Sun Nov 5 10:54:16 2023 UTC ()
py-werkzeug*: update to 3.0.1

Version 3.0.1
-------------

Released 2023-10-24

-   Fix slow multipart parsing for large parts potentially enabling DoS
    attacks. :cwe:`CWE-407`

Version 3.0.0
-------------

Released 2023-09-30

-   Remove previously deprecated code. :pr:`2768`
-   Deprecate the ``__version__`` attribute. Use feature detection, or
    ``importlib.metadata.version("werkzeug")``, instead. :issue:`2770`
-   ``generate_password_hash`` uses scrypt by default. :issue:`2769`
-   Add the ``"werkzeug.profiler"`` item to the  WSGI ``environ`` dictionary
    passed to `ProfilerMiddleware`'s `filename_format` function. It contains
    the ``elapsed`` and ``time`` values for the profiled request. :issue:`2775`
-   Explicitly marked the PathConverter as non path isolating. :pr:`2784`


(wiz)
diff -r1.27 -r1.28 pkgsrc/www/py-werkzeug/Makefile
diff -r1.36 -r1.37 pkgsrc/www/py-werkzeug/Makefile.common
diff -r1.36 -r1.37 pkgsrc/www/py-werkzeug/distinfo
cvs diff -r1.27 -r1.28 pkgsrc/www/py-werkzeug/Makefile (expand / switch to unified diff)

--- pkgsrc/www/py-werkzeug/Makefile 2023/10/28 19:57:26 1.27
+++ pkgsrc/www/py-werkzeug/Makefile 2023/11/05 10:54:16 1.28
@@ -1,17 +1,16 @@ @@ -1,17 +1,16 @@
1# $NetBSD: Makefile,v 1.27 2023/10/28 19:57:26 wiz Exp $ 1# $NetBSD: Makefile,v 1.28 2023/11/05 10:54:16 wiz Exp $
2 2
3PKGNAME= ${PYPKGPREFIX}-${DISTNAME:tl} 3PKGNAME= ${PYPKGPREFIX}-${DISTNAME}
4PKGREVISION= 1 
5 4
6COMMENT= Python WSGI Utility Library 5COMMENT= Python WSGI Utility Library
7 6
8PYTHON_VERSIONS_INCOMPATIBLE= 27 7PYTHON_VERSIONS_INCOMPATIBLE= 27
9 8
10TOOL_DEPENDS+= ${PYPKGPREFIX}-flit_core-[0-9]*:../../devel/py-flit_core 9TOOL_DEPENDS+= ${PYPKGPREFIX}-flit_core-[0-9]*:../../devel/py-flit_core
11DEPENDS+= ${PYPKGPREFIX}-markupsafe>=2.1.1:../../textproc/py-markupsafe 10DEPENDS+= ${PYPKGPREFIX}-markupsafe>=2.1.1:../../textproc/py-markupsafe
12# optional 11# optional
13#DEPENDS+= ${PYPKGPREFIX}-cryptography-[0-9]*:../../security/py-cryptography 12#DEPENDS+= ${PYPKGPREFIX}-cryptography-[0-9]*:../../security/py-cryptography
14#DEPENDS+= ${PYPKGPREFIX}-greenlet-[0-9]*:../../devel/py-greenlet 13#DEPENDS+= ${PYPKGPREFIX}-greenlet-[0-9]*:../../devel/py-greenlet
15# optional, but required for tests 14# optional, but required for tests
16TEST_DEPENDS+= ${PYPKGPREFIX}-watchdog-[0-9]*:../../sysutils/py-watchdog 15TEST_DEPENDS+= ${PYPKGPREFIX}-watchdog-[0-9]*:../../sysutils/py-watchdog
17TEST_DEPENDS+= ${PYPKGPREFIX}-ephemeral_port_reserve-[0-9]*:../../net/py-ephemeral_port_reserve 16TEST_DEPENDS+= ${PYPKGPREFIX}-ephemeral_port_reserve-[0-9]*:../../net/py-ephemeral_port_reserve
@@ -22,22 +21,16 @@ TEST_DEPENDS+= ${PYPKGPREFIX}-test-xproc @@ -22,22 +21,16 @@ TEST_DEPENDS+= ${PYPKGPREFIX}-test-xproc
22EGDIR= share/examples/${PKGBASE} 21EGDIR= share/examples/${PKGBASE}
23PLIST_SUBST+= EGDIR=${EGDIR} 22PLIST_SUBST+= EGDIR=${EGDIR}
24INSTALLATION_DIRS+= ${EGDIR} 23INSTALLATION_DIRS+= ${EGDIR}
25PRINT_PLIST_AWK+= { gsub(/${EGDIR:S,/,\\/,g}/, "$${EGDIR}") } 24PRINT_PLIST_AWK+= { gsub(/${EGDIR:S,/,\\/,g}/, "$${EGDIR}") }
26 25
27USE_TOOLS+= pax 26USE_TOOLS+= pax
28 27
29post-install: 28post-install:
30 ${CHMOD} ${SHAREMODE} ${DESTDIR}${PREFIX}/${PYSITELIB}/werkzeug/debug/shared/*.png 29 ${CHMOD} ${SHAREMODE} ${DESTDIR}${PREFIX}/${PYSITELIB}/werkzeug/debug/shared/*.png
31 cd ${WRKSRC}/examples && ${PAX} -rwppm . ${DESTDIR}${PREFIX}/${EGDIR} 30 cd ${WRKSRC}/examples && ${PAX} -rwppm . ${DESTDIR}${PREFIX}/${EGDIR}
32 ${CHMOD} ${SHAREMODE} ${DESTDIR}${PREFIX}/${EGDIR}/*.py 31 ${CHMOD} ${SHAREMODE} ${DESTDIR}${PREFIX}/${EGDIR}/*.py
33 ${CHMOD} ${SHAREMODE} ${DESTDIR}${PREFIX}/${EGDIR}/cupoftee/shared/*.png 32 ${CHMOD} ${SHAREMODE} ${DESTDIR}${PREFIX}/${EGDIR}/cupoftee/shared/*.png
34 33
35# as of 2.3.3 
36# 17 failed, 854 passed, 1 skipped, 8 errors 
37TEST_ENV+= PYTHONPATH=${WRKSRC}/build/lib 
38do-test: 
39 cd ${WRKSRC} && ${SETENV} ${TEST_ENV} pytest-${PYVERSSUFFIX} 
40 
41.include "../../www/py-werkzeug/Makefile.common" 34.include "../../www/py-werkzeug/Makefile.common"
42.include "../../lang/python/wheel.mk" 35.include "../../lang/python/wheel.mk"
43.include "../../mk/bsd.pkg.mk" 36.include "../../mk/bsd.pkg.mk"
cvs diff -r1.36 -r1.37 pkgsrc/www/py-werkzeug/Makefile.common (expand / switch to unified diff)

--- pkgsrc/www/py-werkzeug/Makefile.common 2023/08/22 07:03:53 1.36
+++ pkgsrc/www/py-werkzeug/Makefile.common 2023/11/05 10:54:16 1.37
@@ -1,17 +1,17 @@ @@ -1,17 +1,17 @@
1# $NetBSD: Makefile.common,v 1.36 2023/08/22 07:03:53 adam Exp $ 1# $NetBSD: Makefile.common,v 1.37 2023/11/05 10:54:16 wiz Exp $
2# 2#
3# used by www/py-werkzeug/Makefile 3# used by www/py-werkzeug/Makefile
4# used by www/py-werkzeug-docs/Makefile 4# used by www/py-werkzeug-docs/Makefile
5 5
6DISTNAME= werkzeug-2.3.7 6DISTNAME= werkzeug-3.0.1
7CATEGORIES= www python 7CATEGORIES= www python
8MASTER_SITES= ${MASTER_SITE_PYPI:=w/werkzeug/} 8MASTER_SITES= ${MASTER_SITE_PYPI:=w/werkzeug/}
9 9
10DISTINFO_FILE= ${.CURDIR}/../../www/py-werkzeug/distinfo 10DISTINFO_FILE= ${.CURDIR}/../../www/py-werkzeug/distinfo
11#PATCHDIR= ${.CURDIR}/../../www/py-werkzeug/patches 11#PATCHDIR= ${.CURDIR}/../../www/py-werkzeug/patches
12 12
13MAINTAINER?= kleink@NetBSD.org 13MAINTAINER?= kleink@NetBSD.org
14HOMEPAGE= https://werkzeug.palletsprojects.com/ 14HOMEPAGE= https://werkzeug.palletsprojects.com/
15LICENSE= modified-bsd 15LICENSE= modified-bsd
16 16
17USE_LANGUAGES= # none 17USE_LANGUAGES= # none
cvs diff -r1.36 -r1.37 pkgsrc/www/py-werkzeug/distinfo (expand / switch to unified diff)

--- pkgsrc/www/py-werkzeug/distinfo 2023/08/22 07:03:53 1.36
+++ pkgsrc/www/py-werkzeug/distinfo 2023/11/05 10:54:16 1.37
@@ -1,5 +1,5 @@ @@ -1,5 +1,5 @@
1$NetBSD: distinfo,v 1.36 2023/08/22 07:03:53 adam Exp $ 1$NetBSD: distinfo,v 1.37 2023/11/05 10:54:16 wiz Exp $
2 2
3BLAKE2s (werkzeug-2.3.7.tar.gz) = 6648f52e6bb8221efbe48d261109a3312029150d55e4f2e68b5a0025b9a88403 3BLAKE2s (werkzeug-3.0.1.tar.gz) = cacb81873d226d87dc35c30468965da20750a07e42438f527d15cc983fc2f571
4SHA512 (werkzeug-2.3.7.tar.gz) = f128f22ef5bc30d9b61f8b64c69e7013af618359e116823378222772eab6b40598a910c4c683872657e7cd75f5f63e6125fb33cef9aee003dea728ccbccf270f 4SHA512 (werkzeug-3.0.1.tar.gz) = 83bacda231cd714cf111ebcaf78b47f7e400cefbaf4a450bde99b630136c2976a2e7629a3a34140493c5f54c2ea1c034c673085dd7d1fd7ce8f1da49d8576bb8
5Size (werkzeug-2.3.7.tar.gz) = 819625 bytes 5Size (werkzeug-3.0.1.tar.gz) = 801436 bytes