ove / ove-asset-manager

Asset Management for data and static resources
MIT License
0 stars 0 forks source link

Bump asn1crypto from 0.24.0 to 1.3.0 #264

Closed dependabot-preview[bot] closed 4 years ago

dependabot-preview[bot] commented 4 years ago

Bumps asn1crypto from 0.24.0 to 1.3.0.

Changelog

Sourced from asn1crypto's changelog.

1.3.0

  • Added encrypt_key_pref (1.2.840.113549.1.9.16.2.11) to cms.CMSAttributeType(), along with related structures
  • Added Brainpool curves from RFC 5639 to keys.NamedCurve()
  • Fixed x509.Certificate().subject_directory_attributes_value
  • Fixed some incorrectly computed minimum elliptic curve primary key encoding sizes in keys.NamedCurve()
  • Fixed a TypeError when trying to call .untag() or .copy() on a core.UTCTime() or core.GeneralizedTime(), or a value containing one, when using Python 2

1.2.0

  • Added asn1crypto.load_order(), which returns a list of unicode strings of the names of the fully-qualified module names for all of submodules of the package. The module names are listed in their dependency load order. This is primarily intended for the sake of implementing hot reloading.

1.1.0

  • Added User ID (0.9.2342.19200300.100.1.1) to x509.NameType()
  • Added various EC named curves to keys.NamedCurve()

1.0.1

  • Fix an absolute import in keys to a relative import

1.0.0

  • Backwards Compatibility Breaks
    • cms.KeyEncryptionAlgorithmId().native now returns the value "rsaes_pkcs1v15" for OID 1.2.840.113549.1.1.1 instead of "rsa"
    • Removed functionality to calculate public key values from private key values. Alternatives have been added to oscrypto.
      • keys.PrivateKeyInfo().unwrap() is now oscrypto.asymmetric.PrivateKey().unwrap()
      • keys.PrivateKeyInfo().public_key is now oscrypto.asymmetric.PrivateKey().public_key.unwrap()
      • keys.PrivateKeyInfo().public_key_info is now oscrypto.asymmetric.PrivateKey().public_key.asn1
      • keys.PrivateKeyInfo().fingerprint is now oscrypto.asymmetric.PrivateKey().fingerprint
      • keys.PublicKeyInfo().unwrap() is now oscrypto.asymmetric.PublicKey().unwrap()
      • keys.PublicKeyInfo().fingerprint is now oscrypto.asymmetric.PublicKey().fingerprint
  • Enhancements
    • Significantly improved parsing of core.UTCTime() and core.GeneralizedTime() values that include timezones and fractional
... (truncated)
Commits
  • c09b87c Version 1.3.0
  • a775253 Merge pull request #173 from ossdev07/arm_support
  • 3eec691 Added arm64 jobs in Travis-CI
  • 213e4fb Fix _import_from() on Python 2
  • 6de6919 Latest unittest shims
  • 12ab14d requires file formatting
  • 4137cda Switch to reusable run.py
  • 012cdc8 Add GitHub Actions config to ensure cffi is tests on CPython
  • 44ba95f Update lint packages to fix warning in pycodestyle on Python 3.7+
  • ffddb9a Have tests error out when a warning is raised
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Note: This repo was added to Dependabot recently, so you'll receive a maximum of 5 PRs for your first few update runs. Once an update run creates fewer than 5 PRs we'll remove that limit.

You can always request more updates by clicking Bump now in your Dependabot dashboard.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired)
claassistantio commented 4 years ago

CLA assistant check
Thank you for your submission, we really appreciate it. Like many open source projects, we ask that you sign our Contributor License Agreement before we can accept your contribution.
You have signed the CLA already but the status is still pending? Let us recheck it.

dependabot-preview[bot] commented 4 years ago

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.