Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package python-bandit for openSUSE:Factory checked in at 2023-12-15 21:50:20 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/python-bandit (Old) and /work/SRC/openSUSE:Factory/.python-bandit.new.25432 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "python-bandit" Fri Dec 15 21:50:20 2023 rev:14 rq:1133415 version:1.7.6 Changes: -------- --- /work/SRC/openSUSE:Factory/python-bandit/python-bandit.changes 2023-07-27 16:51:19.761990842 +0200 +++ /work/SRC/openSUSE:Factory/.python-bandit.new.25432/python-bandit.changes 2023-12-15 21:50:43.917755640 +0100 @@ -1,0 +2,39 @@ +Thu Dec 14 09:15:32 UTC 2023 - Petr Gajdos <pgajdos@suse.com> + +- update to 1.7.6: + * Fixes for sphinx build + * refactor: remove \`importlib-metadata\` fallback + * Fix crash on pyproject.toml without bandit config + * Add official support of Python 3.12 + * Use mirror repository for black pre-commit hook + * fix(plugins/B507): also detect class instances + * Fix for ReadtheDocs build + * Bump actions/checkout from 3 to 4 + * Fix dependabot to update github actions + * Support ignoring blacklists by name + * Update blacklist call documentation + * Avoid gitpyhon CVE-2022-24439 + * django\_rawsql\_used: support keyword arguments used in + \`RawSQL\` + * Simplify \`wrap\_file\_object\` + * Update asserts.py documentation + * Remove support for Python 3.7 due to end-of-life + * Make pre-commit run Bandit hook using a single process + * Switch from open collective to PSF + * Replace pbr in favor of importlib + * Add a copy button to all code snippets in docs + * Add \`random.Random\` to B311 checks + * Update pre-commit hooks + * Update versions of used GitHub Actions + * Skip unnecessary \`pip install\` commands in the + pythonpackage.yml workflow + * Switch to tox 4 + * Adds check for crypt module usage as weak hash + * language and linting updates + * xmlrpclib replaced with xmlrpc in Python3 + * Improper detection of non-requests module + * Remove checks for Python2 urllib + * Render Python 3.10 in drop down correctly + * Update bug report to include version 1.7.5 + +------------------------------------------------------------------- Old: ---- bandit-1.7.5.tar.gz New: ---- bandit-1.7.6.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ python-bandit.spec ++++++ --- /var/tmp/diff_new_pack.5FS4jU/_old 2023-12-15 21:50:44.909791918 +0100 +++ /var/tmp/diff_new_pack.5FS4jU/_new 2023-12-15 21:50:44.913792065 +0100 @@ -16,7 +16,6 @@ # -%{?!python_module:%define python_module() python-%{**} python3-%{**}} %global flavor @BUILD_FLAVOR@%{nil} %if "%{flavor}" == "test" %define psuffix -test @@ -29,7 +28,7 @@ %define pythons python3 %bcond_without builddocs Name: python-bandit -Version: 1.7.5 +Version: 1.7.6 Release: 0 Summary: Security oriented static analyser for Python code License: Apache-2.0 ++++++ bandit-1.7.5.tar.gz -> bandit-1.7.6.tar.gz ++++++ ++++ 2273 lines of diff (skipped)