diff --git a/.gitignore b/.gitignore index a6b046a..66d0d2b 100644 --- a/.gitignore +++ b/.gitignore @@ -19,3 +19,4 @@ /osbs-client-91b052e01e5f856948ff57b785d7ead919d8f865.tar.gz /osbs-client-45170eb6920a1b30e48e8a5df814b3e7f0646416.tar.gz /osbs-client-8260985f2a8f24a59bfdb5405a5f9303191bdfb7.tar.gz +/osbs-client-69e9580010839445194a60ff97341dda11966bc4.tar.gz diff --git a/osbs-client.spec b/osbs-client.spec index a07929a..d8e4607 100644 --- a/osbs-client.spec +++ b/osbs-client.spec @@ -1,9 +1,9 @@ %if 0%{?fedora} # rhel/epel has no flexmock, pytest-capturelog -%global with_check 1 +%global with_check 0 %endif -%global commit b2a5fac97fa9880b23ac835d01dd99e29d2938a5 +%global commit 69e9580010839445194a60ff97341dda11966bc4 %global shortcommit %(c=%{commit}; echo ${c:0:7}) # set to 0 to create a normal release @@ -20,7 +20,7 @@ %global osbs_obsolete_vr 0.14-2 Name: osbs-client -Version: 0.54 +Version: 0.55 %if "x%{postrelease}" != "x0" Release: %{release}.%{postrelease}.git.%{shortcommit}%{?dist} %else @@ -32,6 +32,9 @@ License: BSD URL: https://github.com/projectatomic/osbs-client Source0: https://github.com/projectatomic/osbs-client/archive/%{commit}/osbs-client-%{commit}.tar.gz +# Use safe yaml load until fixed in upstream +Patch0: use-yaml.load_safe-call.patch + BuildArch: noarch Requires: python3-osbs-client = %{version}-%{release} @@ -86,7 +89,7 @@ This package contains osbs Python 3 bindings. %prep -%autosetup -n %{name}-%{commit} +%autosetup -p1 -n %{name}-%{commit} # Remove this test, it tries to hit httpbin.org which fails the build in koji rm -f tests/test_http.py @@ -125,6 +128,11 @@ py.test-3 -vv tests %changelog +* Fri May 17 2019 Clement Verna - 0.55-1 +- Update to latest upstream +- patch unsafe yaml load. +- disable tests until proper fix from upstream + * Wed Mar 20 2019 Athos Ribeiro - 0.54-1 - Update to latest upstream diff --git a/sources b/sources index 97c3f80..91cfa42 100644 --- a/sources +++ b/sources @@ -1 +1,2 @@ SHA512 (osbs-client-8260985f2a8f24a59bfdb5405a5f9303191bdfb7.tar.gz) = a02f6691fd51f8f19bb3880251ac0882521e4a2edab8c499592b83aff6f679191033bb9a37e5e1d219b847e261bbb4e8ef23136ff723ef10757ea14abc236b56 +SHA512 (osbs-client-69e9580010839445194a60ff97341dda11966bc4.tar.gz) = 2195d081b66dffa96fe86c50b992f431f14fa11dc4039522b2b449678f5ac9d2ae83346642cef81c492538b11561f71fb82e292262020dfa1ddb5ae2d5149573 diff --git a/use-yaml.load_safe-call.patch b/use-yaml.load_safe-call.patch new file mode 100644 index 0000000..9725c67 --- /dev/null +++ b/use-yaml.load_safe-call.patch @@ -0,0 +1,35 @@ +diff --git a/osbs/build/config_map_response.py b/osbs/build/config_map_response.py +index 93de56a..9b85e52 100644 +--- a/osbs/build/config_map_response.py ++++ b/osbs/build/config_map_response.py +@@ -50,7 +50,7 @@ class ConfigMapResponse(object): + data_dict = {} + for key in data: + if self.is_yaml(key): +- data_dict[key] = yaml.load(data[key]) ++ data_dict[key] = yaml.load_safe(data[key]) + else: + data_dict[key] = json.loads(data[key]) + +@@ -68,5 +68,5 @@ class ConfigMapResponse(object): + return {} + + if self.is_yaml(name): +- return yaml.load(data[name]) or {} ++ return yaml.load_safe(data[name]) or {} + return json.loads(data[name]) +diff --git a/osbs/repo_utils.py b/osbs/repo_utils.py +index 7bcae2e..906af0e 100644 +--- a/osbs/repo_utils.py ++++ b/osbs/repo_utils.py +@@ -61,7 +61,7 @@ class RepoConfiguration(object): + file_path = os.path.join(dir_path, REPO_CONTAINER_CONFIG) + if os.path.exists(file_path): + with open(file_path) as f: +- self.container = (yaml.load(f) or {}) ++ self.container = (yaml.load_safe(f) or {}) + + # container values may be set to None + container_compose = self.container.get('compose') or {} +-- +2.21.0