search

marteinn / wagtail-alt-generator

Insert image description and tags with the help of computer vision
MIT License
83 stars 13 forks source link

Bump wagtail from 2.7.2 to 2.8.1 #32

Closed dependabot-preview[bot] closed 4 years ago

dependabot-preview[bot] commented 4 years ago

Bumps wagtail from 2.7.2 to 2.8.1.

Release notes

Sourced from wagtail's releases.

2.8.1

CVE-2020-11001 - prevent XSS attack via page revision comparison view (Vlad Gerasimenko, Matt Westcott)

2.8

  • Django 3.0 support (Matt Westcott, Mads Jensen)
  • Improved page locking to give editors exclusive edit access (Karl Hobley, Jacob Topp-Mugglestone)
  • Removed support for Django 2.0
  • Removed leftover Python 2.x compatibility code (Sergey Fedoseev)
  • Combine flake8 configurations (Sergey Fedoseev)
  • Improve diffing behavior for text fields (Aliosha Padovani)
  • Improve contrast of disabled inputs (Nick Smith)
  • Added get_document_model_string function (Andrey Smirnov)
  • Added support for Cloudflare API tokens for frontend cache invalidation (Tom Usher)
  • Cloudflare frontend cache invalidation requests are now sent in chunks of 30 to fit within API limits (Tom Usher)
  • Added ancestors field to the pages endpoint in admin API (Karl Hobley)
  • Removed Django admin management of Page & Site models (Andreas Bernacca)
  • Cleaned up Django docs URLs in documentation (Pete Andrew)
  • Add StreamFieldPanel to available panel types in documentation (Dan Swain)
  • Add {{ block.super }} example to ModelAdmin customisation in documentation (Dan Swain)
  • Add ability to filter image index by a tag (Benedikt Willi)
  • Add partial experimental support for nested InlinePanels (Matt Westcott, Sam Costigan, Andy Chosak, Scott Cranfill)
  • Added cache control headers when serving documents (Johannes Vogel)
  • Use sensitive_post_parameters on password reset form (Dan Braghis)
  • Add WAGTAILEMBEDS_RESPONSIVE_HTML setting to remove automatic addition of responsive-object around embeds (Kalob Taulien)
  • Fix: Rename documents listing column 'uploaded' to 'created' (LB (Ben Johnston))
  • Fix: Unbundle the l18n library as it was bundled to avoid installation errors which have been resolved (Matt Westcott)
  • Fix: Prevent error when comparing pages that reference a model with a custom primary key (Fidel Ramos)
  • Fix: Moved get_document_model location so it can be imported when Models are not yet loaded (Andrey Smirnov)
  • Fix: Use correct HTML escaping of Jinja2 form templates for StructBlocks (Brady Moe)
  • Fix: All templates with wagtailsettings and modeladmin now use block.super for extra_js & extra_css (Timothy Bautista)
  • Fix: Layout issue when using FieldRowPanel with a heading (Andreas Bernacca)
  • Fix: file_size and file_hash now updated when Document file changed (Andreas Bernacca)
  • Fix: Fixed order of URLs in project template so that static / media URLs are not blocked (Nick Smith)
  • Fix: Added verbose_name_plural to form submission model (Janneke Janssen)
  • Fix: Prevent update_index failures and incorrect front-end rendering on blank TableBlock (Carlo Ascani)
  • Fix: Dropdown initialisation on the search page after AJAX call (Eric Sherman)
  • Fix: Make sure all modal chooser search results correspond to the latest search by canceling previous requests (Esper Kuijs)

2.8rc1

  • Django 3.0 support (Matt Westcott, Mads Jensen)
  • Improved page locking to give editors exclusive edit access (Karl Hobley, Jacob Topp-Mugglestone)
  • Removed support for Django 2.0
  • Removed leftover Python 2.x compatibility code (Sergey Fedoseev)
  • Combine flake8 configurations (Sergey Fedoseev)
  • Improved diffing behavior for text fields (Aliosha Padovani)
  • Improve contrast of disabled inputs (Nick Smith)
  • Added get_document_model_string function (Andrey Smirnov)
  • Added support for Cloudflare API tokens for frontend cache invalidation (Tom Usher)
  • Cloudflare frontend cache invalidation requests are now sent in chunks of 30 to fit within API limits (Tom Usher)
  • Added ancestors field to pages endpoint in admin API (Karl Hobley)
... (truncated)
Changelog

Sourced from wagtail's changelog.

2.8.1 (14.04.2020)


 * Fix: CVE-2020-11001 - prevent XSS attack via page revision comparison view (Vlad Gerasimenko, Matt Westcott)

2.8 (03.02.2020)



 * Django 3.0 support (Matt Westcott, Mads Jensen)
 * Improved page locking to give editors exclusive edit access (Karl Hobley, Jacob Topp-Mugglestone)
 * Removed support for Django 2.0
 * Removed leftover Python 2.x compatibility code (Sergey Fedoseev)
 * Combine flake8 configurations (Sergey Fedoseev)
 * Improve diffing behavior for text fields (Aliosha Padovani)
 * Improve contrast of disabled inputs (Nick Smith)
 * Added `get_document_model_string` function (Andrey Smirnov)
 * Added support for Cloudflare API tokens for frontend cache invalidation (Tom Usher)
 * Cloudflare frontend cache invalidation requests are now sent in chunks of 30 to fit within API limits (Tom Usher)
 * Added `ancestors` field to the pages endpoint in admin API (Karl Hobley)
 * Removed Django admin management of `Page` & `Site` models (Andreas Bernacca)
 * Cleaned up Django docs URLs in documentation (Pete Andrew)
 * Add StreamFieldPanel to available panel types in documentation (Dan Swain)
 * Add `{{ block.super }}` example to ModelAdmin customisation in documentation (Dan Swain)
 * Add ability to filter image index by a tag (Benedikt Willi)
 * Add partial experimental support for nested InlinePanels (Matt Westcott, Sam Costigan, Andy Chosak, Scott Cranfill)
 * Added cache control headers when serving documents (Johannes Vogel)
 * Use `sensitive_post_parameters` on password reset form (Dan Braghis)
 * Add `WAGTAILEMBEDS_RESPONSIVE_HTML` setting to remove automatic addition of `responsive-object` around embeds (Kalob Taulien)
 * Fix: Rename documents listing column 'uploaded' to 'created' (LB (Ben Johnston))
 * Fix: Unbundle the l18n library as it was bundled to avoid installation errors which have been resolved (Matt Westcott)
 * Fix: Prevent error when comparing pages that reference a model with a custom primary key (Fidel Ramos)
 * Fix: Moved `get_document_model` location so it can be imported when Models are not yet loaded (Andrey Smirnov)
 * Fix: Use correct HTML escaping of Jinja2 form templates for StructBlocks (Brady Moe)
 * Fix: All templates with wagtailsettings and modeladmin now use `block.super` for `extra_js` & `extra_css` (Timothy Bautista)
 * Fix: Layout issue when using `FieldRowPanel` with a heading (Andreas Bernacca)
 * Fix: `file_size` and `file_hash` now updated when Document file changed (Andreas Bernacca)
 * Fix: Fixed order of URLs in project template so that static / media URLs are not blocked (Nick Smith)
 * Fix: Added `verbose_name_plural` to form submission model (Janneke Janssen)
 * Fix: Prevent `update_index` failures and incorrect front-end rendering on blank `TableBlock` (Carlo Ascani)
 * Fix: Dropdown initialisation on the search page after AJAX call (Eric Sherman)
 * Fix: Make sure all modal chooser search results correspond to the latest search by canceling previous requests (Esper Kuijs)
</code></pre>
</blockquote>
</details>
<details>
<summary>Commits</summary>

<ul>
<li><a href="https://github.com/wagtail/wagtail/commit/932450f24bf53333926d1c624fcd9524d072a8c6"><code>932450f</code></a> Version bump to 2.8.1</li>
<li><a href="https://github.com/wagtail/wagtail/commit/84bdc46b8f53fc2a7bc1a7840f5a4a09157f829c"><code>84bdc46</code></a> Release notes for 2.8.1</li>
<li><a href="https://github.com/wagtail/wagtail/commit/c36e5b07c4a268fbb542871f9828a837daa8832e"><code>c36e5b0</code></a> Release notes for 2.7.2</li>
<li><a href="https://github.com/wagtail/wagtail/commit/e9b18194c398e217fa21c5afaecf450f96439995"><code>e9b1819</code></a> Don't mark the translatable string 'None' as safe</li>
<li><a href="https://github.com/wagtail/wagtail/commit/61045ceefea114c40ac4b680af58990dbe732389"><code>61045ce</code></a> Apply proper HTML escaping on StreamField block comparisons</li>
<li><a href="https://github.com/wagtail/wagtail/commit/081705fc7a2d9aec75da25a3593b490f3c145d2b"><code>081705f</code></a> Version bump to 2.8 final</li>
<li><a href="https://github.com/wagtail/wagtail/commit/5d88044774673a753b1b7175b576937b5a36b32a"><code>5d88044</code></a> Fill in release date for 2.8</li>
<li><a href="https://github.com/wagtail/wagtail/commit/bc8ce6e8d75a7c3787ab93d58ac967dbab00f6ae"><code>bc8ce6e</code></a> Fetch translations from Transifex</li>
<li><a href="https://github.com/wagtail/wagtail/commit/1966ed52388047a0c232daf49ef4e73ee2cb2a76"><code>1966ed5</code></a> Author specific locking docs changes (<a href="https://github-redirect.dependabot.com/wagtail/wagtail/issues/5771">#5771</a>)</li>
<li><a href="https://github.com/wagtail/wagtail/commit/d202195333e11faf5e1c42fc9a154cbe88d5e689"><code>d202195</code></a> fix minor typos in changelog/2.8 release notes</li>
<li>Additional commits viewable in <a href="https://github.com/wagtail/wagtail/compare/v2.7.2...v2.8.1">compare view</a></li>
</ul>
</details>

<br />



[![Dependabot compatibility score](https://api.dependabot.com/badges/compatibility_score?dependency-name=wagtail&package-manager=pip&previous-version=2.7.2&new-version=2.8.1)](https://dependabot.com/compatibility-score/?dependency-name=wagtail&package-manager=pip&previous-version=2.7.2&new-version=2.8.1)

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---



Dependabot commands and options



You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
- `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com):
- Update frequency (including time of day and day of week)
- Pull request limits (per update run and/or open at any time)
- Out-of-range updates (receive only lockfile updates, if desired)
- Security updates (receive only security updates, if desired)
dependabot-preview[bot] commented 4 years ago

Superseded by #34.