aboutsummaryrefslogtreecommitdiff
path: root/lang
Commit message (Collapse)AuthorAge
* python[3]-simplejson: drop tests from simplejson packageAlexandru Ardelean2019-10-08
| | | | | | These tests take-up a bit of space. And they aren't typically needed. Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
* python,python3: Fix CVE-2019-16056, CVE-2019-16935Jeffery To2019-10-04
| | | | | | | | | | | | | | | These patches address issues: CVE-2019-16056: email.utils.parseaddr mistakenly parse an email CVE-2019-16935: A reflected XSS in python/Lib/DocXMLRPCServer.py (for Python 2.7) CVE-2019-16935 was fixed for python3 in #10109 Links to Python issues: https://bugs.python.org/issue34155 https://bugs.python.org/issue38243 Signed-off-by: Jeffery To <jeffery.to@gmail.com>
* python-simplejson: Fix python[3]-decimal dependencyJeffery To2019-10-04
| | | | | | | | | | simplejson depends on the decimal module[1][2]. This adds python[3]-decimal to the package's DEPENDS. [1]: https://github.com/simplejson/simplejson/blob/v3.16.0/simplejson/__init__.py#L110 [2]: https://github.com/simplejson/simplejson/blob/v3.16.0/simplejson/encoder.py#L7 Signed-off-by: Jeffery To <jeffery.to@gmail.com>
* Merge pull request #10126 from stefaang/php7-mod-gdMichael Heimpold2019-10-03
|\ | | | | | | php7-mod-gd: enable libwebp php7: bump to 7.2.23
| * php7: bump to 7.2.23Stefaan Ghysels2019-10-03
| | | | | | | | Signed-off-by: Stefaan Ghysels <stefaang@gmail.com>
| * php7-mod-gd: enable libwebpStefaan Ghysels2019-10-03
| | | | | | | | Signed-off-by: Stefaan Ghysels <stefaang@gmail.com>
* | vala: Update to 0.46.2Rosen Penev2019-10-02
| | | | | | | | | | | | Removed inactive maintainer. Signed-off-by: Rosen Penev <rosenp@gmail.com>
* | Merge pull request #10121 from BKPepe/werkzeugRosen Penev2019-10-02
|\ \ | | | | | | Werkzeug: Update to version 0.16.0
| * | Werkzeug: Update to version 0.16.0Josef Schlehofer2019-10-01
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | - Remove PKG_BUILD_DEPENDS as it is no longer necessary. - The Python3 is already included in DEPENDS. - Remove PKG_BUILD_DIR and PKG_UNPACK was for dual Python version. - Change TITLE and description - Add source package Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
* | | Merge pull request #10122 from BKPepe/flaskRosen Penev2019-10-02
|\ \ \ | | | | | | | | Flask: Update to version 1.1.1
| * | | Flask: Update to version 1.1.1Josef Schlehofer2019-10-01
| |/ / | | | | | | | | | | | | | | | | | | - Change TITLE and URL to better one - Add source package Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
* / / python3-maxminddb: Update to version 1.5.1Josef Schlehofer2019-10-01
|/ / | | | | | | Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
* | python-pyrsistent: Update to version 0.15.4Josef Schlehofer2019-09-30
| | | | | | | | Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
* | python3: backport three security patchesJosef Schlehofer2019-09-29
| | | | | | | | | | | | Fixes: CVE-2019-16935 Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
* | golang: Update to version 1.13.1Josef Schlehofer2019-09-29
| | | | | | | | | | | | Fixes CVE-2019-16276 Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
* | Merge pull request #10083 from BKPepe/sentrysdkRosen Penev2019-09-27
|\ \ | | | | | | python-sentry-sdk: Update to version 0.12.2
| * | python-sentry-sdk: Update to version 0.12.2Josef Schlehofer2019-09-26
| | | | | | | | | | | | Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
* | | Merge pull request #10092 from ysc3839/pycryptodomeRosen Penev2019-09-27
|\ \ \ | | | | | | | | python-cryptodome: update to 3.9.0
| * | | python-cryptodome: update to 3.9.0Richard Yu2019-09-27
| | |/ | |/| | | | | | | Signed-off-by: Richard Yu <yurichard3839@gmail.com>
* | | jamvm: Don't compile on ARM64Rosen Penev2019-09-27
| | | | | | | | | | | | | | | | | | Not supported. Signed-off-by: Rosen Penev <rosenp@gmail.com>
* | | perl-www-curl: curl 7.66.0 compatibilityAlexander Ryzhov2019-09-27
|/ / | | | | | | Signed-off-by: Alexander Ryzhov <github@ryzhov-al.ru>
* / python-urllib3: Update to version 1.25.6Josef Schlehofer2019-09-26
|/ | | | Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
* treewide: add PKG_CPE_ID for cvescannerJan Pavlinec2019-09-24
| | | | Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
* gunicorn: convert to Python packaging format + add Python3 variantAlexandru Ardelean2019-09-20
| | | | | | | | | | | | | | | | | | | | | | | | | And splitting the gunicorn[3] binary/executable away from the python[3]-gunicorn libraries. This was inspired from Debian packaging. The gunicorn[3] binaries require the new `python[3]-pkg-resources` libraries to run, which add ~1.1 MB on the [ram]disk when uncompressed. For the Python2 variant, the `_gaiohttp.py` is dropped as it fails to compile, so it would likely be unusable anyway: ``` File "/usr/lib/python2.7/site-packages/gunicorn/workers/_gaiohttp.py", line 84 yield from self.wsgi.close() ^ SyntaxError: invalid syntax ``` People around the web recommend this as well: https://stackoverflow.com/questions/25611140/syntax-error-installing-gunicorn https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=803170 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=803202 Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
* python,python3: add Py[3]Shebang functions & move outside of scriptAlexandru Ardelean2019-09-20
| | | | | | | | | | | | | | | | Some packages just install some Python binaries, that may need their shebang fixed. This change adds some utilities to help with that and try to centralize the sed rules a bit. It also removes the logic from the `python-package-install.sh` into the `python-package[3].mk` files. This does 2 things: 1. It minimizes the need for the shell script to know the Python version 2/3 2. Makes the logic re-usable in packages; especially if the install rules differ a bit Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
* python,python3: split python[3]-pkg-resources from setuptoolsAlexandru Ardelean2019-09-20
| | | | | | | | | | This package is required by other packages to run some binaries via `load_entry_point`. So, this splits this package away from setuptools. setuptools is pretty big, akd pkg-resources is also big, but not as big. Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
* python: change condition check for legacy opt for Python3Alexandru Ardelean2019-09-20
| | | | | | | | As I remember this worked. But since `set -e` is set, I am a bit paranoid about it. In the sense that it may fail if `ver` != 3. Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
* python-certifi: bump to 2019.9.11Eneas U de Queiroz2019-09-19
| | | | Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
* django: Update to 1.11.24Rosen Penev2019-09-18
| | | | | | | | | | | | | | | Fixes a whole bunchs of CVEs: CVE-2019-3498 CVE-2019-6975 CVE-2019-12308 CVE-2019-12781 CVE-2019-14232 CVE-2019-14233 CVE-2019-14234 CVE-2019-14235 Signed-off-by: Rosen Penev <rosenp@gmail.com>
* treewide: add PKG_CPE_ID for better cvescanner coverageJan Pavlinec2019-09-17
| | | | Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
* python-schema: update to version 0.7.1Karel Kočí2019-09-16
| | | | Signed-off-by: Karel Kočí <karel.koci@nic.cz>
* golang: Use new -trimpath option when compiling Go packagesJeffery To2019-09-13
| | | | | | | | | | | | | | Go 1.13 added a new -trimpath option to the "go build" command[1] that removes system paths from compiled executables. This replaces the previous -trimpath flags. There are still system paths in the compiled executable (for crti.o and crtn.o, when cross-compiling); these appear to be stripped during the packaging process. [1]: https://golang.org/doc/go1.13#trimpath Signed-off-by: Jeffery To <jeffery.to@gmail.com>
* Merge pull request #9962 from mhei/pecl-mcrypt-licenseRosen Penev2019-09-12
|\ | | | | php7-pecl-mcrypt: update PKG_LICENSE
| * php7-pecl-mcrypt: update PKG_LICENSEMichael Heimpold2019-09-10
| | | | | | | | | | | | Update license tag to latest SPDX format. Signed-off-by: Michael Heimpold <mhei@heimpold.de>
* | Merge pull request #9961 from mhei/pecl-krb5-licenseRosen Penev2019-09-12
|\ \ | | | | | | php7-pecl-krb5: fix PKG_LICENSE tag
| * | php7-pecl-krb5: fix PKG_LICENSE tagMichael Heimpold2019-09-10
| |/ | | | | | | | | | | | | According to the included license file in the package, the license is MIT not BSD, so fix it. Signed-off-by: Michael Heimpold <mhei@heimpold.de>
* | Merge pull request #9924 from neheb/valRosen Penev2019-09-12
|\ \ | | | | | | vala: Update to 0.46.0
| * | vala: Update to 0.46.0Rosen Penev2019-09-05
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Switched to using the configure script instead of using make directly. Added HOST__BUILD_PARALLEL for faster compilation. Removed target build. It's completely unused. Signed-off-by: Rosen Penev <rosenp@gmail.com>
* | | Merge pull request #9705 from commodo/python-mysqlclientRosen Penev2019-09-12
|\ \ \ | |_|/ |/| | python-mysql[client]: rename to python-mysqlclient & bump to version 1.4.4
| * | python-mysql: rename to python-mysqlclient & bump to version 1.4.4Alexandru Ardelean2019-09-02
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The package on PyPi is named `mysqlclient`. This should have been named `python-mysqlclient` from the start. There is a `mysql` package on PyPi already but that's a different code/package. Doing this should avoid any future confusion. There is no good time to do this rename; at least 19.07 has been branched already and this can go into the next release [in a year or so]. Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
* | | treewide: Change .*GPL.*+ licenses to SPDX compatible identifierSven Eckelmann2019-09-10
| | | | | | | | | | | | | | | | | | | | | | | | The CONTRIBUTING.md requests an (or multiple) SPDX identifier for GPL licenses. But a lot of packages did use a different, non-SPDX style with a "+" at the end instead of "-or-later". Signed-off-by: Sven Eckelmann <sven@narfation.org>
* | | php7-pecl-libevent: update to latest commitMichael Heimpold2019-09-08
| | | | | | | | | | | | Signed-off-by: Michael Heimpold <mhei@heimpold.de>
* | | php7-pecl-redis: update to 5.0.2Michael Heimpold2019-09-08
| | | | | | | | | | | | Signed-off-by: Michael Heimpold <mhei@heimpold.de>
* | | php7-pecl-http: update to 3.2.1Michael Heimpold2019-09-08
| | | | | | | | | | | | Signed-off-by: Michael Heimpold <mhei@heimpold.de>
* | | php7-pecl-dio: update SPDX id to most recent formatMichael Heimpold2019-09-08
| | | | | | | | | | | | | | | | | | | | | Also the source package contains a LICENSE file, so we can refer to it. Signed-off-by: Michael Heimpold <mhei@heimpold.de>
* | | php7: update to 7.2.22Michael Heimpold2019-09-08
| | | | | | | | | | | | | | | | | | | | | | | | While at, update the SPDX license id to most recent format. Compile and run tested on mxs platform. Signed-off-by: Michael Heimpold <mhei@heimpold.de>
* | | golang: Update to 1.13Xingwang Liao2019-09-06
| |/ |/| | | | | Signed-off-by: Xingwang Liao <kuoruan@gmail.com>
* | Merge pull request #9885 from BKPepe/voluptuousRosen Penev2019-09-03
|\ \ | | | | | | Voluptuous & Voluptuous Serialize: update to their latest versions
| * | python-voluptuous-serialize: Update to version 2.2.0Josef Schlehofer2019-09-01
| | | | | | | | | | | | Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
| * | python-voluptuous: Update to version 0.11.7Josef Schlehofer2019-09-01
| | | | | | | | | | | | Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
Powered by cgit, Themed by Ted Yin.