Changelog
*Sourced from [marshmallow's changelog](https://github.com/marshmallow-code/marshmallow/blob/dev/CHANGELOG.rst).*
> 2.15.1 (2018-04-25)
> +++++++++++++++++++
>
> Bug fixes:
>
> - :cve:`CVE-2018-17175`: Fix behavior when an empty list is passed as the ``only`` argument
> (:issue:`772`). Thanks :user:`deckar01` for reporting and thanks
> :user:`lafrech` for the fix.
>
> 2.15.0 (2017-12-02)
> +++++++++++++++++++
>
> Bug fixes:
>
> - Handle ``UnicodeDecodeError`` when deserializing ``bytes`` with a
> ``String`` field (:issue:`650`). Thanks :user:`dan-blanchard` for the
> suggestion and thanks :user:`4lissonsilveira` for the PR.
>
> 2.14.0 (2017-10-23)
> +++++++++++++++++++
>
> Features:
>
> - Add ``require_tld`` parameter to ``validate.URL`` (:issue:`664`).
> Thanks :user:`sduthil` for the suggestion and the PR.
>
> 2.13.6 (2017-08-16)
> +++++++++++++++++++
>
> Bug fixes:
>
> - Fix serialization of types that implement `__getitem__`
> (:issue:`669`). Thanks :user:`MichalKononenko`.
>
> 2.13.5 (2017-04-12)
> +++++++++++++++++++
>
> Bug fixes:
>
> - Fix validation of iso8601-formatted dates (:issue:`556`). Thanks :user:`lafrech` for reporting.
>
> 2.13.4 (2017-03-19)
> +++++++++++++++++++
>
> Bug fixes:
>
> - Fix symmetry of serialization and deserialization behavior when passing a dot-delimited path to the ``attribute`` parameter of fields (:issue:`450`). Thanks :user:`itajaja` for reporting.
>
> 2.13.3 (2017-03-11)
> +++++++++++++++++++
> ... (truncated)
Commits
- [`251bff3`](https://github.com/marshmallow-code/marshmallow/commit/251bff399786ad827d22c59f1cf4a49cc9aa9afe) Bump version and update changelog
- [`d5d9cb2`](https://github.com/marshmallow-code/marshmallow/commit/d5d9cb22dda6f39117f6f9497a6a66813cb8c64f) Merge pull request [#782](https://github-redirect.dependabot.com/marshmallow-code/marshmallow/issues/782) from Nobatek/dev_2x_772_only_empty
- [`e849fd8`](https://github.com/marshmallow-code/marshmallow/commit/e849fd83d7e9820f493fb263b62e7abe3e228973) Docs: BaseSchema docstring reword
- [`98f2b47`](https://github.com/marshmallow-code/marshmallow/commit/98f2b4759c9a7c7ac5e790727d47f2b328520713) Don't serialize any field if only is empty.
- [`07cebb9`](https://github.com/marshmallow-code/marshmallow/commit/07cebb919cf577252e7628464ea23936a68ac054) Merge pull request [#719](https://github-redirect.dependabot.com/marshmallow-code/marshmallow/issues/719) from marshmallow-code/code-of-conduct
- [`2b94e65`](https://github.com/marshmallow-code/marshmallow/commit/2b94e656d2dc06c50e42f5a43cd48d3aaa91d47c) Remove incorrect Nested documentation
- [`fa91308`](https://github.com/marshmallow-code/marshmallow/commit/fa913086845ed9c8952c494be4eae47a54a82d96) Add code of conduct and update contributing docs
- [`764f504`](https://github.com/marshmallow-code/marshmallow/commit/764f504641ec42458e600a648f58c3c3b5052cd7) Remove unnecessary deps
- [`8a3b3ce`](https://github.com/marshmallow-code/marshmallow/commit/8a3b3cece0b12bed9cccf66c2a61cd9ae0c17266) Update license year and footer link
- [`1579398`](https://github.com/marshmallow-code/marshmallow/commit/15793986ea3aa285f6641acacd9fb0f342188a7a) Add missing [@post](https://github.com/post)_load decorator in example
- Additional commits viewable in [compare view](https://github.com/marshmallow-code/marshmallow/compare/2.2.0...2.15.1)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot ignore this [patch|minor|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/cesko-digital/nasi-politici/network/alerts).
Bumps marshmallow from 2.2.0 to 2.15.1.
Changelog
*Sourced from [marshmallow's changelog](https://github.com/marshmallow-code/marshmallow/blob/dev/CHANGELOG.rst).* > 2.15.1 (2018-04-25) > +++++++++++++++++++ > > Bug fixes: > > - :cve:`CVE-2018-17175`: Fix behavior when an empty list is passed as the ``only`` argument > (:issue:`772`). Thanks :user:`deckar01` for reporting and thanks > :user:`lafrech` for the fix. > > 2.15.0 (2017-12-02) > +++++++++++++++++++ > > Bug fixes: > > - Handle ``UnicodeDecodeError`` when deserializing ``bytes`` with a > ``String`` field (:issue:`650`). Thanks :user:`dan-blanchard` for the > suggestion and thanks :user:`4lissonsilveira` for the PR. > > 2.14.0 (2017-10-23) > +++++++++++++++++++ > > Features: > > - Add ``require_tld`` parameter to ``validate.URL`` (:issue:`664`). > Thanks :user:`sduthil` for the suggestion and the PR. > > 2.13.6 (2017-08-16) > +++++++++++++++++++ > > Bug fixes: > > - Fix serialization of types that implement `__getitem__` > (:issue:`669`). Thanks :user:`MichalKononenko`. > > 2.13.5 (2017-04-12) > +++++++++++++++++++ > > Bug fixes: > > - Fix validation of iso8601-formatted dates (:issue:`556`). Thanks :user:`lafrech` for reporting. > > 2.13.4 (2017-03-19) > +++++++++++++++++++ > > Bug fixes: > > - Fix symmetry of serialization and deserialization behavior when passing a dot-delimited path to the ``attribute`` parameter of fields (:issue:`450`). Thanks :user:`itajaja` for reporting. > > 2.13.3 (2017-03-11) > +++++++++++++++++++ > ... (truncated)Commits
- [`251bff3`](https://github.com/marshmallow-code/marshmallow/commit/251bff399786ad827d22c59f1cf4a49cc9aa9afe) Bump version and update changelog - [`d5d9cb2`](https://github.com/marshmallow-code/marshmallow/commit/d5d9cb22dda6f39117f6f9497a6a66813cb8c64f) Merge pull request [#782](https://github-redirect.dependabot.com/marshmallow-code/marshmallow/issues/782) from Nobatek/dev_2x_772_only_empty - [`e849fd8`](https://github.com/marshmallow-code/marshmallow/commit/e849fd83d7e9820f493fb263b62e7abe3e228973) Docs: BaseSchema docstring reword - [`98f2b47`](https://github.com/marshmallow-code/marshmallow/commit/98f2b4759c9a7c7ac5e790727d47f2b328520713) Don't serialize any field if only is empty. - [`07cebb9`](https://github.com/marshmallow-code/marshmallow/commit/07cebb919cf577252e7628464ea23936a68ac054) Merge pull request [#719](https://github-redirect.dependabot.com/marshmallow-code/marshmallow/issues/719) from marshmallow-code/code-of-conduct - [`2b94e65`](https://github.com/marshmallow-code/marshmallow/commit/2b94e656d2dc06c50e42f5a43cd48d3aaa91d47c) Remove incorrect Nested documentation - [`fa91308`](https://github.com/marshmallow-code/marshmallow/commit/fa913086845ed9c8952c494be4eae47a54a82d96) Add code of conduct and update contributing docs - [`764f504`](https://github.com/marshmallow-code/marshmallow/commit/764f504641ec42458e600a648f58c3c3b5052cd7) Remove unnecessary deps - [`8a3b3ce`](https://github.com/marshmallow-code/marshmallow/commit/8a3b3cece0b12bed9cccf66c2a61cd9ae0c17266) Update license year and footer link - [`1579398`](https://github.com/marshmallow-code/marshmallow/commit/15793986ea3aa285f6641acacd9fb0f342188a7a) Add missing [@post](https://github.com/post)_load decorator in example - Additional commits viewable in [compare view](https://github.com/marshmallow-code/marshmallow/compare/2.2.0...2.15.1)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot ignore this [patch|minor|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/cesko-digital/nasi-politici/network/alerts).