UNCLASSIFIED - NO CUI

Skip to content

Update all dependencies - autoclosed

POPs-renovate-tools_03Dec2024 requested to merge renovate/all into development

This MR contains the following updates:

Package Type Update Change
ComplianceAsCode/content ironbank-github patch v0.1.72 -> v0.1.73
anchore/syft ironbank-github minor v1.7.0 -> v1.9.0
attrs (changelog) major ==20.3.0 -> ==23.2.0
boto3 patch ==1.34.134 -> ==1.34.144
botocore patch ==1.34.134 -> ==1.34.144
certifi minor ==2024.6.2 -> ==2024.7.4
gitpython patch ==3.1.41 -> ==3.1.43
google/go-containerregistry ironbank-github minor v0.19.1 -> v0.20.0
jinja2 (changelog) patch ==3.1.3 -> ==3.1.4
jsonschema (changelog) minor ==4.17.3 -> ==4.23.0
openpyxl (source) patch ==3.1.4 -> ==3.1.5
python-gitlab (changelog) minor ==4.6.0 -> ==4.7.0
tidelift/sbom-to-api-tools ironbank-github patch v0.9.0 -> v0.9.1
trufflehog3 patch ==3.0.9 -> ==3.0.10

Release Notes

ComplianceAsCode/content (ComplianceAsCode/content)

v0.1.73: Content 0.1.73

Compare Source

Important Highlights
  • CMP 2417: Implement PCI-DSS v4.0 outline for OpenShift (#​11651)
  • Update all RHEL ANSSI BP028 profiles to be aligned with configuration recommendations version 2.0
  • Generate rule references from control files (#​11540)
  • Initial implementation of STIG V1R1 profile for Ubuntu 22.04 LTS (#​11820)
New Rules and Profiles
  • Add and modify rules file/dir_permissions_system_journal (#​11840)
  • Add ANSSI Profiles for RHEL 10 (#​11787)
  • Add initial RHEL 10 PCI DSS profile (#​11872)
  • Add new rule file_permissions_sudo (#​11584)
  • Add new templated rules for System.map files (#​11640)
  • ANSSI R31 updates (#​11560)
  • Audit watch on /etc/sysconfig/network-scripts (#​11724)
  • CMP 2417: Implement PCI-DSS v4.0 outline for OpenShift (#​11651)
  • CMP-2375: Implement a new rule for checking audit logging is enabled (#​11731)
  • Implement ANSSI requirement R69 for RHEL (#​11663)
  • Improve ANSSI R28 (#​11626)
  • Inital RHEL 10 STIG (#​11793)
  • Initial implementation of STIG V1R1 profile for Ubuntu 22.04 LTS (#​11820)
  • Openembedded fixes (#​11652)
  • Update ANSSI R50 (#​11588)
Updated Rules and Profiles
  • [Stabilization]: Ensure that security_patches_up_to_date is not built with remediations (#​11993)
  • accounts_umask_etc_bashrc: extend handled cases of umask (#​11822)
  • Add a note to ANSSI R23 (#​11571)
  • Add a warning to sshd_limit_user_access (#​11507)
  • Add automation to enable faillock rules (#​11458)
  • Add platform machine to systctl.d rules (#​11622)
  • Add rule set_password_hashing_algorithm_systemauth to Ubuntu STIG profile (#​11864)
  • Additional updates in kernel_module_disabled template (#​11508)
  • Align chronyd_sync_clock to Ubuntu 22.04 STIG (#​11883)
  • Align rule encrypt_partitions with Ubuntu 22.04 STIG (#​11889)
  • Align var_accounts_tmout to Ubuntu 22.04 STIG V1R1 (#​11843)
  • ANSSI R31 updates (#​11560)
  • api_server_encryption_provider_cipher rule.yml has bad jsonpath (#​11099)
  • CMP 2453 pci dss requirement 1 (#​11725)
  • CMP-2365: Fix check for rotating kubelet server certificates (#​11543)
  • CMP-2372: Remove info override for virtual syscall rules (#​11544)
  • CMP-2378: Fix OCP version regex (#​11499)
  • CMP-2454: PCI-DSS v4 Requirement 2 (#​11825)
  • CMP-2471: Disable rules on s390x (#​11743)
  • Corrections in aide_periodic_cron_checking and aide_scan_notification… (#​11665)
  • Do not require existence of /var/tmp/tmp-inst (#​11762)
  • Drop retired PCI-DSS 3.2.1 for sle15 (#​11798)
  • ensure that var_sshd_set_keepalive is not set to 0 in rhel8 and rhel9 profiles (#​11851)
  • extend the explanation why ANSSI R52 requirement is manual (#​11629)
  • Fix #​11895 issue (#​11897)
  • Fix #​11898 issue (#​11899)
  • Fix #​11902 issue (#​11905)
  • Fix dconf package name for Ubuntu (#​11821)
  • Fix description for auditd_max_log_file_action (#​11585)
  • Fix kdump service name on Ubuntu 22.04 (#​11914)
  • Fix OCP node OVN check (#​11861)
  • Fix rule for accounts_authorized_local_users in SLE15 (#​11602)
  • Fix SCE check for ip6tables_rules_for_open_ports (#​11849)
  • Fix SCE checks for iptables_loopback_traffic (#​11850)
  • HIPAA profile for SLE 15 - update (#​11582)
  • Implement ANSSI requirement R69 for RHEL (#​11663)
  • Improve ANSSI R28 (#​11626)
  • Improve Rsyslog Rainer regex to find log files (#​11808)
  • Improve title of CCN profiles for RHEL9 (#​11852)
  • Make package installation for iptables and nftables mutually exclusive (#​11191)
  • mount_option_remote_systems: make rule not applicable if mounts not found (#​11761)
  • Move to /bin/false in Ubuntu remediation for wireless_disable_interface (#​11490)
  • oauth_or_oauthclient_token_maxage: Use variable for remediation of rule (#​11603)
  • OCP4: Add container_security_operator_exists to PCIDSS profile (#​11776)
  • OCP4: Add rule to check ACS sensor deployed (#​11675)
  • OCP4: Fix rules with both platform and platforms (#​11760)
  • OCPBUGS-18331: Include sshd config directories in remediation template (#​11551)
  • OCPBUGS-20015: Add remediation for RHCOS banners (#​11470)
  • OCPBUGS-26193: Fix missing OCP4 STIG selections (#​11423)
  • OCPBUGS-28797: Clarify banner instructions for RHCOS nodes (#​11635)
  • Openembedded fixes (#​11652)
  • put exec back to configure_bashrc_exec_tmux (#​11561)
  • Remove disabling_ipv6_autoconfig rule (#​11550)
  • Replace dead HTML links for the chronyd project (#​11799)
  • RHEL-09-232045: align with STIG (#​11890)
  • Rule had incorrect CRD reference rule.yml (#​11823)
  • Set the requires to sshd_set_keepalive on sshd_set_idle_timeout (#​11815)
  • sysctl template: allow skipping of runtime checks (#​11574)
  • trivial: fix linting issue (#​11711)
  • trivial: Update link to audit profile documentation link (#​11732)
  • Try 4110 for file_permissions_sudo (#​11805)
  • ubuntu2204: cis_level1_workstation: Add missing !package_cups_removed (#​11715)
  • Update ANSSI R29 requirement (#​11633)
  • Update ANSSI R32 (#​11570)
  • Update ANSSI R36 requirement (#​11632)
  • Update ANSSI R40 (#​11563)
  • Update ANSSI R50 (#​11588)
  • Update ANSSI R67 requirement (#​11642)
  • Update ANSSI R68 (#​11580)
  • Update ANSSI R71 (#​11578)
  • Update audit_ospp_general (#​11519)
  • Update CIS requirement status (#​11784)
  • Update CIS RHEL7 requirement 3.4.4.3.4 (#​11502)
  • Update CIS RHEL8 requirements related to crypto (#​11506)
  • update cryptopolicy used in CUI profile to fips (#​11792)
  • Update notes in ANSSI R3 (#​11680)
  • update notes of the R36 requirement for ANSSI (#​11639)
  • Update ol8 pcidss (#​11867)
  • Update ol8 profiles (#​11829)
  • Update ol8 stig (#​11828)
  • Update ol8 stig reference (#​11884)
  • Update ol9 pcidss (#​11873)
  • Update ol9 profiles (#​11846)
  • Update RHEL 8 STIG to V1R14 (#​11878)
  • Update RHEL9 STIG to V1R3 (#​11877)
  • Update SLE12 STIG to V2R13 (#​11599)
  • Update SLE15 STIG to V1R12 (#​11598)
  • update sles oval feed url (#​11461)
  • Update SRG GPOS Control File (#​11634)
  • Update sssd ldap related rules to check /etc/sssd/conf.d/*.conf files (#​11474)
  • Update sssd_enable_smartcards & sssd_offline_cred_expiration (#​11473)
  • Update STIG PSC Content (#​11664)
  • Update sudo_dedicated_group (#​11586)
  • Use string instead of number in oauth variable (#​11613)
  • Use controls to assign ANSSI references (#​11556)
Changes in Remediations
  • [stabilization] do not restrict Ansible remediation of zipl_bootmap_is_up_to_date to RHEL 8 only (#​11935)
  • [stabilization] Recollect facts in mount_option_nodev_nonroot_local_partitions (#​11956)
  • [Stabilization]: add when conditional to Ansible remediation of sssd_enable_pam_services (#​11979)
  • [Stabilization]: Ensure that security_patches_up_to_date is not built with remediations (#​11993)
  • accounts_passwords_pam_tally2_deny_root fix (#​11676)
  • Add Ansible remediation to sssd_enable_pam_services (#​11796)
  • Add Ansible Remediations (#​11763)
  • Add root user to interactive users (#​11729)
  • Add rule set_password_hashing_algorithm_systemauth to Ubuntu STIG profile (#​11864)
  • Additional updates in kernel_module_disabled template (#​11508)
  • Align securetty_root_login_console_only remediations with OVAL/rule description (#​11716)
  • Align wireless_disable_interfaces with Ubuntu 22.04 STIG (#​11886)
  • Changes in template service_disabled - ansible part (#​11645)
  • Disallow spaces in SSSD certificate_verification option (#​11728)
  • Enable ansible in SLE for dconf_gnome_session_idle_user_locks (#​11655)
  • Fix ansible lint for SLE platforms (#​11911)
  • fix ansible SLES stig remediations in check mode (#​11248)
  • Fix Bash remediation of firewalld-based rules for offline mode (#​11868)
  • Fix configure_bashrc_exec_tmux missing parenthesis (#​11448)
  • Fix non-idempotent bash remediation for sysctl template (#​11671)
  • fix regex in Ansible remediation of configure_ssh_crypto_policy (#​11526)
  • Fix rule mount_option_nodev_nonroot_local_partitions Bash remediation (#​11827)
  • Fix ubuntu remediation for pam_faildelay (#​11532)
  • Fix Ubuntu remediation for pam_faillock rules (#​11488)
  • Fix Ubuntu remediation for smartcard_pam_enabled (#​11489)
  • Issue when using set -e with grep commands (#​11712)
  • Make Blueprint for service_disabled template to mask services (#​11679)
  • OCPBUGS-28242: Fix remediation for service_debug-shell_disabled (#​11638)
  • pam_options ansible template dry-run fix (#​11677)
  • Remove kubernetes hardcoded solution for templated service_debug rules (#​11370)
  • remove prodtype from add_kubernetes_rule (#​11500)
  • Remove restrictions in sshd_use_approved_ciphers remediation (#​11527)
  • Return condition to test firewalld service state in firewalld_loopback_traffic rules (#​11894)
  • set indent to 4 (#​11530)
  • Simplify output of ip link show command (#​11657)
  • update links and unify documentation in kickstart files (#​11765)
  • Update links for Ansible role (#​11737)
  • Update sssd ldap related rules to check /etc/sssd/conf.d/*.conf files (#​11474)
  • use failed_when:false for Ansible register: checks (#​11782)
Changes in Checks
  • accounts_passwords_pam_tally2_deny_root fix (#​11676)
  • Add root user to interactive users (#​11729)
  • Add rule set_password_hashing_algorithm_systemauth to Ubuntu STIG profile (#​11864)
  • all_apparmor_profiles_in_enforce_complain_mode: Fix OVAL logic (#​11672)
  • App armor oval check (#​11273)
  • Correction in oval part ensure_gpgcheck_globally_activated (#​11709)
  • Disallow spaces in SSSD certificate_verification option (#​11728)
  • Enforce explicit setting in password-auth (#​11742)
  • Enforce explicit setting in system-auth (#​11740)
  • Fix handling of grub.d configs in grub2_bootloader_argument (#​11726)
  • Fix macro for extracting local interactive users (#​11589)
  • Fix regression in grub2_bootloader_argument (#​11768)
  • Make additional check if selinux is enabled and operational (#​11510)
  • Red Hat product security is on the path of deprecating the OVAL CVE feed (#​11547)
  • Remove OVAL version restrictions from auditd_audispd_configure_sufficiently_large_partition (#​11816)
  • Restrict the list of accepted shells in no_shelllogin_for_systemaccounts (#​11896)
  • Revert MR 11816 (#​11917)
  • Update ANSSI R67 requirement (#​11642)
  • Update sssd_enable_smartcards & sssd_offline_cred_expiration (#​11473)
Changes in the Infrastructure
  • Account for non-existent 'build' dir in build_product (#​11606)
  • Add new test to ensure that CCEs are removed from the avail file (#​11590)
  • Add RHEL 9 support for playbook to role conversion utility (#​11542)
  • Add RHEL 9 to Ansible Gating (#​11624)
  • Add Script to Import DISA STIG to Policy Specific Content (#​11611)
  • Add stigrefs after references from controls (#​11591)
  • add the "components" test among quick tests (#​11668)
  • Bump paambaati/codeclimate-action from 5.0.0 to 6.0.0 (#​11912)
  • Change the metric of the most-used-components (#​11738)
  • Clean up check_eof (#​11757)
  • Disable RHEL 10 content for 0.1.73 release (#​11989)
  • Ensure that components not in datastream are not mentioned by profiles (#​11811)
  • Extend the stable-profiles test (#​11617)
  • Extension of the most-used-rules and most-used-components subcommands of the profile_tool.py script to specify a list of products to be considered (#​11733)
  • Fix broken exception message (#​11842)
  • Fix content_diff when a rule is removed (#​11855)
  • Fix deprecation warning in ssg/build_derivatives.py (#​11666)
  • Fix SCE finding XPath to allow nesting with OCILs (#​11682)
  • Fix TypeError in get_implemented_stigs (#​11596)
  • Improve github workflow for building OCP MR image (#​11492)
  • Improve playbook script and documention (#​11747)
  • k8s content image: Image from MR should not be tagged latest (#​11643)
  • k8s image content from MRs: Fix id in job step (#​11604)
  • k8s image content from MRs: remove token from action parameters (#​11608)
  • Move auditing group (#​11789)
  • Move to use main branch and OpenSCAP 1.4.0 for building on Windows (#​11734)
  • OCP: Fix e2e remediation for container_security_operator_exists (#​11545)
  • OCP4: Fix pr image workflow (#​11533)
  • OCP4: use utf-8 as default xml encoding (#​11614)
  • Prevent conflicts in references (#​11555)
  • profile_tool.py: Fix traceback in sub command (#​11637)
  • Re-organize tests/fmf-plans into a more concise format (#​11809)
  • Reduce OCIL size (#​11577)
  • Reduce XCCDF (#​11800)
  • Reduce XML reformatting (#​11641)
  • Reduction of CPE content in DS (#​11648)
  • Refactoring: Remove all references to prodtype (code/tests/docs) (#​11505)
  • Remove CNSS REF URL (#​11714)
  • Removing unused variables from the datastream (#​11858)
  • Rework of cpe_generate.py (#​11644)
  • Run Contest test instead of Fedora project beakerlib tests (#​11419)
  • Speed up build of thin data streams (#​11618)
  • Stabilize resolved profiles (#​11727)
  • Test that all rules have references (#​11610)
  • Thin DS: Command Line Interface (#​11549)
  • Tool for identifying the most used components (#​11730)
  • Tool for identifying the most used rules (#​11439)
  • Update entities/common.py to use CDumper (#​11541)
  • Update MR workflow actions to run only on latest push (#​11616)
  • Use control files to generate references (#​11594)
  • utils/gen_rendered_policies_index.py: read compiled control files (#​11667)
Changes in the Test Suite
  • Add RHEL 10 Install Command to Automatus (#​11797)
  • CMP-2366: Update service_autofs_disabled default e2e result (#​11546)
  • Disallow spaces in SSSD certificate_verification option (#​11728)
  • extend misleading Automatus error message (#​11658)
  • Fix ANSSI Ansible fmf test plan (#​11791)
  • Fix Automatus in CI (#​11494)
  • Fix tests for file_permissions, file_owner, file_groupowner (#​11814)
  • Flush automatus test logs before outputting results (#​11605)
  • OCP4: Fix rules with both platform and platforms (#​11760)
  • Split out TMT plans to separate Packit jobs (#​11860)
  • Thin DS tests (#​11755)
  • Update crypto_policy test scenario for CIS RHEL8 (#​11513)
Documentation
  • Add docs how to build thin ds (#​11900)
  • Add RHEL 10 to SRG Mapping Table Action (#​11881)
  • Bump master branch version to 0.1.73 (#​11496)
  • Improve playbook script and documention (#​11747)
  • release_helper script updates (#​11504)
  • Remove prodtype from rule schema (#​11493)
  • Update links for Ansible role (#​11737)
  • update list of contributors before releasing 0.1.73 (#​11888)
  • update meaning of the "automated" status in control files (#​11646)
  • Update RHEL 9 SCAP references to V1R1 (#​11673)
anchore/syft (anchore/syft)

v1.9.0

Compare Source

Added Features
Bug Fixes

(Full Changelog)

v1.8.0

Compare Source

Added Features
Bug Fixes

(Full Changelog)

python-attrs/attrs (attrs)

v23.2.0

Compare Source

Changes
  • The type annotation for attrs.resolve_types() is now correct. #​1141
  • Type stubs now use typing.dataclass_transform to decorate dataclass-like decorators, instead of the non-standard __dataclass_transform__ special form, which is only supported by Pyright. #​1158
  • Fixed serialization of namedtuple fields using attrs.asdict/astuple() with retain_collection_types=True. #​1165
  • attrs.AttrsInstance is now a typing.Protocol in both type hints and code. This allows you to subclass it along with another Protocol. #​1172
  • If attrs detects that __attrs_pre_init__ accepts more than just self, it will call it with the same arguments as __init__ was called. This allows you to, for example, pass arguments to super().__init__(). #​1187
  • Slotted classes now transform functools.cached_property decorated methods to support equivalent semantics. #​1200
  • Added class_body argument to attrs.make_class() to provide additional attributes for newly created classes. It is, for example, now possible to attach methods. #​1203

v23.1.0

Compare Source

Backwards-incompatible Changes
  • Python 3.6 has been dropped and packaging switched to static package data using Hatch. #​993
Deprecations
  • The support for zope-interface via the attrs.validators.provides validator is now deprecated and will be removed in, or after, April 2024.

    The presence of a C-based package in our development dependencies has caused headaches and we're not under the impression it's used a lot.

    Let us know if you're using it and we might publish it as a separate package. #​1120

Changes
  • attrs.filters.exclude() and attrs.filters.include() now support the passing of attribute names as strings. #​1068

  • attrs.has() and attrs.fields() now handle generic classes correctly. #​1079

  • Fix frozen exception classes when raised within, for example, contextlib.contextmanager, which mutates their __traceback__ attributes. #​1081

  • @frozen now works with type checkers that implement PEP-681 (ex. pyright). #​1084

  • Restored ability to unpickle instances pickled before 22.2.0. #​1085

  • attrs.asdict()'s and attrs.astuple()'s type stubs now accept the attrs.AttrsInstance protocol. #​1090

  • Fix slots class cellvar updating closure in CPython 3.8+ even when __code__ introspection is unavailable. #​1092

  • attrs.resolve_types() can now pass include_extras to typing.get_type_hints() on Python 3.9+, and does so by default. #​1099

  • Added instructions for pull request workflow to CONTRIBUTING.md. #​1105

  • Added type parameter to attrs.field() function for use with attrs.make_class().

    Please note that type checkers ignore type metadata passed into make_class(), but it can be useful if you're wrapping attrs. #​1107

  • It is now possible for attrs.evolve() (and attr.evolve()) to change fields named inst if the instance is passed as a positional argument.

    Passing the instance using the inst keyword argument is now deprecated and will be removed in, or after, April 2024. #​1117

  • attrs.validators.optional() now also accepts a tuple of validators (in addition to lists of validators). #​1122

v22.2.0

Compare Source

Backwards-incompatible Changes
  • Python 3.5 is not supported anymore. #​988
Deprecations
  • Python 3.6 is now deprecated and support will be removed in the next release. #​1017
Changes
  • attrs.field() now supports an alias option for explicit __init__ argument names.

    Get __init__ signatures matching any taste, peculiar or plain! The PEP 681 compatible alias option can be use to override private attribute name mangling, or add other arbitrary field argument name overrides. #​950

  • attrs.NOTHING is now an enum value, making it possible to use with, for example, typing.Literal. #​983

  • Added missing re-import of attr.AttrsInstance to the attrs namespace. #​987

  • Fix slight performance regression in classes with custom __setattr__ and speedup even more. #​991

  • Class-creation performance improvements by switching performance-sensitive templating operations to f-strings.

    You can expect an improvement of about 5% -- even for very simple classes. #​995

  • attrs.has() is now a TypeGuard for AttrsInstance. That means that type checkers know a class is an instance of an attrs class if you check it using attrs.has() (or attr.has()) first. #​997

  • Made attrs.AttrsInstance stub available at runtime and fixed type errors related to the usage of attrs.AttrsInstance in Pyright. #​999

  • On Python 3.10 and later, call abc.update_abstractmethods() on dict classes after creation. This improves the detection of abstractness. #​1001

  • attrs's pickling methods now use dicts instead of tuples. That is safer and more robust across different versions of a class. #​1009

  • Added attrs.validators.not_(wrapped_validator) to logically invert wrapped_validator by accepting only values where wrapped_validator rejects the value with a ValueError or TypeError (by default, exception types configurable). #​1010

  • The type stubs for attrs.cmp_using() now have default values. #​1027

  • To conform with PEP 681, attr.s() and attrs.define() now accept unsafe_hash in addition to hash. #​1065

v22.1.0

Compare Source

Backwards-incompatible Changes
  • Python 2.7 is not supported anymore.

    Dealing with Python 2.7 tooling has become too difficult for a volunteer-run project.

    We have supported Python 2 more than 2 years after it was officially discontinued and feel that we have paid our dues. All version up to 21.4.0 from December 2021 remain fully functional, of course. #​936

  • The deprecated cmp attribute of attrs.Attribute has been removed. This does not affect the cmp argument to attr.s that can be used as a shortcut to set eq and order at the same time. #​939

Changes
  • Instantiation of frozen slotted classes is now faster. #​898
  • If an eq key is defined, it is also used before hashing the attribute. #​909
  • Added attrs.validators.min_len(). #​916
  • attrs.validators.deep_iterable()'s member_validator argument now also accepts a list of validators and wraps them in an attrs.validators.and_(). #​925
  • Added missing type stub re-imports for attrs.converters and attrs.filters. #​931
  • Added missing stub for attr(s).cmp_using(). #​949
  • attrs.validators._in()'s ValueError is not missing the attribute, expected options, and the value it got anymore. #​951
  • Python 3.11 is now officially supported. #​969

v21.4.0

Compare Source

Changes
  • Fixed the test suite on PyPy3.8 where cloudpickle does not work. #​892
  • Fixed coverage report for projects that use attrs and don't set a --source. #​895, #​896

v21.3.0

Compare Source

Backward-incompatible Changes
  • When using @define, converters are now run by default when setting an attribute on an instance -- additionally to validators. Meaning: the new default is on_setattr=[attrs.setters.convert, attrs.setters.validate].

    This is unfortunately a breaking change, but it was an oversight, impossible to raise a DeprecationWarning about, and it's better to fix it now while the APIs are very fresh with few users. #​835, #​886

  • import attrs has finally landed! As of this release, you can finally import attrs using its proper name.

    Not all names from the attr namespace have been transferred; most notably attr.s and attr.ib are missing. See attrs.define and attrs.field if you haven't seen our next-generation APIs yet. A more elaborate explanation can be found On The Core API Names

    This feature is at least for one release provisional. We don't plan on changing anything, but such a big change is unlikely to go perfectly on the first strike.

    The API docs have been mostly updated, but it will be an ongoing effort to change everything to the new APIs. Please note that we have not moved -- or even removed -- anything from attr!

    Please do report any bugs or documentation inconsistencies! #​887

Changes
  • attr.asdict(retain_collection_types=False) (default) dumps collection-esque keys as tuples. #​646, #​888
  • __match_args__ are now generated to support Python 3.10's Structural Pattern Matching. This can be controlled by the match_args argument to the class decorators on Python 3.10 and later. On older versions, it is never added and the argument is ignored. #​815
  • If the class-level on_setattr is set to attrs.setters.validate (default in @define and @mutable) but no field defines a validator, pretend that it's not set. #​817
  • The generated __repr__ is significantly faster on Pythons with f-strings. #​819
  • Attributes transformed via field_transformer are wrapped with AttrsClass again. #​824
  • Generated source code is now cached more efficiently for identical classes. #​828
  • Added attrs.converters.to_bool(). #​830
  • attrs.resolve_types() now resolves types of subclasses after the parents are resolved. #​842 #​843
  • Added new validators: lt(val) (< val), le(va) (≤ val), ge(val) (≥ val), gt(val) (> val), and maxlen(n). #​845
  • attrs classes are now fully compatible with cloudpickle (no need to disable repr anymore). #​857
  • Added new context manager attrs.validators.disabled() and functions attrs.validators.(set|get)_disabled(). They deprecate attrs.(set|get)_run_validators(). All functions are interoperable and modify the same internal state. They are not – and never were – thread-safe, though. #​859
  • attrs.validators.matches_re() now accepts pre-compiled regular expressions in addition to pattern strings. #​877

v21.2.0

Compare Source

Backward-incompatible Changes
  • We had to revert the recursive feature for attr.evolve() because it broke some use-cases -- sorry! #​806
  • Python 3.4 is now blocked using packaging metadata because attrs can't be imported on it anymore. To ensure that 3.4 users can keep installing attrs easily, we will yank 21.1.0 from PyPI. This has no consequences if you pin attrs to 21.1.0. #​807

v21.1.0

Compare Source

Deprecations
  • The long-awaited, much-talked-about, little-delivered import attrs is finally upon us!

    Since the NG APIs have now been proclaimed stable, the next release of attrs will allow you to actually import attrs. We're taking this opportunity to replace some defaults in our APIs that made sense in 2015, but don't in 2021.

    So please, if you have any pet peeves about defaults in attrs's APIs, now is the time to air your grievances in #​487! We're not gonna get such a chance for a second time, without breaking our backward-compatibility guarantees, or long deprecation cycles. Therefore, speak now or forever hold you peace! #​487

  • The cmp argument to attr.s() and attr.ib() has been undeprecated It will continue to be supported as syntactic sugar to set eq and order in one go.

    I'm terribly sorry for the hassle around this argument! The reason we're bringing it back is it's usefulness regarding customization of equality/ordering.

    The cmp attribute and argument on attr.Attribute remains deprecated and will be removed later this year. #​773

Changes
  • It's now possible to customize the behavior of eq and order by passing in a callable. #​435, #​627

  • The instant favorite next-generation APIs are not provisional anymore!

    They are also officially supported by Mypy as of their 0.800 release.

    We hope the next release will already contain an (additional) importable package called attrs. #​668, #​786

  • If an attribute defines a converter, the type of its parameter is used as type annotation for its corresponding __init__ parameter.

    If an attr.converters.pipe is used, the first one's is used. #​710

  • Fixed the creation of an extra slot for an attr.ib when the parent class already has a slot with the same name. #​718

  • __attrs__init__() will now be injected if init=False, or if auto_detect=True and a user-defined __init__() exists.

    This enables users to do "pre-init" work in their __init__() (such as super().__init__()).

    __init__() can then delegate constructor argument processing to self.__attrs_init__(*args, **kwargs). #​731

  • bool(attr.NOTHING) is now False. #​732

  • It's now possible to use super() inside of properties of slotted classes. #​747

  • Allow for a __attrs_pre_init__() method that -- if defined -- will get called at the beginning of the attrs-generated __init__() method. #​750

  • Added forgotten attr.Attribute.evolve() to type stubs. #​752

  • attrs.evolve() now works recursively with nested attrs classes. #​759

  • Python 3.10 is now officially supported. #​763

  • attr.resolve_types() now takes an optional attrib argument to work inside a field_transformer. #​774

  • ClassVars are now also detected if they come from typing-extensions. #​782

  • To make it easier to customize attribute comparison (#​435), we have added the attr.cmp_with() helper.

    See the new docs on comparison for more details. #​787

  • Added provisional support for static typing in pyright via PEP 681. Both the pyright specification and attrs implementation may change in future versions of both projects.

    Your constructive feedback is welcome in both attrs#795 and pyright#1782. #​796

boto/boto3 (boto3)

v1.34.144

Compare Source

========

  • api-change:acm-pca: [botocore] Minor refactoring of C2J model for AWS Private CA
  • api-change:arc-zonal-shift: [botocore] Adds the option to subscribe to get notifications when a zonal autoshift occurs in a region.
  • api-change:globalaccelerator: [botocore] This feature adds exceptions to the Customer API to avoid throwing Internal Service errors
  • api-change:pinpoint: [botocore] Add v2 smoke tests and smithy smokeTests trait for SDK testing.
  • api-change:quicksight: [botocore] Vega ally control options and Support for Reviewed Answers in Topics

v1.34.143

Compare Source

========

  • api-change:batch: [botocore] This feature allows AWS Batch Jobs with EKS container orchestration type to be run as Multi-Node Parallel Jobs.
  • api-change:bedrock: [botocore] Add support for contextual grounding check for Guardrails for Amazon Bedrock.
  • api-change:bedrock-agent: [botocore] Introduces new data sources and chunking strategies for Knowledge bases, advanced parsing logic using FMs, session summary generation, and code interpretation (preview) for Claude V3 Sonnet and Haiku models. Also introduces Prompt Flows (preview) to link prompts, foundational models, and resources.
  • api-change:bedrock-agent-runtime: [botocore] Introduces query decomposition, enhanced Agents integration with Knowledge bases, session summary generation, and code interpretation (preview) for Claude V3 Sonnet and Haiku models. Also introduces Prompt Flows (preview) to link prompts, foundational models, and resources for end-to-end solutions.
  • api-change:bedrock-runtime: [botocore] Add support for contextual grounding check and ApplyGuardrail API for Guardrails for Amazon Bedrock.
  • api-change:ec2: [botocore] Add parameters to enable provisioning IPAM BYOIPv4 space at a Local Zone Network Border Group level
  • api-change:glue: [botocore] Add recipe step support for recipe node
  • api-change:groundstation: [botocore] Documentation update specifying OEM ephemeris units of measurement
  • api-change:license-manager-linux-subscriptions: [botocore] Add support for third party subscription providers, starting with RHEL subscriptions through Red Hat Subscription Manager (RHSM). Additionally, add support for tagging subscription provider resources, and detect when an instance has more than one Linux subscription and notify the customer.
  • api-change:mediaconnect: [botocore] AWS Elemental MediaConnect introduces the ability to disable outputs. Disabling an output allows you to keep the output attached to the flow, but stop streaming to the output destination. A disabled output does not incur data transfer costs.

v1.34.142

Compare Source

========

  • api-change:datazone: [botocore] This release deprecates dataProductItem field from SearchInventoryResultItem, along with some unused DataProduct shapes
  • api-change:fsx: [botocore] Adds support for FSx for NetApp ONTAP 2nd Generation file systems, and FSx for OpenZFS Single AZ HA file systems.
  • api-change:opensearch: [botocore] This release adds support for enabling or disabling Natural Language Query Processing feature for Amazon OpenSearch Service domains, and provides visibility into the current state of the setup or tear-down.
  • api-change:sagemaker: [botocore] This release 1/ enables optimization jobs that allows customers to perform Ahead-of-time compilation and quantization. 2/ allows customers to control access to Amazon Q integration in SageMaker Studio. 3/ enables AdditionalModelDataSources for CreateModel action.

v1.34.141

Compare Source

========

  • api-change:codedeploy: [botocore] Add v2 smoke tests and smithy smokeTests trait for SDK testing.
  • api-change:devicefarm: [botocore] Add v2 smoke tests and smithy smokeTests trait for SDK testing.
  • api-change:dms: [botocore] Add v2 smoke tests and smithy smokeTests trait for SDK testing.
  • api-change:elasticbeanstalk: [botocore] Add v2 smoke tests and smithy smokeTests trait for SDK testing.
  • api-change:es: [botocore] Add v2 smoke tests and smithy smokeTests trait for SDK testing.
  • api-change:firehose: [botocore] Add v2 smoke tests and smithy smokeTests trait for SDK testing.
  • api-change:gamelift: [botocore] Add v2 smoke tests and smithy smokeTests trait for SDK testing.
  • api-change:qapps: [botocore] This is a general availability (GA) release of Amazon Q Apps, a capability of Amazon Q Business. Q Apps leverages data sources your company has provided to enable users to build, share, and customize apps within your organization.
  • api-change:route53resolver: [botocore] Add v2 smoke tests and smithy smokeTests trait for SDK testing.
  • api-change:ses: [botocore] Add v2 smoke tests and smithy smokeTests trait for SDK testing.

v1.34.140

Compare Source

========

  • api-change:acm: [botocore] Documentation updates, including fixes for xml formatting, broken links, and ListCertificates description.
  • api-change:ecr: [botocore] This release for Amazon ECR makes change to bring the SDK into sync with the API.
  • api-change:payment-cryptography-data: [botocore] Added further restrictions on logging of potentially sensitive inputs and outputs.
  • api-change:qbusiness: [botocore] Add personalization to Q Applications. Customers can enable or disable personalization when creating or updating a Q application with the personalization configuration.

v1.34.139

Compare Source

========

  • api-change:application-autoscaling: [botocore] Doc only update for Application Auto Scaling that fixes resource name.
  • api-change:directconnect: [botocore] This update includes documentation for support of new native 400 GBps ports for Direct Connect.
  • api-change:organizations: [botocore] Added a new reason under ConstraintViolationException in RegisterDelegatedAdministrator API to prevent registering suspended accounts as delegated administrator of a service.
  • api-change:rekognition: [botocore] This release adds support for tagging projects and datasets with the CreateProject and CreateDataset APIs.
  • api-change:workspaces: [botocore] Fix create workspace bundle RootStorage/UserStorage to accept non null values

v1.34.138

Compare Source

========

  • api-change:ec2: [botocore] Documentation updates for Elastic Compute Cloud (EC2).
  • api-change:fms: [botocore] Increases Customer API's ManagedServiceData length
  • api-change:s3: [botocore] Added response overrides to Head Object requests.

v1.34.137

Compare Source

========

  • api-change:apigateway: [botocore] Add v2 smoke tests and smithy smokeTests trait for SDK testing.
  • api-change:cognito-identity: [botocore] Add v2 smoke tests and smithy smokeTests trait for SDK testing.
  • api-change:connect: [botocore] Authentication profiles are Amazon Connect resources (in gated preview) that allow you to configure authentication settings for users in your contact center. This release adds support for new ListAuthenticationProfiles, DescribeAuthenticationProfile and UpdateAuthenticationProfile APIs.
  • api-change:docdb: [botocore] Add v2 smoke tests and smithy smokeTests trait for SDK testing.
  • api-change:eks: [botocore] Updates EKS managed node groups to support EC2 Capacity Blocks for ML
  • api-change:payment-cryptography: [botocore] Added further restrictions on logging of potentially sensitive inputs and outputs.
  • api-change:payment-cryptography-data: [botocore] Adding support for dynamic keys for encrypt, decrypt, re-encrypt and translate pin functions. With this change, customers can use one-time TR-31 keys directly in dataplane operations without the need to first import them into the service.
  • api-change:stepfunctions: [botocore] Add v2 smoke tests and smithy smokeTests trait for SDK testing.
  • api-change:swf: [botocore] Add v2 smoke tests and smithy smokeTests trait for SDK testing.
  • api-change:wafv2: [botocore] JSON body inspection: Update documentation to clarify that JSON parsing doesn't include full validation.

v1.34.136

Compare Source

========

  • api-change:acm-pca: [botocore] Added CCPC_LEVEL_1_OR_HIGHER KeyStorageSecurityStandard and SM2 KeyAlgorithm and SM3WITHSM2 SigningAlgorithm for China regions.
  • api-change:cloudhsmv2: [botocore] Added 3 new APIs to support backup sharing: GetResourcePolicy, PutResourcePolicy, and DeleteResourcePolicy. Added BackupArn to the output of the DescribeBackups API. Added support for BackupArn in the CreateCluster API.
  • api-change:connect: [botocore] This release supports showing PreferredAgentRouting step via DescribeContact API.
  • api-change:emr: [botocore] This release provides the support for new allocation strategies i.e. CAPACITY_OPTIMIZED_PRIORITIZED for Spot and PRIORITIZED for On-Demand by taking input of priority value for each instance type for instance fleet clusters.
  • api-change:glue: [botocore] Added AttributesToGet parameter to Glue GetDatabases, allowing caller to limit output to include only the database name.
  • api-change:kinesisanalyticsv2: [botocore] Support for Flink 1.19 in Managed Service for Apache Flink
  • api-change:opensearch: [botocore] This release removes support for enabling or disabling Natural Language Query Processing feature for Amazon OpenSearch Service domains.
  • api-change:pi: [botocore] Noting that the filter db.sql.db_id isn't available for RDS for SQL Server DB instances.
  • api-change:workspaces: [botocore] Added support for Red Hat Enterprise Linux 8 on Amazon WorkSpaces Personal.

v1.34.135

Compare Source

========

  • api-change:application-autoscaling: [botocore] Amazon WorkSpaces customers can now use Application Auto Scaling to automatically scale the number of virtual desktops in a WorkSpaces pool.
  • api-change:chime-sdk-media-pipelines: [botocore] Added Amazon Transcribe multi language identification to Chime SDK call analytics. Enabling customers sending single stream audio to generate call recordings using Chime SDK call analytics
  • api-change:cloudfront: [botocore] Doc only update for CloudFront that fixes customer-reported issue
  • api-change:datazone: [botocore] This release supports the data lineage feature of business data catalog in Amazon DataZone.
  • api-change:elasticache: [botocore] Add v2 smoke tests and smithy smokeTests trait for SDK testing.
  • api-change:mq: [botocore] This release makes the EngineVersion field optional for both broker and configuration and uses the latest available version by default. The AutoMinorVersionUpgrade field is also now optional for broker creation and defaults to 'true'.
  • api-change:qconnect: [botocore] Adds CreateContentAssociation, ListContentAssociations, GetContentAssociation, and DeleteContentAssociation APIs.
  • api-change:quicksight: [botocore] Adding support for Repeating Sections, Nested Filters
  • api-change:rds: [botocore] Updates Amazon RDS documentation for TAZ export to S3.
  • api-change:sagemaker: [botocore] Add capability for Admins to customize Studio experience for the user by showing or hiding Apps and MLTools.
  • api-change:workspaces: [botocore] Added support for WorkSpaces Pools.
boto/botocore (botocore)

v1.34.144

Compare Source

========

  • api-change:acm-pca: Minor refactoring of C2J model for AWS Private CA
  • api-change:arc-zonal-shift: Adds the option to subscribe to get notifications when a zonal autoshift occurs in a region.
  • api-change:globalaccelerator: This feature adds exceptions to the Customer API to avoid throwing Internal Service errors
  • api-change:pinpoint: Add v2 smoke tests and smithy smokeTests trait for SDK testing.
  • api-change:quicksight: Vega ally control options and Support for Reviewed Answers in Topics

v1.34.143

Compare Source

========

  • api-change:batch: This feature allows AWS Batch Jobs with EKS container orchestration type to be run as Multi-Node Parallel Jobs.
  • api-change:bedrock: Add support for contextual grounding check for Guardrails for Amazon Bedrock.
  • api-change:bedrock-agent: Introduces new data sources and chunking strategies for Knowledge bases, advanced parsing logic using FMs, session summary generation, and code interpretation (preview) for Claude V3 Sonnet and Haiku models. Also introduces Prompt Flows (preview) to link prompts, foundational models, and resources.
  • api-change:bedrock-agent-runtime: Introduces query decomposition, enhanced Agents integration with Knowledge bases, session summary generation, and code interpretation (preview) for Claude V3 Sonnet and Haiku models. Also introduces Prompt Flows (preview) to link prompts, foundational models, and resources for end-to-end solutions.
  • api-change:bedrock-runtime: Add support for contextual grounding check and ApplyGuardrail API for Guardrails for Amazon Bedrock.
  • api-change:ec2: Add parameters to enable provisioning IPAM BYOIPv4 space at a Local Zone Network Border Group level
  • api-change:glue: Add recipe step support for recipe node
  • api-change:groundstation: Documentation update specifying OEM ephemeris units of measurement
  • api-change:license-manager-linux-subscriptions: Add support for third party subscription providers, starting with RHEL subscriptions through Red Hat Subscription Manager (RHSM). Additionally, add support for tagging subscription provider resources, and detect when an instance has more than one Linux subscription and notify the customer.
  • api-change:mediaconnect: AWS Elemental MediaConnect introduces the ability to disable outputs. Disabling an output allows you to keep the output attached to the flow, but stop streaming to the output destination. A disabled output does not incur data transfer costs.

v1.34.142

Compare Source

========

  • api-change:datazone: This release deprecates dataProductItem field from SearchInventoryResultItem, along with some unused DataProduct shapes
  • api-change:fsx: Adds support for FSx for NetApp ONTAP 2nd Generation file systems, and FSx for OpenZFS Single AZ HA file systems.
  • api-change:opensearch: This release adds support for enabling or disabling Natural Language Query Processing feature for Amazon OpenSearch Service domains, and provides visibility into the current state of the setup or tear-down.
  • api-change:sagemaker: This release 1/ enables optimization jobs that allows customers to perform Ahead-of-time compilation and quantization. 2/ allows customers to control access to Amazon Q integration in SageMaker Studio. 3/ enables AdditionalModelDataSources for CreateModel action.

v1.34.141

Compare Source

========

  • api-change:codedeploy: Add v2 smoke tests and smithy smokeTests trait for SDK testing.
  • api-change:devicefarm: Add v2 smoke tests and smithy smokeTests trait for SDK testing.
  • api-change:dms: Add v2 smoke tests and smithy smokeTests trait for SDK testing.
  • api-change:elasticbeanstalk: Add v2 smoke tests and smithy smokeTests trait for SDK testing.
  • api-change:es: Add v2 smoke tests and smithy smokeTests trait for SDK testing.
  • api-change:firehose: Add v2 smoke tests and smithy smokeTests trait for SDK testing.
  • api-change:gamelift: Add v2 smoke tests and smithy smokeTests trait for SDK testing.
  • api-change:qapps: This is a general availability (GA) release of Amazon Q Apps, a capability of Amazon Q Business. Q Apps leverages data sources your company has provided to enable users to build, share, and customize apps within your organization.
  • api-change:route53resolver: Add v2 smoke tests and smithy smokeTests trait for SDK testing.
  • api-change:ses: Add v2 smoke tests and smithy smokeTests trait for SDK testing.

v1.34.140

Compare Source

========

  • api-change:acm: Documentation updates, including fixes for xml formatting, broken links, and ListCertificates description.
  • api-change:ecr: This release for Amazon ECR makes change to bring the SDK into sync with the API.
  • api-change:payment-cryptography-data: Added further restrictions on logging of potentially sensitive inputs and outputs.
  • api-change:qbusiness: Add personalization to Q Applications. Customers can enable or disable personalization when creating or updating a Q application with the personalization configuration.

v1.34.139

Compare Source

========

  • api-change:application-autoscaling: Doc only update for Application Auto Scaling that fixes resource name.
  • api-change:directconnect: This update includes documentation for support of new native 400 GBps ports for Direct Connect.
  • api-change:organizations: Added a new reason under ConstraintViolationException in RegisterDelegatedAdministrator API to prevent registering suspended accounts as delegated administrator of a service.
  • api-change:rekognition: This release adds support for tagging projects and datasets with the CreateProject and CreateDataset APIs.
  • api-change:workspaces: Fix create workspace bundle RootStorage/UserStorage to accept non null values

v1.34.138

Compare Source

========

  • api-change:ec2: Documentation updates for Elastic Compute Cloud (EC2).
  • api-change:fms: Increases Customer API's ManagedServiceData length
  • api-change:s3: Added response overrides to Head Object requests.

v1.34.137

Compare Source

========

  • api-change:apigateway: Add v2 smoke tests and smithy smokeTests trait for SDK testing.
  • api-change:cognito-identity: Add v2 smoke tests and smithy smokeTests trait for SDK testing.
  • api-change:connect: Authentication profiles are Amazon Connect resources (in gated preview) that allow you to configure authentication settings for users in your contact center. This release adds support for new ListAuthenticationProfiles, DescribeAuthenticationProfile and UpdateAuthenticationProfile APIs.
  • api-change:docdb: Add v2 smoke tests and smithy smokeTests trait for SDK testing.
  • api-change:eks: Updates EKS managed node groups to support EC2 Capacity Blocks for ML
  • api-change:payment-cryptography: Added further restrictions on logging of potentially sensitive inputs and outputs.
  • api-change:payment-cryptography-data: Adding support for dynamic keys for encrypt, decrypt, re-encrypt and translate pin functions. With this change, customers can use one-time TR-31 keys directly in dataplane operations without the need to first import them into the service.
  • api-change:stepfunctions: Add v2 smoke tests and smithy smokeTests trait for SDK testing.
  • api-change:swf: Add v2 smoke tests and smithy smokeTests trait for SDK testing.
  • api-change:wafv2: JSON body inspection: Update documentation to clarify that JSON parsing doesn't include full validation.

v1.34.136

Compare Source

========

  • api-change:acm-pca: Added CCPC_LEVEL_1_OR_HIGHER KeyStorageSecurityStandard and SM2 KeyAlgorithm and SM3WITHSM2 SigningAlgorithm for China regions.
  • api-change:cloudhsmv2: Added 3 new APIs to support backup sharing: GetResourcePolicy, PutResourcePolicy, and DeleteResourcePolicy. Added BackupArn to the output of the DescribeBackups API. Added support for BackupArn in the CreateCluster API.
  • api-change:connect: This release supports showing PreferredAgentRouting step via DescribeContact API.
  • api-change:emr: This release provides the support for new allocation strategies i.e. CAPACITY_OPTIMIZED_PRIORITIZED for Spot and PRIORITIZED for On-Demand by taking input of priority value for each instance type for instance fleet clusters.
  • api-change:glue: Added AttributesToGet parameter to Glue GetDatabases, allowing caller to limit output to include only the database name.
  • api-change:kinesisanalyticsv2: Support for Flink 1.19 in Managed Service for Apache Flink
  • api-change:opensearch: This release removes support for enabling or disabling Natural Language Query Processing feature for Amazon OpenSearch Service domains.
  • api-change:pi: Noting that the filter db.sql.db_id isn't available for RDS for SQL Server DB instances.
  • api-change:workspaces: Added support for Red Hat Enterprise Linux 8 on Amazon WorkSpaces Personal.

v1.34.135

Compare Source

========

  • api-change:application-autoscaling: Amazon WorkSpaces customers can now use Application Auto Scaling to automatically scale the number of virtual desktops in a WorkSpaces pool.
  • api-change:chime-sdk-media-pipelines: Added Amazon Transcribe multi language identification to Chime SDK call analytics. Enabling customers sending single stream audio to generate call recordings using Chime SDK call analytics
  • api-change:cloudfront: Doc only update for CloudFront that fixes customer-reported issue
  • api-change:datazone: This release supports the data lineage feature of business data catalog in Amazon DataZone.
  • api-change:elasticache: Add v2 smoke tests and smithy smokeTests trait for SDK testing.
  • api-change:mq: This release makes the EngineVersion field optional for both broker and configuration and uses the latest available version by default. The AutoMinorVersionUpgrade field is also now optional for broker creation and defaults to 'true'.
  • api-change:qconnect: Adds CreateContentAssociation, ListContentAssociations, GetContentAssociation, and DeleteContentAssociation APIs.
  • api-change:quicksight: Adding support for Repeating Sections, Nested Filters
  • api-change:rds: Updates Amazon RDS documentation for TAZ export to S3.
  • api-change:sagemaker: Add capability for Admins to customize Studio experience for the user by showing or hiding Apps and MLTools.
  • api-change:workspaces: Added support for WorkSpaces Pools.
certifi/python-certifi (certifi)

v2024.7.4

Compare Source

gitpython-developers/GitPython (gitpython)

v3.1.43

Compare Source

Particularly Important Changes

These are likely to affect you, please do take a careful look.

Other Changes

New Contributors

Full Changelog: https://github.com/gitpython-developers/GitPython/compare/3.1.42...3.1.43

v3.1.42

Compare Source

What's Changed

New Contributors

Full Changelog: https://github.com/gitpython-developers/GitPython/compare/3.1.41...3.1.42

google/go-containerregistry (google/go-containerregistry)

v0.20.0

Compare Source

What's Changed

New Contributors

Full Changelog: https://github.com/google/go-containerregistry/compare/v0.19.2...v0.20.0

v0.19.2

Compare Source

What's Changed

New Contributors

Full Changelog: https://github.com/google/go-containerregistry/compare/v0.19.1...v0.19.2

pallets/jinja (jinja2)

v3.1.4

Compare Source

Released 2024-05-05

  • The xmlattr filter does not allow keys with / solidus, > greater-than sign, or = equals sign, in addition to disallowing spaces. Regardless of any validation done by Jinja, user input should never be used as keys to this filter, or must be separately validated first. :ghsa:h75v-3vvj-5mfj
python-jsonschema/jsonschema (jsonschema)

v4.23.0

Compare Source

=======

  • Do not reorder dictionaries (schemas, instances) that are printed as part of validation errors.
  • Declare support for Py3.13

v4.22.0

Compare Source

=======

  • Improve best_match (and thereby error messages from jsonschema.validate) in cases where there are multiple sibling errors from applying anyOf / allOf -- i.e. when multiple elements of a JSON array have errors, we now do prefer showing errors from earlier elements rather than simply showing an error for the full array (#​1250).
  • (Micro-)optimize equality checks when comparing for JSON Schema equality by first checking for object identity, as == would.

v4.21.1

Compare Source

=======

  • Slightly speed up the contains keyword by removing some unnecessary validator (re-)creation.

v4.21.0

Compare Source

=======

  • Fix the behavior of enum in the presence of 0 or 1 to properly consider True and False unequal (#​1208).
  • Special case the error message for {min,max}{Items,Length,Properties} when they're checking for emptiness rather than true length.

v4.20.0

Compare Source

=======

  • Properly consider items (and properties) to be evaluated by unevaluatedItems (resp. unevaluatedProperties) when behind a $dynamicRef as specified by the 2020 and 2019 specifications.
  • jsonschema.exceptions.ErrorTree.__setitem__ is now deprecated. More broadly, in general users of jsonschema should never be mutating objects owned by the library.

v4.19.2

Compare Source

=======

  • Fix the error message for additional items when used with heterogeneous arrays.
  • Don't leak the additionalItems keyword into JSON Schema draft 2020-12, where it was replaced by items.

v4.19.1

Compare Source

=======

  • Single label hostnames are now properly considered valid according to the hostname format. This is the behavior specified by the relevant RFC (1123). IDN hostname behavior was already correct.

v4.19.0

Compare Source

=======

  • Importing the Validator protocol directly from the package root is deprecated. Import it from jsonschema.protocols.Validator instead.
  • Automatic retrieval of remote references (which is still deprecated) now properly succeeds even if the retrieved resource does not declare which version of JSON Schema it uses. Such resources are assumed to be 2020-12 schemas. This more closely matches the pre-referencing library behavior.

v4.18.6

Compare Source

=======

  • Set a jsonschema specific user agent when automatically retrieving remote references (which is deprecated).

v4.18.5

Compare Source

=======

  • Declare support for Py3.12

v4.18.4

Compare Source

=======

  • Improve the hashability of wrapped referencing exceptions when they contain hashable data.

v4.18.3

Compare Source

=======

  • Properly preserve applicable_validators in extended validators. Specifically, validators extending early drafts where siblings of $ref were ignored will properly ignore siblings in the extended validator.

v4.18.2

Compare Source

=======

  • Fix an additional regression with the deprecated jsonschema.RefResolver and pointer resolution.

v4.18.1

Compare Source

=======

  • Fix a regression with jsonschema.RefResolver based resolution when used in combination with a custom validation dialect (via jsonschema.validators.create).

v4.18.0

Compare Source

=======

This release majorly rehauls the way in which JSON Schema reference resolution is configured. It does so in a way that should be backwards compatible, preserving old behavior whilst emitting deprecation warnings.

  • jsonschema.RefResolver is now deprecated in favor of the new referencing library <https://github.com/python-jsonschema/referencing/>_. referencing will begin in beta, but already is more compliant than the existing $ref support. This change is a culmination of a meaningful chunk of work to make $ref resolution more flexible and more correct. Backwards compatibility should be preserved for existing code which uses RefResolver, though doing so is again now deprecated, and all such use cases should be doable using the new APIs. Please file issues on the referencing tracker if there is functionality missing from it, or here on the jsonschema issue tracker if you have issues with existing code not functioning the same, or with figuring out how to change it to use referencing. In particular, this referencing change includes a change concerning automatic retrieval of remote references (retrieving http://foo/bar automatically within a schema). This behavior has always been a potential security risk and counter to the recommendations of the JSON Schema specifications; it has survived this long essentially only for backwards compatibility reasons, and now explicitly produces warnings. The referencing library itself will not automatically retrieve references if you interact directly with it, so the deprecated behavior is only triggered if you fully rely on the default $ref resolution behavior and also include remote references in your schema, which will still be retrieved during the deprecation period (after which they will become an error).
  • Support for Python 3.7 has been dropped, as it is nearing end-of-life. This should not be a "visible" change in the sense that requires-python has been updated, so users using 3.7 should still receive v4.17.3 when installing the library.
  • On draft 2019-09, unevaluatedItems now properly does not consider items to be evaluated by an additionalItems schema if items is missing from the schema, as the specification says in this case that additionalItems must be completely ignored.
  • Fix the date format checker on Python 3.11 (when format assertion behavior is enabled), where it was too liberal (#​1076).
  • Speed up validation of unevaluatedProperties (#​1075).

Deprecations

  • jsonschema.RefResolver -- see above for details on the replacement
  • jsonschema.RefResolutionError -- see above for details on the replacement
  • relying on automatic resolution of remote references -- see above for details on the replacement
  • importing jsonschema.ErrorTree -- instead import it via jsonschema.exceptions.ErrorTree
  • importing jsonschema.FormatError -- instead import it via jsonschema.exceptions.FormatError
python-gitlab/python-gitlab (python-gitlab)

v4.7.0

Compare Source

Chore
  • chore(deps): update all non-major dependencies (88de2f0)

  • chore(deps): update all non-major dependencies (a510f43)

  • chore(deps): update gitlab/gitlab-ee docker tag to v17.0.2-ee.0 (51779c6)

  • chore(deps): update python-semantic-release/upload-to-gh-release digest to 6b7558f (fd0f0b0)

  • chore(deps): update all non-major dependencies (d4fdf90)

  • chore(deps): update dependency types-setuptools to v70 (7767514)

  • chore(deps): update gitlab/gitlab-ee docker tag to v17.0.1-ee.0 (df0ff4c)

  • chore(deps): update python-semantic-release/upload-to-gh-release digest to 477a404 (02a551d)

  • chore(deps): update all non-major dependencies (d5de288)

  • chore: add a help message for gitlab project-key enable

Add some help text for gitlab project-key enable. This both adds help text and shows how to use the new help feature.

Example:

$ gitlab project-key --help usage: gitlab project-key [-h] {list,get,create,update,delete,enable} ...

options: -h, --help show this help message and exit

action: {list,get,create,update,delete,enable} Action to execute on the GitLab resource. list List the GitLab resources get Get a GitLab resource create Create a GitLab resource update Update a GitLab resource delete Delete a GitLab resource enable Enable a deploy key for the project (1291dbb)

  • chore: sort CLI behavior-related args to remove

Sort the list of CLI behavior-related args that are to be removed. (9b4b0ef)

Feature
  • feat(api): add support for latest pipeline (635f5a7)

  • feat: add --no-mask-credentials CLI argument

This gives the ability to not mask credentials when using the --debug argument. (18aa1fc)

Fix
  • fix: add ability to add help to custom_actions

Now when registering a custom_action can add help text if desired.

Also delete the VerticalHelpFormatter as no longer needed. When the help value is set to None or some other value, the actions will get printed vertically. Before when the help value was not set the actions would all get put onto one line. (9acd2d2)

tidelift/sbom-to-api-tools (tidelift/sbom-to-api-tools)

v0.9.1

Compare Source

Changelog

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

Rebasing: Whenever MR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This MR will be recreated if closed unmerged. Get config help if that's undesired.


  • If you want to rebase/retry this MR, check this box

This MR has been generated by Renovate Bot.

Merge request reports