api-change:ssm: Update ssm client to latest version
1.6.4
=====
api-change:route53: Update route53 client to latest version
api-change:firehose: Update firehose client to latest version
1.6.3
=====
api-change:gamelift: Update gamelift client to latest version
1.6.2
=====
api-change:ec2: Update ec2 client to latest version
1.6.1
=====
api-change:cloudhsmv2: Update cloudhsmv2 client to latest version
api-change:ssm: Update ssm client to latest version
api-change:glue: Update glue client to latest version
api-change:mgh: Update mgh client to latest version
api-change:efs: Update efs client to latest version
api-change:storagegateway: Update storagegateway client to latest version
api-change:batch: Update batch client to latest version
1.6.0
=====
api-change:ec2: Update ec2 client to latest version
feature:retries: Add ability to configure the maximum amount of retry attempts a client call can make. (1260 <https://github.com/boto/botocore/pull/1260>__)
api-change:cognito-idp: Update cognito-idp client to latest version
api-change:codedeploy: Update codedeploy client to latest version
1.5.95
======
api-change:clouddirectory: Update clouddirectory client to latest version
api-change:codebuild: Update codebuild client to latest version
1.5.94
======
api-change:rds: Update rds client to latest version
1.5.93
======
bugfix:Paginator: Ensure that the page size type matches the type expected by the service. Fixes 1063 <https://github.com/boto/botocore/issues/1063>__.
bugfix:Exceptions: Default to 'Unknown' when error response is missing 'Error' key
api-change:elasticbeanstalk: Update elasticbeanstalk client to latest version
1.5.92
======
api-change:ses: Update ses client to latest version
api-change:pinpoint: Update pinpoint client to latest version
api-change:codedeploy: Update codedeploy client to latest version
api-change:config: Update config client to latest version
1.5.91
======
api-change:ssm: Update ssm client to latest version
api-change:inspector: Update inspector client to latest version
Django 1.11.4 -> 1.11.5
1.11.5
===========================
September 5, 2017
Django 1.11.5 fixes a security issue and several bugs in 1.11.4.
CVE-2017-12794: Possible XSS in traceback section of technical 500 debug page
In older versions, HTML autoescaping was disabled in a portion of the template
for the technical 500 debug page. Given the right circumstances, this allowed
a cross-site scripting attack. This vulnerability shouldn't affect most
production sites since you shouldn't run with DEBUG = True (which makes
this page accessible) in your production settings.
Bugfixes
Fixed GEOS version parsing if the version has a commit hash at the end (new
in GEOS 3.6.2) (:ticket:28441).
Added compatibility for cx_Oracle 6 (:ticket:28498).
Fixed select widget rendering when option values are tuples (:ticket:28502).
Django 1.11 inadvertently changed the sequence and trigger naming scheme on
Oracle. This causes errors on INSERTs for some tables if
'use_returning_into': False is in the OPTIONS part of DATABASES.
The pre-1.11 naming scheme is now restored. Unfortunately, it necessarily
requires an update to Oracle tables created with Django 1.11.[1-4]. Use the
upgrade script in :ticket:28451 comment 8 to update sequence and trigger
names to use the pre-1.11 naming scheme.
Added POST request support to LogoutView, for equivalence with the
function-based logout() view (:ticket:28513).
Omitted pages_per_range from BrinIndex.deconstruct() if it's None
(:ticket:25809).
Fixed a regression where SelectDateWidget localized the years in the
select box (:ticket:28530).
Fixed a regression in 1.11.4 where runserver crashed with non-Unicode
system encodings on Python 2 + Windows (:ticket:28487).
Fixed a regression in Django 1.10 where changes to a ManyToManyField
weren't logged in the admin change history (:ticket:27998) and prevented
ManyToManyField initial data in model forms from being affected by
subsequent model changes (:ticket:28543).
Fixed non-deterministic results or an AssertionError crash in some
queries with multiple joins (:ticket:26522).
Fixed a regression in contrib.auth's login() and logout() views
where they ignored positional arguments (:ticket:28550).
===========================
django-compressor 2.1.1 -> 2.2
2.2
Full Changelog <https://github.com/django-compressor/django-compressor/compare/2.1.1...2.2>_
Switch from MD5 to SHA256 for hashes generation.
Add Django 1.11 compatibility
Various compatibility fixes for Python 3.6 and Django 1.8
Made OfflineGenerationError easier to debug
Drop support for Python 3.2
Add new CssRelativeFilter which works like CssAbsoluteFilter but outputs relative URLs.
Fix URL CssAbsoluteFilter URL detection
djangorestframework 3.6.3 -> 3.6.4
3.6.4
Date: [21st August 2017][3.6.4-milestone]
Ignore any invalidly formed query parameters for OrderingFilter. [5131][gh5131]
Improve memory footprint when reading large JSON requests. [5147][gh5147]
Fix schema generation for pagination. [5161][gh5161]
Fix exception when HTML_CUTOFF is set to None. [5174][gh5174]
Fix browsable API not supporting multipart/form-data correctly. [5176][gh5176]
On install, some experienced: ValueError: ("Expected ',' or end-of-list in", 'python-http-client ==3.0.*', 'at', '*')
5.0.0
BREAKING CHANGE
The breaking change actually happened in version 4.2.1, where I mistakenly applied a patch version bump. See issues 328 and 321 for details.
This version (5.0.0) replaces error handling via HTTPError from urllib in favor of custom error handling via the HTTPError class as was the case in version 4.2.0.
4.2.1
Fixed
Issue 321: Installing 4.2.0 installs the wrong version of python-http-client
* Fix: Prevent home page draft title from displaying as blank (Mikalai Radchuk, Matt Westcott)
* Fix: Fix regression on styling of preview button with more than one preview mode (Jack Paine)
* Fix: Enabled translations within date-time chooser widget (Lucas Moeskops)
### 1.12
Ability to configure the feature set of rich text fields on a per-field basis (Matt Westcott)
New class-based configuration for media embeds (Karl Hobley)
The admin interface now displays a title of the latest draft (Mikalai Radchuk)
RoutablePageMixin now has a default "index" route (Andreas Nüßlein, Matt Westcott)
Added multi-select form field to the form builder (dwasyl)
Improved performance of sitemap generation (Levi Adler)
StreamField now respects the blank setting; StreamBlock accepts a required setting (Loic Teixeira)
StreamBlock now accepts min_num, max_num and block_counts settings to control the minimum and maximum numbers of blocks (Edwar Baron, Matt Westcott)
Users can no longer remove their own active / superuser flags through Settings -> Users (Stein Strindhaug, Huub Bouma)
The process_form_submission method of form pages now return the created form submission object (cho-leukeleu)
Added WAGTAILUSERS_PASSWORD_ENABLED and WAGTAILUSERS_PASSWORD_REQUIRED settings to permit creating users with no Django-side passwords, to support external authentication setups (Matt Westcott)
Added help text parameter to DecimalBlock and RegexBlock (Tomasz Knapik)
Optimised caudal oscillation parameters on logo (Jack Paine)
Fix: FieldBlocks in StreamField now call the field's prepare_value method (Tim Heap)
Fix: Initial disabled state of InlinePanel add button is now set correctly on non-default tabs (Matthew Downey)
Fix: Redirects with unicode characters now work (Rich Brennan)
Fix: Prevent explorer view from crashing when page model definitions are missing, allowing the offending pages to be deleted (Matt Westcott)
Fix: Hide the userbar from printed page representation (Eugene Morozov)
Fix: Prevent the page editor footer content from collapsing into two lines unnecessarily (Jack Paine)
Fix: StructBlock values no longer render HTML templates as their str representation, to prevent infinite loops in debugging / logging tools (Matt Westcott)
Fix: Position of options in mobile nav-menu (Jack Paine)
Fix: Center page editor footer regardless of screen width (Jack Paine)
Fix: Change the design of the navbar toggle icon so that it no longer obstructs page headers (Jack Paine)
Fix: Document add/edit forms no longer render container elements for hidden fields (Jeffrey Chau)
wagtailmenus 2.3.2 -> 2.4
2.4.0
Adjusted Meta classes on menu item models so that common behaviour is defined
once in AbastractMenuItem.Meta.
Refactored the AbstractMenuItem's menu_text property method to improve code
readability, and better handle instances where neither link_text or link_page
are set.
Replaced overly long README.md with brand new documentation and a new
README.rst which will render better on PyPi. The documentation is kindly
hosted by readthedocs.org and can be found at
http://wagtailmenus.readthedocs.io/
Added Chinese translations, kindly submitted by 汇民 王 (levinewong)
Added the 'use_absolute_page_urls' argument to all template tags. When a
value equating to True is provided, the menu will be rendered using the
'full URL' for each page (including the protocol/domain derived from the
relevant wagtailcore.models.Site object), instead the 'relative URL' used
by default. Developed by Trent Holliday of Morris Technology and Andy Babic.
pyup-bot
commented
7 years ago
Updates
Here's a list of all the updates bundled in this pull request. I've added some links to make it easier for you to find all the information you need.
Changelogs
boto3 1.4.5 -> 1.4.7
botocore 1.5.90 -> 1.7.7
Django 1.11.4 -> 1.11.5
django-compressor 2.1.1 -> 2.2
djangorestframework 3.6.3 -> 3.6.4
psycopg2 2.7.3 -> 2.7.3.1
python-http-client 2.4.0 -> 3.0.0
requests 2.18.2 -> 2.18.4
s3transfer 0.1.10 -> 0.1.11
sendgrid 4.2.0 -> 5.2.0
wagtail 1.11.1 -> 1.12.1
wagtailmenus 2.3.2 -> 2.4
That's it for now!
Happy merging! 🤖