pyjwt (1.4.2-1+deb9u1) stretch-security; urgency=medium * CVE-2017-11424 -- Moritz Muehlenhoff Sun, 03 Sep 2017 23:23:38 +0200 pyjwt (1.4.2-1) unstable; urgency=medium * New upstream release. -- Daniele Tricoli Fri, 09 Sep 2016 01:07:26 +0200 pyjwt (1.4.1-1) unstable; urgency=medium * New upstream release. * Run "as-installed" tests (DEP8). * debian/patches/01_do-not-use-pytest-runner.patch - Drop since python{,3}-pytest-runner is in Debian. * debian/rules - Make the build reproducible. (Closes: #828131, #831868) Thanks to Chris Lamb for report and patch. -- Daniele Tricoli Thu, 21 Jul 2016 00:07:43 +0200 pyjwt (1.4.0-1) unstable; urgency=medium [ Ondřej Nový ] * Fixed VCS URL (https) [ Daniele Tricoli ] * New upstream release. * debian/control - Bump Standards-Version to 3.9.8 (no changes needed). - Add python{,3}-pytest, python{,3}-pytest-cov and python{,3}-pytest-runner to Build-Depends. * debian/copyright - Update copyright years. * debian/rules - Run tests at build time. -- Daniele Tricoli Sun, 08 May 2016 00:00:12 +0200 pyjwt (1.3.0-1) unstable; urgency=medium * New upstream release. - Add a check so that asymmetric keys cannot be used as HMAC secrets. See for more details: https://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/ * debian/control - Update Homepage field. - Add python{,3}-cryptography to Build-Depends and Recommends. (Closes: #780630) - Add python{,3}-crypto to Suggests. - Bump Standards-Version to 3.9.6 (no changes needed). * debian/copyright - Update Upstream-Contact to reflect new upstream author. - Update copyright years. * debian/patches/01_do-not-use-pytest-runner.patch - Remove pytest-runner form setup_requires since it's not packaged for Debian yet. * debian/watch - Use pypi.debian.net redirector. -- Daniele Tricoli Fri, 10 Jul 2015 02:12:06 +0200 pyjwt (0.2.1-1) unstable; urgency=low * Initial release (Closes: #755832) -- Daniele Tricoli Fri, 29 Aug 2014 04:20:04 +0200