirs in aync _glob() - fix _rm_file/_rm redirection in async - allow arrowFile to be seekable - add size attribute to arrowFile - support py3.14 and drop 3.9 - avoid ruff warning Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-12 08:53:49 -08:00
Leon Anavi	bcfeba2a13	python3-typer: Upgrade 0.21.0 -> 0.21.1 ... Upgrade to release 0.21.1: - Fix escaping in help text when rich is installed but not used. Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-12 08:53:49 -08:00
Gyorgy Sarvari	3ee544e759	python3-twitter: mark CVE-2012-5825 patched ... Details: https://nvd.nist.gov/vuln/detail/CVE-2012-5825 The Debian bugtracker[1] indicated that the issue is tracked by upstream in github[2] (with a difference CVE ID, but same issue), where the vulnerability was confirmed. Later in the same github issue the solution is confirmed: the project switched to use the requests library, which doesn't suffer from this vulnerability. Due to this mark the CVE as patched. [1]: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=692444 [2]: https://github.com/tweepy/tweepy/issues/279 Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-12 08:53:48 -08:00
Gyorgy Sarvari	a5ee234b8c	python3-uvicorn: mark CVE-2020-7694 patched ... Details: https://nvd.nist.gov/vuln/detail/CVE-2020-7694 The vulnerability was reported to the project[1], and the commit[2] that resolved the issue has been part of the project since version 0.11.7. Mark the CVE as patched due to this. [1]: https://github.com/Kludex/uvicorn/issues/723 [2]: 895807f94e Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-12 08:53:48 -08:00
Gyorgy Sarvari	93671dd613	python3-reportlab: mark CVE-2020-28463 patched ... Details: https://nvd.nist.gov/vuln/detail/CVE-2020-28463 According to Debian[1] it has been fixed since version 3.5.55[2] Mark is as patched. [1]: https://security-tracker.debian.org/tracker/CVE-2020-28463 [2]: https://hg.reportlab.com/hg-public/reportlab/rev/7f2231703dc7 Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-12 08:53:48 -08:00
Jiaying Song	baa3cc3df0	python3-aiohttp: upgrade 3.13.2 -> 3.13.3 ... Changelog:https://docs.aiohttp.org/en/stable/changes.html Signed-off-by: Jiaying Song <jiaying.song.cn@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-12 08:53:47 -08:00
Wang Mingyu	38119992d8	python3-bleak: upgrade 2.0.0 -> 2.1.1 ... 1. Changelog: https://github.com/hbldh/bleak/blob/v2.1.1/CHANGELOG.rst 2. Skip integration tests in ptest After upgrade to 2.1.1, a new test set integration was added. https://github.com/hbldh/bleak/tree/v2.1.1/tests/integration According to the description, the tests need kernel module hci_vhci, but hci_vhci is disabled in yocto, so skip these tests. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-12 08:53:45 -08:00
Gyorgy Sarvari	ba6468f7a0	python3-m2crypto: mark CVE-2020-25657 as patched ... Details: https://nvd.nist.gov/vuln/detail/CVE-2020-25657 The commit[1] that fixes the vulnerability has been part of the package since version 0.39.0 [1]: 84c53958de Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-12 08:53:45 -08:00
Gyorgy Sarvari	b46a5452a1	python3-m2crypto: ignore CVE-2009-0127 ... Details: https://nvd.nist.gov/vuln/detail/CVE-2009-0127 The vulnerability is disputed[1] by upstream: "There is no vulnerability in M2Crypto. Nowhere in the functions are the return values of OpenSSL functions interpreted incorrectly. The functions provide an interface to their users that may be considered confusing, but is not incorrect, nor it is a vulnerability." [1]: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2009-0127 Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-12 08:53:45 -08:00
Wang Mingyu	7db6f31b0f	python3-types-psutil: upgrade 7.1.1.20251122 -> 7.2.1.20251231 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-12 08:53:44 -08:00
Wang Mingyu	65ed8861f7	python3-pillow: upgrade 12.0.0 -> 12.1.0 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-12 08:53:44 -08:00
Wang Mingyu	1b8c883667	python3-nocaselist: upgrade 2.1.0 -> 2.2.0 ... Changelog: https://nocaselist.readthedocs.io/en/2.2.0/changes.html Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-12 08:53:44 -08:00
Wang Mingyu	6a9c1e9114	python3-nocasedict: upgrade 2.1.0 -> 2.2.0 ... Changelog: https://nocasedict.readthedocs.io/en/2.2.0/changes.html Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-12 08:53:44 -08:00
Wang Mingyu	9206e31273	python3-moteus: upgrade 0.3.96 -> 0.3.97 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-12 08:53:44 -08:00
Wang Mingyu	86cabd1603	python3-marshmallow: upgrade 4.1.2 -> 4.2.0 ... Changelog: many argument of Nested properly overrides schema instance value. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-12 08:53:44 -08:00
Gyorgy Sarvari	38eaab2241	python3-waitress: add ptest support ... It takes <10s to execute. Some (54) tests are not compatible with musl[1] - due to this the tests are on the problem-list. Sample output snippet: root@qemux86-64:~# ptest-runner START: ptest-runner 2026-01-07T09:57 BEGIN: /usr/lib/python3-waitress/ptest PASS: tests.test_adjustments.TestAdjustments.test_bad_port PASS: tests.test_adjustments.TestAdjustments.test_badvar PASS: tests.test_adjustments.TestAdjustments.test_default_listen [...many lines...] PASS: tests.test_wasyncore.Test_readwrite.test_socketerror_in_disconnected PASS: tests.test_wasyncore.Test_readwrite.test_socketerror_not_in_disconnected PASS: tests.test_wasyncore.Test_write.test_gardenpath PASS: tests.test_wasyncore.Test_write.test_non_reraised PASS: tests.test_wasyncore.Test_write.test_reraised ============================================================================ Testsuite summary \# TOTAL: 783 \# PASS: 775 \# SKIP: 8 \# XFAIL: 0 \# FAIL: 0 \# XPASS: 0 \# ERROR: 0 DURATION: 7 END: /usr/lib/python3-waitress/ptest 2026-01-07T09:57 STOP: ptest-runner TOTAL: 1 FAIL: 0 Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-12 08:53:42 -08:00
Leon Anavi	b6ddf00e8c	python3-termcolor: Upgrade 3.2.0 -> 3.3.0 ... Upgrade to release 3.3.0: - Add support for italic - can_colorize: Expect fileno() to raise OSError, as documented Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-07 09:09:29 -08:00
Leon Anavi	312155a7d6	python3-behave: Upgrade 1.3.2 -> 1.3.3 ... Upgrade to release 1.3.3: - FIXED: Broke Python 2.7 support Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-07 09:09:29 -08:00
Leon Anavi	d2501971b2	python3-astroid: Upgrade 4.0.2 -> 4.0.3 ... Upgrade to release 4.0.3: - Fix inference of IfExp (ternary expression) nodes to avoid prematurely narrowing results in the face of inference ambiguity. - Fix base class inference for dataclasses using the PEP 695 typing syntax. Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-07 08:18:57 -08:00
Leon Anavi	5ff2ec190a	python3-anyio: Upgrade 4.12.0 -> 4.12.1 ... Upgrade to release 4.12.1: - Changed all functions currently raising the private NoCurrentAsyncBackend exception (since v4.12.0) to instead raise the public NoEventLoopError exception - Fixed anyio.functools.lru_cache not working with instance methods Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-07 08:18:56 -08:00
Leon Anavi	7721e7a6fc	python3-bumble: Upgrade 0.0.220.bb -> 0.0.221 ... Upgrade to release 0.0.221: - Cancel l2cap connection result future on abort - Implement extended advertising emulation - Rust: Fix cargo-all-features to 1.11.0 - L2CAP Enhanced Retransmission mode - Add some docs about Android and Hardware - bump pdl dependencies versions - android-netsim transport enhancements - Upgrade GitHub Actions for Node 24 compatibility - Upgrade GitHub Actions to latest versions - GATT: fix redefinition of GATT_CONTENT_CONTROL_ID_CHARACTERISTIC - Remove unused imports - Fix missing type hints on Device.notify_subscribers() - L2CAP: Enhanced Credit-based Flow Control Mode - use ruff for linting and import sorting - hot fix: remove unused import - Ruff: Add and fix UP rules - add support for multiple concurrent broadcasts - Add EATT Support - Fix some typos and annotations Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-07 08:18:56 -08:00
Leon Anavi	bc8066fd7f	python3-fastapi: Upgrade 0.124.4 -> 0.128.0 ... Upgrade to release 0.128.0: - Drop support for pydantic.v1 - Run performance tests only on Pydantic v2 Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-06 07:36:35 -08:00
Leon Anavi	656bbf2c70	python3-networkx: Upgrade 3.6 -> 3.6.1 ... Upgrade to release 3.6.1: API Changes - Add spectral bipartition community finding and greedy bipartition using node swaps Enhancements - Nodelists for from_biadjacency_matrix - Add spectral bipartition community finding and greedy bipartition using node swaps - Fix draw_networkx_nodes with list node_shape and add regression test Bug Fixes - Fix: allow graph subclasses to have additional arguments Documentation - DOC: Improve benchmarking readme - DOC: More details re: RC releases in the release process devdocs - DOC: clarify difference between G.nodes/G.nodes() and G.edges/G.edges() in tutorial - DOC: Add blurb to contributor guide about drawing tests - DOC: Fix underline lens in docstrings - Rolling back shortest paths links Maintenance - MAINT: Replace string literal with comment - Bump actions/checkout from 5 to 6 in the actions group - pin python 3.14 to be version 3.14.0 until dataclasses are fixed - Blocklist Python 3.14.1 Other - TST: add tests for unsupported graph types in MST algorithms - TST: clean up isomorphism tests Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-06 07:36:35 -08:00
Leon Anavi	382e4de7d8	python3-brotli: Upgrade 1.1.0 -> 1.2.0 ... Upgrade to release 1.2.0: SECURITY - python: added Decompressor::can_accept_more_data method and optional output_buffer_limit argument Decompressor::process; that allows mitigation of unexpectedly large output; reported by Charles Chan (https://github.com/charleswhchan) Added - decoder/encoder: added static initialization to reduce binary size - python: allow limiting decoder output (see SECURITY section) - CLI: brcat alias; allow decoding concatenated brotli streams - kt: pure Kotlin decoder - cgo: support "raw" dictionaries - build: Bazel modules Removed - java: dropped finalize() for native entities Fixed - java: in compress pass correct length to native encoder Improved - build: install man pages - build: updated / fixed / refined Bazel buildfiles - encoder: faster encoding - cgo: link via pkg-config - python: modernize extension / allow multi-phase module initialization Changed - decoder / encoder: static tables use "small" model (allows 2GiB+ binaries) Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-06 07:36:35 -08:00
Leon Anavi	768a039171	python3-parse-type: Upgrade 0.6.3 -> 0.6.6 ... Upgrade to release 0.6.6: - Disable setuptools-scm: Too many side-effects Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-06 07:36:35 -08:00
Gyorgy Sarvari	c6ac2c467d	python3-flask-cors: upgrade 4.0.0 -> 5.0.0 ... Contains fix for CVE-2024-6221 and CVE-2024-1681 Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-05 18:16:19 -08:00
Gyorgy Sarvari	cbb4f9d4e0	python3-configobj: ignore CVE-2023-26112 ... Details: https://nvd.nist.gov/vuln/detail/CVE-2023-26112 The fix[1] is already included in the recipe version (5.0.9), the CVE can be marked as patched. [1]: 7c618b0bba Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-05 18:16:19 -08:00
Gyorgy Sarvari	1d7c7549b3	python3-cbor2: upgrade 5.7.1 -> 5.8.0 ... Contains fix for CVE-2025-68131 Changelog: - Added readahead buffering to C decoder for improved performance. The decoder now uses a 4 KB buffer by default to reduce the number of read calls. Benchmarks show 20-140% performance improvements for decoding operations. - Fixed Python decoder not preserving share index when decoding array items containing nested shareable tags, causing shared references to resolve to wrong objects - Reset shared reference state at the start of each top-level encode/decode operation Ptests passed: ... PASS: tests/test_tool.py:test_dtypes_from_file PASS: tests/test_tool.py:test_ignore_tag PASS: tests/test_types.py:test_frozendict ============================================================================ Testsuite summary DURATION: 4 Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-05 18:16:18 -08:00
Leon Anavi	7722db14ce	python3-autobahn: Upgrade 25.11.1 -> 25.12.2 ... Upgrade to release 25.12.2: Build & CI/CD: - Synchronize CI/CD, FlatBuffers vendoring, and wamp-ai/wamp-cicd submodules between autobahn-python and zlmdb - Switch manylinux container from 2_34 to 2_28 for x86_64 ISA compatibility (fixes auditwheel flatc bundling) - Increase ARM64 build timeout to 60 minutes for QEMU emulation - Add .github/workflows/README.md documenting CI/CD architecture - Consolidate download-github-release and download-release-artifacts recipes - Add checksum verification to artifact download workflow FlatBufers: - Simplify vendored FlatBuffers - use upstream as-is - Track vendored FlatBuffers in git (like zlmdb approach) - Add version() function to vendored FlatBuffers runtime - Add check_zlmdb_flatbuffers_version_in_sync() for cross-project compatibility - Generate .bfbs files for WAMP schemas during wheel build Other: - Rename install-flatc to install-flatc-system with prominent warning - Remove legacy readthedocs.yml to activate .readthedocs.yaml - Remove dev-latest optional dependency (PyPI rejects direct URLs) License-Update: Standardize LICENSE with SPDX header Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-05 18:16:18 -08:00
Leon Anavi	8b5e1f5dbf	python3-filelock: Upgrade 3.20.1 -> 3.20.2 ... Upgrade to release 3.20.2: - Support Unix systems without O_NOFOLLOW - [pre-commit.ci] pre-commit autoupdate Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-05 18:16:18 -08:00
Khem Raj	cef23383bf	python3-wrapt: Upgrade to 2.0.1 ... Switch to Pypi fetcher Switch to PEP-517 build backend Fixes WARNING: python3-wrapt-2.0.1-r0 do_check_backend: QA Issue: inherits setuptools3 but has pyproject.toml with setuptools.build_meta, use the correct class [pep517-backend] Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-05 18:15:25 -08:00
Liu Yiding	48b2cea528	python3-cmd2: upgrade 3.0.0 -> 3.1.0 ... Changelog: https://github.com/python-cmd2/cmd2/releases/tag/3.1.0 Signed-off-by: Liu Yiding <liuyd.fnst@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-03 20:29:17 -08:00
Liu Yiding	b54eae734d	python3-py7zr: upgrade 1.0.0 -> 1.1.0 ... Changelog: https://py7zr.readthedocs.io/en/latest/Changelog.html Signed-off-by: Liu Yiding <liuyd.fnst@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-03 20:29:17 -08:00
Tom Geelen	7d0234ae64	python3-pytest-aiohttp: add missing DEPENDS ... Signed-off-by: Tom Geelen <t.f.g.geelen@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-02 22:30:12 -08:00
Khem Raj	dd76a02235	python3-propcache: Update Cython to version 3.2.3 ... Signed-off-by: Khem Raj <raj.khem@gmail.com>	2026-01-02 22:28:23 -08:00
Khem Raj	1b3e5162d3	python3-bumble: Add recipe ... Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:34:05 -08:00
Khem Raj	802ef55a7e	python3-pyee: Add recipe ... Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:34:05 -08:00
Gyorgy Sarvari	389d1a4b3e	python3-pymongo: set CVE_PRODUCT ... The default python:pymongo CPE fails to match related CVE entries, because they are tracked using mongodb:pymongo CPE. Set CVE_PRODUCT accordingly. See CVE db query: sqlite> select * from products where product like '%pymongo%'; CVE-2024-5629|mongodb|pymongo|||4.6.3|<|0 Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:34:04 -08:00
Gyorgy Sarvari	966292e770	python3-orjson: set CVE_PRODUCT ... The default python:orjson CPE fails to match related CVEs, because NVD tracks them using ijl:orjson CPE. Set CVE_PRODUCT accordingly. See CVE db query: sqlite> select * from products where product like '%orjson%'; CVE-2024-27454|ijl|orjson|||3.9.15|< Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:34:04 -08:00
Gyorgy Sarvari	b03642e20e	python3-python-multipart: set CVE_PRODUCT ... The default python:python_multipart CPE doesn't match relevant CVE entries, because NVD tracks the related CVEs with fastapiexpect:python-multipart CPE, and Mitre uses kludex:python-multipart for others. Set the CVE_PRODUCT accordingly. See CVE db query: sqlite> select * from products where product like '%python%multipart%'; CVE-2024-24762|fastapiexpert|python-multipart|||0.0.7|< CVE-2024-24762|fastapiexpert|python-multipart|||0.0.7|< Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:34:04 -08:00
Gyorgy Sarvari	7f962ef155	python3-ecdsa: set CVE_PRODUCT ... Set the correct CVE_PRODUCT value, the default python: ecdsa doesn't match relevant entries. The correct values were taken from the CVE db, by checking which CVEs are relevant. See CVE db query: sqlite> select * from products where product like '%ecdsa%'; CVE-2019-14853|python-ecdsa_project|python-ecdsa|||0.13.3|< CVE-2019-14859|python-ecdsa_project|python-ecdsa|||0.13.3|< CVE-2020-12607|antonkueltz|fastecdsa|||2.1.2|< CVE-2021-43568|starkbank|elixir_ecdsa|1.0.0|=|| CVE-2021-43569|starkbank|ecdsa-dotnet|1.3.2|=|| CVE-2021-43570|starkbank|ecdsa-java|1.0.0|=|| CVE-2021-43571|starkbank|ecdsa-node|1.1.2|=|| CVE-2021-43572|starkbank|ecdsa-python|||2.0.1|< CVE-2022-24884|ecdsautils_project|ecdsautils|||0.4.1|< CVE-2024-21502|antonkueltz|fastecdsa|||2.3.2|< CVE-2024-23342|tlsfuzzer|ecdsa|||0.18.0|<= Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:34:04 -08:00
Gyorgy Sarvari	f62530b04e	python3-gevent: set CVE_PRODUCT ... Relevant CVEs are tracked with gevent:gevent CPE, and the default python:gevent CPE doesn't match relevant entries. Set CVE_PRODUCT accordingly. See CVE db query: sqlite> select * from products where product like '%gevent%'; CVE-2023-41419|gevent|gevent|||23.9.0|< Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:34:04 -08:00
Gyorgy Sarvari	0620851d87	python3-dnspython: set CVE_PRODUCT ... The related CVEs are tracked using dnspython:dnspython CPE, and the default python:dnspython CPE doesn't match relevant entries. Set CVE_PRODUCT accordingly. See CVE db query: sqlite> select * from products where product like '%dnspython%'; CVE-2023-29483|dnspython|dnspython|||2.6.0|< Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:34:03 -08:00
Gyorgy Sarvari	8fc9b69798	python3-starlette: set CVE_PRODUCT ... The relevant CVE entries are tracked with encode:starlette CPE, and the default python:starlette CPE doesn't match relevant entries. Set CVE_PRODUCT accordingly. See CVE db query: sqlite> select * from products where product like '%starlette%'; CVE-2023-29159|encode|starlette|0.13.5|>=|0.27.0|< CVE-2023-30798|encode|starlette|||0.25.0|< Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:34:03 -08:00
Gyorgy Sarvari	638b08966b	python3-markdown-it-py: set CVE_PRODUCT ... The related CVE entries are tracked with executablebooks:markdown-it-py CPE value, and the default python:markdown-it-py CPE doesn't match relevant entries. Set CVE_PRODUCT accordingly. See CVE db query: sqlite> select * from products where product like '%markdown-it-py%'; CVE-2023-26302|executablebooks|markdown-it-py|||2.2.0|< CVE-2023-26303|executablebooks|markdown-it-py|||2.2.0|< Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:34:03 -08:00
Gyorgy Sarvari	d4785556af	python3-configobj: set CVE_PRODUCT ... The related CVEs are tracked with configobj_peroject:configobj CPE in the database, and the default python:configobj CPE doesn't match relevant entries. Set CVE_PRODUCT accordingly. See CVE db query: sqlite> select * from products where product like '%configobj%'; CVE-2023-26112|configobj_project|configobj|-||| Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:34:03 -08:00
Gyorgy Sarvari	7adae7e63b	python3-py7zr: set CVE_PRODUCT ... The related CVEs are tracked with py7zr_project:py7zr CPE in the database, and the default python:py7zr CPE doesn't match relevant entries. Set CVE_PRODUCT accordingly. See CVE db query: sqlite> select * from products where product like '%py7zr%'; CVE-2022-44900|py7zr_project|py7zr|||0.20.1|< Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:34:03 -08:00
Gyorgy Sarvari	ad0df74828	python3-oauthlib: set CVE_PRODUCT ... The relevant CVEs are tracked using oathlib_project:oathlib CPE, and the default python:oauthlib CPE doesn't match relevant entries. Set the CVE_PRODUCT accordingly. See CVE db query: sqlite> select * from products where product like 'oauthlib'; CVE-2022-36087|oauthlib_project|oauthlib|3.1.1|>=|3.2.1|< Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:34:02 -08:00
Gyorgy Sarvari	6ab68968c2	python3-joblib: set CVE_PRODUCT ... The relevant CVEs are tracked with joblib_project:joblib CPE, and the default python:joblib CPE doesn't match this. Set the CVE_PRODUCT accordingly. See CVE db query: sqlite> select * from products where product like '%joblib%'; CVE-2022-21797|joblib_project|joblib|||1.1.1|< CVE-2024-34997|joblib_project|joblib|1.4.2|=|| Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:34:02 -08:00
Gyorgy Sarvari	50925849c0	python3-eth-account: set CVE_PRODUCT ... The relevant CVEs are tracked with ethereum:eth-account CPE, and the default python:eth-account one doesn't match relevant entries. Set CVE_PRODUCT accordingly. See CVE db query: sqlite> select * from products where product like '%eth-account%'; CVE-2022-1930|ethereum|eth-account|||0.5.9|< Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:34:02 -08:00
Gyorgy Sarvari	dd2edff531	python3-binwalk: set CVE_PRODUCT ... Set correct CVE_PRODUCT to use instead of the default ${PN}, which doesn't match relevant CVEs. See CVE db query: sqlite> select * from products where product like '%binwalk%'; CVE-2021-4287|microsoft|binwalk|||2.3.3|<|0 CVE-2022-4510|microsoft|binwalk|2.2.0|>=|2.3.3|<|0 Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:34:02 -08:00
Gyorgy Sarvari	8627277b50	python3-httpx: set CVE_PRODUCT ... The relevant CVEs are tracked in the CVE db with encode:httpx CPE instead of the default python:httpx. Set CVE_PRODUCT accordingly. See CVE db query: sqlite> select * from products where product like '%httpx%'; CVE-2021-41945|encode|httpx|||0.23.0|< Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:34:02 -08:00
Gyorgy Sarvari	5d8e8ebcab	python3-cvxopt: set CVE_PRODUCT ... Set correct CVE_PRODUCT to be used instead of ${PN}. See CVE db query: sqlite> select * from products where product like '%cvxopt%'; CVE-2021-41500|cvxopt_project|cvxopt|||1.2.6|<= Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:34:01 -08:00
Gyorgy Sarvari	a8bc7739b5	python3-sqlparse: set CVE_PRODUCT ... The relevant CVEs are tracked with sqlparse_project:sqlparse CPE, and the default python:sqlparse CPE doesn't match relevant CVEs. Set CVE_PRODUCT accordingly. See CVE db query: sqlite> select * from products where product like '%sqlparse%'; CVE-2021-32839|sqlparse_project|sqlparse|0.4.0|>=|0.4.2|< CVE-2023-30608|sqlparse_project|sqlparse|0.1.15|>=|0.4.4|< Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:34:01 -08:00
Gyorgy Sarvari	eb20735d09	python3-flask-restx: set CVE_PRODUCT ... The relevant CVEs are tracked using flask-restx_project:flask-restx CPE, which makes the default python:flask-restx CPE to not match relevant CVEs. Set CVE_PRODUCT accordingly. See CVE db query: sqlite> select * from products where product like '%flask-restx%'; CVE-2021-32838|flask-restx_project|flask-restx|||0.5.1|< Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:34:01 -08:00
Gyorgy Sarvari	a307398b7b	python3-fastapi: set CVE_PRODUCT ... Set correct CVE_PRODUCT - the default (python:fastapi) is not the one that is used to track CVEs. See CVE db query (n8n vendor is not relevant): sqlite> select * from products where product like 'fastapi'; CVE-2021-32677|tiangolo|fastapi|||0.65.2|<|0 CVE-2025-55526|n8n|fastapi|0.115.14|=|||0 Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:34:01 -08:00
Gyorgy Sarvari	30b0c458bb	python3-lief: set CVE_PRODUCT ... The correct CVE_PRODUCT is "lief" for this recipe instead of the default ${PN}, that doesn't match relevant CVEs. See CVE db query: sqlite> select * from products where product like 'lief'; CVE-2021-32297|lief-project|lief|||0.11.4|<= CVE-2022-38306|lief-project|lief|||0.12.1|< CVE-2022-38307|lief-project|lief|||0.12.1|< CVE-2022-38495|lief-project|lief|||0.12.1|<= CVE-2022-38496|lief-project|lief|||0.12.1|<= CVE-2022-38497|lief-project|lief|||0.12.1|<= CVE-2022-40922|lief-project|lief|0.12.1|=|| CVE-2022-40923|lief-project|lief|0.12.1|=|| CVE-2022-43171|lief-project|lief|0.12.1|=|| CVE-2024-31636|lief-project|lief|0.14.1|=|| Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:34:01 -08:00
Gyorgy Sarvari	b4fd4a6217	python3-pydantic: set CVE_PRODUCT ... Set correct CVE_PRODUCT - the default ${PN} value doesn't match relevant CVEs. See CVE query (n8n vendor is not relevant): sqlite> select * from products where product like '%pydantic%'; CVE-2021-29510|pydantic|pydantic|||1.6.2|< CVE-2021-29510|pydantic|pydantic|1.7|>=|1.7.4|< CVE-2021-29510|pydantic|pydantic|1.8|>=|1.8.2|< CVE-2024-3772|pydantic|pydantic|||1.10.13|< CVE-2024-3772|pydantic|pydantic|2.0|>=|2.4.0|< CVE-2025-55526|n8n|pydantic|2.11.7|=|| Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:34:01 -08:00
Gyorgy Sarvari	d3a4074663	python3-pikepdf: set CVE_PRODUCT ... The relevant CVEs are tracked with pikepdf_project:pikepdf CPE, and the default python:pikepdf doesn't match CVEs. Set CVE_PRODUCT accordingly. See CVE db query: sqlite> select * from products where product like 'pikepdf'; CVE-2021-29421|pikepdf_project|pikepdf|1.3.0|>=|2.9.2|<= Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:34:00 -08:00
Gyorgy Sarvari	a2aa92f554	python3-mpmath: set CVE_PRODUCT ... The CVE database tracks relevant CVEs with mpmath:mpmath CPE. Set the CVE_PRODUCT accordingly. See CVE db query: sqlite> select * from products where product like 'mpmath'; CVE-2021-29063|mpmath|mpmath|1.0.0|>=|1.2.1|<= Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:34:00 -08:00
Gyorgy Sarvari	3536ca6a36	python3-flask-user: set CVE_PRODUCT ... The relevant CVE is tracked using flask-user_project:flask-user CPE, so the default python:flask-user value doesn't match it. Set CVE_PRODUCT accordingly. See CVE db query: sqlite> select * from products where product like 'flask-user'; CVE-2021-23401|flask-user_project|flask-user|-||| Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:34:00 -08:00
Gyorgy Sarvari	b578877722	python3-eventlet: set CVE_PRODUCT ... The relevant CVEs are tracked using eventlet:eventlet CPE, and the default python:eventlet CPE doesn't match relevant CVEs. Set the correct CVE_PRODUCT. See CVE db query: sqlite> select * from products where product like 'eventlet'; CVE-2021-21419|eventlet|eventlet|0.10|>=|0.31.0|< CVE-2023-29483|eventlet|eventlet|||0.35.2|< CVE-2025-58068|eventlet|eventlet|||0.40.3|< Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:34:00 -08:00
Gyorgy Sarvari	f04728af28	python3-aiohttp: set CVE_PRODUCT ... The related CVEs are tracked using aiohttp:aiohttp CPE, so the default python:aiohttp CPE doesn't match relevant CVEs. Set the CVE_PRODUCT accordingly. See CVE db query: sqlite> select * from products where product like 'aiohttp'; CVE-2021-21330|aiohttp|aiohttp|||3.7.4|< CVE-2022-33124|aiohttp|aiohttp|3.8.1|=|| CVE-2023-37276|aiohttp|aiohttp|||3.8.4|<= CVE-2023-47627|aiohttp|aiohttp|||3.8.6|< CVE-2023-47641|aiohttp|aiohttp|||3.8.0|< CVE-2023-49081|aiohttp|aiohttp|||3.9.0|< CVE-2023-49082|aiohttp|aiohttp|||3.9.0|< CVE-2024-23334|aiohttp|aiohttp|1.0.5|>=|3.9.2|< CVE-2024-23829|aiohttp|aiohttp|||3.9.2|< CVE-2024-27306|aiohttp|aiohttp|||3.9.4|< CVE-2024-30251|aiohttp|aiohttp|||3.9.4|< CVE-2024-42367|aiohttp|aiohttp|3.10.0|>=|3.10.2|< CVE-2024-52303|aiohttp|aiohttp|3.10.6|>=|3.10.11|< CVE-2024-52304|aiohttp|aiohttp|||3.10.11|< CVE-2025-53643|aiohttp|aiohttp|||3.12.14|< Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:34:00 -08:00
Gyorgy Sarvari	6cc3c31ed6	python3-brotli: set CVE_PRODUCT ... There is one brotli repository for all language bindings, and the same CPE is used for all: google:brotli (instead of the expected default of python:brotli, in case of the Python package). Set the CVE_PRODUCT accordingly. See CVE db query: sqlite> select * from products where product like 'brotli'; CVE-2020-8927|google|brotli|||1.0.8|< Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:33:59 -08:00
Gyorgy Sarvari	93fd9b0db0	python3-uvicorn: set CVE_PRODUCT ... The default python:uvicorn CPE is not correct, the CVEs are tracked under encode:uvicorn. See CVE db query (n8n vendor is not relevant): sqlite> select * from products where product like 'uvicorn'; CVE-2020-7694|encode|uvicorn|-||| CVE-2020-7695|encode|uvicorn|||0.11.7|< CVE-2025-55526|n8n|uvicorn|0.35.0|=|| Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:33:59 -08:00
Gyorgy Sarvari	cc9af72f13	python3-autobahn: set CVE_PRODUCT ... The only CVE stored in the CVE db is tracked with "crossbar" vendor, which makes the default python:autobahn CPE to not match. Set the CVE_PRODUCT accordingly. See CVE db query: sqlite> select * from products where product like 'autobahn'; CVE-2020-35678|crossbar|autobahn|||20.12.3|< Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:33:59 -08:00
Gyorgy Sarvari	1fac509459	python3-py: set CVE_PRODUCT ... The related CVEs are tracked using pytest:py CPE, so set the CVE_PRODUCT accordingly instead of the default python:py. See CVE db query: sqlite> select * from products where product like 'py'; CVE-2020-29651|pytest|py|||1.9.0|<= CVE-2022-42969|pytest|py|||1.11.0|<= Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:33:59 -08:00
Gyorgy Sarvari	15ab75e8fb	python3-flask-cors: set CVE_PRODUCT ... The related CVEs are tracked under multiple vendor IDs (but none of them are associated with the default "python" vendor). Query from CVE db: sqlite> select * from products where product like 'flask-cors'; CVE-2020-25032|flask-cors_project|flask-cors|||3.0.9|< CVE-2024-1681|corydolphin|flask-cors|4.0.0|=|| CVE-2024-6221|corydolphin|flask-cors|4.0.1|=|| CVE-2024-6839|flask-cors_project|flask-cors|4.0.1|=|| CVE-2024-6844|flask-cors_project|flask-cors|4.0.1|=|| CVE-2024-6866|flask-cors_project|flask-cors|4.0.1|=|| Set the CVE_PRODUCT so it matches the relevant entries. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:33:59 -08:00
Gyorgy Sarvari	4fbf11954a	python3-pandas: set CVE_PRODUCT ... Currently there is only one CVE associated with pandas, and it is tracked using numfocus:pandas CPE by NIST instead of the default python:pandas from pypi.bbclass. See CVE db query: sqlite> select * from products where product like 'pandas'; CVE-2020-13091|numfocus|pandas|||1.0.3|<= Set the CVE_PRODUCT accodingly. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:33:59 -08:00
Gyorgy Sarvari	34f5fd45af	python3-svglib: set CVE_PRODUCT ... There is only one relevant CVE in the database, but it is tracked using svglib_project:svglib CPE, not the expected python:svglib CPE, making the cve-checker miss it. See CVE db query: sqlite> select * from products where product like '%svglib%'; CVE-2020-10799|svglib_project|svglib|||0.9.3|<= Set the CVE_PRODUCT accordingly. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:28:56 -08:00
Gyorgy Sarvari	07dd23f681	python3-webargs: set CVE_PRODUCT ... The relevant CVEs for this recipe are tracked using webargs_project:webargs CPE, which makes the default python:webargs CPE to miss CVEs. See CVE db query: sqlite> select * from products where product like '%webargs%'; CVE-2019-9710|webargs_project|webargs|||5.1.3|< CVE-2020-7965|webargs_project|webargs|5.0.0|>=|5.5.2|<= Set the CVE_PRODUCT accordingly. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:28:56 -08:00
Gyorgy Sarvari	f30b5cd005	python3-validators: set CVE_PRODUCT ... The CVEs related to this project are tracked using the validators_project:validators CPE, which doesn't match the default python:validators CPE. See CVE db query: sqlite> select * from products where product like 'validators'; CVE-2019-19588|validators_project|validators|0.12.2|>=|0.12.5|<= CVE-2023-45813|validators_project|validators|0.11.0|=|| CVE-2023-45813|validators_project|validators|0.20.0|=|| Set the CVE_PRODUCT so it matches relevant entries. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:28:56 -08:00
Gyorgy Sarvari	df18617f6a	python3-reportlab: set CVE_PRODUCT ... The relevant CVEs to this recipe are tracked using reportlab:reportlab CPE, which doesn't match the default python:reportlab CPE, so the cve-checker misses CVEs. See CVE db query: sqlite> select * from products where product like '%reportlab%'; CVE-2019-17626|reportlab|reportlab|||3.5.26|<=|0 CVE-2019-19450|reportlab|reportlab|||3.5.31|<|0 CVE-2020-28463|reportlab|reportlab|-||||0 CVE-2023-33733|reportlab|reportlab|||3.6.12|<=|0 Set CVE_PRODUCT accordingly. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:28:56 -08:00
Gyorgy Sarvari	16c2efd07b	python3-waitress: set CVE_PRODUCT ... The CVEs for this recipes are tracked using the agendaless:waitress CPE, which doesn't match the default python:waitress CPE, making the cve-checker miss relevant CVEs. See CVE db query: sqlite> select * from products where PRODUCT like 'waitress'; CVE-2019-16785|agendaless|waitress|||1.3.1|<= CVE-2019-16786|agendaless|waitress|||1.3.1|< CVE-2019-16789|agendaless|waitress|||1.4.0|<= CVE-2019-16792|agendaless|waitress|||1.3.1|<= CVE-2020-5236|agendaless|waitress|1.4.2|=|| CVE-2022-24761|agendaless|waitress|||2.1.1|< CVE-2022-31015|agendaless|waitress|2.1.0|>=|2.1.2|< CVE-2024-49768|agendaless|waitress|2.0.0|>=|3.0.1|< CVE-2024-49769|agendaless|waitress|||3.0.1|< Set CVE_PRODUCT accordingly. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:28:56 -08:00
Gyorgy Sarvari	82255f0af3	python3-parso: set CVE_PRODUCT ... There is one related CVE tracked by nist, using the parso_project:parso CPE, which doesn't match the default python:parso CPE. See CVE db query: sqlite> select * from products where PRODUCT like 'parso'; CVE-2019-12760|parso_project|parso|||0.4.0|<= Set the CVE_PRODUCT accordingly. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:28:55 -08:00
Gyorgy Sarvari	97363a7b77	python3-marshmallow: set CVE_PRODUCT ... The default python:marshmallow CPE doesn't match the CVEs related to this product, as they are tracked with marshmallow_project:marshmallow CPE. See CVE db query: sqlite> select * from products where PRODUCT like 'marshmallow'; CVE-2018-17175|marshmallow_project|marshmallow|||2.15.1|< CVE-2018-17175|marshmallow_project|marshmallow|3.0|>=|3.0.0b9|< Set the CVE_PRODUCT so it matches related CVEs. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:28:55 -08:00
Gyorgy Sarvari	039970deb2	python3-flask: set CVE_PRODUCT ... The default python:flask CPE doesn't match relevant CVE entries which are tracked under palletsprojects:flask CPE. See CVE db query: sqlite> select * from products where PRODUCT like 'flask'; CVE-2018-1000656|palletsprojects|flask|||0.12.3|< CVE-2019-1010083|palletsprojects|flask|||1.0|< CVE-2023-30861|palletsprojects|flask|||2.2.5|< CVE-2023-30861|palletsprojects|flask|2.3.0|>=|2.3.2|< Set the CVE_PRODUCT to "flask" so it matches relevant entries. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:28:55 -08:00
Gyorgy Sarvari	f121c925e8	python-gunicorn: set CVE_PRODUCT ... There is only one relevant CVE associated with this recipe in the CVE db, but it is tracked using gunicorn:gunicorn CPE instead of python:gunicorn (which is the default CPE from pypi.bbclass) See CVE db query: sqlite> select * from products where PRODUCT like '%gunicorn%'; CVE-2018-1000164|gunicorn|gunicorn|19.4.5|=|| Set CVE_PRODUCT so that it matches relevant CVEs. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:28:55 -08:00
Gyorgy Sarvari	77ba5f31e2	python3-supervisor: set CVE_PRODUCT ... This recipe's CVEs are tracked using supervisord:supervisor CPE by nist, so the default python:supervisor CPE doesn't match relevant CVEs. See CVE db query (home-assisstant vendor is not relevant): sqlite> select * from products where PRODUCT like 'supervisor'; CVE-2017-11610|supervisord|supervisor|||3.0|<= CVE-2017-11610|supervisord|supervisor|3.1.0|=|| CVE-2017-11610|supervisord|supervisor|3.1.1|=|| CVE-2017-11610|supervisord|supervisor|3.1.2|=|| CVE-2017-11610|supervisord|supervisor|3.1.3|=|| CVE-2017-11610|supervisord|supervisor|3.2.0|=|| CVE-2017-11610|supervisord|supervisor|3.2.1|=|| CVE-2017-11610|supervisord|supervisor|3.2.2|=|| CVE-2017-11610|supervisord|supervisor|3.2.3|=|| CVE-2017-11610|supervisord|supervisor|3.3.0|=|| CVE-2017-11610|supervisord|supervisor|3.3.1|=|| CVE-2017-11610|supervisord|supervisor|3.3.2|=|| CVE-2019-12105|supervisord|supervisor|||4.0.2|<= CVE-2023-27482|home-assistant|supervisor|||2023.03.1|< Set the CVE_PRODUCT explicitly to match relevant CVEs. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:28:54 -08:00
Gyorgy Sarvari	5ec4458878	python3-pyjwt: set CVE_PRODUCT ... The relevant CVEs are tracked using pyjwt_project:pyjwt CPE, so the defauly python:pyjwt CPE doesn't match them. See CVE db query: sqlite> select * from products where PRODUCT like '%pyjwt%'; CVE-2017-11424|pyjwt_project|pyjwt|||1.5.0|<= CVE-2022-29217|pyjwt_project|pyjwt|1.5.0|>=|2.4.0|< CVE-2024-53861|pyjwt_project|pyjwt|2.10.0|=|| CVE-2025-45768|pyjwt_project|pyjwt|2.10.1|=|| Set the CVE_PRODUCT so it matches relevant CVEs. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:28:54 -08:00
Gyorgy Sarvari	851e449d54	python3-html5lib: set CVE_PRODUCT ... There are currently 2 related CVEs in the NIST db, both of them are tracked with html5lib:html5lib CPE, so the default python:html5lib CPE doesn't match. See CVE db query: sqlite> select * from products where PRODUCT like '%html5lib%'; CVE-2016-9909|html5lib|html5lib|||0.99999999|<= CVE-2016-9910|html5lib|html5lib|||0.99999999|<= Set the CVE_PRODUCT accordingly. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:28:54 -08:00
Gyorgy Sarvari	6f2ce3843e	python3-werkzeug: set CVE_PRODUCT ... The relevant CVEs are tracked using palletsprojects:werkzeug CPE, which makes the the default python:werkzeug CPE to not match anything. See CVE db query: sqlite> select * from products where PRODUCT like 'werkzeug'; CVE-2016-10516|palletsprojects|werkzeug|||0.11.11|< CVE-2019-14322|palletsprojects|werkzeug|||0.15.5|< CVE-2019-14806|palletsprojects|werkzeug|||0.15.3|< CVE-2020-28724|palletsprojects|werkzeug|||0.11.6|< CVE-2022-29361|palletsprojects|werkzeug|||2.1.0|<= CVE-2023-23934|palletsprojects|werkzeug|||2.2.3|< CVE-2023-25577|palletsprojects|werkzeug|||2.2.3|< CVE-2023-46136|palletsprojects|werkzeug|||2.3.8|< CVE-2023-46136|palletsprojects|werkzeug|3.0.0|=|| CVE-2024-34069|palletsprojects|werkzeug|||3.0.3|< CVE-2024-49766|palletsprojects|werkzeug|||3.0.6|< CVE-2024-49767|palletsprojects|werkzeug|||3.0.6|< CVE-2025-66221|palletsprojects|werkzeug|||3.1.4|< Set the CVE_PRODUCT so it matches the relevant entries. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:28:54 -08:00
Gyorgy Sarvari	5dd59b03f8	python3-tqdm: set CVE_PRODUCT ... The only related CVE to this recipe is tracked using tqdm_project:tqdm CPE, so the default python:tqdm CPE doesn't match it. See relevant CVE db query: sqlite> select * from products where PRODUCT like 'tqdm'; CVE-2016-10075|tqdm_project|tqdm|4.4.1|=|| CVE-2016-10075|tqdm_project|tqdm|4.10|=|| Set the CVE_PRODUCT so it can match related CVEs. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:28:54 -08:00
Gyorgy Sarvari	4675c9ddb7	python3-ipython: set CVE_PRODUCT ... ipython CVEs are tracked using ipython:ipython CPE, so the default python:ipython CVE_PRODUCT doesn't match relevant CPEs. See CVE db query: sqlite> select * from products where PRODUCT like 'ipython'; CVE-2015-4706|ipython|ipython|3.0.0|=|| CVE-2015-4706|ipython|ipython|3.1.0|=|| CVE-2015-4707|ipython|ipython|||3.2.0|< CVE-2015-5607|ipython|ipython|2.0.0|=|| CVE-2015-5607|ipython|ipython|2.1.0|=|| CVE-2015-5607|ipython|ipython|2.2.0|=|| CVE-2015-5607|ipython|ipython|2.3.0|=|| CVE-2015-5607|ipython|ipython|2.3.1|=|| CVE-2015-5607|ipython|ipython|2.4.0|=|| CVE-2015-5607|ipython|ipython|2.4.1|=|| CVE-2015-5607|ipython|ipython|3.0.0|=|| CVE-2015-5607|ipython|ipython|3.1.0|=|| CVE-2015-5607|ipython|ipython|3.2.0|=|| CVE-2015-5607|ipython|ipython|3.2.1|=|| CVE-2015-5607|ipython|ipython|3.2.2|=|| CVE-2015-5607|ipython|ipython|3.2.3|=|| CVE-2022-21699|ipython|ipython|||5.10.0|<= CVE-2022-21699|ipython|ipython|6.0.0|>=|7.16.3|< CVE-2022-21699|ipython|ipython|7.17.0|>=|7.31.1|< CVE-2022-21699|ipython|ipython|8.0.0|>=|8.0.1|< CVE-2023-24816|ipython|ipython|||8.10.0|< Set the CVE_PRODUCT accordingly to match the relevant entries. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:28:54 -08:00
Gyorgy Sarvari	25b9ae3902	python3-m2crypto: set CVE_PRODUCT ... NIST currently tracks CVEs under at least 2 different CPEs for this recipe, but neither of them is python:m2crypto (the default CVE_PRODUCT). See CVE db query: sqlite> select * from products where PRODUCT like '%m2crypto%'; CVE-2009-0127|heikkitoivonen|m2crypto|-||| CVE-2020-25657|m2crypto_project|m2crypto|-||| CVE-2023-50781|m2crypto_project|m2crypto|-||| Set the CVE_PRODUCT to match the relevant CPEs. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:28:53 -08:00
Gyorgy Sarvari	a89ab32230	python3-twisted: set CVE_PRODUCT ... The related CVEs are tracked with twisted:twisted CPE, so the default python:twisted CPE doesn't match any entries. See CVE db query: sqlite> select * from products where PRODUCT = 'twisted'; CVE-2014-7143|twisted|twisted|14.0.0|=|| CVE-2016-1000111|twisted|twisted|||16.3.1|< CVE-2019-12387|twisted|twisted|||19.2.1|< CVE-2019-12855|twisted|twisted|||19.2.1|<= CVE-2020-10108|twisted|twisted|||19.10.0|<= CVE-2020-10109|twisted|twisted|||19.10.0|<= CVE-2022-21712|twisted|twisted|11.1.0|>=|22.1.0|< CVE-2022-21716|twisted|twisted|21.7.0|>=|22.2.0|< CVE-2022-24801|twisted|twisted|||22.4.0|< CVE-2022-39348|twisted|twisted|0.9.4|>=|22.10.0|< CVE-2023-46137|twisted|twisted|||22.8.0|<= CVE-2024-41810|twisted|twisted|||24.3.0|<= Set the CVE_PRODUCT accordingly. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:28:53 -08:00
Gyorgy Sarvari	b96b616553	python3-simplejson: set CVE_PRODUCT ... There is one relevant CVE tracked using the simplejson_prject:simplejson CPE, and no entries tracked with python:simplejson. See CVE db query: sqlite> select * from products where PRODUCT like '%simplejson%'; CVE-2014-4616|simplejson_project|simplejson|||2.6.1|< Set the CVE_PRODUCT accordingly Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:28:53 -08:00
Gyorgy Sarvari	0aa5b9d824	python3-virtualenv: set CVE_PRODUCT ... There are relevant CVEs tracked under two different CPEs: python:virtualenv (the default in OE), and virtualenv:virtualenv (these were missed). See CVE db query: sqlite> select * from products where PRODUCT = 'virtualenv'; CVE-2011-4617|python|virtualenv|||1.4.9|<= CVE-2011-4617|python|virtualenv|0.8|=|| CVE-2011-4617|python|virtualenv|0.8.1|=|| CVE-2011-4617|python|virtualenv|0.8.2|=|| CVE-2011-4617|python|virtualenv|0.8.3|=|| CVE-2011-4617|python|virtualenv|0.8.4|=|| CVE-2011-4617|python|virtualenv|0.9|=|| CVE-2011-4617|python|virtualenv|0.9.1|=|| CVE-2011-4617|python|virtualenv|0.9.2|=|| CVE-2011-4617|python|virtualenv|1.0|=|| CVE-2011-4617|python|virtualenv|1.1|=|| CVE-2011-4617|python|virtualenv|1.1.1|=|| CVE-2011-4617|python|virtualenv|1.2|=|| CVE-2011-4617|python|virtualenv|1.3|=|| CVE-2011-4617|python|virtualenv|1.3.1|=|| CVE-2011-4617|python|virtualenv|1.3.2|=|| CVE-2011-4617|python|virtualenv|1.3.3|=|| CVE-2011-4617|python|virtualenv|1.3.4|=|| CVE-2011-4617|python|virtualenv|1.4|=|| CVE-2011-4617|python|virtualenv|1.4.1|=|| CVE-2011-4617|python|virtualenv|1.4.2|=|| CVE-2011-4617|python|virtualenv|1.4.3|=|| CVE-2011-4617|python|virtualenv|1.4.4|=|| CVE-2011-4617|python|virtualenv|1.4.5|=|| CVE-2011-4617|python|virtualenv|1.4.6|=|| CVE-2011-4617|python|virtualenv|1.4.7|=|| CVE-2011-4617|python|virtualenv|1.4.8|=|| CVE-2013-5123|virtualenv|virtualenv|12.0.7|=|| CVE-2024-53899|virtualenv|virtualenv|||20.26.6|< Set the CVE_PRODUCT so both are matched. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:28:53 -08:00
Gyorgy Sarvari	c5a7d5765e	python3-httplib2: set CVE_PRODUCT ... There are no CVEs tracked with python:httplib2 CPE, but there are multiple ones tracked under httplib2_project:hgttplib2 CPE (and they are related to this recipe). See CVE db query: sqlite> select * from products where PRODUCT = 'httplib2'; CVE-2013-2037|httplib2_project|httplib2|||0.7.2|<= CVE-2013-2037|httplib2_project|httplib2|0.8|=|| CVE-2020-11078|httplib2_project|httplib2|||0.18.0|< CVE-2021-21240|httplib2_project|httplib2|||0.19.0|< Set the CVE_PRODUCT accordingly. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:28:52 -08:00
Gyorgy Sarvari	a9a8c80550	python3-matplotlib: set CVE_PRODUCT ... At least one CVE is tracked by debian:matplotlib CPE (and no CVEs are tracked by the defaul python:matplotlib CPE). See CVE db query: sqlite> select * from products where PRODUCT = 'matplotlib'; CVE-2013-1424|debian|matplotlib|0.99.3-1|>=|1.4.2-3.1|< Set the CVE_PRODUCT accordingly. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:28:52 -08:00
Gyorgy Sarvari	fc90f2b514	python3-pyrad: set CVE_PRODUCT ... NIST tracks related CVEs with pyrad_project CPE vendor instead of "python". Set the CVE_PRODUCT to pyrad, so both can be matched. See CVE db query: sqlite> select * from products where PRODUCT = 'pyrad'; CVE-2013-0294|pyrad_project|pyrad|||2.1|< CVE-2013-0342|pyrad_project|pyrad|||2.1|< Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:28:52 -08:00
Gyorgy Sarvari	febab38136	python3-redis: set CVE_PRODUCT ... Set the correct CVE_PRODUCT for the recipe. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:28:52 -08:00
Gyorgy Sarvari	34f5d84f85	python3-twitter: set CVE_PRODUCT ... The product's CPE doesn't use "python" as the vendor, set the CVE_PRODUCT accordingly. See CVE db query: sqlite> select * from products where PRODUCT = 'tweepy'; CVE-2012-5825|tweepy|tweepy|-||| Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:28:52 -08:00
Gyorgy Sarvari	49ced80122	python3-sqlalchemy: set CVE_PRODUCT ... The default python:sqlalchemy CPE fails to match CVEs, because the CVEs are associated with sqlalchemy:sqlalchemy CPE. See CVE db query: sqlite> select * from products where PRODUCT = 'sqlalchemy'; CVE-2012-0805|sqlalchemy|sqlalchemy|||0.7.0|<= CVE-2012-0805|sqlalchemy|sqlalchemy|0.6.0|=|| CVE-2012-0805|sqlalchemy|sqlalchemy|0.6.0_beta1|=|| CVE-2012-0805|sqlalchemy|sqlalchemy|0.6.0_beta2|=|| CVE-2012-0805|sqlalchemy|sqlalchemy|0.6.0_beta3|=|| CVE-2012-0805|sqlalchemy|sqlalchemy|0.6.1|=|| CVE-2012-0805|sqlalchemy|sqlalchemy|0.6.2|=|| CVE-2012-0805|sqlalchemy|sqlalchemy|0.6.3|=|| CVE-2012-0805|sqlalchemy|sqlalchemy|0.6.4|=|| CVE-2012-0805|sqlalchemy|sqlalchemy|0.6.5|=|| CVE-2012-0805|sqlalchemy|sqlalchemy|0.6.6|=|| CVE-2012-0805|sqlalchemy|sqlalchemy|0.6.7|=|| CVE-2012-0805|sqlalchemy|sqlalchemy|0.7.0_b1|=|| CVE-2012-0805|sqlalchemy|sqlalchemy|0.7.0_b2|=|| CVE-2019-7164|sqlalchemy|sqlalchemy|||1.2.17|<= CVE-2019-7164|sqlalchemy|sqlalchemy|1.3.0_beta1|=|| CVE-2019-7164|sqlalchemy|sqlalchemy|1.3.0_beta2|=|| CVE-2019-7548|sqlalchemy|sqlalchemy|1.2.17|=|| Set the CVE_PRODUCT accordingly. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:28:51 -08:00
Gyorgy Sarvari	e22d2a7ba6	python3-paramiko: set CVE_PRODUCT ... Set correct CVE_PRODUCT for paramiko. The default python:paramiko value doesn't match CVEs, because the product has its own set of CPEs associated with CVEs. See CVE db query: sqlite> select * from products where PRODUCT = 'paramiko'; CVE-2008-0299|python_software_foundation|paramiko|1.7.1|=|| CVE-2018-1000805|paramiko|paramiko|1.17.6|=|| CVE-2018-1000805|paramiko|paramiko|1.18.5|=|| CVE-2018-1000805|paramiko|paramiko|2.0.8|=|| CVE-2018-1000805|paramiko|paramiko|2.1.5|=|| CVE-2018-1000805|paramiko|paramiko|2.2.3|=|| CVE-2018-1000805|paramiko|paramiko|2.3.2|=|| CVE-2018-1000805|paramiko|paramiko|2.4.1|=|| CVE-2018-7750|paramiko|paramiko|||1.17.6|< CVE-2018-7750|paramiko|paramiko|1.18.0|>=|1.18.5|< CVE-2018-7750|paramiko|paramiko|2.0.0|>=|2.0.8|< CVE-2018-7750|paramiko|paramiko|2.1.0|>=|2.1.5|< CVE-2018-7750|paramiko|paramiko|2.2.0|>=|2.2.3|< CVE-2018-7750|paramiko|paramiko|2.3.0|>=|2.3.2|< CVE-2018-7750|paramiko|paramiko|2.4.0|=|| CVE-2022-24302|paramiko|paramiko|||2.10.1|< CVE-2023-48795|paramiko|paramiko|||3.4.0|< Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:28:51 -08:00
Gyorgy Sarvari	139cc15de3	python3-tornado: set CVE_PRODUCT ... The default "python:tornado" CVE_PRODUCT doesn't match relevant CVEs, because the project's CPE is "tornadoweb:tornado". See cve db query (docmosis is an irrelevant vendor): sqlite> select * from products where PRODUCT = 'tornado'; CVE-2012-2374|tornadoweb|tornado|||2.2|<= CVE-2012-2374|tornadoweb|tornado|1.0|=|| CVE-2012-2374|tornadoweb|tornado|1.0.1|=|| CVE-2012-2374|tornadoweb|tornado|1.1|=|| CVE-2012-2374|tornadoweb|tornado|1.1.1|=|| CVE-2012-2374|tornadoweb|tornado|1.2|=|| CVE-2012-2374|tornadoweb|tornado|1.2.1|=|| CVE-2012-2374|tornadoweb|tornado|2.0|=|| CVE-2012-2374|tornadoweb|tornado|2.1|=|| CVE-2012-2374|tornadoweb|tornado|2.1.1|=|| CVE-2014-9720|tornadoweb|tornado|||3.2.2|< CVE-2023-25264|docmosis|tornado|||2.9.5|< CVE-2023-25265|docmosis|tornado|||2.9.5|< CVE-2023-25266|docmosis|tornado|||2.9.5|< CVE-2023-28370|tornadoweb|tornado|||6.3.2|< CVE-2024-42733|docmosis|tornado|||2.9.7|<= CVE-2024-52804|tornadoweb|tornado|||6.4.2|< CVE-2025-47287|tornadoweb|tornado|||6.5.0|< CVE-2025-67724|tornadoweb|tornado|||6.5.3|< CVE-2025-67725|tornadoweb|tornado|||6.5.3|< CVE-2025-67726|tornadoweb|tornado|||6.5.3|< Set the CVE_PRODUCT accordingly. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:28:51 -08:00
Gyorgy Sarvari	96a2496b65	python3-cbor2: set CVE_PRODUCT ... The default, "python:cbor2" CVE_PRODUCT is not appropriate for this recipe, because most associated CVEs use "agronholm:cbor2" CPE. Set the CVE_PRODUCT to cbor2, so it will match the currently used CPE, and in case there will be future python:cbor2 CPEs also, they will be matched too. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:28:51 -08:00
Khem Raj	f06f03200d	python3-backports-zstd: Upgrade to 1.3.0 ... Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:28:51 -08:00
Liu Yiding	e15758ad1a	python3-fastapi-cli: upgrade 0.0.16 -> 0.0.20 ... Changelog: https://github.com/fastapi/fastapi-cli/releases/tag/0.0.20 Signed-off-by: Liu Yiding <liuyd.fnst@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:28:51 -08:00
Wang Mingyu	90ab1ee642	python3-typer: upgrade 0.20.1 -> 0.21.0 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:28:49 -08:00
Wang Mingyu	3be4495590	python3-pikepdf: upgrade 10.0.3 -> 10.1.0 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:28:48 -08:00
Wang Mingyu	54691ea40a	python3-marshmallow: upgrade 4.1.1 -> 4.1.2 ... Changelog: Merge error store messages without rebuilding collections. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:28:48 -08:00
Wang Mingyu	b7a2d1f770	python3-elementpath: upgrade 5.0.4 -> 5.1.0 ... License-Update: Copyright year updated to 2025. Changelog: =========== - Drop Python 3.9 compatibility and add Pyton 3.15 support - Improve XPath sequence internal processing with a list derived type xlist - Extensions and fixes for XSD datatypes - Add XSequence datatype for external representation of XPath sequences Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:28:48 -08:00
Wang Mingyu	c5196a2282	python3-coverage: upgrade 7.13.0 -> 7.13.1 ... Changelog: ============ - Added: the JSON report now includes a "start_line" key for function and class regions, indicating the first line of the region in the source. - Added: The debug data command now takes file names as arguments on the command line, so you can inspect specific data files without needing to set the COVERAGE_FILE environment variable. - Fix: the JSON report used to report module docstrings as executed lines, which no other report did, as described in issue 2105. - Fix: coverage.py uses a more disciplined approach to detecting where third-party code is installed, and avoids measuring it. - Performance: data files that will be combined now record their hash as part of the file name. This lets us skip duplicate data more quickly, speeding the combining step. - Docs: added a section explaining more about what is considered a missing branch and how it is reported: Examples of missing branches, as requested in issue 1597. - Tests: the test suite misunderstood what core was being tested if COVERAGE_CORE wasn't set on 3.14+. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-31 08:28:48 -08:00
Wang Mingyu	9c5e7e5c29	python3-typer: upgrade 0.20.0 -> 0.20.1 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-24 13:18:29 -08:00
Wang Mingyu	ebca0ae79d	python3-tornado: upgrade 6.5.3 -> 6.5.4 ... Bug fixes ~~~~~~~~~ - The "in" operator for "HTTPHeaders" was incorrectly case-sensitive, causing lookups to fail for headers with different casing than the original header name. This was a regression in version 6.5.3 and has been fixed to restore the intended case-insensitive behavior from version 6.5.2 and earlier. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-24 13:18:29 -08:00
Wang Mingyu	f1bdb4e99b	python3-soupsieve: upgrade 2.8 -> 2.8.1 ... FIX: Changes in tests to accommodate latest Python HTML parser changes. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-24 13:18:29 -08:00
Wang Mingyu	aba3856c1e	python3-smbus2: upgrade 0.5.0 -> 0.6.0 ... Changelog: ========== - Python 3.14 added. - Fix SystemError: buffer overflow on Python 3.14+ on 64-bit systems by using c_ulong instead of c_uint32 for I2C_FUNCS ioctl. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-24 13:18:29 -08:00
Wang Mingyu	8db029f9a5	python3-sdbus: upgrade 0.14.1 -> 0.14.2 ... Changelog: =========== - Fix segmentation fault if export handle outlives the exported object. - Fix some tests failing on slow systems. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-24 13:18:29 -08:00
Wang Mingyu	dc39281af5	python3-python-multipart: upgrade 0.0.20 -> 0.0.21 ... Changelog: Add support for Python 3.14 and drop EOL 3.8 and 3.9 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-24 13:18:29 -08:00
Wang Mingyu	4389519b6b	python3-pikepdf: upgrade 10.0.2 -> 10.0.3 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-24 13:18:28 -08:00
Wang Mingyu	602a336ae3	python3-nodeenv: upgrade 1.9.1 -> 1.10.0 ... Changelog: ========== - Use lowercase lookup for archmap - Add support for Python 3.13 - Add UV Virtual Environment support - Use sh instead of bash - Replace additional use of which(1) with shutil.which() - Support leading v in .node-version - Check host platform when finding node version Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-24 13:18:28 -08:00
Wang Mingyu	b92546dea2	python3-joblib: upgrade 1.5.2 -> 1.5.3 ... Changelog: =========== - The Memory object won't overwrite an already existing .gitignore file in its cache directory anymore. - Harden the safety checks in eval_expr(pre_dispatch) to prevent excessive memory allocation and potential crashes by limiting the allowed length of the expression and the maximum numeric value of sub-expressions and not evaluating expressions with non-numeric literals. - Vendor cloudpickle 3.1.2 to fix a pickling problem with interactively defined abstract base classes and type annotations in Python 3.14+. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-24 13:18:28 -08:00
Wang Mingyu	049f50eef4	python3-imgtool: upgrade 2.2.0 -> 2.3.0 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-24 13:18:28 -08:00
Wang Mingyu	310009aad6	python3-humanize: upgrade 4.14.0 -> 4.15.0 ... Added ------ - Add locale support for decimal separator in intword - Add support for Python 3.15 Changed -------- - Replace pre-commit with prek Fixed ------ - naturaldelta: round the value to nearest unit that makes sense - Fix plural form for intword and improve performance - Replace Exception with more specific FileNotFoundError Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-24 13:18:28 -08:00
Wang Mingyu	3f09bcaf54	python3-google-auth: upgrade 2.43.0 -> 2.45.0 ... Changelog: ============= Features --------- - Adding Agent Identity bound token support and handling certificate mismatches with retries - support Python 3.14 - add ecdsa p-384 support - MDS connections use mTLS - Implement token revocation in STS client and add revoke() method to ExternalAccountAuthorizedUser credentials - Add shlex to correctly parse executable commands with spaces Bug Fixes --------- - Use public refresh method for source credentials in ImpersonatedCredentials - Add temporary patch to workload cert logic to accomodate Cloud Run mis-configuration - Delegate workload cert and key default lookup to helper function Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-24 13:18:28 -08:00
Wang Mingyu	c2710a2df9	python3-filelock: upgrade 3.20.0 -> 3.20.1 ... Changelog: CVE-2025-68146: Fix TOCTOU symlink vulnerability in lock file creation Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-24 13:18:28 -08:00
Wang Mingyu	44c27a5915	python3-cmake: upgrade 4.2.0 -> 4.2.1 ... Changelog: ========== - fix: add missing f-string prefix for --parallel bootstrap arg - fix: workaround issue in lastversion with OpenSSL - chore(deps): update clang to 21.1.8.0 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-24 13:18:27 -08:00
Wang Mingyu	0cc847b8f7	python3-cachetools: upgrade 6.2.3 -> 6.2.4 ... Changelog: Fix license information displayed on PyPI be using an updated version of twine for uploading. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-24 13:18:27 -08:00
Khem Raj	dbc5ef5e12	python3-pyzstd: Delete recipe ... It has been moved to core layer Signed-off-by: Khem Raj <raj.khem@gmail.com> Cc: Koen Kooi <koen.kooi@oss.qualcomm.com>	2025-12-24 13:18:25 -08:00
Liu Yiding	cf1b6485d1	python3-uvicorn: upgrade 0.38.0 -> 0.40.0 ... Signed-off-by: Liu Yiding <liuyd.fnst@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-23 12:22:42 -08:00
Liu Yiding	a33d278d08	python3-importlib-metadata: upgrade 8.7.0 -> 8.7.1 ... LIC_FILES_CHKSUM changed as LICENSE file format has been changed in 8.7.1 Signed-off-by: Liu Yiding <liuyd.fnst@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-23 12:22:41 -08:00
Khem Raj	c0fb020740	python3-pytest-metadata: Upgrade to 3.1.1 ... pytest-metadata version 2.0.2 has a bug where it tries to access py.__version__, but the py library version 1.11.0 removed the __version__ attribute. This is a known incompatibility. Switch to hatching build backend Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-22 07:29:42 -08:00
Khem Raj	ab4e9f7009	python3-pytest-html: Add missing ptest rdep on pytest html ... Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-21 12:58:57 -08:00
Wang Mingyu	2c0a4edb58	python3-tzdata: upgrade 2025.2 -> 2025.3 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-21 08:54:04 -08:00
Wang Mingyu	8ba97b6646	python3-tornado: upgrade 6.5.2 -> 6.5.3 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-21 08:54:04 -08:00
Wang Mingyu	f95039cd4b	python3-sqlalchemy: upgrade 2.0.44 -> 2.0.45 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-21 08:54:04 -08:00
Wang Mingyu	50f6252da9	python3-nanobind: upgrade 2.9.2 -> 2.10.2 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-21 08:54:03 -08:00
Wang Mingyu	335d2486ed	python3-matplotlib: upgrade 3.10.7 -> 3.10.8 ... Changelog: =========== - Properly allow freethreaded mode in the MacOS backend - Better error handling for MacOS backend Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-21 08:54:03 -08:00
Wang Mingyu	ac2879c276	python3-fastapi: upgrade 0.124.0 -> 0.124.4 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-21 08:54:03 -08:00
Wang Mingyu	ff6283e627	python3-coverage: upgrade 7.12.0 -> 7.13.0 ... Changelog: ============ - Feature: coverage.py now supports .coveragerc.toml - Fix: we now include a permanent .pth file which is installed with the code - Deprecated: when coverage.py is installed, it creates three command entry points: coverage, coverage3, and coverage-3.10 (if installed for Python 3.10). The second and third of these are not needed and will eventually be removed. They still work for now, but print a message about their deprecation. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-21 08:54:03 -08:00
Wang Mingyu	99022c28b7	python3-cachetools: upgrade 6.2.2 -> 6.2.3 ... Changelog: ========== - Improve documentation regarding @cachedmethod with condition parameter. - Minor style and readability improvements. - Modernize build environment. - Update CI environment. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-21 08:54:03 -08:00
Wang Mingyu	5e3cbe73ed	python3-black: upgrade 25.11.0 -> 25.12.0 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-21 08:54:03 -08:00
Wang Mingyu	8f50eabb81	python3-aiodns: upgrade 3.6.0 -> 3.6.1 ... Changelog: Pin pycares to < 5 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-21 08:54:02 -08:00
Liu Yiding	d39a37da7d	python3-txaio: upgrade 25.12.1 -> 25.12.2 ... LICENSE CHKSUM has been changed as title was added in new LICENSE file. Signed-off-by: Liu Yiding <liuyd.fnst@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-21 08:54:01 -08:00
Gyorgy Sarvari	fae6fe9b41	python3-django: upgrade 4.2.26 -> 4.2.27 ... Contains fix for CVE-2025-13372 and CVE-2025-64460 Changelog: https://github.com/django/django/blob/4.2.27/docs/releases/4.2.27.txt Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-20 11:41:01 -08:00
Gyorgy Sarvari	2538918df1	python3-django: upgrade 5.2.8 -> 5.2.9 ... Includes fix for CVE-2025-13372 and CVE-2025-64460 Changelog: https://github.com/django/django/blob/5.2.9/docs/releases/5.2.9.txt Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-20 11:41:01 -08:00
Tom Geelen	b91e86f73a	python3-chromecast: upgrade 14.0.7 -> 14.0.9 ... Changelog: https://github.com/home-assistant-libs/pychromecast/releases/tag/14.0.9 Drop obsolete patches. Signed-off-by: Tom Geelen <t.f.g.geelen@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-16 19:57:34 -08:00
Tom Geelen	063ae95c56	python3-aiohttp: add optional PACKAGECONFIG for the extras mentioned in the build requirements ... Signed-off-by: Tom Geelen <t.f.g.geelen@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-16 19:57:34 -08:00
Tom Geelen	120f908fa0	python3-aiohttp: add BBCLASSEXTEND: native and nativesdk to the recipe ... Signed-off-by: Tom Geelen <t.f.g.geelen@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-16 19:57:34 -08:00
Tom Geelen	f11695a304	python3-aiohttp: upgrade 3.12.15 -> 3.12.2 ... Signed-off-by: Tom Geelen <t.f.g.geelen@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-16 19:57:33 -08:00
Tom Geelen	1b8afacbda	python3-async-timeout: add BBCLASSEXTEND for native and nativesdk ... Signed-off-by: Tom Geelen <t.f.g.geelen@gmail.com> Reviewed-by: Yoann Congal <yoann.congal@smile.fr> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-16 19:57:33 -08:00
Khem Raj	ec4c278bc9	python3-betamax: Skip ptests accessing network ... cassette fixtures are not installed in ptests so skip test_requests_with_json_body Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-10 08:56:15 -08:00
Khem Raj	a145ddffde	python3-traitlets: Fix ptests fails ... Python 3.13 changed how argparse handles % in help strings, now treating them all as format placeholders Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-10 08:56:15 -08:00
Khem Raj	ea2e124c95	python3-multidict: Add missing dependency on psutils modules for ptests ... Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-10 08:56:15 -08:00
Khem Raj	d8e7190fd3	python3-pyzstd: Remove setup.py tweak for lto/clang ... This tweak was specific to clang-16, its no longer needed moreover, setup.py is no longer there in latest 0.19.x release Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-10 08:56:15 -08:00
Khem Raj	0b5f2ba62c	python3-pyzstd: Add ptest dependency on backports.zstd ... This module is needed by ptests in 0.19+ Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-10 08:56:14 -08:00
Khem Raj	332072205f	python3-backports-zstd: Add recipe ... This is required by python3-pyzstd >= 0.19.0 tests Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-10 08:56:14 -08:00
Liu Yiding	e26c6f86c8	python3-pyzstd: upgrade 0.18.0 -> 0.19.0 ... 1. Changelog - The project has been completely refactored to use the Zstandard implementation from the standard library ([PEP-784](https://peps.python.org/pep-0784/)) - The refactor has some minor impact on public APIs, such as changing the exception raised on invalid input 2. Drop 0001-Bump-setuptools-dependency-from-74-to-89.patch as setuptools in requires was removed in pyproject.toml 3. HOMEPAGE has been changed to https://github.com/Rogdham/pyzstd. Signed-off-by: Liu Yiding <liuyd.fnst@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-10 08:56:14 -08:00
Wang Mingyu	632523b914	python3-txaio: upgrade 25.9.2 -> 25.12.1 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-09 15:11:01 -08:00
Wang Mingyu	fd9bab33e2	python3-pytest-httpx: upgrade 0.35.0 -> 0.36.0 ... License-Update: Copyright year updated to 2025 Changelog: =========== - pytest required version is now 9. - Explicit support for python 3.14. - match_params parameter is now available on responses and callbacks registration, as well as request(s) retrieval. Allowing to provide query parameters as a dict instead of being part of the matched URL. - This parameter allows to perform partial query params matching (refer to documentation for more information). - URL with more than one value for the same parameter were not matched properly (matching was performed on the first value). - httpx_mock.add_exception is now properly documented (accepts BaseException instead of Exception). - pytest 8 is not supported anymore. - python 3.9 is not supported anymore. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-09 15:11:01 -08:00
Wang Mingyu	3f13fbc5c2	python3-pymongo: upgrade 4.15.4 -> 4.15.5 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-09 15:11:01 -08:00
Wang Mingyu	7ea6be4b5a	python3-pybase64: upgrade 1.4.2 -> 1.4.3 ... Changelog: ========== - Publish Android Python 3.14 wheels - Publish GraalPy v25 wheels Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-09 15:11:01 -08:00
Wang Mingyu	f0f0092cbd	python3-pyais: upgrade 2.13.3 -> 2.14.0 ... Changelog: ============ * Fix: Message Type 24 Part B: Detecting MMSI as auxiliary * add support for AIS Message Type 24 Part B auxiliary craft variant * auxiliary craft now decode mothership MMSI instead of vessel dimensions Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-09 15:11:01 -08:00
Wang Mingyu	4ae28f24fd	python3-platformdirs: upgrade 4.5.0 -> 4.5.1 ... Changelog: Fix no-ctypes fallback on windows Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-09 15:11:01 -08:00
Wang Mingyu	3933501591	python3-marshmallow: upgrade 4.1.0 -> 4.1.1 ... Bug fix: Ensure URL validator is case-insensitive when using custom schemes Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-09 15:11:01 -08:00
Wang Mingyu	95f21ffa95	python3-ipython: upgrade 9.7.0 -> 9.8.0 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-09 15:11:01 -08:00
Wang Mingyu	3af05cab17	python3-greenlet: upgrade 3.2.4 -> 3.3.0 ... Changelog: ========== - Drop support for Python 3.9. - Switch to distributing manylinux_2_28 wheels instead of manylinux2014 wheels. Likewise, switch from musllinux_1_1 to 1_2. - Add initial support for free-threaded builds of CPython 3.14. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-09 15:11:01 -08:00
Wang Mingyu	8de88b0308	python3-fastapi: upgrade 0.122.0 -> 0.124.0 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-09 15:11:01 -08:00
Wang Mingyu	078c62af8c	python3-cmd2: upgrade 2.7.0 -> 3.0.0 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-09 15:11:01 -08:00
Wang Mingyu	e00835c994	python3-cantools: upgrade 41.0.0 -> 41.0.2 ... Changelog: ========== - Add support for INT VFrameFormat - Check ./tests directory with ruff Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-09 15:11:01 -08:00
Wang Mingyu	4006ec486b	python3-argcomplete: upgrade 3.6.2 -> 3.6.3 ... Changelog: ============ - Make RE PCRE compatible. - Only execute Python interpreters - fish: set variable scope to local to avoid clobbering global or universal variables - Documentation and help improvements Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-09 15:11:00 -08:00
Wang Mingyu	22dc38bdcc	python3-aiodns: upgrade 3.5.0 -> 3.6.0 ... Changelog: ============= - Fix resolver garbage collection during pending queries (#211) - Prevents resolver from being garbage collected while queries are in progress - Socket callback optimizations (#172) - Improved performance for socket state handling - Fixed RTD links (#176) - Added Python 3.14 to the CI (#212) - Updated dependencies- Fix resolver garbage collection during pending queries (#211) - Prevents resolver from being garbage collected while queries are in progress - Socket callback optimizations (#172) - Improved performance for socket state handling - Fixed RTD links (#176) - Added Python 3.14 to the CI (#212) - Updated dependencies Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-09 15:11:00 -08:00
Liu Yiding	668902b774	python3-protobuf: upgrade 6.33.1 -> 6.33.2 ... Change log: https://github.com/protocolbuffers/protobuf/releases/tag/v33.2 Signed-off-by: Liu Yiding <liuyd.fnst@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-08 23:22:19 -08:00
Leon Anavi	7954f37b3c	python3-huey: Upgrade 2.5.4 -> 2.5.5 ... Upgrade to release 2.5.5: - Fix for pypi Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-05 10:14:17 -08:00
Leon Anavi	588b327f0f	python3-multidict: Upgrade 6.6.3 -> 6.7.0 ... Upgrade to release 6.7.0: - Updated tests and added CI for CPython 3.14 From 6.6.4: - Fixed MutliDict & CIMultiDict memory leak when deleting values or clearing them - The type preciseness coverage report generated by MyPy is now uploaded to Coveralls and will not be included in the Codecov views going forward - Added memory leak test for popping or deleting attributes from a multidict to prevent future issues or bogus claims Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-05 10:14:17 -08:00
Leon Anavi	135b3a82fb	python3-autobahn: Upgrade 24.4.2 -> 25.11.1 ... Upgrade to release 25.11.1: - WAMP Flatbuffers serialization test coverage; WAMP message classes refactoring - Add WAMP serdes functional and benchmark testing; WAMP-Flatbuffers; WAMP Serializer Composition (transport/payload) - Add vendored Flatbuffers Fixes: WARNING: python3-autobahn-25.11.1-r0 do_check_backend: QA Issue: inherits setuptools3 but has pyproject.toml with setuptools.build_meta, use the correct class [pep517-backend] Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-05 10:14:16 -08:00
Leon Anavi	b428f67575	python3-cloudpickle: Upgrade 3.1.1 -> 3.1.2 ... Upgrade to release 3.1.2: - Fix pickling of abstract base classes containing type annotations for Python 3.14. License-Update: Use file LICENSE Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-05 10:13:23 -08:00
Leon Anavi	71055538b5	python3-polyline: Upgrade 2.0.3 -> 2.0.4 ... Upgrade to release 2.0.4: - Add py.typed marker Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-04 06:06:46 -08:00
Wang Mingyu	74aa2bdac6	python3-werkzeug: upgrade 3.1.3 -> 3.1.4 ... Changelog: ============== - safe_join on Windows does not allow special device names. This prevents reading from these when using send_from_directory. secure_filename already prevented writing to these. - The debugger pin fails after 10 attempts instead of 11. - The multipart form parser handles a \r\n sequence at a chunk boundary. - Improve CPU usage during Watchdog reloader. - Request.json annotation is more accurate. - Traceback rendering handles when the line number is beyond the available source lines. - HTTPException.get_response annotation and doc better conveys the distinction between WSGI and sans-IO responses. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-02 09:22:52 -08:00
Wang Mingyu	674cd4fde5	python3-types-psutil: upgrade 7.1.1.20251122 -> 7.1.3.20251130 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-02 09:22:52 -08:00
Wang Mingyu	705abb20c1	python3-sqlparse: upgrade 0.5.3 -> 0.5.4 ... Changelog: ============= Enhancements --------------- * Add support for Python 3.14. * Add type annotations to top-level API functions and include py.typed marker for PEP 561 compliance, enabling type checking with mypy and other tools * Add pre-commit hook support. sqlparse can now be used as a pre-commit hook to automatically format SQL files. The CLI now supports multiple files and an '--in-place' flag for in-place editing * Add 'ATTACH' and 'DETACH' to PostgreSQL keywords * Add 'INTERSECT' to close keywords in WHERE clause * Support 'REGEXP BINARY' comparison operator Bug Fixes ---------- * Add additional protection against denial of service attacks when parsing very large lists of tuples. This enhances the existing recursion protections with configurable limits for token processing to prevent DoS through algorithmic complexity attacks. The new limits (MAX_GROUPING_DEPTH=100, MAX_GROUPING_TOKENS=10000) can be adjusted or disabled (by setting to None) if needed for legitimate large SQL statements. * Remove shebang from cli.py and remove executable flag * Fix strip_comments not removing all comments when input contains only comments * Fix splitting statements with IF EXISTS/IF NOT EXISTS inside BEGIN...END blocks * Fix splitting on semicolons inside BEGIN...END blocks Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-02 09:22:51 -08:00
Wang Mingyu	db7d38d74a	python3-pyppmd: upgrade 1.2.0 -> 1.3.1 ... Changelog: ============ - Fix several issues in ThreadDecoder.c - Fix the double call of Ppmd7_Free from both Ppmd7T_Free and Ppmd7Decoder_dealloc - Fix the double call of Ppmd8_Free from both Ppmd8T_Free and Ppmd8Decoder_dealloc - Fix the issue in PyPY - Fix initialization order in ffi_build.py - Fix eof handling in cffi_ppmd.py - Add support for Python 3.14 - Add compile and link flag for building C++ with -pthread - Minimum required python to be 3.10 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-02 09:22:51 -08:00
Wang Mingyu	b745baf478	python3-pymodbus: upgrade 3.11.3 -> 3.11.4 ... Changelog: full support for python 3.14 and a number of packages (like mypy) have been updated. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-02 09:22:51 -08:00
Wang Mingyu	797e29ed42	python3-pybcj: upgrade 1.0.6 -> 1.0.7 ... Changelog: ============ - Support for python 3.14 - ci: fix test and release workflows Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-02 09:22:51 -08:00
Wang Mingyu	280a360981	python3-networkx: upgrade 3.5 -> 3.6 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-02 09:22:51 -08:00
Wang Mingyu	7241fa6bb2	python3-inflate64: upgrade 1.0.3 -> 1.0.4 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-02 09:22:50 -08:00
Wang Mingyu	e274146fa4	python3-gmpy2: upgrade 2.2.1 -> 2.2.2 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-02 09:22:50 -08:00
Wang Mingyu	768580103b	python3-eventlet: upgrade 0.40.3 -> 0.40.4 ... Changelog: ============ * Remove legacy setuptools configuration files * add 3.14 to supported versions * Emit warning on startup that eventlet is deprecated * Fix Python 3.14 on macOS * Workaround for #1068 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-02 09:22:50 -08:00
Wang Mingyu	ae001d8cef	python3-beautifulsoup4: upgrade 4.14.2 -> 4.14.3 ... Changelog: =========== * When using one of the lxml tree builders, you can pass in huge_tree=True to disable lxml's security restrictions and process files that include huge text nodes. * The html.parser tree builder processes numeric character entities using the algorithm described in the HTML spec. * Added a general test of the html.parser tree builder's ability to turn any parsing exception from html.parser into a ParserRejectedMarkup exception. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-02 09:22:50 -08:00
Wang Mingyu	06a105b8cd	python3-apispec: upgrade 6.8.4 -> 6.9.0 ... Changelog: ============ - Support examples property from field metadata - Officially support Python 3.14 - Drop support for Python 3.9 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-02 09:22:50 -08:00
Wang Mingyu	e5fa8c8bbd	python3-anyio: upgrade 4.11.0 -> 4.12.0 ... Changelog: =============== - Added support for asyncio's task call graphs on Python 3.14 and later when using AnyIO's task groups - Added an asynchronous implementation of the functools module - Added support for uvloop=True on Windows via the winloop implementation - Added support for use as a context manager to anyio.lowlevel.RunVar - Added __all__ declarations to public submodules (anyio.lowlevel etc.) - Added the ability to set the token count of a CapacityLimiter to zero - Added parameters case_sensitive and recurse_symlinks along with support for path-like objects to anyio.Path.glob() and anyio.Path.rglob() - Dropped sniffio as a direct dependency and added the get_available_backends() function - Fixed Process.stdin.send() not raising ClosedResourceError and BrokenResourceError on asyncio. Previously, a non-AnyIO exception was raised in such cases - Fixed Process.stdin.send() not checkpointing before writing data on asyncio - Fixed a race condition where cancelling a Future from BlockingPortal.start_task_soon() would sometimes not cancel the async function - Fixed the presence of the pytest plugin causing breakage with older versions of pytest (<= 6.1.2) - Fixed a rarely occurring RuntimeError: Set changed size during iteration while shutting down the process pool when using the asyncio backend Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-02 09:22:50 -08:00
Liu Yiding	3e7e052f23	python3-incremental: 24.7.2 -> 24.11.0 ... Changelog: https://github.com/twisted/incremental/blob/trunk/NEWS.rst Signed-off-by: Liu Yiding <liuyd.fnst@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-02 09:18:20 -08:00
Leon Anavi	a9f468f909	python3-gast: Upgrade 0.6.0 -> 0.7.0 ... Upgrade to release 0.7.0: - Update unparser to harmonize output across revisions and handle python 3.12+ features - Fix support for TypeVar, TypeVarTupe and ParamSpec - Support t-string from python 3.14 - Adjust test incompatible with py2 - Support _field_types field for every AST class - Make gast.dump more generic across python version - Only pass existing attributes as keyword parameters in gast_to_ast - Initial oss-fuzz integration - Support [g]ast.get_source_segment - Fix gast.get_docstring implementation - Initialize ast node with known fields to avoid deprecation warning in Python 3.13 - Add missing type_params attribute for ClassDef node before Python 3.12 Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-02 09:18:19 -08:00
Leon Anavi	4d85f6a6d6	python3-zeroconf: Upgrade 0.147.2 -> 0.148.0 ... Upgrade to release 0.148.0: - Trigger semantic releases for 0.x branch Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-02 09:18:19 -08:00
Leon Anavi	b68f801534	python3-toolz: Upgrade 1.0.0 -> 1.1.0 ... Upgrade to release 1.1.0: - Add support for Python 3.14, PyPy 3.11 - Drop support for Python 3.8, PyPy 3.8 - Add note about project status (alive and maintained, but inactive) - Use yield from in merge_sorted to improve performance - Fix bug in partition_all when __len__ is incorrect; now raise IndexError - Modernization Fixes: WARNING: python3-toolz-1.1.0-r0 do_check_backend: QA Issue: inherits setuptools3 but has pyproject.toml with setuptools.build_meta, use the correct class [pep517-backend] Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-02 09:18:19 -08:00
Khem Raj	846dd7cd5f	python3-mpv: Do not consider it if commercial license is not selected ... It depends on mpv which depends on ffmpeg needing commercial in LICENSE_FLAGS_ACCEPTED Fixes ERROR: Nothing PROVIDES 'ffmpeg' (but /srv/pokybuild/yocto-worker/meta-oe/build/meta-openembedded/meta-oe/recipes-multimedia/mplayer/mpv_0.40.0.bb DEPENDS on or otherwise requires it) ffmpeg was skipped: Has a restricted license 'commercial' which is not listed in your LICENSE_FLAGS_ACCEPTED. NOTE: Runtime target 'mpv' is unbuildable, removing... Missing or unbuildable dependency chain was: ['mpv', 'ffmpeg'] ERROR: Required build target 'meta-world-pkgdata' has no buildable providers. Missing or unbuildable dependency chain was: ['meta-world-pkgdata', 'python3-mpv', 'mpv', 'ffmpeg'] Signed-off-by: Khem Raj <raj.khem@gmail.com> Cc: Jan Claußen <jan.claussen10@web.de>	2025-12-02 09:18:04 -08:00
Jan Claußen	c77bcf89d8	python3-mpv: Add recipe ... python-mpv is a ctypes-based python interface to the mpv media player. Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-01 08:45:53 -08:00
Robert Yang	af3f71b72a	python3-svglib: Add it ... Svglib is a Python library for reading SVG files and converting them (to a reasonable degree) to other formats using the ReportLab Open Source toolkit. Signed-off-by: Robert Yang <liezhi.yang@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-01 08:45:53 -08:00
Robert Yang	0cfeb212d1	python3-cssselect2: Add it for python3-svglib ... Cssselect2 is a straightforward implementation of CSS4 Selectors for markup documents (HTML, XML, etc.) that can be read by ElementTree-like parsers (including cElementTree, lxml, html5lib, etc.)" Signed-off-by: Robert Yang <liezhi.yang@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-01 08:45:52 -08:00
Robert Yang	0d687432de	python3-tinycss2: Add it for python3-cssselect2 ... Tinycss2 is a low-level CSS parser and generator written in and generate CSS strings corresponding to these objects. Python: it can parse strings, return objects representing tokens and blocks, Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-01 08:45:52 -08:00
Robert Yang	c5e880f224	python3-reportlab: Add it ... Reportlab is an Open Source Python library for generating PDFs and graphics. Signed-off-by: Robert Yang <liezhi.yang@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-12-01 08:45:52 -08:00
Khem Raj	c8d0737c7f	python3-fastapi: Add missing ptest dependencies ... Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-30 20:20:59 -08:00
Khem Raj	0456c030d2	python3-fastapi: Point to right layer for swagger-ui recipe ... meta-xfce -> meta-webserver Signed-off-by: Khem Raj <raj.khem@gmail.com> Cc: Jan Vermaete <jan.vermaete@gmail.com>	2025-11-30 10:41:20 -08:00
Khem Raj	a555730e42	python3-fastapi: Turn swagger-ui dependency into packageconfig ... Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-30 09:25:15 -08:00
Jan Vermaete	cc274558bd	python3-fastapi[-cli]: new recipe 0.122.0 ... python3-fastapi at version 0.122.0 python3-fastapi-cli at version 0.0.16 Moved and modified from meta-ros (Thanks Rob Woolley) - added ptest for fastapi (long run) - python3-fastapi-cli does have tests, but also a circular dependency on python-fastapi. So no ptests for python3-fastapi Signed-off-by: Jan Vermaete <jan.vermaete@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-29 21:19:36 -08:00
Jan Vermaete	5007fe03dd	python3-annotated-doc: new recipe version 0.0.4 ... no tests are part of the pypi package Signed-off-by: Jan Vermaete <jan.vermaete@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-29 21:19:36 -08:00
Jan Claußen	4f461e4985	python3-soundcard: Add recipe ... SoundCard is a library for playing and recording audio without resorting to a CPython extension. Signed-off-by: Jan Claußen <jan.claussen10@web.de> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-29 08:32:47 -08:00
Anthony Del Frari	3304914228	python3-requests-unixsocket: Update to 0.4.1 ... python3-requests broke the http+unix url scheme with version 2.32. Their position is that it's the responsibility of consuming libraries to adopt their new interface. requests-unixsocket 0.4 adapts to the new interface. Signed-off-by: Dan McGregor <dan.mcgregor@vecima.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-28 11:39:51 -08:00
Leon Anavi	9245fda941	python3-pillow: Add nativesdk to BBCLASSEXTEND ... Add nativesdk to BBCLASSEXTEND because python3-pikepdf requires nativesdk-python3-pillow. This work was sponsored by GOVCERT.LU. Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-27 08:49:32 -08:00
Tom Geelen	367faf98ac	python3-pytest-picked: Add recipe for version 0.5.1 ... Python package description: Run the tests related to the unstaged files or the current branch (according to Git) More information: https://pypi.org/project/pytest-picked/ Signed-off-by: Tom Geelen <t.f.g.geelen@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-26 19:07:04 -08:00
Ankur Tyagi	5551a12170	python3-django: upgrade 4.2.25 -> 4.2.26 ... Release Notes: https://docs.djangoproject.com/en/dev/releases/4.2.26/ Signed-off-by: Ankur Tyagi <ankur.tyagi85@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-26 19:07:04 -08:00
Ankur Tyagi	8247a68d54	python3-django: upgrade 5.2.7 -> 5.2.8 ... Release Notes: https://docs.djangoproject.com/en/dev/releases/5.2.8/ Signed-off-by: Ankur Tyagi <ankur.tyagi85@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-26 19:07:04 -08:00
Liu Yiding	32cc671e03	python3-pytest-cov: upgrade 6.2.1 -> 7.0.0 ... Signed-off-by: Liu Yiding <liuyd.fnst@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-26 15:28:07 -08:00
Jan Vermaete	5489b73633	python3-tenacity: new recipe version 9.1.2 ... Moved the recipe from meta-homeassistant - all credits to them Added ptest - skip one test that fails on qemu Signed-off-by: Jan Vermaete <jan.vermaete@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-25 15:32:28 -08:00
Wang Mingyu	d897aa1e1f	python3-types-psutil: upgrade 7.0.0.20250601 -> 7.1.1.20251122 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-25 07:44:44 -08:00
Wang Mingyu	9b01199ed5	python3-stevedore: upgrade 5.5.0 -> 5.6.0 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-25 07:44:43 -08:00
Wang Mingyu	18aaa7d8a6	python3-rich-argparse: upgrade 1.7.1 -> 1.7.2 ... Changelog: Fix colors overlapping with Python 3.14.0+ which enabled colors by default in the help formatter. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-25 07:44:43 -08:00
Wang Mingyu	ddca2bae90	python3-moteus: upgrade 0.3.95 -> 0.3.96 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-25 07:44:43 -08:00
Wang Mingyu	98420b06a7	python3-dirty-equals: upgrade 0.10.0 -> 0.11 ... Changelog: =========== - Fix nested dataclass comparison - uprev in preparation for release - Add tests for 3.14 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-25 07:44:43 -08:00
Liu Yiding	2c9a4075ef	python3-pytest-mock: upgrade 3.14.1 -> 3.15.1 ... 1. Changelog: https://github.com/pytest-dev/pytest-mock/releases/tag/v3.15.1 2. Remove 0001-Add-asyncio-fixture-to-test_instance_async_method_sp.patch as it has been mergerd upstream. Signed-off-by: Liu Yiding <liuyd.fnst@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-25 07:44:42 -08:00
Wang Mingyu	7433f87f32	python3-coverage: upgrade 7.11.3 -> 7.12.0 ... Changelog: ============ - The HTML report now shows separate coverage totals for statements and branches, as well as the usual combined coverage percentage. - The JSON report now includes separate coverage totals for statements and branches - Fix: except* clauses were not handled properly under the "sysmon" measurement core, causing KeyError exceptions - Fix: we now defend against aggressive mocking of open() that could cause errors inside coverage.py. - Fix: in unusual cases where a test suite intentionally exhausts the system's file descriptors to test handling errors in open(), coverage.py would fail when trying to open source files - A small tweak to the HTML report: file paths now use thin spaces around slashes to make them easier to read. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-25 07:44:42 -08:00
Wang Mingyu	ab1216dde2	python3-cmake: upgrade 4.1.2 -> 4.2.0 ... Changelog: ============= - ci: build with clang instead of gcc - docs: improve links back to GitHub - chore: add changelog exclusion for bots Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-25 07:44:42 -08:00
Wang Mingyu	7c760f0b54	python3-cfgv: upgrade 3.4.0 -> 3.5.0 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-25 07:44:42 -08:00
Wang Mingyu	361c98e554	python3-bleak: upgrade 1.1.1 -> 2.0.0 ... Added ------ - Added bleak.backends.get_default_backend() and BleakBackend enum for a centralized backend detection. - Added BleakClient().backend_id and BleakScanner().backend_id properties to identify the backend in use. Changed -------- - Use "AcquireNotify" rather than "StartNotify" for Linux backend on supported characteristics - Allow multiple calls to disconnect() on Windows to align behavior over all backends. - Raise new BleakBluetoothNotAvailableError when Bluetooth is not supported, turned off or permission is denied. Fixed ------ - Fixed potential race condition causing timeout while connecting in WinRT backend. - Fixed file handle leak in BlueZ backend when D-Bus connection is lost and re-established. - Fixed crash in CoreBluetooth backend if an ObjC delegate callback is called after the asyncio run loop stops. - Fixed possible deadlock when starting scanning on Windows when Bluetooth is turned off. - Fixed "Bluetooth device is turned off" Exception on macOS, when a Bluetooth permission request popup is shown to the user by the OS. Removed --------- - Removed support for Python 3.9. - Removed support for macOS < 10.15. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-25 07:44:42 -08:00
Wang Mingyu	2e73a5158c	python3-bandit: upgrade 1.8.6 -> 1.9.2 ... Changelog: ========== - Add instructions for Maintainers to create/publish a release - Replace deprecated datetime.datetime.utcnow() - Fix typos - Support of Python 3.14 - Drop support of end-of-life Python 3.9 - More Python version related fixes - Argparse Python 3.14 enhancements - Check whether Constant value is str Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-25 07:44:41 -08:00
Wang Mingyu	cb3b22adc4	python3-asyncinotify: upgrade 4.2.1 -> 4.3.2 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-25 07:44:41 -08:00
Wang Mingyu	eb786d6314	python3-asgiref: upgrade 3.10.0 -> 3.11.0 ... Changelog: ============= - "sync_to_async" gains a "context" parameter, similar to those for "asyncio.create_task", "TaskGroup" &co, that can be used on Python 3.11+ to control the context used by the underlying task. The parent context is already propagated by default but the additional control is useful if multiple "sync_to_async" calls need to share the same context, e.g. when used with "asyncio.gather()". Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-25 07:44:41 -08:00
Tom Geelen	d56cd727c7	python3-pytest-httpx: New recipe ... Sends responses to httpx. Signed-off-by: Tom Geelen <t.f.g.geelen@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-24 21:54:47 -08:00
Leon Anavi	0f4d401d94	python3-pikepdf: Add recipe ... Add recipe for v10.0.2: - Fixed presentation of strings using unparse_content_stream - if the stream can be represented using PdfDocEncoding, it is rendered in that way for ease of reading. - Reformatted C++ source. This work was sponsored by GOVCERT.LU. Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-24 21:54:46 -08:00
Leon Anavi	f029ebca5c	python3-unidecode: Add recipe ... Add recipe for release 1.4.0: - Drop support for Python <3.7. - Add replacements for playing card suits and chess pieces - Add replacements for U+211F "RESPONSE" and 0x2123 "VERSICLE" - Fix replacement for U+1D6D5 "MATHEMATICAL BOLD SMALL TAU". - Fix replacements for U+014A "LATIN CAPITAL LETTER ENG" and U+014B "LATIN SMALL LETTER ENG". - Add replacements for U+2103 "DEGREE CELSIUS" and U+2109 "DEGREE FAHRENHEIT". This work was sponsored by GOVCERT.LU. Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-24 21:54:46 -08:00
Yoann Congal	861d46b60e	python3-propcache: add BBCLASSEXTEND native & nativesdk ... Since commit 82c2959678 ("python3-yarl: add BBCLASSEXTEND = "native nativesdk""), python3-yarl-native (resp. nativesdk-python3-yarl) needs python3-propcache-native (nativesdk-python3-yarl) to build. Cc: Tom Geelen <t.f.g.geelen@gmail.com> Signed-off-by: Yoann Congal <yoann.congal@smile.fr> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-21 16:16:34 -08:00
Yoann Congal	9404c6d022	python3-pylddwrap: add BBCLASSEXTEND native & nativesdk ... nativesdk-python3-pylddwrap is needed for the dependency tree : `-> nativesdk-python3-checksec-py Cc: Martin Jansa <martin.jansa@gmail.com> Signed-off-by: Yoann Congal <yoann.congal@smile.fr> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-21 16:16:34 -08:00
Yoann Congal	2a4ba1eaba	python3-icontract: add BBCLASSEXTEND nativesdk ... nativesdk-python3-icontract is needed for the dependency tree : `-> nativesdk-python3-pylddwrap `-> nativesdk-python3-checksec-py Cc: Martin Jansa <martin.jansa@gmail.com> Signed-off-by: Yoann Congal <yoann.congal@smile.fr> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-21 16:16:34 -08:00
Yoann Congal	bc993e8f6c	python3-asttokens: add BBCLASSEXTEND nativesdk ... nativesdk-python3-asttokens is needed for the dependency tree : `-> nativesdk-python3-icontract `-> nativesdk-python3-pylddwrap `-> nativesdk-python3-checksec-py Cc: Martin Jansa <martin.jansa@gmail.com> Signed-off-by: Yoann Congal <yoann.congal@smile.fr> Acked-by: Martin Jansa <martin.jansa@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-21 16:16:34 -08:00
Leon Anavi	3d7894aa32	python3-pybind11: Upgrade 2.13.6 -> 3.0.1 ... Upgrade to version 3.0.1: - Fixed compilation error in `type_caster_enum_type` when casting pointer-to-enum types. Added pointer overload to handle dereferencing before enum conversion. - Implement binary version of `make_index_sequence` to reduce template depth requirements for functions with many parameters. - Subinterpreter-specific exception handling code was removed to resolve segfaults. - Fixed issue that caused ``PYBIND11_MODULE`` code to run again if the module was re-imported after being deleted from ``sys.modules``. - Prevent concurrent creation of sub-interpreters as a workaround for stdlib concurrency issues in Python 3.12. - Fixed potential crash when using `cpp_function` objects with sub-interpreters. - Fixed non-entrant check in `implicitly_convertible()`. - Support C++20 on platforms that have older c++ runtimes. - Fix compilation with clang on msys2. - Avoid `nullptr` dereference warning with GCC 13.3.0 and python 3.11.13. - Fix potential warning about number of threads being too large. - Fix gcc 11.4+ warning about serial compilation using CMake. This work was sponsored by GOVCERT.LU. Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-21 07:23:31 -08:00
Leon Anavi	5ac890daa0	python3-lief: Upgrade 0.16.7 -> 0.17.1 ... Upgrade to release 0.17.1: - Fix missing visibility - Fix incorrect paging computations that occurred when only a subset of formats was enabled. - Fix include issue with the COFF format This work was sponsored by GOVCERT.LU. License-Update: Update years Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-21 07:23:31 -08:00
Khem Raj	5bcd67a255	python3-google-auth: Skip mTLS tests from ptests ... They need a cert infrastructure to execute. Mutual TLS authentication requires client/server certificates and a proper PKI setup that doesn't exist in the minimal qemu ptest environment. These are integration tests that need real certificate infrastructure. Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-20 18:10:36 -08:00
Khem Raj	13b7798656	python3-google-auth-oauthlib: Upgrade to 1.2.3 ... Skip a failing ptest Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-20 14:54:55 -08:00
Leon Anavi	eb6fce8545	python3-pillow: Upgrade 11.3.0 -> 12.0.0 ... Upgrade to release 12.0.0: - Fix issue with forward references in parent TypedDict classes - Exclude fields with exclude_if from JSON Schema required fields - Revert URL percent-encoding of credentials in the build() method of the AnyUrl and Dsn types - Add type inference for IP address types - Avoid getting default values from defaultdict - Fix issue with field serializers on nested typed dictionaries This work was sponsored by GOVCERT.LU. Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-20 10:30:33 -08:00
Leon Anavi	af4866a429	python3-pydantic: Upgrade 2.12.0 -> 2.12.4 ... Upgrade to release python3-pydantic: - Fix issue with forward references in parent TypedDict classes - Exclude fields with exclude_if from JSON Schema required fields - Revert URL percent-encoding of credentials in the build() method of the AnyUrl and Dsn types - Add type inference for IP address types - Avoid getting default values from defaultdict - Fix issue with field serializers on nested typed dictionaries - Add more pydantic-core builds for the three-threaded version of Python 3.14 This work was sponsored by GOVCERT.LU Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-20 10:30:33 -08:00
Leon Anavi	80d071ba7e	python3-pydantic-core: Upgrade 2.41.1 -> 2.41.5 ... Upgrade to release 2.41.5: - Correct invalid serialization of date/datetime/time/timedelta by pulling downcast checks up - Avoid getting default values from defaultdict - ci: add more 3.14t builds, delete duplicate linux aarch64 build - JsonValue: Deduplicate keys before populating Dict - Fix: only percent-encode characters in the userinfo encode set - Bump jiter from 0.11.0 to 0.11.1 - Bump regex from 1.11.3 to 1.12.2 - Bump percent-encoding from 2.3.1 to 2.3.2 - Fix issue with field_serializers on nested typed dicts - Clean up GC traversal for some top-level types - Add type inference for serializing ip address types - Revert url credential encoding (to be reintroduced as an option in future) - optimizations in URL implementation This work was sponsored by GOVCERT.LU. Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-20 10:30:33 -08:00
Khem Raj	204b8f1a34	python3-parsimonious: Add ptest support ... Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-19 14:03:48 -08:00
Khem Raj	dabe41647f	python3-parsimonious: Switch to PEP-517 build backend ... It has pyproject.toml asking for setuptools.build.meta backend Fixes QA Issue: inherits setuptools3 but has pyproject.toml with setuptools.build_meta, use the correct class [pep517-backend] Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-19 14:03:47 -08:00
Khem Raj	a7082b9b7c	Revert "python3-argcomplete: Upgrade 3.6.2 -> 3.6.3" ... This reverts commit 809cb8f424. It causes ptest regression in traitlets as seen here [1] We will have to fix this regression before we upgrade argcomplete module [1] https://github.com/ipython/traitlets/issues/925 Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-18 20:09:52 -08:00
Khem Raj	5f4bb77c6b	python3-arrow: Add missing rdeps on tzdata pre-commit modules ... These were missing pieces for ptests to work Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-18 20:07:55 -08:00
Khem Raj	3ed6315a49	python3-google-auth: Upgrade to 2.43.0 ... Skip ptests needing pyopenssl module when its not available Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-18 20:07:55 -08:00
Khem Raj	53569401db	python3-typer: Add missing rdeps for ptests ... Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-18 20:07:50 -08:00
Khem Raj	d055504748	python3-blinker: Fix ptests with pytest 8.4+ ... pytest 8.4 is less forgiving about functions not marked async and using it Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-18 16:24:13 -08:00
Khem Raj	0434d3dad6	python3-pylint: Upgrade to 4.0.3 release ... Forward patches to avoid fuzz, no functional change Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-18 16:24:12 -08:00
Khem Raj	f44516ebe8	python3-pyzmq: Package pytest.ini with ptests ... pytest 8.4+ is strict about asyncio [1] however pyzmq is not yet fully ready, and installs its own pytest.ini, add this to ptests package Fixes the failures e.g. async def functions are not natively supported. You need to install a suitable plugin for your async framework, for example: - anyio - pytest-asyncio - pytest-tornasync - pytest-trio - pytest-twisted FAIL: tests/test_auth.py:TestAsyncioAuthentication.test_deny [1] https://github.com/pytest-dev/pytest/issues/11372 Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-18 16:24:12 -08:00
Khem Raj	8d7343ebd5	python3-pyzmq: Upgrade to 27.1.0 ... Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-18 16:24:12 -08:00
Khem Raj	797249715a	python3-pytest-asyncio: Upgrade to 1.3.0 ... Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-18 16:24:12 -08:00
Khem Raj	9ad545c39f	python3-python-dotenv: Add missing rdep on click module and coreutils ... Needed for ptests to pass Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-18 10:06:04 -08:00
Wang Mingyu	2e7f998fc3	python3-yamlloader: upgrade 1.5.2 -> 1.6.0 ... Changelog: Add Python 3.14 support Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-18 08:23:46 -08:00
Wang Mingyu	0533b85df5	python3-snagboot: upgrade 2.4 -> 2.5 ... - snagrecover: add support for bcm2711/12 platforms add support for several AMLogic platforms add support for AM654x platforms confirm Allwinner A133 support - snagfactory: allow changing target device mid-pipeline tone down UI colors, increase button sizes Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-18 08:23:46 -08:00
Wang Mingyu	64aef8a5a5	python3-pymongo: upgrade 4.15.3 -> 4.15.4 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-18 08:23:46 -08:00
Wang Mingyu	94549e73b1	python3-pyais: upgrade 2.13.2 -> 2.13.3 ... Changelog: ========== * fixed: https://github.com/M0r13n/pyais/issues/194 * added missing line breaks for multi-part messages (ais-encode) Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-18 08:23:46 -08:00
Wang Mingyu	74cd616a6c	python3-protobuf: upgrade 6.33.0 -> 6.33.1 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-18 08:23:46 -08:00
Wang Mingyu	11d54e9c3d	python3-prettytable: upgrade 3.16.0 -> 3.17.0 ... Added --------- Add support for Python 3.15 (and test 3.13t-3.15t) Set dicts with column-specific config for all column-specific attrs Add missing type annotations for properties Use type stubs for wcwidth Changed ------- Drop support for Python 3.9 Simplify empty dictionary/None check Replace pre-commit with prek Fixed ------- In add_rows(), check length of array with len() Fix README for sort_key Fix filter example Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-18 08:23:45 -08:00
Wang Mingyu	ce470efc08	python3-parsimonious: upgrade 0.10.0 -> 0.11.0 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-18 08:23:45 -08:00
Wang Mingyu	4a651782ec	python3-execnet: upgrade 2.1.1 -> 2.1.2 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-18 08:23:45 -08:00
Wang Mingyu	1207718e49	python3-cantools: upgrade 40.7.1 -> 41.0.0 ... Changelog: Update supported Python versions Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-18 08:23:45 -08:00
Wang Mingyu	a45b2c2d10	python3-cachetools: upgrade 6.2.1 -> 6.2.2 ... Changelog: ============ - Minor improvements from GitHub Copilot code review. - Improve documentation. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-18 08:23:45 -08:00
Wang Mingyu	1fb4f8f84f	python3-black: upgrade 25.9.0 -> 25.11.0 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-18 08:23:45 -08:00
Wang Mingyu	97d5ca784e	python3-asttokens: upgrade 3.0.0 -> 3.0.1 ... License-Update: http changed to https Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-18 08:23:44 -08:00
Wang Mingyu	974dfbeb44	python3-apiflask: upgrade 2.4.0 -> 3.0.0 ... Changelog: ============= - Add support for Python 3.14. - Drop support for Python 3.8 and PyPy 3.10. - Decouple from marshmallow and add an adapter system to support different serialization/deserialization libraries - Add support for Pydantic models as data schemas - Fix subclassed MethodView resources cannot be added as URL rules - Add support for API key auth with APIKeyHeaderAuth, APIKeyCookieAuth, and APIKeyQueryAuth. Add support for runtime selection of authentication methods with MultiAuth. Deprecate the API key auth with HTTPTokenAuth - Remove implicit security scheme naming rules - Remove implicit schema naming change (i.e. 'Schema' suffix stripping) - Deprecate the EmptySchema class. Use empty dict {} instead - Remove the deprecated __version__ attribute. Use feature detection or importlib.metadata.version("apiflask") instead. - Fix the support for marshmallow DelimitedList field in OpenAPI spec generation Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-18 08:23:44 -08:00
Wang Mingyu	9a28e6f3d0	python3-alembic: upgrade 1.17.1 -> 1.17.2 ... Changelog: ============ - Added Operations.implementation_for.replace parameter to Operations. implementation_for(), allowing replacement of existing operation implementations. - Fixed issue in SQL Server dialect where the DROP that's automatically emitted for existing default constraints during an ALTER COLUMN needs to take place before not just the modification of the column's default, but also before the column's type is changed Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-18 08:23:44 -08:00
Liu Yiding	4ec510ad11	python3-imageio: upgrade 2.37.0 -> 2.37.2 ... 1.Changelog: https://github.com/imageio/imageio/releases/tag/v2.37.2 2.The LICENSE_CHECKSUM changed as date of LICENSE Copyright changed. Signed-off-by: Liu Yiding <liuyd.fnst@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-18 08:17:55 -08:00
Tom Geelen	82c2959678	python3-yarl: add BBCLASSEXTEND = "native nativesdk" ... Signed-off-by: Tom Geelen <t.f.g.geelen@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-18 08:17:52 -08:00
Khem Raj	cc1ec784bf	python3-rich-toolkit: Enable ptests ... Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-15 15:49:43 -08:00
Jan Vermaete	e8444aa2b0	python3-rich-toolkit: add new recipe (version 0.15.1) ... Signed-off-by: Jan Vermaete <jan.vermaete@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-15 16:27:07 +00:00
Martin Jansa	4e63a846b6	python3-icontract: upgrade to 2.7.1 ... Signed-off-by: Martin Jansa <martin.jansa@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-14 07:39:49 -08:00
Martin Jansa	a78e6d2109	python3-checksec-py, python3-pylddwrap, python3-icontract: add recipes ... they were sent for meta-security long time ago in 2021: https://lists.yoctoproject.org/g/yocto/message/54470 but never merged there, now there are lief, docopt, rich, asttokens already in meta-python and checksec-py depends on lief version, e.g. 976d530867 is needed to fixcompatibility with newer lief currently in meta-python Signed-off-by: Martin Jansa <martin.jansa@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-14 07:39:48 -08:00
Hongxu Jia	513e5f1a66	python3-aiohttp: apply compile option -flax-vector-conversions for gcc ... The clang does not need option -flax-vector-conversions to avoid build failure for 32bit arm target Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-14 07:36:55 -08:00
Jan Vermaete	7fc0a7ac15	python3-uvicorn: new recipe (0.38.0) from meta-homeassistant ... Moved the recipe from meta-homeassistant to meta-openembedded. @see: https://github.com/meta-homeassistant/meta-homeassistant/pull/177#issuecomment-3510619876 - version bump from 0.35.0 to 0.38.0 (current latest release) - added ptests - patch to skip 5 tests that did not pass the run - added tests to PTESTS_SLOW_META_PYTHON Signed-off-by: Jan Vermaete <jan.vermaete@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-13 19:05:06 -08:00
Yi Zhao	854498a39f	python3-inotify: upgrade to 0.2.12 ... ChangeLog: https://github.com/dsoprea/PyInotify/releases/tag/0.2.11 https://github.com/dsoprea/PyInotify/releases/tag/0.2.12 License Update: Use LICENSE file instead of the specific line in setup.py. * Switch to PyPI instead of github source * Drop local patch new-test-inotify.patch as it can not be applied with updated test_inotify.py Ptest result: $ ptest-runner python3-inotify START: ptest-runner 2025-11-13T03:46 BEGIN: /usr/lib/python3-inotify/ptest PASS: tests/test_inotify.py:TestInotify.test__cycle PASS: tests/test_inotify.py:TestInotify.test__error_on_watch_nonexistent_folder PASS: tests/test_inotify.py:TestInotify.test__get_event_names SKIP: tests/test_inotify.py:TestInotify.test__international_naming_python2 # SKIP Not in Python 2 PASS: tests/test_inotify.py:TestInotify.test__international_naming_python3 PASS: tests/test_inotify.py:TestInotify.test__watch_list_of_paths PASS: tests/test_inotify.py:TestInotifyTree.test__automatic_new_watches_on_existing_paths PASS: tests/test_inotify.py:TestInotifyTree.test__automatic_new_watches_on_new_paths PASS: tests/test_inotify.py:TestInotifyTree.test__cycle PASS: tests/test_inotify.py:TestInotifyTree.test__renames PASS: tests/test_inotify.py:TestInotifyTrees.test__cycle ============================================================================ Testsuite summary # TOTAL: 11 # PASS: 10 # SKIP: 1 # XFAIL: 0 # FAIL: 0 # XPASS: 0 # ERROR: 0 DURATION: 14 END: /usr/lib/python3-inotify/ptest 2025-11-13T03:46 STOP: ptest-runner TOTAL: 1 FAIL: 0 Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-13 10:15:06 -08:00
Yi Zhao	945e2abd76	python3-types-psutil: add UPSTREAM_CHECK_PYPI_PACKAGE ... Add UPSTREAM_CHECK_PYPI_PACKAGE to check the correct latest stable verison. Before the patch: $ devtool latest-version python3-types-psutil INFO: Current version: 7.0.0.20250601 INFO: Latest version: 6.1.0.20241102 After the patch: $ devtool latest-version python3-types-psutil INFO: Current version: 7.0.0.20250601 INFO: Latest version: 7.0.0.20251111 Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-12 22:46:04 -08:00
Yi Zhao	3c9ccce1ed	python3-rich-argparse: add UPSTREAM_CHECK_PYPI_PACKAGE ... Add UPSTREAM_CHECK_PYPI_PACKAGE to check the correct latest stable verison. Before the patch: $ devtool latest-version python3-rich-argparse INFO: Current version: 1.7.1 INFO: Latest version: After the patch: $ devtool latest-version python3-rich-argparse INFO: Current version: 1.7.1 INFO: Latest version: 1.7.2 Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-12 22:46:04 -08:00
Yi Zhao	1716d9e5d2	python3-pytest-xdist: add UPSTREAM_CHECK_PYPI_PACKAGE ... Add UPSTREAM_CHECK_PYPI_PACKAGE to check the correct latest stable verison. Before the patch: $ devtool latest-version python3-pytest-xdist INFO: Current version: 3.8.0 INFO: Latest version: 3.5.0 After the patch: $ devtool latest-version python3-pytest-xdist INFO: Current version: 3.8.0 INFO: Latest version: 3.8.0 Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-12 22:46:04 -08:00
Yi Zhao	36646f4b2a	python3-pytest-timeout: add UPSTREAM_CHECK_PYPI_PACKAGE ... Add UPSTREAM_CHECK_PYPI_PACKAGE to check the correct latest stable verison. Before the patch: $ devtool latest-version python3-pytest-timeout INFO: Current version: 2.4.0 INFO: Latest version: 2.3.1 After the patch: $ devtool latest-version python3-pytest-timeout INFO: Current version: 2.4.0 INFO: Latest version: 2.4.0 Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-12 22:46:03 -08:00
Yi Zhao	fce6a3edad	python3-pytest-mock: add UPSTREAM_CHECK_PYPI_PACKAGE ... Add UPSTREAM_CHECK_PYPI_PACKAGE to check the correct latest stable verison. Before the patch: $ devtool latest-version python3-pytest-mock INFO: Current version: 3.14.1 INFO: Latest version: 3.14.0 After the patch: $ devtool latest-version python3-pytest-mock INFO: Current version: 3.14.1 INFO: Latest version: 3.15.1 Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-12 22:46:03 -08:00
Yi Zhao	a5eb02a811	python3-pytest-cov: add UPSTREAM_CHECK_PYPI_PACKAGE ... Add UPSTREAM_CHECK_PYPI_PACKAGE to check the correct latest stable verison. Before the patch: $ devtool latest-version python3-pytest-cov INFO: Current version: 6.2.1 INFO: Latest version: 6.0.0 After the patch: $ devtool latest-version python3-pytest-cov INFO: Current version: 6.2.1 INFO: Latest version: 7.0.0 Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-12 22:46:03 -08:00
Yi Zhao	e105ccf75f	python3-pytest-asyncio: add UPSTREAM_CHECK_PYPI_PACKAGE ... Add UPSTREAM_CHECK_PYPI_PACKAGE to check the correct latest stable verison. Before the patch: $ devtool latest-version python3-pytest-asyncio INFO: Current version: 1.1.0 INFO: Latest version: 0.23.6 After the patch: $ devtool latest-version python3-pytest-asyncio INFO: Current version: 1.1.0 INFO: Latest version: 1.3.0 Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-12 22:46:03 -08:00
Yi Zhao	252e8df2ad	python3-paho-mqtt: add UPSTREAM_CHECK_PYPI_PACKAGE ... Add UPSTREAM_CHECK_PYPI_PACKAGE to check the correct latest stable verison. Before the patch: $ devtool latest-version python3-paho-mqtt INFO: Current version: 2.1.0 INFO: Latest version: 1.6.1 Before the patch: $ devtool latest-version python3-paho-mqtt INFO: Current version: 2.1.0 INFO: Latest version: 2.1.0 Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-12 22:46:03 -08:00
Yi Zhao	49f419317c	python3-lazy-object-proxy: add UPSTREAM_CHECK_PYPI_PACKAGE ... Add UPSTREAM_CHECK_PYPI_PACKAGE to check the correct latest stable verison. Before the patch: $ devtool latest-version python3-lazy-object-proxy INFO: Current version: 1.12.0 INFO: Latest version: 1.10.0 After the patch: $ devtool latest-version python3-lazy-object-proxy INFO: Current version: 1.12.0 INFO: Latest version: 1.12.0 Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-12 22:46:03 -08:00
Yi Zhao	51bfc27ddb	python3-cached-property: add UPSTREAM_CHECK_PYPI_PACKAGE ... Add UPSTREAM_CHECK_PYPI_PACKAGE to check the correct latest stable verison. Before the patch: $ devtool latest-version python3-cached-property INFO: Current version: 2.0.1 INFO: Latest version: 1.5.2 After the patch: $ devtool latest-version python3-cached-property INFO: Current version: 2.0.1 INFO: Latest version: 2.0.1 Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-12 22:46:02 -08:00
Zoltán Böszörményi	a1395b9cd8	python3-nanobind: Fix build ... Fix the order of inherited classes, so the nanobuild python module actually gets built. Also, put the cmake files into the correct location, i.e. ${libdir}/cmake/nanobind instead of ${base_libdir}/cmake/python3-nanobind onnx 1.20.0rc1 uses nanobind and during its build it detects the presence of the python module, and wants to use the nanobind cmake module, both of which fail. Signed-off-by: Zoltán Böszörményi <zboszor@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-12 06:49:44 -08:00
Zoltán Böszörményi	c83aea044e	python3-scikit-build-core: Use cmake from PATH ... Added a patch to remove using CMAKE_BIN_DIR. Instead, use the fallback to find cmake from PATH. It's a pre-requisite for building python3-nanobind correctly. Signed-off-by: Zoltán Böszörményi <zboszor@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-12 06:49:44 -08:00
Changqing Li	c3bc474c6c	python3-grpcio: add python3-typing-extensions to RDEPENDS ... Fix error: >>> import grpc >>> from concurrent import futures >>> server = grpc.server(futures.ThreadPoolExecutor(max_workers=10)) Traceback (most recent call last): File "<python-input-4>", line 1, in <module> server = grpc.server(futures.ThreadPoolExecutor(max_workers=10)) File "/usr/lib64/python3.13/site-packages/grpc/_init_.py", line 2219, in server from grpc import _server # pylint: disable=cyclic-import ^^^^^^^^^^^^^^^^^^^^^^^^ File "/usr/lib64/python3.13/site-packages/grpc/_server.py", line 57, in <module> from typing_extensions import override ModuleNotFoundError: No module named 'typing_extensions' >>> Signed-off-by: Changqing Li <changqing.li@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-11 10:19:44 -08:00
Wang Mingyu	ac2b19ee68	python3-trio: upgrade 0.31.0 -> 0.32.0 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-11 10:19:43 -08:00
Wang Mingyu	97f809deea	python3-starlette: upgrade 0.49.1 -> 0.50.0 ... Changelog: =========== - Ignore if-modified-since header if if-none-match is present in StaticFiles - Relax strictness on Middleware type - Drop Python 3.9 support Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-11 10:19:43 -08:00
Wang Mingyu	e9212414c6	python3-regex: upgrade 2025.10.23 -> 2025.11.3 ... Changelog: Support relative PARNO in recursive subpatterns Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-11 10:19:43 -08:00
Wang Mingyu	02c6636ad3	python3-pyroute2: upgrade 0.9.4 -> 0.9.5 ... Changelog: ============= - async: AsyncIPSet, AsyncIPVS, AsyncWiSet - ndb: fix snapshot cleanup - wirouting: initial version - process: use poll instead of select Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-11 10:19:43 -08:00
Wang Mingyu	b41e1ded7e	python3-pint: upgrade 0.25 -> 0.25.2 ... Changelog: =========== - Revert typing change in 'pint.Unit' - Fix raising exception in 'Quantity.from_tuple' with invalid units - Several unit definition fixes. - Add devcontainer.json to add GitHub Codespace support - Add support for 'numpy.geomspace' - Add support for 'linalg.diagonal', 'linalg.matrix_transpose', 'diag', 'tril', 'triu', 'linalg.eigvals', 'linalg.eigvalsh', 'linalg.matrix_norm' and 'linalg.vector_norm' - An example of performing currency conversions that change over time has been added to the docs. - Add support for 'pint.Quantity' being used as Generic. - Add a typing and IDE autocomplete page to the documentation. - Fixed 'nan'/'nan' to return 'nan' rather than 1 in unit conversion Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-11 10:19:43 -08:00
Wang Mingyu	e7a23c046e	python3-marshmallow: upgrade 4.0.1 -> 4.1.0 ... Changelog: ========== - Add __len__ implementation to missing so that it can be used with validate.Length <marshmallow.validate.Length> - Drop support for Python 3.9 - Test against Python 3.14. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-11 10:19:43 -08:00
Wang Mingyu	860b5fdcaf	python3-lz4: upgrade 4.4.4 -> 4.4.5 ... Changelog: =========== - Enable CPython free-threaded wheel builds - Correct the import of _compression for Python 3.14 - Keep GitHub Actions up to date with GitHub's Dependabot - Build wheels for Python 3.14 - Fix typos discovered by codespell - Bump pypa/cibuildwheel from 3.2.0 to 3.2.1 in the github-actions group across 1 directory Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-11 10:19:42 -08:00
Wang Mingyu	1ab3261c80	python3-ipython: upgrade 9.6.0 -> 9.7.0 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-11 10:19:42 -08:00
Wang Mingyu	a22494569d	python3-icu: upgrade 2.15.3 -> 2.16 ... Changelog: ========== - fixed issue #178 - added new enums from new unicode release in UBlockCode, UScriptCode - added missing wrappers for ECollationStrength and EComparisonResult - added wrapper for UIndicConjunctBreak - added support for ICU 78.1 0001-Fix-host-contamination-of-include-files.patch refreshed for 2.16 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-11 10:19:42 -08:00
Wang Mingyu	37a709664e	python3-coverage: upgrade 7.11.0 -> 7.11.3 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-11 10:19:42 -08:00
Wang Mingyu	3fe20d543f	python3-cerberus: upgrade 1.3.7 -> 1.3.8 ... Changelog: Support for Python 3.14 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-11 10:19:42 -08:00
Wang Mingyu	21d3b711d1	python3-bitarray: upgrade 3.7.2 -> 3.8.0 ... Changelog: =========== * add experimental support for free-threaded builds (GIL disabled) * remove '_set_default_endian()' * add '.__bytes__()' Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-11 10:19:42 -08:00
Wang Mingyu	e93f01a4f6	python3-astroid: upgrade 4.0.1 -> 4.0.2 ... Changelog: ========== * Handle FunctionDef blockstart_tolineno edge cases correctly. * Add "HTTPMethod" enum support to brain module for Python 3.11+. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-11 10:19:42 -08:00
Jan Vermaete	94d633bbe8	python3-python-dotenv: new recipe (1.2.1) ... Moving the recipe from meta-homeassistant to meta-opemembedded. + version bump 1.1.1 -> 1.2.1 + add ptest - exclude 2 tests (oe-specific) - added to PTESTS_FAST_META_PYTHON v2: += for -ptest (Thanks Gyorgy Sarvari) Signed-off-by: Jan Vermaete <jan.vermaete@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-10 10:21:42 -08:00
Michael Wyraz	82f17c4afe	python3-passlib: add python3-misc as a depencency ... python3-passlib requires 'timtit' at runtime which is part of python3-misc Issue #1001 Signed-off-by: Michael Wyraz <mw@brick4u.de> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-06 16:01:15 -08:00
Michael Wyraz	ac8e1757ad	python3-transitions: add native support ... Issue #997 Signed-off-by: Michael Wyraz <mw@brick4u.de> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-06 16:01:15 -08:00
Michael Wyraz	d786d02d22	python3-passlib: add native support ... Issue #998 Signed-off-by: Michael Wyraz <mw@brick4u.de> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-06 16:01:15 -08:00
Wang Mingyu	00fca0e622	python3-webargs: upgrade 8.7.0 -> 8.7.1 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-06 16:00:51 -08:00
Wang Mingyu	6042386e88	python3-virtualenv: upgrade 20.35.3 -> 20.35.4 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-06 16:00:51 -08:00
Wang Mingyu	b2c5a4e5d9	python3-starlette: upgrade 0.48.0 -> 0.49.1 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-06 16:00:51 -08:00
Wang Mingyu	2ae39fe3d8	python3-deprecated: upgrade 1.2.18 -> 1.3.1 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-06 16:00:50 -08:00
Wang Mingyu	96ef6d8158	python3-alembic: upgrade 1.17.0 -> 1.17.1 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-06 16:00:50 -08:00
Chen Qi	9e825eccc9	python3-systemd: fix build failure caused by race condition ... For now, building python3-systemd sometimes reports error: pyutil.o not found This is because its setup.py is not written in a way to handle race condition. Multiple modules are using the same .c file, resulting in the corresponding .o file generated multiple times. The latest release of python3-systemd is 235, and the latest codes have switched away from setup.py. So we'd better not patch setup.py. Instead, we handle this issue by making its modules compile one by one. It only has 5 modules, so there should be little impact on building time. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-04 23:14:25 -08:00
Haixiao Yan	076217856e	python3-m2crypto: correct struct packing on 32-bit with _TIME_BITS=64 ... Fixes: # python3 -munittest -v test_ssl.MiscSSLClientTestCase.test_server_simple_timeouts test_server_simple_timeouts (test_ssl.MiscSSLClientTestCase.test_server_simple_timeouts) ... ERROR ====================================================================== ERROR: test_server_simple_timeouts (test_ssl.MiscSSLClientTestCase.test_server_simple_timeouts) ---------------------------------------------------------------------- Traceback (most recent call last): File "/opt/python3-m2crypto/tests/test_ssl.py", line 474, in test_server_simple_timeouts s.set_socket_read_timeout(SSL.timeout()) ~~~~~~~~~~~~~~~~~~~~~~~~~^^^^^^^^^^^^^^^ File "/usr/lib/python3.13/site-packages/M2Crypto/SSL/Connection.py", line 680, in set_socket_read_timeout self.socket.setsockopt( ~~~~~~~~~~~~~~~~~~~~~~^ socket.SOL_SOCKET, socket.SO_RCVTIMEO, timeo.pack() ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ ) ^ OSError: [Errno 22] Invalid argument Signed-off-by: Haixiao Yan <haixiao.yan.cn@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-11-04 16:52:46 -08:00
Wang Mingyu	34f4e6db58	python3-yappi: upgrade 1.6.10 -> 1.7.3 ... 0002-Fix-import-of-tests.utils-to-enable-pytest.patch refreshed for 1.7.3 Changelog: ============ - Better wheel support - Python 3.14 support Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-29 10:14:14 -07:00
Wang Mingyu	493727338e	python3-vector: upgrade 1.6.3 -> 1.7.0 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-29 10:14:14 -07:00
Wang Mingyu	4bbbba0024	python3-typer: upgrade 0.19.2 -> 0.20.0 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-29 10:14:14 -07:00
Wang Mingyu	7fe056caf6	python3-serpent: upgrade 1.41 -> 1.42 ... Changelog: added test-requirements.txt Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-29 10:14:14 -07:00
Wang Mingyu	99a2f9d3c5	python3-requests-file: upgrade 3.0.0 -> 3.0.1 ... Changelog: Add missing type annotations Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-29 10:14:14 -07:00
Wang Mingyu	2d8593e804	python3-regex: upgrade 2025.9.18 -> 2025.10.23 ... Changelog: ============ - 'setup.py' was missing from the source distribution. - Fixed test in main.yml. - Moved tests into subfolder. - Re-organised files. - Updated to Unicode 17.0.0. - Enable free-threading support in cibuildwheel in another place. - Enable free-threading support in cibuildwheel. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-29 10:14:14 -07:00
Wang Mingyu	e6adede299	python3-posix-ipc: upgrade 1.3.0 -> 1.3.2 ... 0001-build_support-fix-cross-compilation-error-when-CC-is.patch removed since it's included in 1.3.2 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-29 10:14:13 -07:00
Wang Mingyu	2f2e9634e3	python3-moteus: upgrade 0.3.93 -> 0.3.95 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-29 10:14:13 -07:00
Wang Mingyu	2cf947f615	python3-matplotlib-inline: upgrade 0.1.7 -> 0.2.1 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-29 10:14:13 -07:00
Wang Mingyu	8592c4ae78	python3-inline-snapshot: upgrade 0.30.0 -> 0.30.1 ... Changelog: Disable ensure ascii in json.dump to support non-ASCII characters in external files Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-29 10:14:13 -07:00
Wang Mingyu	f5ee1fa124	python3-huey: upgrade 2.5.3 -> 2.5.4 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-29 10:14:13 -07:00
Wang Mingyu	4764cd259f	python3-grpcio: upgrade 1.75.1 -> 1.76.0 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-29 10:14:13 -07:00
Wang Mingyu	ac1108caaf	python3-grpcio-tools: upgrade 1.75.1 -> 1.76.0 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-29 10:14:13 -07:00
Wang Mingyu	4be58f9526	python3-grpcio-reflection: upgrade 1.75.1 -> 1.76.0 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-29 10:14:13 -07:00
Wang Mingyu	92ca67b275	python3-grpcio-channelz: upgrade 1.75.1 -> 1.76.0 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-29 10:14:13 -07:00
Wang Mingyu	e85d27f511	python3-cmake: upgrade 4.1.0 -> 4.1.2 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-29 10:14:13 -07:00
Wang Mingyu	64b87fbe6c	python3-cbor2: upgrade 5.7.0 -> 5.7.1 ... Changelog: =========== - Improved performance on decoding large definite bytestrings - Fixed a read(-1) vulnerability caused by boundary handling error Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-29 10:14:13 -07:00
Leon Anavi	809cb8f424	python3-argcomplete: Upgrade 3.6.2 -> 3.6.3 ... Upgrade to release 3.6.3: - Make RE PCRE compatible - Only execute Python interpreters - fish: set variable scope to local to avoid clobbering global or universal variables - Documentation and help improvements Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-28 23:31:29 -07:00
Leon Anavi	11fa27f782	python3-termcolor: Upgrade 3.1.0 -> 3.2.0 ... Upgrade to release 3.2.0: - Expose can_colorize as public API - Add support for Python 3.15 - Drop support for Python 3.9 - Replace action-pre-commit-uv with prek-action Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-28 23:31:29 -07:00
Bartosz Golaszewski	a992e7d222	python3-gpiod: update to v2.4.0 ... Changelog: - make request and reconfigure behavior for lines requested by names consistent with that of lines requested by offsets - fix parsing non-tuple keys when requesting a line - disable UP045 linter check - use quoted types when casting - generate wheels for CPython 3.14 - issue a warning when reconfiguring a line not in the original request - update dependencies for wheel generation - update licensing information - coding style fixes - minor performance improvements License-Update: Follow the PEP 639 specification and remove the deprecated license classifier in pyproject.toml. Make the license key a top-level string. No changes in the license type. Signed-off-by: Bartosz Golaszewski <bartosz.golaszewski@linaro.org> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-28 23:31:29 -07:00
Gyorgy Sarvari	6eacd02854	python3-pyasyncore: fix ptests ... The tests are using only Python's unittest module, not pytest - so adapt the run-ptest script to invoke unittest instead pytest. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-25 14:20:38 -07:00
Peter Kjellerstedt	f1ce65fc8e	python3-kconfiglib: Move to meta-oe ... It will be needed by lvgl. Signed-off-by: Peter Kjellerstedt <peter.kjellerstedt@axis.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-24 20:41:20 -07:00
Khem Raj	37cea46a6d	python3-pybase64: Switch to PEP-517 build backend ... The project has a proper pyproject.toml which declares the setuptools.build.meta PEP-517 backend. Fixes WARNING: python3-pybase64-1.4.2-r0 do_check_backend: QA Issue: inherits setuptools3 but has pyproject.toml with setuptools.build_meta, use the correct class [pep517-backend] Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-24 18:45:43 -07:00
Khem Raj	7ad3381a2b	python3-ukkonen: Update to latest from git repo ... It has no releases in past 4 years but git repo is getting updates there are fixes needed to build with newer python and gcc-15 accumulated over time. Switch URI to use git fetcher until next release comes out Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-24 18:45:43 -07:00
Hongxu Jia	6a21bd735b	python3-aiohttp: fix compiler failure on 32-bit arm ... Build 32bit python3-aiohttp failed on arm ... vendor/llhttp/build/c/llhttp.c:2643:11: error: incompatible type for argument 1 of 'vandq_u16' 2643 | vcgeq_u8(input, vdupq_n_u8(' ')), | ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ | | | uint8x16_t ... Refer [1], add -flax-vector-conversions to 32bit arm compiler [1] https://github.com/xmrig/xmrig/issues/3673 Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-24 09:06:24 -07:00
Martin Schwan	287afdd323	python3-questionary: Add recipe ... Python library to build pretty command line user prompts. Easy to use multi-select lists, confirmations, free text prompts. Signed-off-by: Martin Schwan <m.schwan@phytec.de> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-24 09:06:24 -07:00
Martin Schwan	8958b08838	python3-pyfiglet: Add recipe ... An implementation of figlet written in Python. Signed-off-by: Martin Schwan <m.schwan@phytec.de> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-24 09:06:24 -07:00
Martin Schwan	d8a85978e0	python3-pybase64: Add recipe ... Fast Base64 encoding/decoding in Python. Signed-off-by: Martin Schwan <m.schwan@phytec.de> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-24 09:06:24 -07:00
Martin Schwan	ddc728ad43	python3-orjson: Add recipe ... orjson is a fast, correct JSON library for Python. Signed-off-by: Martin Schwan <m.schwan@phytec.de> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-24 09:06:24 -07:00
Martin Schwan	824ccc8845	python3-mmh3: Add recipe ... Python extension for MurmurHash (MurmurHash3), a set of fast and robust hash functions. Signed-off-by: Martin Schwan <m.schwan@phytec.de> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-24 09:06:24 -07:00
Khem Raj	3e794428be	python3-cytoolz: Switch to PEP-517 build backend ... The project has a proper pyproject.toml which declares the setuptools.build.meta PEP-517 backend. Fixes WARNING: python3-cytoolz-1.1.0-r0 do_check_backend: QA Issue: inherits setuptools3 but has pyproject.toml with setuptools.build_meta, use the correct class [pep517-backend] Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-24 09:06:24 -07:00
Khem Raj	5d06477ba3	python3-setuptools-git-versioning: Add recipe ... Some packages e.g. python3-cytoolz are needing it now. Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-24 09:06:24 -07:00
Wang Mingyu	5cccec2252	python3-xmlschema: upgrade 4.1.0 -> 4.2.0 ... Changelog: ========= - Add arguments validation for schemas and validation methods - Add SchemaSettings dataclass for storing read-only settings for schema instances and for managing package default settings - Add block argument to XMLResource class - Add MAX_SCHEMA_SOURCES package limit - Add MAX_XML_ELEMENTS package limit - Reduce MAX_XML_DEPTH limit to 1000 and apply it to all XMLResource instances - Fix for substitute match in case of unexpected child Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-21 20:02:42 -07:00
Wang Mingyu	b9caa4a1be	python3-requests-file: upgrade 2.1.0 -> 3.0.0 ... Changelog: ========== - Add data needed for Response.raise_for_status (github PR #42) - Add type annotations - Change URLs to migrate to codeberg.org Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-21 20:02:42 -07:00
Wang Mingyu	fd435f66b7	python3-protobuf: upgrade 6.31.1 -> 6.33.0 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-21 20:02:42 -07:00
Wang Mingyu	ad937a3fbf	python3-moteus: upgrade 0.3.92 -> 0.3.93 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-21 20:02:42 -07:00
Wang Mingyu	d35020c30f	python3-inline-snapshot: upgrade 0.29.3 -> 0.30.0 ... Changelog: =========== - External.run_inline() now uses the same logic as External.run_pytest. - The test-dir config option can now also be a list of paths - added Python 3.14 support - Disable ensure ascii in json.dump to support non-ASCII characters in external files Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-21 20:02:41 -07:00
Wang Mingyu	191022cc2b	python3-humanize: upgrade 4.13.0 -> 4.14.0 ... Changelog: ========== - Drop support for Python 3.9 - Add Uzbek language Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-21 20:02:41 -07:00
Wang Mingyu	1f33e2ddcf	python3-h5py: upgrade 3.14.0 -> 3.15.0 ... 0001-setup_build.py-avoid-absolute-path.patch refreshed for 3.15.0 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-21 20:02:41 -07:00
Wang Mingyu	7eb3acb612	python3-cytoolz: upgrade 1.0.1 -> 1.1.0 ... Changelog: ========== - Add support for Python 3.14, PyPy 3.11 - Drop support for Python 3.8, PyPy 3.8 - Add experimental (untested!) support for free-threading, including building wheels - Update to match toolz 1.1.0 - Faster concat - Improve performance by avoiding global lookups - Modernization Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-21 20:02:41 -07:00
Wang Mingyu	03f5d35430	python3-coverage: upgrade 7.10.7 -> 7.11.0 ... Changelog: Dropped support for Python 3.9, declared support for Python 3.15 alpha. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-21 20:02:41 -07:00
Wang Mingyu	e301aa9c78	python3-colorlog: upgrade 6.9.0 -> 6.10.1 ... Changelog: When logging exceptions, enable colorized traceback Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-21 20:02:41 -07:00
Wang Mingyu	0930b1b168	python3-charset-normalizer: upgrade 3.4.3 -> 3.4.4 ... Changed -------- - Bound setuptools to a specific constraint setuptools>=68,<=81. - Raised upper bound of mypyc for the optional pre-built extension to v1.18.2 Removed ---------- - setuptools-scm as a build dependency. Misc ----- - Enforced hashes in dev-requirements.txt and created ci-requirements.txt for security purposes. - Additional pre-built wheels for riscv64, s390x, and armv7l architectures. - Restore multiple.intoto.jsonl in GitHub releases in addition to individual attestation file per wheel. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-21 20:02:40 -07:00
Wang Mingyu	c73f9f4c6f	python3-arrow: upgrade 1.3.0 -> 1.4.0 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-21 20:02:40 -07:00
Gyorgy Sarvari	10af66f23c	python3-betamax: fix ptests ... A number of tests require internet access - set a valid DNS in resolv.conf so the tests don't fail. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-19 16:11:36 -07:00
Khem Raj	b28f8caccf	python3-txaio: Migrate setup.py to pyproject.toml ... Fixes WARNING: python3-txaio-25.9.2-r0 do_check_backend: QA Issue: inherits setuptools3 but has pyproject.toml with setuptools.build_meta, use the correct class [pep517-backend] Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-16 13:17:14 -07:00
Haixiao Yan	97a9a1b93b	python3-m2crypto: upgrade 0.45.1 -> 0.46.2 ... python3-m2crypto/0001-setup.py-Make-the-cmd-available.patch refreshed for 0.46.2 python3-m2crypto/0001-timeout.py-use-qq-format-when-time_t-is-64bit-on-32b.patch removed, this patch doesn't work for 0.45.1 and 0.46.2. Fix the following test hang: test_IP_call (tests.test_ssl.HttpslibSSLSNIClientTestCase.test_IP_call) ... Changelog: =========== 0.46.2 - 2025-10-02 ------------------- - fix[m2xmlrpclib]: make the module compatible with Python 3.6 0.46.1 - 2025-10-02 ------------------- - Correct license to BSD-2-Clause and update references - Specify in setup.cfg that we require Python >= 3.6 0.46.0 - 2025-10-01 ------------------- (Tested on Pythons between 3.6 and 3.14.0~rc3) - M2Crypto closes SSL connection on closing HTTPS Connection, and some other related issues (#203, #278) - Modernize C API by eliminating use of deprecated PyBytes_AsStringAndSize and related functions with Python Buffer Protocol (#375) - Whole project is completely covered with type hints and is checked by mypy (also while doing that, the whole project was blackened) (#344) - Add logging support to C extension code sending messages to the Python logging - Introducing first efforts to support Engine object (#229) - Reworked and fixed M2Crypto.m2xmlrpclib module (#163) - Reverted removal of demo/ subdirectory - Improve SMIME documentation (#377) - Some other minor bugs, improvements, and removal of dead code Signed-off-by: Haixiao Yan <haixiao.yan.cn@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-16 08:48:34 -07:00
Khem Raj	19cbdbcac6	python3-lazy-object-proxy: Remove __pycache__ from packaging ... They make the package non-reproducible morever these are cache files anyway Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-15 13:09:59 -07:00
Khem Raj	066b5207a0	python3-lazy-object-proxy: Upgrade to 1.12.0 release ... * Fixed testing issues when C extensions are not desired. Contributed by Michał Górny in #79. * Added support for GraalPy. Contributed by Michael Šimáček in #87. * Fixed testing issues on Python 3.14. Contributed by Michał Górny in #88. * Modernized packaging to have metadata in pyproject.toml. * Added Python 3.14 wheels. Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-15 13:09:59 -07:00
Khem Raj	af989223cd	python3-pynacl: Fix reproduciblity ... glob output isn't guaranteed to be in any particular order, so _sodium.*.so wasn't always reproducible. Signed-off-by: Khem Raj <raj.khem@gmail.com> Cc: Yoann Congal <yoann.congal@smile.fr> Cc: Hongxu Jia <hongxu.jia@windriver.com>	2025-10-15 12:43:14 -07:00
Leon Anavi	7b53cb83bb	python3-httptools: Upgrade 0.6.4 -> 0.7.1 ... Upgrade to release 0.7.1: - Identical to 0.7.0 whose CI failed uploading Fixes: WARNING: python3-httptools-0.7.1-r0 do_check_backend: QA Issue: inherits setuptools3_legacy but has pyproject.toml with setuptools.build_meta, use the correct class [pep517-backend] Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-15 12:03:01 -07:00
Leon Anavi	98cafecaa5	python3-setproctitle: Upgrade 1.3.6 -> 1.3.7 ... Upgrade to release 1.3.7: - Add support for Python 3.14 License-Update: Use LICENSE. No change of the license. Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-15 12:03:01 -07:00
Leon Anavi	2b7d18164e	python3-configargparse: Upgrade 1.7 -> 1.7.1 ... Upgrade to release 1.7.1: - Fix the package metadata on supported python versions Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-15 12:03:01 -07:00
Wang Mingyu	e590bf142a	python3-virtualenv: upgrade 20.34.0 -> 20.35.3 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-14 09:00:25 -07:00
Wang Mingyu	62ee842b4b	python3-tomli: upgrade 2.2.1 -> 2.3.0 ... Changelog: ========= - Binary wheels for Python 3.14 (also free-threaded) - Reduced import time Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-14 09:00:25 -07:00
Wang Mingyu	70f791e9dc	python3-sqlalchemy: upgrade 2.0.43 -> 2.0.44 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-14 09:00:24 -07:00
Wang Mingyu	abce3f440f	python3-pyzstd: upgrade 0.17.0 -> 0.18.0 ... Changelog: ========== - Support for Python 3.14 - Deprecate the read_size and write_size parameters of ZstdFile and SeekableZstdFile - Deprecate richmem_compress and RichMemZstdCompressor - Rework documentation to suggest using compression.zstd from Python stdlib, and provide a migration guide - Include the zstd library license in package distributions Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-14 09:00:24 -07:00
Wang Mingyu	4d1a509145	python3-pyunormalize: upgrade 16.0.0 -> 17.0.0 ... Changelog: ========== - Upgrade to Unicode 17.0.0. - Drop support for Python versions earlier than 3.8. License-Update: Copyright year uptedto 2025 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-14 09:00:24 -07:00
Wang Mingyu	e28a4cdbcf	python3-pyudev: upgrade 0.24.3 -> 0.24.4 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-14 09:00:24 -07:00
Wang Mingyu	9bb50cd898	python3-pyproject-api: upgrade 1.9.1 -> 1.10.0 ... Changelog: =========== - Fix CI for pytest-cov 7 - Add support for 3.14 and drop 3.9 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-14 09:00:24 -07:00
Wang Mingyu	9767dfa3d4	python3-pymongo: upgrade 4.15.1 -> 4.15.3 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-14 09:00:23 -07:00
Wang Mingyu	04b9291848	python3-propcache: upgrade 0.3.2 -> 0.4.1 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-14 09:00:23 -07:00
Wang Mingyu	957250d8a7	python3-platformdirs: upgrade 4.4.0 -> 4.5.0 ... Changelog: =========== - Bump pypa/gh-action-pypi-publish from 1.12.4 to 1.13.0 in the all group - Bump pypa/gh-action-pypi-publish from 1.12.4 to 1.13.0 in /.github/workflows - Add support for Python 3.14 - Update Windows file paths in README - Bump astral-sh/setup-uv from 6 to 7 in the all group - Drop 3.9 support Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-14 09:00:23 -07:00
Wang Mingyu	520fd28252	python3-matplotlib: upgrade 3.10.6 -> 3.10.7 ... Changelog: the minimum version of pyparsing has been updated to version 3.0. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-14 09:00:23 -07:00
Wang Mingyu	d893ee2ae1	python3-isort: upgrade 6.0.1 -> 7.0.0 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-14 09:00:23 -07:00
Wang Mingyu	275f38ee20	python3-ipython: upgrade 9.5.0 -> 9.6.0 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-14 09:00:22 -07:00
Wang Mingyu	d63a8b7e3b	python3-invoke: upgrade 2.2.0 -> 2.2.1 ... Changelog: - Python 3.14 tweaked the behavior of fcntl to raise SystemError on buffer overflows, which our interpretation of termios.TIOCGWINSZ technically was Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-14 09:00:22 -07:00
Wang Mingyu	a1f21ad013	python3-inline-snapshot: upgrade 0.29.1 -> 0.29.3 ... Changelog: ============= - fixed string formatting with black which caused invalid snapshots - xdist is now detected properly. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-14 09:00:22 -07:00
Wang Mingyu	5bdc3be2d5	python3-greenstalk: upgrade 2.1.0 -> 2.1.1 ... Changelog: ========== - Adds the ability to initialize a Client with an already connected socket to provide full control over socket configuration. - TCP keepalive is now enabled by default to help detect broken TCP connections. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-14 09:00:22 -07:00
Wang Mingyu	7d7484b452	python3-frozenlist: upgrade 1.7.0 -> 1.8.0 ... Changelog: ========== - The :file:'reusable-cibuildwheel.yml' workflow has been refactored to be more generic and :file:'ci-cd.yml' now holds all the configuration toggles - When building wheels, the source distribution is now passed directly to the cibuildwheel invocation - Builds and tests have been added to ci-cd.yml for arm64 Windows wheels - Started building wheels for CPython 3.14 - Removed --config-settings=pure-python=false from :file:'requirements/dev.txt'. Developers on CPython still get accelerated builds by default. To explicitly build a pure Python wheel, use pip install -e . --config-settings=pure-python=true Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-14 09:00:22 -07:00
Wang Mingyu	baafad0fa9	python3-cantools: upgrade 40.7.0 -> 40.7.1 ... Changelog: ========== - Add typing to bus.py - fix(database): broken caching when loading dbc file Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-14 09:00:22 -07:00
Wang Mingyu	9c7a665bc5	python3-cachetools: upgrade 6.2.0 -> 6.2.1 ... Changelog: ========= - Add support for Python 3.14. - Improve documentation. - Update CI environment. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-14 09:00:21 -07:00
Wang Mingyu	41e1e8c9c0	python3-astroid: upgrade 3.3.11 -> 4.0.1 ... Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-14 09:00:21 -07:00
Wang Mingyu	ed1d64656e	python3-asgiref: upgrade 3.9.2 -> 3.10.0 ... Changelog: - Added AsyncSingleThreadContext context manager to ensure multiple AsyncToSync invocations use the same thread. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-14 09:00:21 -07:00
Wang Mingyu	ff832a1a96	python3-alembic: upgrade 1.16.5 -> 1.17.0 ... Changelog: ============ * The top-level test runner has been changed to use nox, adding a noxfile.py as well as some included modules. * The minimum Python version is now 3.10, as Python 3.9 is EOL. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-14 09:00:21 -07:00
Leon Anavi	317da0fe97	pydantic: Upgrade 2.11.7 -> 2.12.0 ... Upgrade to release 2.12.0: - Update V1 copy to v1.10.24 - Add extra parameter to the validate functions - Add exclude_computed_fields serialization option - Add preverse_empty_path URL options - Add union_format parameter to JSON Schema generation - Add __qualname__ parameter for create_model - Do not try to infer name from lambda definitions in pipelines API - Use proper namespace for functions in TypeAdapter - Use Any for context type annotation in TypeAdapter - Expose FieldInfo in pydantic.fields.__all__ - Respect validation_alias in @validate_call - Use Any as context annotation in plugin API - Use proper stacklevel in warnings when possible Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-13 23:47:40 -07:00
Leon Anavi	918ac505d3	python3-pydantic-core: Upgrade 2.37.2 -> 2.41.1 ... Upgrade to release 2.41.1: - Add url_preserve_empty_path entry to CoreConfig v2.41.0: - Do not call default factories taking the data argument if a validation error already occurred - fix default_factory which takes data on more types - ci: avoid timeout on aarch64 tests - make _pydantic_core._pydantic_core pub for static linking - Preserve order for collections.OrderedDict Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-13 23:47:39 -07:00
Leon Anavi	5e593b1f91	python3-yarl: Upgrade 1.21.0 -> 1.22.0 ... Upgrade to 1.22.0: - Added arm64 Windows wheel builds Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-13 23:47:39 -07:00
Leon Anavi	c0c3bd7935	python3-bitarray: Upgrade 3.7.1 -> 3.7.2 ... Upgrade to release 3.7.2: - enable `util.random_k()` for all supported Python versions, previously this functions required Python 3.9 or higher - add official Python 3.14 support - update cibuildwheel to 3.2.0 Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-13 23:47:39 -07:00
Khem Raj	9b8ce32e95	python3-lief: Upgrade to 0.16.7 ... Changes: https://github.com/lief-project/LIEF/compare/0.16.6...0.16.7 Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-13 23:47:38 -07:00
Khem Raj	fe5f7638fc	python3-typing-inspection: Upgrade to 0.4.2 ... License-Update: Changed copyrights to Copyright (c) Pydantic Services Inc. 2025 to present Changes 4.2 === Add typing_objects.is_noextraitems() 4.1 === Fix compatibility with latest Python 3.14 release Add typing_objects.is_forwardref() Fix implementation of is_union_origin() Add SPDX license identifier Use list as a type hint for InspectedAnnotation.metadata Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-13 23:47:04 -07:00
Ankur Tyagi	9c65444533	python3-django: upgrade 4.2.24 -> 4.2.25 ... Release Notes: https://docs.djangoproject.com/en/dev/releases/4.2.25/ Signed-off-by: Ankur Tyagi <ankur.tyagi85@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-12 10:23:53 -07:00
Ankur Tyagi	955ac83b7f	python3-django: Upgrade 5.2.6 -> 5.2.7 ... Release notes: https://docs.djangoproject.com/en/5.2/releases/5.2.7/ Signed-off-by: Ankur Tyagi <ankur.tyagi85@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-10-12 10:23:52 -07:00