Fellow Reports -- July 2019

classic Classic list List threaded Threaded
3 messages Options
Reply | Threaded
Open this post in threaded view
|

Fellow Reports -- July 2019

Carlton Gibson-3
Hi all, 


Calendar Week 27 -- ending 07 July.


Triaged:

https://code.djangoproject.com/ticket/30607 -- How to use Django specific markup in the docstrings. (invalid)
https://code.djangoproject.com/ticket/30605 -- Define a variable TESTS in settings (wontfix)



Reviewed:

https://code.djangoproject.com/ticket/#30397 -- Allow app_label and class to be specified in the name argument for indexes and constraints.
https://github.com/django/django/pull/11481 -- Fixed #10403 -- Declaraive syntax for FormSet, ModelFormSet & InlineF…
https://code.djangoproject.com/ticket/6376 -- Allow using custom gettext domains
https://github.com/django/django/pull/11284 -- Fixed #28588 -- enable finding out about nonexistent permissions by s…



Authored:

https://github.com/django/django/pull/11530 -- Fixed #28588 -- Doc’d that has_perm() always returns True for active superuser.




Calendar Week 28 -- ending 14 July.


Triaged:

https://code.djangoproject.com/ticket/30607 -- How to use Django specific markup in the docstrings. (needsinfo)
https://code.djangoproject.com/ticket/30625 -- DatabaseCache backend raises TypeError if get/delete received key as integer. (Accepted)
https://code.djangoproject.com/ticket/30619 -- runserver fails to close connection if --nothreading specified. (Accepted)



Reviewed:

https://github.com/django/django/pull/10748 -- Fixed #23004 -- Cleanse sensitive request.META keys from DEBUG Views
https://code.djangoproject.com/ticket/23004 -- Cleanse entries from request.META in debug views
https://github.com/django/django/pull/11224 -- Fixed #23004 -- Hid sensitive environment parameters in debug view
https://code.djangoproject.com/ticket/29714 -- Make it easier to customise ExceptionReporter output.
https://code.djangoproject.com/ticket/30411 -- mprove traceback formatting in technical 500 text responses
https://code.djangoproject.com/ticket/30619 -- runserver fails to close connection if --nothreading specified.
https://code.djangoproject.com/ticket/30621 -- CheckConstraint crash with __contains lookup on DateTimeRangeFields.
https://github.com/django/django/pull/11482 -- Fixed #30573 -- Remove simple/easy/etc from documentation
https://github.com/django/django/pull/11548 -- Update Select2 to version 4.0.7
https://github.com/django/django/pull/11546 -- Fixed #30624 -- Changed docs to use numbered list reStructuredText syntax.
https://github.com/django/django/pull/11543 -- Fixed #30619 -- runserver doesn't close connections when --nothreading is specified.



Kind Regards,

Carlton

--
You received this message because you are subscribed to the Google Groups "Django developers (Contributions to Django itself)" group.
To unsubscribe from this group and stop receiving emails from it, send an email to [hidden email].
To post to this group, send email to [hidden email].
Visit this group at https://groups.google.com/group/django-developers.
To view this discussion on the web visit https://groups.google.com/d/msgid/django-developers/cd58d2ff-1b97-496f-9f31-b4e9f0a66e77%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
Reply | Threaded
Open this post in threaded view
|

Re: Fellow Reports -- July 2019

Carlton Gibson-3
Hi All, 


Calendar Week 29 -- ending 21 July.


Triaged:

https://code.djangoproject.com/ticket/30647 -- [FATAL] FileNotFoundError with runserver command inside Docker container (needsinfo)
https://code.djangoproject.com/ticket/30638 -- Allow the per-database TIME_ZONE option on databases that support timezones. (needsinfo)
https://code.djangoproject.com/ticket/30635 -- Add feature to sanitize text include control characters (needsinfo)



Reviewed:

https://github.com/django/django/pull/11576 -- Refs #30083 -- Clarified database state of instances in signals.pre_init docs.
https://github.com/django/django/pull/11574 -- Refs #30547 -- Clarified that partial UniqueConstraints don't affect model validation.
https://github.com/django/django/pull/11157 -- Fixed #13910 -- Added generator based rendering (streaming) to templates and supporting views.
https://github.com/django/django/pull/11021 -- Refs #29714 -- Added settings to override ExceptionReporter class in AdminEmailHandler
https://github.com/django/django-security/pull/229 -- Potential memory exhaustion in `uri_to_iri`
https://github.com/django/django-security/pull/226 -- strip_tags denial of service
https://github.com/django/django-security/pull/225 -- Return of CVE-2018-7537: truncatewords_html denial-of-service



Calendar Week 30 -- ending 28 July.


Prepared releases for 1/8/2019


Reviewed:

https://github.com/django/djangoproject.com/pull/921 -- Use SVG image for donation icon.
https://github.com/django/django/pull/11476 -- Fixed #30066 -- Enabled super user creation without email and password
https://code.djangoproject.com/ticket/11602 -- Refactored the Django's documentation to fix the path of django's admin templates are located.
https://github.com/django/django/pull/11580 -- Fixed #26142 -- Added a 'edit only' mode for model formsets
https://github.com/django/django/pull/11481 -- Fixed #10403 -- Declaraive syntax for FormSet, ModelFormSet & InlineF…
https://github.com/django/django/pull/11601 -- Fixed #29427 -- Ensured request has _body even when RequestDataTooBig is raised
https://github.com/django/django/pull/11582 -- Fixed #23524 -- Allowed TIME_ZONE option on PostgreSQL.



Kind Regards,

Carlton


--
You received this message because you are subscribed to the Google Groups "Django developers (Contributions to Django itself)" group.
To unsubscribe from this group and stop receiving emails from it, send an email to [hidden email].
To view this discussion on the web visit https://groups.google.com/d/msgid/django-developers/8fc68248-8661-44bc-92d8-0ceb95a9be78%40googlegroups.com.
Reply | Threaded
Open this post in threaded view
|

Re: Fellow Reports -- July 2019

Carlton Gibson-3
In reply to this post by Carlton Gibson-3
Hi All,


Reposting Wks 29-30, in which I inadvertently leaked small details of the then 
pending security patches. 

Many thanks to Kevin Grinberg for noticing and 
advising me quickly. I then deleted the post, which, whilst not ideal, was the 
best I could do. 

I've update the command to compile the report to automatically exclude security 
issues. 


Calendar Week 29 -- ending 21 July.


Triaged:

https://code.djangoproject.com/ticket/30647 -- [FATAL] FileNotFoundError with runserver command inside Docker container (needsinfo)
https://code.djangoproject.com/ticket/30638 -- Allow the per-database TIME_ZONE option on databases that support timezones. (needsinfo)
https://code.djangoproject.com/ticket/30635 -- Add feature to sanitize text include control characters (needsinfo)



Reviewed:

https://github.com/django/django/pull/11576 -- Refs #30083 -- Clarified database state of instances in signals.pre_init docs.
https://github.com/django/django/pull/11574 -- Refs #30547 -- Clarified that partial UniqueConstraints don't affect model validation.
https://github.com/django/django/pull/11157 -- Fixed #13910 -- Added generator based rendering (streaming) to templates and supporting views.
https://github.com/django/django/pull/11021 -- Refs #29714 -- Added settings to override ExceptionReporter class in AdminEmailHandler



Calendar Week 30 -- ending 28 July.


Prepared releases for 1/8/2019


Reviewed:

https://github.com/django/djangoproject.com/pull/921 -- Use SVG image for donation icon.
https://github.com/django/django/pull/11476 -- Fixed #30066 -- Enabled super user creation without email and password
https://code.djangoproject.com/ticket/11602 -- Refactored the Django's documentation to fix the path of django's admin templates are located.
https://github.com/django/django/pull/11580 -- Fixed #26142 -- Added a 'edit only' mode for model formsets
https://github.com/django/django/pull/11481 -- Fixed #10403 -- Declaraive syntax for FormSet, ModelFormSet & InlineF…
https://github.com/django/django/pull/11601 -- Fixed #29427 -- Ensured request has _body even when RequestDataTooBig is raised
https://github.com/django/django/pull/11582 -- Fixed #23524 -- Allowed TIME_ZONE option on PostgreSQL.





Calendar Week 31 -- ending 04 August.


Released Django versions 1.11.23, 2.1.11, 2.2.4


Triaged:

https://code.djangoproject.com/ticket/30672 -- JSONField/HStoreField key and index transforms crash. (Accepted)
https://code.djangoproject.com/ticket/30666 -- Use autocomplete_fields with models not registered in the admin (wontfix)
https://code.djangoproject.com/ticket/30660 -- Use of properites by Django and debugging in PyCharm (needsinfo)



Reviewed:

https://code.djangoproject.com/ticket/30661 -- Add support for SmallAutoField
https://github.com/django/django/pull/11608 -- Update request-response.txt
https://github.com/django/django/pull/11617 -- Moved indexes in ArrayField's Index and Slice transforms to SQL params.
https://code.djangoproject.com/ticket/30669 -- Can FILE_UPLOAD_MAX_MEMORY_SIZE be set to None?



Authored:

https://github.com/django/django/pull/11614 -- Refs #30669 -- Removed unused branch in ASGIHander.read_body().





Kind Regards,

Carlton


--
You received this message because you are subscribed to the Google Groups "Django developers (Contributions to Django itself)" group.
To unsubscribe from this group and stop receiving emails from it, send an email to [hidden email].
To view this discussion on the web visit https://groups.google.com/d/msgid/django-developers/095a6d61-d7e4-454f-911a-6eeb52c13aeb%40googlegroups.com.