Update all dependencies
This MR contains the following updates:
Package | Type | Update | Change |
---|---|---|---|
freezegun | major |
==0.3.15 -> ==1.2.1
|
|
gevent | major |
==20.9.0 -> ==21.12.0
|
|
gevent | major |
==1.5.0 -> ==21.12.0
|
|
greenlet | major |
==0.4.17 -> ==1.1.2
|
|
lxml (source, changelog) | minor |
==4.6.1 -> ==4.8.0
|
|
lxml (source, changelog) | minor |
==4.3.2 -> ==4.8.0
|
|
psycopg2 (source, changelog) | minor |
==2.8.6 -> ==2.9.3
|
|
psycopg2 (source, changelog) | minor |
==2.7.7 -> ==2.9.3
|
|
python-ldap | minor |
==3.2.0 -> ==3.4.0
|
|
soupsieve | ironbank-pypi | patch |
2.3.2 -> 2.3.2.post1
|
vobject | ironbank-pypi | patch |
0.9.6 -> 0.9.6.1
|
wkhtmltopdf/wkhtmltopdf | ironbank-github | patch |
0.12.5 -> 0.12.6
|
xlrd | major |
==1.2.0 -> ==2.0.1
|
Release Notes
spulec/freezegun
v1.2.1
-
Added missing typeshed types from distribution
-
Pass all arguments on recursive freeze_time calls
v1.2.0
-
Add support for
time.perf_counter
(and…_ns
) -
Added typeshed types
-
Dropped support for python 3.5
v1.1.0
-
Add support for
time.monotonic
(and…_ns
) -
Allow to configure default ignore list, and also to just extend the default
-
Fixed when accessing from thread after stop()
v1.0.0
- Dropped Py2 support
- Added as_kwarg argument in order to have the frozen time object passed with the name provided in as_kwarg argument
lxml/lxml
v4.8.0
==================
Features added
-
GH#337: Path-like objects are now supported throughout the API instead of just strings. Patch by Henning Janssen.
-
The
ElementMaker
now supportsQName
values as tags, which always override the default namespace of the factory.
Bugs fixed
- GH#338: In lxml.objectify, the XSI float annotation "nan" and "inf" were spelled in lower case, whereas XML Schema datatypes define them as "NaN" and "INF" respectively. Patch by Tobias Deiminger.
Other changes
- Built with Cython 0.29.28.
v4.7.1
==================
Features added
- Chunked Unicode string parsing via
parser.feed()
now encodes the input data to the native UTF-8 encoding directly, instead of going throughPy_UNICODE
/wchar_t
encoding first, which previously required duplicate recoding in most cases.
Bugs fixed
-
The standard namespace prefixes were mishandled during "C14N2" serialisation on Python 3. See https://mail.python.org/archives/list/lxml@python.org/thread/6ZFBHFOVHOS5GFDOAMPCT6HM5HZPWQ4Q/
-
lxml.objectify
previously accepted non-XML numbers with underscores (like "1_000") as integers or float values in Python 3.6 and later. It now adheres to the number format of the XML spec again. -
LP#1939031: Static wheels of lxml now contain the header files of zlib and libiconv (in addition to the already provided headers of libxml2/libxslt/libexslt).
Other changes
- Wheels include libxml2 2.9.12+ and libxslt 1.1.34 (also on Windows).
v4.7.0
==================
- Release retracted due to missing files in lxml/includes/.
v4.6.5
==================
Bugs fixed
-
A vulnerability (GHSL-2021-1038) in the HTML cleaner allowed sneaking script content through SVG images (CVE-2021-43818).
-
A vulnerability (GHSL-2021-1037) in the HTML cleaner allowed sneaking script content through CSS imports and other crafted constructs (CVE-2021-43818).
v4.6.4
==================
Features added
-
GH#317: A new property
system_url
was added to DTD entities. Patch by Thirdegree. -
GH#314: The
STATIC_*
variables insetup.py
can now be passed via env vars. Patch by Isaac Jurado.
v4.6.3
==================
Bugs fixed
- A vulnerability (CVE-2021-28957) was discovered in the HTML Cleaner by Kevin Chung,
which allowed JavaScript to pass through. The cleaner now removes the HTML5
formaction
attribute.
v4.6.2
==================
Bugs fixed
- A vulnerability (CVE-2020-27783) was discovered in the HTML Cleaner by Yaniv Nizry, which allowed JavaScript to pass through. The cleaner now removes more sneaky "style" content.
facelessuser/soupsieve
v2.3.2.post1
2.3.2.post1
- FIX: Documentation for installation from source is outdated.
wkhtmltopdf/wkhtmltopdf
v0.12.6
- #2124: [qt] avoid "QFont::setPixelSize: Pixel size <= 0" (qt#42)
- #3953: fix TOC and other special pages not present in output PDF (#3962)
- #3242: [qt] fix regression from #2353 in setLineDash for Canvas (qt#35)
- #4536: BREAKING CHANGE: block local filesystem access by default
- #4612: allow --encoding to work for non-patched builds
- [qt] add support for ppc64le, thanks to @notorca (qt#40)
- [qt] add support for 64-bit ARM, thanks to @soleson (qt#45, qt#46)
Configuration
-
If you want to rebase/retry this MR, click this checkbox.
This MR has been generated by Renovate Bot.