factory
- Update to 4.3.3 (fixes bsc#1268679)
* Wire up the forbid_external setting (previously defined but unused since
the move off defusedxml in 4.0). When enabled, zeep refuses to transitively
fetch http/https resources via xsd:import, xsd:include, wsdl:import or lxml
entity resolution, raising zeep.exceptions.ExternalReferenceForbidden. The
user-supplied entry-point WSDL/schema URL is still loaded. The default
remains False to preserve existing behaviour; enable it when loading WSDLs
from untrusted sources to mitigate SSRF via attacker-controlled import
targets.
OBS-URL: https://build.opensuse.org/request/show/1361285
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/python-zeep?expand=0&rev=13
Description
No description provided
Languages
RPM Spec
100%