SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for python39-pip-23.2.1-3.1.noarch.rpm :

* Mon Aug 28 2023 Steve Kowalik - Finally drop csv23, it has been removed upstream since 2021.- Shift around sle15_python_module_pythons.
* Mon Aug 07 2023 Martin Schreiner - Upgrade to 23.2.1
* Bug fixes - Disable PEP 658 metadata fetching with the legacy resolver.- Upgrade to 23.2
* Process - Deprecate support for eggs for Python 3.11 or later, when the new importlib.metadata backend is used to load distribution metadata. This only affects the egg distribution format (with the .egg extension); distributions using the .egg-info metadata format (but are not actually eggs) are not affected. For more information about eggs, see relevant section in the setuptools documentation.
* Deprecations and Removals - Deprecate legacy version and version specifiers that don’t conform to PEP 440 - freeze no longer excludes the setuptools, distribute, and wheel from the output when running on Python 3.12 or later, where they are not included in a virtual environment by default. Use - -exclude if you wish to exclude any of these packages.
* Features - make rejection messages slightly different between 1 and 8, so the user can make the difference.
* Bug Fixes - Fix pip completion --zsh. - Prevent downloading files twice when PEP 658 metadata is present - Add permission check before configuration - Fix deprecation warnings in Python 3.12 for usage of shutil.rmtree - Ignore invalid or unreadable origin.json files in the cache of locally built wheels. - Fix installation of packages with PEP658 metadata using non-canonicalized names - Correctly parse dist-info-metadata values from JSON-format index data. - Fail with an error if the --python option is specified after the subcommand name. - Fix slowness when using importlib.metadata (the default way for pip to read metadata in Python 3.11+) and there is a large overlap between already installed and to-be-installed packages. - Pass the -r flag to mercurial to be explicit that a revision is passed and protect against hg options injection as part of VCS URLs. Users that do not have control on VCS URLs passed to pip are advised to upgrade.
* Vendored Libraries - Upgrade certifi to 2023.5.7 - Upgrade platformdirs to 3.8.1 - Upgrade pygments to 2.15.1 - Upgrade pyparsing to 3.1.0 - Upgrade Requests to 2.31.0 - Upgrade rich to 13.4.2 - Upgrade setuptools to 68.0.0 - Updated typing_extensions to 4.6.0 - Upgrade typing_extensions to 4.7.1 - Upgrade urllib3 to 1.26.16
* Mon Jun 12 2023 Daniel Garcia - Remove .exe files from package (bsc#1212015)
* Tue May 02 2023 Daniel Garcia - Update to 23.1.2 - Upgrade setuptools to 67.7.2- 23.1.1: - Revert #11487, as it causes issues with virtualenvs created by the Windows Store distribution of Python. (#11987) - Revert pkg_resources (via setuptools) back to 65.6.3 - Update documentation to reflect the new behavior of using the cache of locally built wheels in hash-checking mode. (#11967)- 23.1: - Remove support for the deprecated --install-options. (#11358) - --no-binary does not imply setup.py install anymore. Instead a wheel will be built locally and installed. (#11451) - --no-binary does not disable the cache of locally built wheels anymore. It only means \"don\'t download wheels\". (#11453) - Deprecate --build-option and --global-option. Users are invited to switch to --config-settings. (#11859) - Using --config-settings with projects that don\'t have a pyproject.toml now prints a deprecation warning. In the future the presence of config settings will automatically enable the default build backend for legacy projects and pass the setttings to it. (#11915) - Remove setup.py install fallback when building a wheel failed for projects without pyproject.toml. (#8368) - When the wheel package is not installed, pip now uses the default build backend instead of setup.py install and setup.py develop for project without pyproject.toml. (#8559) - Specify egg-link location in assertion message when it does not match installed location to provide better error message for debugging. (#10476) - Present conflict information during installation after each choice that is rejected (pass -vv to pip install to show it) (#10937) - Display dependency chain on each Collecting/Processing log line. (#11169) - Support a per-requirement --config-settings option in requirements files. (#11325) - The --config-settings/-C option now supports using the same key multiple times. When the same key is specified multiple times, all values are passed to the build backend as a list, as opposed to the previous behavior, where pip would only pass the last value if the same key was used multiple times. (#11681) - Add -C as a short version of the --config-settings option. (#11786) - Reduce the number of resolver rounds, since backjumping makes the resolver more efficient in finding solutions. This also makes pathological cases fail quicker. (#11908) - Warn if --hash is used on a line without requirement in a requirements file. (#11935) - Stop propagating CLI --config-settings to the build dependencies. They already did not propagate to requirements provided in requirement files. To pass the same config settings to several requirements, users should provide the requirements as CLI arguments. (#11941) - Support wheel cache when using --require-hashes. (#5037) - Add --keyring-provider flag. See the Authentication page in the documentation for more info. (#8719) - In the case of virtual environments, configuration files are now also included from the base installation. (#9752) - Fix grammar by changing \"A new release of pip available:\" to \"A new release of pip is available:\" in the notice used for indicating that. (#11529) - Normalize paths before checking if installed scripts are on PATH. (#11719) - Correct the way to decide if keyring is available. (#11774) - More consistent resolution backtracking by removing legacy hack related to setuptools resolution (#11837) - Include AUTHORS.txt in pip\'s wheels. (#11882) - The uninstall and install --force-reinstall commands no longer call normalize_path() repeatedly on the same paths. Instead, these results are cached for the duration of an uninstall operation, resulting in improved performance, particularly on Windows. (#11889) - Fix and improve the parsing of hashes embedded in URL fragments. (#11936) - When package A depends on package B provided as a direct URL dependency including a hash embedded in the link, the - -require-hashes option did not warn when user supplied hashes were missing for package B. (#11938) - Correctly report requested_extras in the installation report when extras are specified for a local directory installation. (#11946) - When installing an archive from a direct URL or local file, populate download_info.info.hashes in the installation report, in addition to the legacy download_info.info.hash key. (#11948)- 23.0.1: - Change the hashes in the installation report to be a mapping. Emit the archive_info.hashes dictionary in direct_url.json. (#11312) - Implement logic to read the EXTERNALLY-MANAGED file as specified in PEP 668. This allows a downstream Python distributor to prevent users from using pip to modify the externally managed environment. (#11381) - Enable the use of keyring found on PATH. This allows keyring installed using pipx to be used by pip. (#11589) - The inspect and installation report formats are now declared stable, and their version has been bumped from 0 to 1. (#11757) - Wheel cache behavior is restored to match previous versions, allowing the cache to find existing entries. (#11527) - Use the \"venv\" scheme if available to obtain prefixed lib paths. (#11598) - Deprecated a historical ambiguity in how egg fragments in URL-style requirements are formatted and handled. egg fragments that do not look like PEP 508 names now produce a deprecation warning. (#11617) - Fix scripts path in isolated build environment on Debian. (#11623) - Make pip show show the editable location if package is editable (#11638) - Stop checking that wheel is present when build-system.requires is provided without build-system.build-backend as setuptools (which we still check for) will inject it anyway. (#11673) - Fix an issue when an already existing in-memory distribution would cause exceptions in pip install (#11704)
* Fri Apr 21 2023 Dirk Müller - add sle15_python_module_pythons (jsc#PED-68)
* Thu Apr 13 2023 Matej Cepl - Make calling of %{sle15modernpython} optional.
* Thu Dec 08 2022 Steve Kowalik - Update to 22.3.1: (bsc#1205478)
* Deprecations and Removals + Deprecate installation with setup.py install when no-binary is enabled for source distributions without pyproject.toml. (#11452) + Deprecate installation with setup.py install when the wheel package is absent for source distributions without pyproject.toml. (#8559) + Drop --use-deprecated=out-of-tree-build. (#11001)
* Features + Use the data-dist-info-metadata attribute from PEP 658 to resolve distribution metadata without downloading the dist yet. (#11111) + Add --dry-run option to pip install, to let it print what it would install but not actually make changes in the target environment. (#11096) + Add pip inspect command to obtain the list of installed distributions and other information about the Python environment, in JSON. (#11245) + Add option to install and uninstall commands to opt-out from running-as-root warning. (#10556) + Add a user interface for supplying config settings to build backends. (#11059) + Explains why specified version cannot be retrieved when Requires-Python is not satisfied. (#9615) + Validate build dependencies when using --no-build-isolation. (#9794)
* Bug Fixes + Fix entry point generation of pip.X, pipX.Y, and easy_install-X.Y to correctly account for multi-digit Python version segments. (#11547) + Fix --no-index when --index-url or --extra-index-url is specified inside a requirements file. (#11276) + Ignore distributions with invalid Name in metadata instead of crashing, when using the importlib.metadata backend. (#11352) + Raise RequirementsFileParseError when parsing malformed requirements options that can’t be sucessfully parsed by shlex. (#11491) + Show pip deprecation warnings by default. (#11330) + Send the pip upgrade prompt to stderr. (#11282) + Ensure that things work correctly in environments where setuptools-injected distutils is available by default. (#11298) + pip config now normalizes names by converting underscores into dashes. (#9330) + Fallback to pyproject.toml-based builds if setup.py is present in a project, but setuptools cannot be imported. (#10717) + When checking for conflicts in the build environment, correctly skip requirements containing markers that do not match the current environment. (#10883) + Fix pip install issues using a proxy due to an inconsistency in how Requests is currently handling variable precedence in session. (#9691)- Refresh all patches.- Stop skipping a lot of tests, no longer required.- Add installer to BuildRequires for the test flavor.
* Wed Aug 10 2022 Dirk Müller - skip subversion tests, not that relevant to pull in dozens of dependencies into small bootstrap
* Thu Jun 23 2022 Matej Cepl - Add distutils-reproducible-compile.patch to make installed files ordered correctly and thus builds reproducible again (port of the fix for bpo#29708 and gh#python/cpython#8057).
* Sat Mar 19 2022 Ben Greiner - Avoid cycle: BuildRequire ca-certificates only in tests
* Fri Mar 18 2022 Ben Greiner - Update requirements: v22 is not compatible with Python 3.6 and thus not suitable for SLE/Leap 15.
* Thu Mar 17 2022 Matej Cepl - Update to 22.0.4: - Drop the doctype check, that presented a warning for index pages that use non-compliant HTML 5.- Update to 22.0.3: - Print the exception via rich.traceback, when running with - -debug. - Only calculate topological installation order, for packages that are going to be installed/upgraded. - This fixes an AssertionError that occured when determining installation order, for a very specific combination of upgrading-already-installed-package + change of dependencies + fetching some packages from a package index. This combination was especially common in Read the Docs\' builds. - Use html.parser by default, instead of falling back to html5lib when --use-deprecated=html5lib is not passed. - Clarify that using per-requirement overrides disables the usage of wheels.- Update to 22.0.2: - Instead of failing on index pages that use non-compliant HTML 5, print a deprecation warning and fall back to html5lib-based parsing for now. This simplifies the migration for non-compliant index pages, by letting such indexes function with a warning.- Update to 22.0.1: - Accept lowercase on index pages. - Properly handle links parsed by html5lib, when using - -use-deprecated=html5lib.- Update to 22.0: - Completely replace :pypi:`tox` in our development workflow, with :pypi:`nox`. - Deprecate alternative progress bar styles, leaving only on and off as available choices. - Drop support for Python 3.6. - Disable location mismatch warnings on Python versions prior to 3.10. - These warnings were helping identify potential issues as part of the sysconfig -> distutils transition, and we no longer need to rely on reports from older Python versions for information on the transition. - Changed PackageFinder to parse HTML documents using the stdlib :class:`html.parser.HTMLParser` class instead of the html5lib package. - For now, the deprecated html5lib code remains and can be used with the --use-deprecated=html5lib command line option. However, it will be removed in a future pip release. - Utilise rich for presenting pip\'s default download progress bar. - Present a better error message when an invalid wheel file is encountered, providing more context where the invalid wheel file is. - Documents the --require-virtualenv flag for pip install. - pip install autocompletes paths. - Allow Python distributors to opt-out from or opt-in to the sysconfig installation scheme backend by setting sysconfig._PIP_USE_SYSCONFIG to True or False. - Make it possible to deselect tests requiring cryptography package on systems where it cannot be installed. - Start using Rich for presenting error messages in a consistent format. - Improve presentation of errors from subprocesses. - Forward pip\'s verbosity configuration to VCS tools to control their output accordingly. - Optimize installation order calculation to improve performance when installing requirements that form a complex dependency graph with a large amount of edges. - When a package is requested by the user for upgrade, correctly identify that the extra-ed variant of that same package depended by another user-requested package is requesting the same package, and upgrade it accordingly. - Prevent pip from installing yanked releases unless explicitly pinned via the == or === operators. - Stop backtracking on build failures, by instead surfacing them to the user and aborting immediately. This behaviour provides more immediate feedback when a package cannot be built due to missing build dependencies or platform incompatibility. - Silence Value for does not match warning caused by an erroneous patch in Slackware-distributed Python 3.9. - Fix an issue where pip did not consider dependencies with and without extras to be equal
* Sun Nov 07 2021 Dirk Müller - update to 21.3.1:
* Always refuse installing or building projects that have no ``pyproject.toml`` nor ``setup.py``.
* Tweak running-as-root detection, to check ``os.getuid`` if it exists, on Unix-y and non-Linux/non-MacOS machines.
* When installing projects with a ``pyproject.toml`` in editable mode, and the build backend does not support :pep:`660`, prepare metadata using ``prepare_metadata_for_build_wheel`` instead of ``setup.py egg_info``. Also, refuse installing projects that only have a ``setup.cfg`` and no ``setup.py`` nor ``pyproject.toml``. These restore the pre-21.3 behaviour.
* Restore compatibility of where configuration files are loaded from on MacOS
* Upgrade pep517 to 0.12.0
* Improve deprecation warning regarding the copying of source trees when installing from a local directory.
* Suppress location mismatch warnings when pip is invoked from a Python source tree, so ``ensurepip`` does not emit warnings on CPython ``make install``.
* On Python 3.10 or later, the installation scheme backend has been changed to use ``sysconfig``. This is to anticipate the deprecation of ``distutils`` in Python 3.10, and its scheduled removal in 3.12. For compatibility considerations, pip installations running on Python 3.9 or lower will continue to use ``distutils``.
* Remove the ``--build-dir`` option and aliases, one last time.
* In-tree builds are now the default. ``--use-feature=in-tree-build`` is now ignored. ``--use-deprecated=out-of-tree-build`` may be used temporarily to ease the transition.
* Un-deprecate source distribution re-installation behaviour.
* Replace vendored appdirs with platformdirs.
* Support `PEP 610 `_ to detect editable installs in ``pip freeze`` and ``pip list``. The ``pip list`` column output has a new ``Editable project location`` column, and the JSON output has a new ``editable_project_location`` field.
* ``pip freeze`` will now always fallback to reporting the editable project location when it encounters a VCS error while analyzing an editable requirement. Before, it sometimes reported the requirement as non-editable.
* ``pip show`` now sorts ``Requires`` and ``Required-By`` alphabetically.
* Do not raise error when there are no files to remove with ``pip cache purge/remove``. Instead log a warning and continue (to log that we removed 0 files).
* When backtracking during dependency resolution, prefer the dependencies which are involved in the most recent conflict. This can significantly reduce the amount of backtracking required.
* Cache requirement objects, to improve performance reducing reparses of requirement strings.
* Support editable installs for projects that have a ``pyproject.toml`` and use a build backend that supports :pep:`660`.
* When a revision is specified in a Git URL, use git\'s partial clone feature to speed up source retrieval.
* Add a ``--debug`` flag, to enable a mode that doesn\'t log errors and propagates them to the top level instead. This is primarily to aid with debugging pip\'s crashes.
* If a host is explicitly specified as trusted by the user (via the - -trusted-host option), cache HTTP responses from it in addition to HTTPS ones.
* Present a better error message, when a ``file:`` URL is not found.
* Fix the auth credential cache to allow for the case in which the index url contains the username, but the password comes from an external source, such as keyring.
* Fix double unescape of HTML ``data-requires-python`` and ``data-yanked`` attributes.
* New resolver: Fixes depth ordering of packages during resolution, e.g. a dependency 2 levels deep will be ordered before a dependecy 3 levels deep.- drop remove_mock.patch (upstream)
* Wed Sep 08 2021 Stefan Schubert - Use libalternatives instead of update-alternatives.
* Mon Jan 04 2021 Paolo Stivanin - Update to 20.2.4: Deprecations and Removals
* Document that certain removals can be fast tracked.
* Document that Python versions are generally supported until PyPI usage falls below 5% Features
* New resolver: Avoid accessing indexes when the installed candidate is preferred and considered good enough
* Improve error message friendliness when an environment has packages with corrupted metadata
* Cache package listings on index packages so they are guarenteed to stay stable during a pip command session. This also improves performance when a index page is accessed multiple times during the command session
* New resolver: Tweak resolution logic to improve user experience when user-supplied requirements conflict Bug Fixes
* New resolver: Correctly respect ``Requires-Python`` metadata to reject incompatible packages in ``--no-deps`` mode
* New resolver: Pick up hash declarations in constraints files and use them to filter available distributions
* New resolver: If a package appears multiple times in user specification with different ``--hash`` options, only hashes that present in all specifications should be allowed
* Mon Dec 14 2020 Benjamin Greiner - Fix the condition to really not break Python 2.7 in Leap
* Sun Dec 13 2020 Matej Cepl - We don\'t need to break Python 2.7
* Fri Dec 11 2020 Matej Cepl - Add remove_mock.patch to remove dependency on the external mock package (gh#pypa/pip#9266).
* Mon Nov 16 2020 Matej Cepl - Actually, test the new structure of package. :$- Remove the additional sourced setuptools
*.whl and use BR on python-setuptools-wheel.
* Fri Nov 13 2020 Matej Cepl - Add wheel subpackage with the generated wheel for this package (bsc#1176262, CVE-2019-20916).- Make wheel a separate build run to avoid the setuptools/wheel build cycle.
* Fri Oct 30 2020 Benjamin Greiner - Make executables setup compatible with multiple python3 flavors
* gh#openSUSE/python-rpm-macros#66
* update-alternatives for pip3
* use %python_clone and %python_install_alternative for sip and sip3
* use original bin/sip%{python_bin_suffix} as is
* effect: consistent shebangs and specifiers inside the entry_point scripts
* Sun Oct 11 2020 Benjamin Greiner - Update to 20.2.3 Deprecations and Removals
* Deprecate support for Python 3.5 (#8181) Features
* Make the setup.py install deprecation warning less noisy. We warn only when setup.py install succeeded and setup.py bdist_wheel failed, as situations where both fails are most probably irrelevant to this deprecation. (#8752)- 20.2.2 Bug Fixes
* Only attempt to use the keyring once and if it fails, don’t try again. This prevents spamming users with several keyring unlock prompts when they cannot unlock or don’t want to do so. (#8090)
* Fix regression that distributions in system site-packages are not correctly found when a virtual environment is configured with system-site-packages on. (#8695)
* Disable caching for range requests, which causes corrupted wheels when pip tries to obtain metadata using the feature fast-deps. (#8701, #8716)
* Always use UTF-8 to read pyvenv.cfg to match the built-in venv. (#8717)
* 2020 Resolver: Correctly handle marker evaluation in constraints and exclude them if their markers do not match the current environment. (#8724)- 20.2.1 Features
* Ignore require-virtualenv in pip list (#8603) Bug Fixes
* Correctly find already-installed distributions with dot (.) in the name and uninstall them when needed. (#8645)
* Trace a better error message on installation failure due to invalid .data files in wheels. (#8654)
* Fix SVN version detection for alternative SVN distributions. (#8665)
* New resolver: Correctly include the base package when specified with extras in --no-deps mode. (#8677)
* Use UTF-8 to handle ZIP archive entries on Python 2 according to PEP 427, so non-ASCII paths can be resolved as expected. (#8684) Improved Documentation
* Add details on old resolver deprecation and removal to migration documentation. (#8371)
* Fix feature flag name in docs. (#8660)- 20.2 (2020-07-29) Deprecations and Removals
* Deprecate setup.py-based builds that do not generate an .egg- info directory. (#6998, #8617)
* Disallow passing install-location-related arguments in -- install-options. (#7309)
* Add deprecation warning for invalid requirements format “base>=1.0[extra]” (#8288)
* Deprecate legacy setup.py install when building a wheel failed for source distributions without pyproject.toml (#8368)
* Deprecate -b/--build/--build-dir/--build-directory. Its current behaviour is confusing and breaks in case different versions of the same distribution need to be built during the resolution process. Using the TMPDIR/TEMP/TMP environment variable, possibly combined with --no-clean covers known use cases. (#8372)
* Remove undocumented and deprecated option --always-unzip (#8408) Features
* Log debugging information about pip, in pip install --verbose. (#3166)
* Refine error messages to avoid showing Python tracebacks when an HTTP error occurs. (#5380)
* Install wheel files directly instead of extracting them to a temp directory. (#6030)
* Add a beta version of pip’s next-generation dependency resolver.
* Move pip’s new resolver into beta, remove the --unstable- feature=resolver flag, and enable the --use-feature=2020- resolver flag. The new resolver is significantly stricter and more consistent when it receives incompatible instructions, and reduces support for certain kinds of Constraints Files, so some workarounds and workflows may break. More details about how to test and migrate, and how to report issues, at Changes to the pip dependency resolver in 20.2 (2020) . Maintainers are preparing to release pip 20.3, with the new resolver on by default, in October. (#6536)
* Introduce a new ResolutionImpossible error, raised when pip encounters un-satisfiable dependency conflicts (#8546, #8377)
* Add a subcommand debug to pip config to list available configuration sources and the key-value pairs defined in them. (#6741)
* Warn if index pages have unexpected content-type (#6754)
* Allow specifying --prefer-binary option in a requirements file (#7693)
* Generate PEP 376 REQUESTED metadata for user supplied requirements installed by pip. (#7811)
* Warn if package url is a vcs or an archive url with invalid scheme (#8128)
* Parallelize network operations in pip list. (#8504)
* Allow the new resolver to obtain dependency information through wheels lazily downloaded using HTTP range requests. To enable this feature, invoke pip with --use-feature=fast-deps. (#8588)
* Support --use-feature in requirements files (#8601)
* Bug Fixes
* Use canonical package names while looking up already installed packages. (#5021)
* Fix normalizing path on Windows when installing package on another logical disk. (#7625)
* The VCS commands run by pip as subprocesses don’t merge stdout and stderr anymore, improving the output parsing by subsequent commands. (#7968)
* Correctly treat non-ASCII entry point declarations in wheels so they can be installed on Windows. (#8342)
* Update author email in config and tests to reflect decommissioning of pypa-dev list. (#8454)
* Headers provided by wheels in .data directories are now correctly installed into the user-provided locations, such as - -prefix, instead of the virtual environment pip is running in. (#8521) Vendored Libraries
* Vendored htmlib5 no longer imports deprecated xml.etree.cElementTree on Python 3.
* Upgrade appdirs to 1.4.4
* Upgrade certifi to 2020.6.20
* Upgrade distlib to 0.3.1
* Upgrade html5lib to 1.1
* Upgrade idna to 2.10
* Upgrade packaging to 20.4
* Upgrade requests to 2.24.0
* Upgrade six to 1.15.0
* Upgrade toml to 0.10.1
* Upgrade urllib3 to 1.25.9 Improved Documentation
* Add --no-input option to pip docs (#7688)
* List of options supported in requirements file are extracted from source of truth, instead of being maintained manually. (#7908)
* Fix pip config docstring so that the subcommands render correctly in the docs (#8072)
* replace links to the old pypa-dev mailing list with https:// mail.python.org/mailman3/lists/distutils-sig.python.org/ (#8353)
* Fix example for defining multiple values for options which support them (#8373)
* Add documentation for the ResolutionImpossible error that helps the user fix dependency conflicts (#8459)
* Add feature flags to docs (#8512)
* Document how to install package extras from git branch and source distributions. (#8576)- 20.2b1 Bug Fixes
* Correctly treat wheels containing non-ASCII file contents so they can be installed on Windows. (#5712)
* Prompt the user for password if the keyring backend doesn’t return one (#7998) Improved Documentation
* Add GitHub issue template for reporting when the dependency resolver fails (#8207)- 20.1.1 Deprecations and Removals
* Revert building of local directories in place, restoring the pre-20.1 behaviour of copying to a temporary directory. (#7555)
* Drop parallelization from pip list --outdated. (#8167) Bug Fixes
* Fix metadata permission issues when umask has the executable bit set. (#8164)
* Avoid unnecessary message about the wheel package not being installed when a wheel would not have been built. Additionally, clarify the message. (#8178)- 20.1 Process
* Document that pip 21.0 will drop support for Python 2.7. Features
* Add pip cache dir to show the cache directory. (#7350) Bug Fixes
* Abort pip cache commands early when cache is disabled. (#8124)
* Correctly set permissions on metadata files during wheel installation, to permit non-privileged users to read from system site-packages. (#8139)- 20.1b1 Deprecations and Removals
* Remove emails from AUTHORS.txt to prevent usage for spamming, and only populate names in AUTHORS.txt at time of release (#5979)
* Remove deprecated --skip-requirements-regex option. (#7297)
* Building of local directories is now done in place, instead of a temporary location containing a copy of the directory tree. (#7555)
* Remove unused tests/scripts/test_all_pip.py test script and the tests/scripts folder. (#7680) Features
* pip now implements PEP 610, so pip freeze has better fidelity in presence of distributions installed from Direct URL requirements. (#609)
* Add pip cache command for inspecting/managing pip’s wheel cache. (#6391)
* Raise error if --user and --target are used together in pip install (#7249)
* Significantly improve performance when --find-links points to a very large HTML page. (#7729)
* Indicate when wheel building is skipped, due to lack of the wheel package. (#7768)
* Change default behaviour to always cache responses from trusted-host source. (#7847)
* An alpha version of a new resolver is available via --unstable- feature=resolver. (#988) Bug Fixes
* Correctly freeze a VCS editable package when it is nested inside another VCS repository. (#3988)
* Correctly handle %2F in URL parameters to avoid accidentally unescape them into /. (#6446)
* Reject VCS URLs with an empty revision. (#7402)
* Warn when an invalid URL is passed with --index-url (#7430)
* Use better mechanism for handling temporary files, when recording metadata about installed files (RECORD) and the installer (INSTALLER). (#7699)
* Correctly detect global site-packages availability of virtual environments created by PyPA’s virtualenv>=20.0. (#7718)
* Remove current directory from sys.path when invoked as python -m pip (#7731)
* Stop failing uninstallation, when trying to remove non- existent files. (#7856)
* Prevent an infinite recursion with pip wheel when $TMPDIR is within the source directory. (#7872)
* Significantly speedup pip list --outdated by parallelizing index interaction. (#7962)
* Improve Windows compatibility when detecting writability in folder. (#8013) Vendored Libraries
* Update semi-supported debundling script to reflect that appdirs is vendored.
* Add ResolveLib as a vendored dependency.
* Upgrade certifi to 2020.04.05.1
* Upgrade contextlib2 to 0.6.0.post1
* Upgrade distro to 1.5.0.
* Upgrade idna to 2.9.
* Upgrade msgpack to 1.0.0.
* Upgrade packaging to 20.3.
* Upgrade pep517 to 0.8.2.
* Upgrade pyparsing to 2.4.7.
* Remove pytoml as a vendored dependency.
* Upgrade requests to 2.23.0.
* Add toml as a vendored dependency.
* Upgrade urllib3 to 1.25.8. Improved Documentation
* Emphasize that VCS URLs using git, git+git and git+http are insecure due to lack of authentication and encryption (#1983)
* Clarify the usage of --no-binary command. (#3191)
* Clarify the usage of freeze command in the example of Using pip in your program (#7008)
* Add a “Copyright” page. (#7767)
* Added example of defining multiple values for options which support them (#7803)- Test on test flavor without installing package- Update pip-shipped-requests-cabundle.patch for newer certifi
* Thu Mar 19 2020 Tomáš Chvátal - Skip virtualenv tests that are pinned to old virtualenv 16
* Wed Feb 05 2020 Ondřej Súkup - update to 20.0.2- add setuptools-45.1.0-py3-none-any.whl for testsuite- drop pytest5.patch
* Fix a regression in generation of compatibility tags
* Rename an internal module, to avoid ImportErrors due to improper uninstallation
* Switch to a dedicated CLI tool for vendoring dependencies.
* Remove wheel tag calculation from pip and use packaging.tags. This should provide more tags ordered better than in prior releases.
* Deprecate setup.py-based builds that do not generate an .egg-info directory.
* The pip>=20 wheel cache is not retro-compatible with previous versions. Until pip 21.0, pip will continue to take advantage of existing legacy cache entries.
* Deprecate undocumented --skip-requirements-regex option.
* Deprecate passing install-location-related options via --install-option.
* Use literal \"abi3\" for wheel tag on CPython 3.x, to align with PEP 384 which only defines it for this platform.
* Remove interpreter-specific major version tag e.g. cp3-none-any from consideration. This behavior was not documented strictly, and this tag in particular is not useful. Anyone with a use case can create an issue with pypa/packaging.
* Wheel processing no longer permits wheels containing more than one top-level .dist-info directory.
* Support for the git+gitAATT form of VCS requirement is being deprecated and will be removed in pip 21.0. Switch to git+https:// or git+ssh://. git+git:// also works but its use is discouraged as it is insecure.
* Default to doing a user install (as if --user was passed) when the main site-packages directory is not writeable and user site-packages are enabled.
* Warn if a path in PATH starts with tilde during pip install.
* Cache wheels built from Git requirements that are considered immutable, because they point to a commit hash.
* Add option --no-python-version-warning to silence warnings related to deprecation of Python versions.
* Cache wheels that pip wheel built locally, matching what pip install does. This particularly helps performance in workflows where pip wheel is used for building before installing. Users desiring the original behavior can use pip wheel --no-cache-dir
* Display CA information in pip debug.
* Show only the filename (instead of full URL), when downloading from PyPI.
* Suggest a more robust command to upgrade pip itself to avoid confusion when the current pip command is not available as pip.
* Define all old pip console script entrypoints to prevent import issues in stale wrapper scripts.
* The build step of pip wheel now builds all wheels to a cache first, then copies them to the wheel directory all at once. Before, it built them to a temporary directory and moved them to the wheel directory one by one.
* Expand ~ prefix to user directory in path options, configs, and environment variables. Values that may be either URL or path are not currently supported, to avoid ambiguity: - -find-links - -constraint, -c - -requirement, -r - -editable, -e
* Correctly handle system site-packages, in virtual environments created with venv (PEP 405).
* Fix case sensitive comparison of pip freeze when used with -r option.
* Enforce PEP 508 requirement format in pyproject.toml build-system.requires.
* Make ensure_dir() also ignore ENOTEMPTY as seen on Windows.
* Fix building packages which specify backend-path in pyproject.toml.
* Do not attempt to run setup.py clean after a pep517 build error, since a setup.py may not exist in that case.
* Fix passwords being visible in the index-url in \"Downloading \" message.
* Change method from shutil.remove to shutil.rmtree in noxfile.py.
* Skip running tests which require subversion, when svn isn\'t installed
* Fix not sending client certificates when using --trusted-host.
* Make sure pip wheel never outputs pure python wheels with a python implementation tag. Better fix/workaround for #3025 by using a per-implementation wheel cache instead of caching pure python wheels with an implementation tag in their name.
* Include subdirectory URL fragments in cache keys.
* Fix typo in warning message when any of --build-option, --global-option and --install-option is used in requirements.txt
* Fix the logging of cached HTTP response shown as downloading.
* Effectively disable the wheel cache when it is not writable, as is the case with the http cache.
* Correctly handle relative cache directory provided via --cache-dir.
*
  
ICM