Content-Transfer-Encoding: 7bit
Content-Type: multipart/mixed; boundary="_----------=_1541870857239250"
MIME-Version: 1.0
Date: Sat, 10 Nov 2018 17:27:37 +0000
From: "Klaus Klein" <kleink@netbsd.org>
Subject: CVS commit: pkgsrc/security/py-itsdangerous
To: pkgsrc-changes@NetBSD.org
Reply-To: kleink@netbsd.org
Message-Id: <20181110172737.10230FB1F@cvs.NetBSD.org>
Sender: pkgsrc-changes-owner@NetBSD.org
Precedence: bulk

This is a multi-part message in MIME format.

--_----------=_1541870857239250
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
Content-Type: text/plain; charset="US-ASCII"

Module Name:	pkgsrc
Committed By:	kleink
Date:		Sat Nov 10 17:27:36 UTC 2018

Modified Files:
	pkgsrc/security/py-itsdangerous: Makefile PLIST distinfo

Log Message:
Update py-itsdangerous to 1.1.0.

Version 1.1.0
-------------

Released 2018-10-26

-   Change default signing algorithm back to SHA-1. (`#113`_)
-   Added a default SHA-512 fallback for users who used the yanked 1.0.0
    release which defaulted to SHA-512. (`#114`_)
-   Add support for fallback algorithms during deserialization to
    support changing the default in the future without breaking existing
    signatures. (`#113`_)
-   Changed capitalization of packages back to lowercase as the change
    in capitalization broke some tooling. (`#113`_)

.. _#113: https://github.com/pallets/itsdangerous/pull/113
.. _#114: https://github.com/pallets/itsdangerous/pull/114

Version 1.0.0
-------------

Released 2018-10-18

YANKED

*Note*: This release was yanked from PyPI because it changed the default
algorithm to SHA-512. This decision was reverted in 1.1.0 and it remains
at SHA1.

-   Drop support for Python 2.6 and 3.3.
-   Refactor code from a single module to a package. Any object in the
    API docs is still importable from the top-level ``itsdangerous``
    name, but other imports will need to be changed. A future release
    will remove many of these compatibility imports. (`#107`_)
-   Optimize how timestamps are serialized and deserialized. (`#13`_)
-   ``base64_decode`` raises ``BadData`` when it is passed invalid data.
    (`#27`_)
-   Ensure value is bytes when signing to avoid a ``TypeError`` on
    Python 3. (`#29`_)
-   Add a ``serializer_kwargs`` argument to ``Serializer``, which is
    passed to ``dumps`` during ``dump_payload``. (`#36`_)
-   More compact JSON dumps for unicode strings. (`#38`_)
-   Use the full timestamp rather than an offset, allowing dates before
    2011. (`#46`_)
-   Detect a ``sep`` character that may show up in the signature itself
    and raise a ``ValueError``. (`#62`_)
-   Use a consistent signature for keyword arguments for
    ``Serializer.load_payload`` in subclasses. (`#74`_, `#75`_)
-   Change default intermediate hash from SHA-1 to SHA-512. (`#80`_)
-   Convert JWS exp header to an int when loading. (`#99`_)

.. _#13: https://github.com/pallets/itsdangerous/pull/13
.. _#27: https://github.com/pallets/itsdangerous/pull/27
.. _#29: https://github.com/pallets/itsdangerous/issues/29
.. _#36: https://github.com/pallets/itsdangerous/pull/36
.. _#38: https://github.com/pallets/itsdangerous/issues/38
.. _#46: https://github.com/pallets/itsdangerous/issues/46
.. _#62: https://github.com/pallets/itsdangerous/issues/62
.. _#74: https://github.com/pallets/itsdangerous/issues/74
.. _#75: https://github.com/pallets/itsdangerous/pull/75
.. _#80: https://github.com/pallets/itsdangerous/pull/80
.. _#99: https://github.com/pallets/itsdangerous/pull/99
.. _#107: https://github.com/pallets/itsdangerous/pull/107


To generate a diff of this commit:
cvs rdiff -u -r1.7 -r1.8 pkgsrc/security/py-itsdangerous/Makefile
cvs rdiff -u -r1.1 -r1.2 pkgsrc/security/py-itsdangerous/PLIST
cvs rdiff -u -r1.5 -r1.6 pkgsrc/security/py-itsdangerous/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.


--_----------=_1541870857239250
Content-Disposition: inline
Content-Length: 3646
Content-Transfer-Encoding: binary
Content-Type: text/x-diff; charset=us-ascii

Modified files:

Index: pkgsrc/security/py-itsdangerous/Makefile
diff -u pkgsrc/security/py-itsdangerous/Makefile:1.7 pkgsrc/security/py-itsdangerous/Makefile:1.8
--- pkgsrc/security/py-itsdangerous/Makefile:1.7	Wed Jun  8 17:43:38 2016
+++ pkgsrc/security/py-itsdangerous/Makefile	Sat Nov 10 17:27:36 2018
@@ -1,6 +1,6 @@
-# $NetBSD: Makefile,v 1.7 2016/06/08 17:43:38 wiz Exp $
+# $NetBSD: Makefile,v 1.8 2018/11/10 17:27:36 kleink Exp $
 
-DISTNAME=	itsdangerous-0.24
+DISTNAME=	itsdangerous-1.1.0
 PKGNAME=	${PYPKGPREFIX}-${DISTNAME}
 CATEGORIES=	security python
 MASTER_SITES=	${MASTER_SITE_PYPI:=i/itsdangerous/}

Index: pkgsrc/security/py-itsdangerous/PLIST
diff -u pkgsrc/security/py-itsdangerous/PLIST:1.1 pkgsrc/security/py-itsdangerous/PLIST:1.2
--- pkgsrc/security/py-itsdangerous/PLIST:1.1	Fri Jun 14 09:41:01 2013
+++ pkgsrc/security/py-itsdangerous/PLIST	Sat Nov 10 17:27:36 2018
@@ -1,9 +1,35 @@
-@comment $NetBSD: PLIST,v 1.1 2013/06/14 09:41:01 kleink Exp $
+@comment $NetBSD: PLIST,v 1.2 2018/11/10 17:27:36 kleink Exp $
 ${PYSITELIB}/${EGG_INFODIR}/PKG-INFO
 ${PYSITELIB}/${EGG_INFODIR}/SOURCES.txt
 ${PYSITELIB}/${EGG_INFODIR}/dependency_links.txt
-${PYSITELIB}/${EGG_INFODIR}/not-zip-safe
 ${PYSITELIB}/${EGG_INFODIR}/top_level.txt
-${PYSITELIB}/itsdangerous.py
-${PYSITELIB}/itsdangerous.pyc
-${PYSITELIB}/itsdangerous.pyo
+${PYSITELIB}/itsdangerous/__init__.py
+${PYSITELIB}/itsdangerous/__init__.pyo
+${PYSITELIB}/itsdangerous/__init__.pyc
+${PYSITELIB}/itsdangerous/_compat.pyo
+${PYSITELIB}/itsdangerous/_compat.pyc
+${PYSITELIB}/itsdangerous/_json.pyo
+${PYSITELIB}/itsdangerous/_json.pyc
+${PYSITELIB}/itsdangerous/encoding.pyo
+${PYSITELIB}/itsdangerous/encoding.pyc
+${PYSITELIB}/itsdangerous/exc.pyo
+${PYSITELIB}/itsdangerous/exc.pyc
+${PYSITELIB}/itsdangerous/jws.pyo
+${PYSITELIB}/itsdangerous/jws.pyc
+${PYSITELIB}/itsdangerous/serializer.pyo
+${PYSITELIB}/itsdangerous/serializer.pyc
+${PYSITELIB}/itsdangerous/signer.pyo
+${PYSITELIB}/itsdangerous/signer.pyc
+${PYSITELIB}/itsdangerous/timed.pyo
+${PYSITELIB}/itsdangerous/timed.pyc
+${PYSITELIB}/itsdangerous/url_safe.pyo
+${PYSITELIB}/itsdangerous/url_safe.pyc
+${PYSITELIB}/itsdangerous/_compat.py
+${PYSITELIB}/itsdangerous/_json.py
+${PYSITELIB}/itsdangerous/encoding.py
+${PYSITELIB}/itsdangerous/exc.py
+${PYSITELIB}/itsdangerous/jws.py
+${PYSITELIB}/itsdangerous/serializer.py
+${PYSITELIB}/itsdangerous/signer.py
+${PYSITELIB}/itsdangerous/timed.py
+${PYSITELIB}/itsdangerous/url_safe.py

Index: pkgsrc/security/py-itsdangerous/distinfo
diff -u pkgsrc/security/py-itsdangerous/distinfo:1.5 pkgsrc/security/py-itsdangerous/distinfo:1.6
--- pkgsrc/security/py-itsdangerous/distinfo:1.5	Wed Nov  4 01:18:04 2015
+++ pkgsrc/security/py-itsdangerous/distinfo	Sat Nov 10 17:27:36 2018
@@ -1,6 +1,6 @@
-$NetBSD: distinfo,v 1.5 2015/11/04 01:18:04 agc Exp $
+$NetBSD: distinfo,v 1.6 2018/11/10 17:27:36 kleink Exp $
 
-SHA1 (itsdangerous-0.24.tar.gz) = 0a6ae9c20cd72e89d75314ebc7b0f390f93e6a0d
-RMD160 (itsdangerous-0.24.tar.gz) = 870c1cef9d39c74f2d376be07b50d0e11f343018
-SHA512 (itsdangerous-0.24.tar.gz) = 2863b6e5fda178db59bd214c6d24d04422c1021bb41bf11598aba1cbc43053aff3bb1e0539940b5769de04b68c03e8bd01d728dcbfc4bd0ba05867688574a297
-Size (itsdangerous-0.24.tar.gz) = 46541 bytes
+SHA1 (itsdangerous-1.1.0.tar.gz) = b79fef5caacdd247f7def3fe59e6def34bc86905
+RMD160 (itsdangerous-1.1.0.tar.gz) = 3a1b71343357fd9cef28039753c78f0bf24d91ff
+SHA512 (itsdangerous-1.1.0.tar.gz) = 61bab3fce5f87a3b5fc8fad61e735a63df6aa039416ee3494e1c99a2a1162b4fb72793bc5dc949de0985724c40121810b159513606c4c3976a7666dba3a1b93d
+Size (itsdangerous-1.1.0.tar.gz) = 53219 bytes


--_----------=_1541870857239250--