Accepting request 1066232 from home:david.anes:branches:devel:languages:python

OBS-URL: https://build.opensuse.org/request/show/1066232
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-fastapi?expand=0&rev=27

fastapi-0.91.0.tar.gz

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:ff2fa93af3f2f982b07b5f96e8512565b3ef0e5f8f02469dbfd6bc27f6fd9a9e
-size 9741123

fastapi-0.92.0.tar.gz

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:023a0f5bd2c8b2609014d3bba1e14a1d7df96c6abea0a73070621c9862b9a4de
+size 9741200

python-fastapi.changes

@@ -1,3 +1,15 @@
+-------------------------------------------------------------------
+Thu Feb 16 16:19:51 UTC 2023 - David Anes <david.anes@suse.com>
+
+- Update to 0.92.0:
+  * Upgrades
+    - Upgrade Starlette to 0.25.0. This solves a vulnerability that
+      could allow denial of service attacks by using many small 
+      multipart fields/files (parts), consuming high CPU and memory.
+      Only applications using forms (e.g. file uploads) could be 
+      affected. For most cases, upgrading won't have any breaking 
+      changes.
+
 -------------------------------------------------------------------
 Fri Feb 10 18:09:02 UTC 2023 - David Anes <david.anes@suse.com>
 

python-fastapi.spec

@@ -19,7 +19,7 @@
 # Keep extra test requirements out of Ring1
 %bcond_with ringdisabled
 Name:           python-fastapi
-Version:        0.91.0
+Version:        0.92.0
 Release:        0
 Summary:        FastAPI framework
 License:        MIT