From 108b2d954b5ef3f351dfd478124fe51bcfdeeb3c589b0417e647ec6bddaed816 Mon Sep 17 00:00:00 2001
From: Dirk Mueller <dmueller@suse.com>
Date: Mon, 23 Oct 2023 11:13:22 +0000
Subject: [PATCH 1/2] - update to 0.12.0:   * Add callback to report download
 status   * Respect :all: in prefer_binary config   * security: Validate the
 package name extracted from the part     before the last hyphen   * Also
 fallback on "token" username for KeyringCliProvider   * Revert the handling
 of 403 and 404   * Handle 403 same as 401, and look for credentials on 404
 error   * Close response files correctly   * Change FormatControl to respect
 the priority of only_binary     over no_binary   * Include useful message if
 VCS command not found   * Postpone the validation of hashes   * Migrate from
 deprecated pdm.pep517 to pdm.backend   * Tolerate invalid python requires   *
 Fix the dist info link evaluation   * PEP 714: rename the dist-info-metadata
 field to core-metadata - Update to version 0.6.2

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-unearth?expand=0&rev=10
---
 python-unearth.changes | 23 ++++++++++++++++++++++-
 python-unearth.spec    |  4 ++--
 unearth-0.12.0.tar.gz  |  3 +++
 unearth-0.9.1.tar.gz   |  3 ---
 4 files changed, 27 insertions(+), 6 deletions(-)
 create mode 100644 unearth-0.12.0.tar.gz
 delete mode 100644 unearth-0.9.1.tar.gz

diff --git a/python-unearth.changes b/python-unearth.changes
index 32a9f3e..a924d0d 100644
--- a/python-unearth.changes
+++ b/python-unearth.changes
@@ -1,3 +1,24 @@
+-------------------------------------------------------------------
+Mon Oct 23 11:10:27 UTC 2023 - Dirk Müller <dmueller@suse.com>
+
+- update to 0.12.0:
+  * Add callback to report download status
+  * Respect :all: in prefer_binary config
+  * security: Validate the package name extracted from the part
+    before the last hyphen
+  * Also fallback on "token" username for KeyringCliProvider
+  * Revert the handling of 403 and 404
+  * Handle 403 same as 401, and look for credentials on 404 error
+  * Close response files correctly
+  * Change FormatControl to respect the priority of only_binary
+    over no_binary
+  * Include useful message if VCS command not found
+  * Postpone the validation of hashes
+  * Migrate from deprecated pdm.pep517 to pdm.backend
+  * Tolerate invalid python requires
+  * Fix the dist info link evaluation
+  * PEP 714: rename the dist-info-metadata field to core-metadata
+
 -------------------------------------------------------------------
 Thu Jun 15 12:46:34 UTC 2023 - Andreas Schneider <asn@cryptomilk.org>
 
@@ -34,7 +55,7 @@ Thu Dec 15 23:14:43 UTC 2022 - Torsten Gruner <simmphonie@opensuse.org>
 -------------------------------------------------------------------
 Tue Dec  6 17:07:50 UTC 2022 - Yogalakshmi Arunachalam <yarunachalam@suse.com>
 
-- Update to version 0.6.2 
+- Update to version 0.6.2
    * Features
    Log the file size when downloading  -  by @frostming in #22 (9514a)
    Use token as the username if not specified Close #18  -  by @frostming in #18 (6d2a6)
diff --git a/python-unearth.spec b/python-unearth.spec
index fb12cbe..62c59c6 100644
--- a/python-unearth.spec
+++ b/python-unearth.spec
@@ -18,7 +18,7 @@
 
 %{?sle15_python_module_pythons}
 Name:           python-unearth
-Version:        0.9.1
+Version:        0.12.0
 Release:        0
 Summary:        A utility to fetch and download python packages
 License:        MIT
@@ -27,7 +27,7 @@ Source:         https://files.pythonhosted.org/packages/source/u/unearth/unearth
 BuildRequires:  %{python_module base >= 3.7}
 BuildRequires:  %{python_module cached-property >= 1.5.2 if %python-base < 3.8}
 BuildRequires:  %{python_module packaging >= 20}
-BuildRequires:  %{python_module pdm-pep517}
+BuildRequires:  %{python_module pdm-backend}
 BuildRequires:  %{python_module pip}
 BuildRequires:  %{python_module requests >= 2.25}
 BuildRequires:  fdupes
diff --git a/unearth-0.12.0.tar.gz b/unearth-0.12.0.tar.gz
new file mode 100644
index 0000000..8c67c34
--- /dev/null
+++ b/unearth-0.12.0.tar.gz
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:a9809c2069640010eb588f3179a96a873d7a18c4ad686c3023a0e141ebe2dfcb
+size 280152
diff --git a/unearth-0.9.1.tar.gz b/unearth-0.9.1.tar.gz
deleted file mode 100644
index 0c1121d..0000000
--- a/unearth-0.9.1.tar.gz
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:7205832b087005d1b746903a535ca7d0db5381c1f621ddc00290524d56afd217
-size 270441

From f2f9e7fdd835392532a4dd7b90f2964bb57b3c88187ac56c57c070aa376e8007 Mon Sep 17 00:00:00 2001
From: Dirk Mueller <dmueller@suse.com>
Date: Mon, 23 Oct 2023 11:14:21 +0000
Subject: [PATCH 2/2] - update to 0.12.0 (bsc#1216480, CVE-2023-45805):

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-unearth?expand=0&rev=11
---
 python-unearth.changes | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/python-unearth.changes b/python-unearth.changes
index a924d0d..d7cf5e7 100644
--- a/python-unearth.changes
+++ b/python-unearth.changes
@@ -1,7 +1,7 @@
 -------------------------------------------------------------------
 Mon Oct 23 11:10:27 UTC 2023 - Dirk Müller <dmueller@suse.com>
 
-- update to 0.12.0:
+- update to 0.12.0 (bsc#1216480, CVE-2023-45805):
   * Add callback to report download status
   * Respect :all: in prefer_binary config
   * security: Validate the package name extracted from the part