mirror of
https://github.com/cookiecutter/cookiecutter-django.git
synced 2024-12-02 14:34:05 +03:00
dc11195917
This PR updates [django](https://pypi.org/project/django) from **2.0.7** to **2.0.8**. <details> <summary>Changelog</summary> ### 2.0.8 ``` ========================== *August 1, 2018* Django 2.0.8 fixes a security issue and several bugs in 2.0.7. CVE-2018-14574: Open redirect possibility in ``CommonMiddleware`` ================================================================= If the :class:`~django.middleware.common.CommonMiddleware` and the :setting:`APPEND_SLASH` setting are both enabled, and if the project has a URL pattern that accepts any path ending in a slash (many content management systems have such a pattern), then a request to a maliciously crafted URL of that site could lead to a redirect to another site, enabling phishing and other attacks. ``CommonMiddleware`` now escapes leading slashes to prevent redirects to other domains. Bugfixes ======== * Fixed a regression in Django 2.0.7 that broke the ``regex`` lookup on MariaDB (even though MariaDB isn't officially supported) (🎫`29544`). * Fixed a regression where ``django.template.Template`` crashed if the ``template_string`` argument is lazy (🎫`29617`). ========================== ``` </details> <details> <summary>Links</summary> - PyPI: https://pypi.org/project/django - Changelog: https://pyup.io/changelogs/django/ - Homepage: https://www.djangoproject.com/ </details>
34 lines
1.6 KiB
Plaintext
34 lines
1.6 KiB
Plaintext
pytz==2018.5 # https://github.com/stub42/pytz
|
|
python-slugify==1.2.5 # https://github.com/un33k/python-slugify
|
|
Pillow==5.2.0 # https://github.com/python-pillow/Pillow
|
|
{%- if cookiecutter.use_compressor == "y" %}
|
|
rcssmin==1.0.6{% if cookiecutter.windows == 'y' %} --install-option="--without-c-extensions"{% endif %} # https://github.com/ndparker/rcssmin
|
|
{%- endif %}
|
|
argon2-cffi==18.1.0 # https://github.com/hynek/argon2_cffi
|
|
{%- if cookiecutter.use_whitenoise == 'y' %}
|
|
whitenoise==3.3.1 # https://github.com/evansd/whitenoise
|
|
{%- endif %}
|
|
redis>=2.10.5 # https://github.com/antirez/redis
|
|
{%- if cookiecutter.use_celery == "y" %}
|
|
celery==4.2.1 # pyup: <5.0 # https://github.com/celery/celery
|
|
{%- if cookiecutter.use_docker == 'y' %}
|
|
flower==0.9.2 # https://github.com/mher/flower
|
|
{%- endif %}
|
|
{%- endif %}
|
|
|
|
# Django
|
|
# ------------------------------------------------------------------------------
|
|
django==2.0.8 # pyup: < 2.1 # https://www.djangoproject.com/
|
|
django-environ==0.4.5 # https://github.com/joke2k/django-environ
|
|
django-model-utils==3.1.2 # https://github.com/jazzband/django-model-utils
|
|
django-allauth==0.36.0 # https://github.com/pennersr/django-allauth
|
|
django-crispy-forms==1.7.2 # https://github.com/django-crispy-forms/django-crispy-forms
|
|
{%- if cookiecutter.use_compressor == "y" %}
|
|
django-compressor==2.2 # https://github.com/django-compressor/django-compressor
|
|
{%- endif %}
|
|
django-redis==4.9.0 # https://github.com/niwinz/django-redis
|
|
|
|
# Django REST Framework
|
|
djangorestframework==3.8.2 # https://github.com/encode/django-rest-framework
|
|
coreapi==2.3.3 # https://github.com/core-api/python-client
|