Accepting request 1275023 from home:yeey:branches:devel:languages:python

- Update to 3.4.0 * Remove support for Python 3.6 and 3.7 * Added support for Python 3.10 and 3.11 * Updating CryptographyAESKey::encrypt to generate 96 bit IVs for GCM block cipher mode * Fix for PEM key comparisons caused by line lengths and new lines * Fix for CVE-2024-33664 - JWE limited to 250KiB * Fix for CVE-2024-33663 - signing JWT with public key is now forbidden * Replace usage of deprecated datetime.utcnow() with datetime.now(UTC) - Removed patches CVE-2024-33663.patch, CVE-2024-33664.patch, fix-tests-ecdsa-019.patch, and unpin-deps.patch as they have been incorporated into release 3.4.0 OBS-URL: https://build.opensuse.org/request/show/1275023 OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-python-jose?expand=0&rev=19
2025-05-07 08:13:41 +00:00
parent 60ce9b52e2
commit aee0a0194a
8 changed files with 21 additions and 838 deletions
--- a/python-python-jose.changes
+++ b/python-python-jose.changes
@@ -1,3 +1,19 @@
+-------------------------------------------------------------------
+Tue May  6 17:27:12 UTC 2025 - Guang Yee <gyee@suse.com>
+
+- Update to 3.4.0
+  * Remove support for Python 3.6 and 3.7
+  * Added support for Python 3.10 and 3.11
+  * Updating CryptographyAESKey::encrypt to generate 96 bit IVs for
+    GCM block cipher mode
+  * Fix for PEM key comparisons caused by line lengths and new lines
+  * Fix for CVE-2024-33664 - JWE limited to 250KiB
+  * Fix for CVE-2024-33663 - signing JWT with public key is now forbidden
+  * Replace usage of deprecated datetime.utcnow() with datetime.now(UTC)
+- Removed patches CVE-2024-33663.patch,  CVE-2024-33664.patch,
+  fix-tests-ecdsa-019.patch, and unpin-deps.patch as they have been
+  incorporated into release 3.4.0
+
 -------------------------------------------------------------------
 Mon Jun  3 07:38:00 UTC 2024 - Daniel Garcia <daniel.garcia@suse.com>