Changelog for
python312-jwcrypto-1.5.6-37.5.noarch.rpm :
* Tue Mar 19 2024 Dirk Müller
- update to 1.5.6 (bsc#1221230, CVE-2024-28102):
* Address potential DoS with high compression ratio (CVE-2024-28102)- update to 1.5.4:
* One more release bump to address issues with typing_extensions minimum required version- update to 1.5.3:
* Drop python 3.6 and 3.7 and add 3.11 support
* replace deprecated package with typing_extensions
* Tue Jan 02 2024 Dirk Müller - update to 1.5.1:
* Fix X22519 import/export from PEM
* Read the Docs now requires a config file
* chore: refactor for removing pdb symbols
* Fix potential DoS issue with p2c header
* Thu Dec 07 2023 Dirk Müller - update to 1.5.0:
* Minor bugfixes and the addition of Brainpool curves.
* Raising the bar for minimum pyca/cryptography
* Fix typos with codespell
* Add codespell checks in CI
* Add Brainpool EC-curves support
* Fix error message
* Fix assorted CI issue
* Better support for algorithms that have different input keysize requirement
* Fri Nov 18 2022 Michael Ströder - update to 1.4.2 which also fixes CVE-2022-3102 too many other changes to be listed here
* Wed Dec 08 2021 pgajdosAATTsuse.com- do not require pytest-runner for build, not required
* Thu Aug 05 2021 Michael Ströder - update to 1.0
* Create SECURITY.md
* Allow empty payloads in JWS tokens
* Add tests to check empty payload support
* Drop python2 compatibility
* Fix python3 pylint issues
* Add explicit support to check \'typ\' in JWT
* Drop support for importing old MutableMapping
* Disable annoying pep8 naming checks
* Sat Jun 12 2021 Michael Ströder - added Requires: python-Deprecated- update to upstream release 0.9.1
* Create codeql-analysis.yml
* Add back ppc64le CI
* Actually add the split out ppc64le action
* Silence a test warning
* Remove the _params abstraction and simplify JWK
* Fix crash in exception handler
* Add test for Issue 209
* Fix keyset import with similar keys
* Test fix for Issue 208
* Add __repr__() to mask keys
* Adding Power support(ppc64le) with ci and testing to the project for architecture independent
* Added six as a dependency to avoid import error
* Make sure an empty dict is a valid JWT payload
* Turn JWK into a dict-like object
* Go one step further and provide access as attrs
* Drop support for py34 as it stopped working on F33
* Deprecate RSA1_5 and remove from defaults
* Make PBES2 behave like all other algorithms
* Enforce protected header in compact serilization
* Fix importing Public EC keys from PEM files
* Installation instructions + extra badges
* RFC 8812 - Add Default allowed algorithms
* Sun Sep 06 2020 Tomáš Chvátal - Use constraints on the cryptography dependency
* Sun Sep 06 2020 Michael Ströder - update to upstream release 0.8
* Fix some documentation typos
* Rename ambiguous variable
* Remove cap on sphinx version
* Fix okp key type import
* Add method to export Keys ans Sets as dictionaries
* Typo rectified
* Add secp256k1 curve
* Mon Mar 30 2020 Michael Ströder - update to upstream release 0.7.0
* Allow to use JWKSet on a JWT with no KID
* Fixed JWE jose_header
* Added JWE/JWS custom registry header implementation
* RFC 8037 - Support for Ed25519, Ed448
* Stricter OKP key generation parms check
* Add X25519/X448 support
* Simplify internal code curve selection
* Fix encoding length of EC keys Coordinates
* Add the ability to verify \'none\' signatures
* Import ABC from collections.abc instead of collections for Python 3.9 compatibility