Skip to content

[update] Scheduled weekly dependency update for week 19

username-removed-56100 requested to merge gh-7ea0b5a7/175/satnogs/pyup-scheduled-update-05-12-2017 into dev

Created by: pyup-bot

Updates

Here's a list of all the updates bundled in this pull request. I've added some links to make it easier for you to find all the information you need.

Django 1.11 » 1.11.1 PyPI | Changelog | Homepage
requests 2.13.0 » 2.14.2 PyPI | Changelog | Homepage

Changelogs

Django 1.11 -> 1.11.1

1.11.1

===========================

May 6, 2017

Django 1.11.1 adds a minor feature and fixes several bugs in 1.11.

Allowed disabling server-side cursors on PostgreSQL

The change in Django 1.11 to make :meth:.QuerySet.iterator() use server-side cursors on PostgreSQL prevents running Django with pgBouncer in transaction pooling mode. To reallow that, use the :setting:DISABLE_SERVER_SIDE_CURSORS <DATABASE-DISABLE_SERVER_SIDE_CURSORS> setting in :setting:DATABASES.

See :ref:transaction-pooling-server-side-cursors for more discussion.

Bugfixes

  • Made migrations respect Index’s name argument. If you created a named index with Django 1.11, makemigrations will create a migration to recreate the index with the correct name (🎫28051).
  • Fixed a crash when using a __icontains lookup on a ArrayField (🎫28038).
  • Fixed a crash when using a two-tuple in EmailMessage’s attachments argument (🎫28042).
  • Fixed QuerySet.filter() crash when it references the name of a OneToOneField primary key (🎫28047).
  • Fixed empty POST data table appearing instead of "No POST data" in HTML debug page (🎫28079).
  • Restored BoundField\s without any choices evaluating to True (🎫28058).
  • Prevented SessionBase.cycle_key() from losing session data if _session_cache isn't populated (🎫28066).
  • Fixed layout of ReadOnlyPasswordHashWidget (used in the admin's user change page) (🎫28097).
  • Allowed prefetch calls on managers with custom ModelIterable subclasses (🎫28096).
  • Fixed change password link in the contrib.auth admin for el, es_MX, and pt translations (🎫28100).
  • Restored the output of the class attribute in the <ul> of widgets that use the multiple_input.html template. This fixes ModelAdmin.radio_fields with admin.HORIZONTAL (🎫28059).
  • Fixed crash in BaseGeometryWidget.subwidgets() (🎫28039).
  • Fixed exception reraising in ORM query execution when cursor.execute() fails and the subsequent cursor.close() also fails (🎫28091).
  • Fixed a regression where CheckboxSelectMultiple, NullBooleanSelect, RadioSelect, SelectMultiple, and Select localized option values (🎫28075).
  • Corrected the stack level of unordered queryset pagination warnings (🎫28109).
  • Fixed a regression causing incorrect queries for __in subquery lookups when models use ForeignKey.to_field (🎫28101).
  • Fixed crash when overriding the template of django.views.static.directory_index() (🎫28122).
  • Fixed a regression in formset min_num validation with unchanged forms that have initial data (🎫28130).
  • Prepared for cx_Oracle 6.0 support (🎫28138).
  • Updated the contrib.postgres SplitArrayWidget to use template-based widget rendering (🎫28040).
  • Fixed crash in BaseGeometryWidget.get_context() when overriding existing attrs (🎫28105).
  • Prevented AddIndex and RemoveIndex from mutating model state (🎫28043).
  • Prevented migrations from dropping database indexes from Meta.indexes when changing Field.db_index to False (🎫28052).
  • Fixed a regression in choice ordering in form fields with grouped and non-grouped options (🎫28157).
  • Fixed crash in BaseInlineFormSet._construct_form() when using save_as_new (🎫28159).
  • Fixed a regression where Model._state.db wasn't set correctly on multi-table inheritance parent models after saving a child model (🎫28166).
  • Corrected the return type of ArrayField(CITextField()) values retrieved from the database (🎫28161).
  • Fixed QuerySet.prefetch_related() crash when fetching relations in nested Prefetch objects (🎫27554).
  • Prevented hiding GDAL errors if it's not installed when using contrib.gis (🎫28160). (It's a required dependency as of Django 1.11.)
  • Fixed a regression causing __in lookups on a foreign key to fail when using the foreign key's parent model as the lookup value (🎫28175).

=========================

requests 2.13.0 -> 2.14.2

2.14.2

+++++++++++++++++++

Bugfixes

  • Changed a less-than to an equal-to and an or in the dependency markers to widen compatibility with older setuptools releases.

2.14.1

+++++++++++++++++++

Bugfixes

  • Changed the dependency markers to widen compatibility with older pip releases.

2.14.0

+++++++++++++++++++

Improvements

  • It is now possible to pass no_proxy as a key to the proxies dictionary to provide handling similar to the NO_PROXY environment variable.
  • When users provide invalid paths to certificate bundle files or directories Requests now raises IOError, rather than failing at the time of the HTTPS request with a fairly inscrutable certificate validation error.
  • The behavior of SessionRedirectMixin was slightly altered. resolve_redirects will now detect a redirect by calling get_redirect_target(response) instead of directly querying Response.is_redirect and Response.headers['location']. Advanced users will be able to process malformed redirects more easily.
  • Changed the internal calculation of elapsed request time to have higher resolution on Windows.
  • Added win_inet_pton as conditional dependency for the [socks] extra on Windows with Python 2.7.
  • Changed the proxy bypass implementation on Windows: the proxy bypass check doesn't use forward and reverse DNS requests anymore
  • URLs with schemes that begin with http but are not http or https no longer have their host parts forced to lowercase.

Bugfixes

  • Much improved handling of non-ASCII Location header values in redirects. Fewer UnicodeDecodeErrors are encountered on Python 2, and Python 3 now correctly understands that Latin-1 is unlikely to be the correct encoding.
  • If an attempt to seek file to find out its length fails, we now appropriately handle that by aborting our content-length calculations.
  • Restricted HTTPDigestAuth to only respond to auth challenges made on 4XX responses, rather than to all auth challenges.
  • Fixed some code that was firing DeprecationWarning on Python 3.6.
  • The dismayed person emoticon (/o\\) no longer has a big head. I'm sure this is what you were all worrying about most.

Miscellaneous

  • Updated bundled urllib3 to v1.21.1.
  • Updated bundled chardet to v3.0.2.
  • Updated bundled idna to v2.5.
  • Updated bundled certifi to 2017.4.17.

That's it for now!

Happy merging! 🤖

Merge request reports