Skip to content

Latest commit

 

History

History
162 lines (155 loc) · 8.37 KB

CHANGELOG.md

File metadata and controls

162 lines (155 loc) · 8.37 KB

CHANGELOG

[Unreleased]

New Features

  • bump aiohttp from 3.8.6 to 3.9.1 (for security reason) (#1742)
  • bump cryptography from 41.0.4 to 41.0.7 (security) (#1745)
  • bump gdal from 3.8.0 to 3.8.1 (#1747)
  • upgrade Python 3.11 from 3.11.6 to 3.11.7 (#1749)
  • upgrade psutil from 5.9.5 to 5.9.7 (#1757)
  • upgrade postgis-geohash to 0.1.2 (fix for PostGreSQL 16) (#1759)
  • bump paramiko to 3.4.0 (security against Terrapin attack) (#1762)
  • remove module's system crontab when uninstalling (#1766)
  • upgrade gdal from 3.8.1 to 3.8.3 (#1777)
  • bump pytest to 7.4.4 and add typer and typing-inspect (missing) (#1779)
  • upgrade pip to 23.3.2 and setuptools to 69.0.3 (#1781)
  • build sqlite 3.45.0 (for django5 requiring sqlite >= 3.27) (#1786)
  • add bandit, filprofiler, GitPython, py-spy, pyinstaller (layer python3_devtools) (#1794)
  • upgrade gitignore-parser to 0.1.11 (with our fix for symlinks) (#1795)
  • bump Jinja2 from 3.1.2 to 3.1.3 (fix GHSA-h5c8-rqwp-cp95) (#1799)
  • bump aiohttp from 3.9.1 to 3.9.3 (for security reasons) (#1802)
  • bump cryptography from 41.0.7 to 42.0.2 (security update) (#1806)
  • upgrade log_proxy to 0.7.1 (new functionality) (#1807)
  • upgrade log_proxy to last release (0.7.3) (#1809)
  • bump cryptography from 42.0.2 to 42.0.5 (security update) (#1813)
  • add security patch for nginx (#1815)
  • add python package astral (#1820)
  • add panoply in layer python3_devtools
  • bump black from 23.11.0 to 24.3.0 (security update) (#1836)
  • do not remove module's HOME nor metwork service when uninstalling (#1842)
  • upgrade Python from 3.11.7 to 3.11.9 (#1845)
  • upgrade pip from 23.3.2 to 24.0 (built-in version in Python 3.1.9) (#1849)
  • bump idna from 3.4 to 3.7 (to fix CVE-2024-3651) (#1860)
  • bump aiohttp to 3.9.5 to fix CVE-2024-27306 (#1866)
  • fix CVE-2020-11724 on openresty 1.15.8 (#1865)
  • Upgrade from Python 3.11.9 to Python 3.12.3 (#1871)
  • bump tqdm to 4.66.4 (fix CVE-2024-34062) (#1879)
  • bump Werkzeug from 3.0.1 to 3.0.3 (fix CVE-2024-34069) (#1882)
  • bump Jinja2 to 3.1.4 (fix CVE-2024-34064) (#1884)
  • bump requests to 2.32.2 (fix CVE-2024-35195) (#1887)
  • replace requests-unixsocket (unmaintained) by requests-unixsocket2 (#1888)
  • add libssl.so.1.1 and libcrypto.so.1.1 in embedded system dependencies (#1889)
  • upgrade requests from 2.32.2 to 2.32.3 (#1894)
  • bump urllib3 from 2.1.0 to 2.2.0 (fix CVE-2024-37891) (#1897)
  • add openssl 3, openldap, libevent, curl, libtirpc, cyrus-sasl in layer core (#1898)
  • upgrade Python 3.12 to 3.12.4 (#1900)
  • upgrade pydantic and pydantic-core for Python 3.12.4 compatibility (#1901)
  • bump certifi to 2024.7.4 (to fix CVE-2024-39689) (#1904)
  • bump zipp from 3.16.2 to 3.19.2 (fix CVE-2024-5569) (#1906)
  • bump nltk to 3.9.1 (fix CVE-2024-39705) (#1909)
  • upgrade setuptools from 69.5.1 to 70.3.0 (fix CVE-2024-6345) (#1910)
  • bump aiohttp from 3.9.5 to 3.10.5 (fix CVE-2024-42367) (#1911)
  • add zstd support in PostGreSQL (#1914)
  • add lz4 support in PostGreSQL (#1915)
  • upgrade Python 3.12 from 3.12.4 to 3.12.5 and pip to 24.2 (#1917)
  • upgrade typing-extensions from 4.8.0 to 4.10.0 (#1928)
  • downgrade prompt-toolkit to 3.0.36 (compat questionary 2.0.1) (#1929)
  • create salem sample data file to avoid further http requests (#1931)
  • bump cryptography from 42.0.5 to 43.0.1 (CWE-1395 with openssl) (#1939)
  • bump openssl to 3.3.2 (fix CVE-2024-6119 and CVE-2024-5535) (#1942)
  • upgrade to tornado 6 with merge of circus 0.18 in layer python3_circus (#1943)
  • upgrade Python 3.12 from 3.12.5 to 3.12.6 (#1945)
  • bump attrs from 23.1.0 to 23.2.0 (#1950)
  • add jsonschema and dependencies (#1951)
  • bump wrapt from 1.14.1 to 1.16.0 (#1952)
  • bump setuptools-scm from 7.1.0 to 8.1.0 (#1954)
  • add PostGreSQL extension pg_uuidv7 (#1957)
  • bump Python 3.12 from 3.12.6 to 3.12.7 (#1961)
  • add filprofiler (Python 3.12 wheels are now available) (#1963)
  • upgrade Werkzeug from 3.0.3 to 3.0.6 to fix moderate security issues (#1964)
  • add proj patch from synopsis with skew mercator projection (#1965)
  • bump psutil to 5.9.8 (#1974)
  • upgrade log_proxy to 0.7.4 (security fix in case of FS full) (#1975)
  • upgrade proj from 9.3.0 to 9.5.0 (with MF patch for skmerc) (#1977)
  • add pre-commit and dependencies in layer python3_devtools (#1978)
  • upgrade pydantic to 2.8.2 and pydantic-core to 2.20.1 (#1981)
  • bump typing-extensions from 4.10.0 to 4.12.2 (#1982)
  • add Cython (previously in layer python3_scientific) (#1983)
  • bump PyYAML to 6.0.2 (Cython 3 compatibility) (#1984)
  • upgrade cffi from 1.15.1 to 1.17.1 (Python 3.13 compatibility) (#1985)
  • bump frozenlist to 1.5.0 and yarl to 1.9.11 (for Python 3.13) (#1986)
  • bump psycopg and psycopg_c to 3.1.20 (Python 3.13 compatibility) (#1987)
  • bump libcst to 1.5.0 and pyinstaller to 6.3.0 (for Python 3.13) (#1988)
  • upgrade freezegun from 1.2.2 to 1.5.1 (Python 3.13 compatibility) (#1989)
  • upgrade psycopg2 from 2.9.9 to 2.9.10 (Python 3.13 compatibility) (#1990)
  • upgrade circus for Python 3.13 compatibility (pipes -> shlex) (#1991)
  • upgrade trove-classifiers to 2024.10.16 (for Pillow 11.0.0) (#1992)
  • bump aiohttp to 3.10.11 (CVE-2024-52304) and yarl to 1.12.1 (#1994)
  • bump tornado from 6.4.1 to 6.4.2 (fix CVE-2024-52804) (#1997)
  • upgrade jinja2-shell-extension to last release 2.1.0 (#1998)
  • patch to fix ag build with gcc >=10 (#1999)
  • build with gcc 11 with patch for the_silver_searcher (#2000)
  • bump Python 3.12 from 3.12.7 to 3.12.8 (#2002)
  • upgrade packaging from 23.1 to 24.2 (for recent xarray release) (#2006)
  • upgrade proj from 9.5.0 to 9.5.1 with new MF patch
  • add libtiff 4.7.0 (required for gdal 3.9.3) (#2009)
  • upgrade gdal from 3.8.3 to 3.9.3 (#2010)
  • bump rich from 13.5.2 to 13.9.4 (compatibility Python 3.13) (#2011)
  • bump hdf5 from 1.14.3 to 1.14.5 (#2013)
  • add cargo-c in layer core (#2015)
  • upgrade filelock from 3.12.3 to 3.16.1 (#2016)
  • build sasl with openssl support (#2018)
  • bump Jinja2 to 3.1.5 (CVE-2024-56201 and CVE-2024-56326) (#2020)
  • upgrade geojson from 3.1.0 to 3.2.0 (Python 3.13 compatibility) (#2021)
  • bump prompt-toolkit to 3.0.48 (#2022)
  • bump hdf4 from 4.2.16 to 4.3.0 (#2023)
  • bump pgbouncer from 1.21.0 to 1.23.1 (#2025)
  • bump pytest from 7.4.4 to 8.3.4 (and pluggy to 1.5.0) (#2026)
  • bump Pygments from 2.16.1 to 2.18.0 (#2027)
  • bump Pygments from 2.16.1 to 2.18.0
  • bump cryptography from 43.0.1 to 44.0.0 (#2032)
  • upgrade setuptools from 70.3.0 to 71.1.0 (#2034)
  • upgrade setuptools from 71.1.0 to 72.2.0 (#2035)
  • bump idna from 3.7 to 3.10 (#2036)
  • bump setuptools from 72.2.0 to 73.0.1 (#2037)
  • bump setuptools from 73.0.1 to 74.1.3 (#2038)
  • bump setuptools to 75.6.0 and wheel to 0.45.1 (#2039)
  • upgrade pip from 24.2 to 24.3.1 (#2042)
  • bump certifi to 2024.12.14 and improve patch python syntax (#2045)
  • bump distlib from 0.3.7 to 0.3.9 (#2046)
  • bump pbr from 5.11.1 to 6.1.0 (#2047)
  • bump urllib3 from 2.2.2 to 2.3.0 (#2048)
  • bump charset-normalizer from 3.2.0 to 3.4.1 (#2049)
  • bump psutil from 5.9.8 to 6.1.1
  • bump psutil from 5.9.8 to 6.1.1 (#2050)
  • upgrade openssl from 3.3.2 to 3.4.0 (#2052)
  • remove deprecated pytest-runner (ptr) (#2053)
  • add tox 4.23.2 and upgrade its dependencies (#2054)
  • upgrade gdal from 3.9.3 to 3.10.0 (#2055)
  • bump postgis from 3.4.0 to 3.5.1 (#2056)
  • bump setuptools from 75.6.0 to 75.8.0 (#2057)
  • upgrade Pygments from 2.18.0 to 2.19.1 (#2059)
  • bump pgbouncer from 1.23.1 to 1.24.0 (#2060)
  • upgrade postgresql from 16.1 to 17.2 (#2061)
  • upgrade readline from 8.1.2 to 8.2.13 (#2062)
  • upgrade liquidprompt from 2.1.2 to 2.2.1 (#2063)
  • upgrade sqlite from 3.45.0 to 3.47.2 (#2066)
  • bump openldap from 2.6.8 to 2.6.9 (#2072)
  • bump jq from 1.6 to 1.7.1 (#2073)
  • bump zeromq (libzmq) from 4.3.4 to 4.3.5 (#2074)
  • bump libtirpc from 1.3.3 to 1.3.6 (#2075)
  • upgrade pip from 24.3.1 to 25.0 and tomli to 2.2.1 (#2076)
  • bump flit-core from 3.9.0 to 3.10.1 (#2077)
  • (revert) remove cargo-c from layer core (#2078)
  • upgrade pathspec to 0.12.1 and trove-classifiers to 2025.1.15.22 (#2079)

Bug Fixes

  • upgrade mfplugin to fix issue on terminaltables (#1739)
  • downgrade gitignore-parser to 0.1.8 (#1755)
  • set postgis extension as trusted (#1811)
  • fix mfbase.start in case NOINIT
  • fix mfbase.start in case NOINIT (#1825)
  • useless module mffront in service usage (closes #1829) (#1830)
  • remove pip conflicts warnings when using override (#1840)
  • upgrade xattrfile to fix mfdata issue 486 (#1935)
  • bump to paramiko 3.4.1 to prevent warning messages with cryptography (#1949)
  • add patches for next 9.5.1 release
  • add patches for next 9.5.1 release (#2007)