Commit Graph

1099 Commits

Author SHA1 Message Date
Mateusz Mandera f5e95c4fc1 requirements: Bump python-social-auth version.
We had a bunch of ugly hacks to monkey patch things due to upstream
being temporarily unmaintained and not merging PRs. Now the project is
active again and the fixes have been merged and included in the latest
version - so we clean up all that code.
2020-03-18 12:14:31 -07:00
rht 41e3db81be dependencies: Upgrade to Django 2.2.10.
Django 2.2.x is the next LTS release after Django 1.11.x; I expect
we'll be on it for a while, as Django 3.x won't have an LTS release
series out for a while.

Because of upstream API changes in Django, this commit includes
several changes beyond requirements and:

* urls: django.urls.resolvers.RegexURLPattern has been replaced by
  django.urls.resolvers.URLPattern; affects OpenAPI code and related
  features which re-parse Django's internals.
  https://code.djangoproject.com/ticket/28593
* test_runner: Change number to suffix. Django changed the name in this
  ticket: https://code.djangoproject.com/ticket/28578
* Delete now-unnecessary SameSite cookie code (it's now the default).
* forms: urlsafe_base64_encode returns string in Django 2.2.
  https://docs.djangoproject.com/en/2.2/ref/utils/#django.utils.http.urlsafe_base64_encode
* upload: Django's File.size property replaces _get_size().
  https://docs.djangoproject.com/en/2.2/_modules/django/core/files/base/
* process_queue: Migrate to new autoreload API.
* test_messages: Add an extra query caused by .refresh_from_db() losing
  the .select_related() on the Realm object.
* session: Sync SessionHostDomainMiddleware with Django 2.2.

There's a lot more we can do to take advantage of the new release;
this is tracked in #11341.

Many changes by Tim Abbott, Umair Waheed, and Mateusz Mandera squashed
are squashed into this commit.

Fixes #10835.
2020-02-13 16:27:26 -08:00
Anders Kaseorg 52de93f5f8 requirements: Ask social-auth to pull in its own reqs for Azure, SAML.
This makes no actual change to the installed packages, but may help
upgrades go more correctly.

Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2020-02-06 15:00:13 -08:00
Anders Kaseorg 78ac9138aa requirements: Upgrade all Python requirements.
Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2020-02-05 12:38:10 -08:00
Anders Kaseorg 61bf698185 requirements: Fork pip.txt to pip2.txt for Python 2.
The current version of setuptools no longer supports Python 2.

Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2020-02-05 12:38:10 -08:00
Anders Kaseorg 4d49a20430 requirements: Upgrade django-sendfile2 from 0.4.3 to 0.5.1.
The module was renamed from sendfile to django_sendfile.

Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2020-02-05 12:38:10 -08:00
Mateusz Mandera 8dd95bd057 tests: Replace httpretty with responses.
responses is an module analogous to httpretty for mocking external
URLs, with a very similar interface (potentially cleaner in that it
makes use of context managers).

The most important (in the moment) problem with httpretty is that it
breaks the ability to use redis in parts of code where httpretty is
enabled.  From more research, the module in general has tendency to
have various troublesome bugs with breaking URLs that it shouldn't be
affecting, caused by it working at the socket interface layer.  While
those issues could be fixed, responses seems to be less buggy (based
on both third-party reports like ckan/ckan#4755 and our own experience
in removing workarounds for bugs in httpretty) and is more actively
maintained.
2020-01-22 11:56:15 -08:00
Anders Kaseorg ea6934c26d dependencies: Remove WebSockets system for sending messages.
Zulip has had a small use of WebSockets (specifically, for the code
path of sending messages, via the webapp only) since ~2013.  We
originally added this use of WebSockets in the hope that the latency
benefits of doing so would allow us to avoid implementing a markdown
local echo; they were not.  Further, HTTP/2 may have eliminated the
latency difference we hoped to exploit by using WebSockets in any
case.

While we’d originally imagined using WebSockets for other endpoints,
there was never a good justification for moving more components to the
WebSockets system.

This WebSockets code path had a lot of downsides/complexity,
including:

* The messy hack involving constructing an emulated request object to
  hook into doing Django requests.
* The `message_senders` queue processor system, which increases RAM
  needs and must be provisioned independently from the rest of the
  server).
* A duplicate check_send_receive_time Nagios test specific to
  WebSockets.
* The requirement for users to have their firewalls/NATs allow
  WebSocket connections, and a setting to disable them for networks
  where WebSockets don’t work.
* Dependencies on the SockJS family of libraries, which has at times
  been poorly maintained, and periodically throws random JavaScript
  exceptions in our production environments without a deep enough
  traceback to effectively investigate.
* A total of about 1600 lines of our code related to the feature.
* Increased load on the Tornado system, especially around a Zulip
  server restart, and especially for large installations like
  zulipchat.com, resulting in extra delay before messages can be sent
  again.

As detailed in
https://github.com/zulip/zulip/pull/12862#issuecomment-536152397, it
appears that removing WebSockets moderately increases the time it
takes for the `send_message` API query to return from the server, but
does not significantly change the time between when a message is sent
and when it is received by clients.  We don’t understand the reason
for that change (suggesting the possibility of a measurement error),
and even if it is a real change, we consider that potential small
latency regression to be acceptable.

If we later want WebSockets, we’ll likely want to just use Django
Channels.

Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2020-01-14 22:34:00 -08:00
Tim Abbott 17bde5944d requirements: Upgrade versions of indirect dependencies. 2019-12-11 15:59:30 -08:00
Mateusz Mandera 06c2161f7e auth: Use zxcvbn to ensure password strength on server side.
For a long time, we've been only doing the zxcvbn password strength
checks on the browser, which is helpful, but means users could through
hackery (or a bug in the frontend validation code) manage to set a
too-weak password.  We fix this by running our password strength
validation on the backend as well, using python-zxcvbn.

In theory, a bug in python-zxcvbn could result in it producing a
different opinion than the frontend version; if so, it'd be a pretty
bad bug in the library, and hopefully we'd hear about it from users,
report upstream, and get it fixed that way. Alternatively, we can
switch to shelling out to node like we do for KaTeX.

Fixes #6880.
2019-11-21 10:23:37 -08:00
Anders Kaseorg 0d20145b93 mypy: Upgrade from 0.730 to 0.740.
Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-11-13 12:38:45 -08:00
Anders Kaseorg 40f4ead738 mypy: Upgrade from 0.720 to 0.730.
Fixes #13269.

Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-11-13 12:38:45 -08:00
Anders Kaseorg 7d71fc9fb3 requirements: Add comments with explanatory links for forked packages.
Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-11-11 17:19:46 -08:00
Anders Kaseorg 5179e65493 requirements: Upgrade Python requirements.
Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-11-11 17:19:46 -08:00
Anders Kaseorg 70f72a3ae8 security: Send SameSite=Lax cookies.
Send the `csrftoken` and `sessionid` cookies with `SameSite=Lax`.
This adds a layer of defense against CSRF attacks and matches the new
default in Django 2.1:

https://docs.djangoproject.com/en/2.1/releases/2.1/#samesite-cookies

This can be reverted when we upgrade to Django ≥ 2.1.

Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-10-30 13:12:11 -07:00
Rafid Aslam 447f74ae63 Upgrade pika to 1.1.*.
Upgrade pika to 1.1.* and make some changes accordingly
to comply with the new version.

Fixes #12899.
2019-10-29 17:01:12 -07:00
Anders Kaseorg d4443bc4f8 requirements: Upgrade Python requirements.
Addresses a potential Pillow DoS vulnerability, among other things.

Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-10-28 16:42:20 -07:00
Anders Kaseorg d1a3bf424a requirements: Use webpack4 fork of django-webpack-loader.
Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-10-28 15:53:15 -07:00
Mateusz Mandera 52324bd005 requirements: Upgrade fakeldap to master.
For simple directory search support.
2019-10-17 16:49:53 -07:00
Anders Kaseorg dfd9ace7fa requirements: Add back future.
It happens that commonmark, python-jose, and python-twitter don’t
actually use future on Python 3, and moto uses aws-xray-sdk in such a
way that it doesn’t use future, but this was a weird game to be
playing just to remove one dependency, and it caused CI failures after
new releases of future, so let’s just include it.

Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-10-11 14:04:35 -07:00
Tim Abbott c0beea1b1a requirements: Update future library comments.
There's probably a better solution, but this fixes CI.
2019-10-10 14:52:58 -07:00
Anders Kaseorg f1832f3e0e requirements: Pin mypy to 0.720.
We’ll need to debug some new errors from 0.730 before upgrading (#13269).

Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-10-08 17:49:28 -07:00
Anders Kaseorg 13296d282d requirements: Upgrade apns2.
My PR https://github.com/Pr0Ger/PyAPNs2/pull/90 fixing Python 3.5.2
support was merged.

Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-10-08 17:15:39 -07:00
Anders Kaseorg cc791afc54 requirements: Upgrade django-sendfile2.
django-sendfile2 now always sends a Content-Disposition header even if
it’s inline.

Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-10-08 17:15:00 -07:00
Anders Kaseorg 3d876aacc6 requirements: Use pip-compile --generated-hashes for better security.
Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-10-06 15:21:18 -07:00
Anders Kaseorg 20c7ada7c5 requirements: Use archive zip files from GitHub.
This avoids expensive `git clone` operations during provisioning and
installation, and will also allow us to use `pip-compile
--generate-hashes` for better security.

Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-10-06 15:21:18 -07:00
Mateusz Mandera 46d3dc243b requirements: Use our fork of django-auth-ldap. 2019-10-05 17:28:59 -07:00
David Rosa 9545569dca docs: Upgrade recommonmark to 0.6.0, fixing issues.
- recommonmark: 0.5.0 -> 0.6.0
- Fixed build TypeError: sequence item 1: expected str instance, NoneType found
  caused by recommonmark/parser.py erroring on a newline character.
- Removed deprecated code in conf.py that was causing warning messages
- Updated conf.py according to instructions for Sphinx-1.4 or newer
https://github.com/readthedocs/recommonmark/blob/master/README.md#getting-started
https://www.sphinx-doc.org/en/master/usage/markdown.html

This commit is also relevant to PR #13232.
2019-10-02 12:29:24 -07:00
Mateusz Mandera c42077c12f dependencies: Add dependencies needed for SAML. 2019-09-28 12:15:13 -07:00
Anders Kaseorg 6bd977f9e4 requirements: Link to our GitHub issue for upgrading pika.
Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-09-23 14:30:18 -07:00
Anders Kaseorg ba8a172897 requirements: Downgrade transifex-client so we can upgrade six, urllib3.
transifex-client 0.13.5 added overly strict version bounds on six and
urllib3.

Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-09-23 13:47:55 -07:00
Anders Kaseorg f671ca3780 requirements: Upgrade Python requirements.
This commit was generated by deleting these lock files and rerunning
update-locked-requirements.

Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-09-23 13:23:58 -07:00
Anders Kaseorg d368aaad10 requirements: Generate pip.txt from pip.in like the other *.txt files.
Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-09-23 13:23:58 -07:00
Anders Kaseorg ec9bf6576a requirements: Remove unnecessary version bounds from *.in.
This makes no changes to the locked versions in *.txt, but it reduces
duplicate information and gives us sane workflows for

* upgrading packages: remove some or all lines from *.txt and re-run
  `update-locked-requirements`;
* marking packages as intentionally held back: add a version bound
  to *.in with an explanatory comment.

Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-09-23 13:23:58 -07:00
Anders Kaseorg 2573ecb7d1 requirements: Bump thumbor Django to match main Django.
Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-09-23 11:56:36 -07:00
Anders Kaseorg 92b42573fb requirements: Compile thumbor requirements with pip-tools on Python 2.
The reason that `pip-tools` running on Python 3 didn’t detect the
right requirements for `thumbor` on Python 2 is simply that some of
them are conditional on the Python version.

As for the requirements that had been manually added as a workaround:
`backports-abc` and `singledispatch` are now correctly detected, while
`backports.ssl-match-hostname` was vendored into `urllib3` some time
ago and `certifi` is no longer necessary.

Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-09-23 11:56:36 -07:00
Tim Abbott 9c21fb75cf requirements: Upgrade twisted to 19.7.0. 2019-09-08 09:42:32 -07:00
Anders Kaseorg 7af04690b9 requirements: Use PyPI fork of line_profiler supporting Python 3.7.
Also move it to dev.in.

Other notes for posterity: this should have been installed with a
pinned commit hash, and could have been installed directly from the
upstream Git repository, even on Python 3.7, as long as Cython was
installed as well.

Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-09-08 09:34:55 -07:00
Anders Kaseorg 29abbdaa07 requirements: Upgrade pip-tools to 4.1.0 and pip to 19.2.3.
Closes #13068.

Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-08-26 14:33:18 -07:00
Anders Kaseorg f1b91e577e requirements: Include packages that pip-tools considers unsafe.
It’s unclear why pip-tools considers these packages unsafe, and
excluding them from being pinned has resulted in nondeterministic
output that makes our test suite unhappy.

Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-08-25 22:32:31 -07:00
Tim Abbott 63841814ce requirements: Rerun update-locked-requirements.
Apparently, pip 19.2.3 was released yesterday, resulting in
test-locked-requirements failing after we merged the latest updates to
it.
2019-08-25 16:13:04 -07:00
Anders Kaseorg 6822634d22 requirements: Remove editable flag from *.in.
Fixes #12374.

Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-08-25 15:03:20 -07:00
Anders Kaseorg fb9e9b76a8 requirements: When removing future requirement, leave it commented.
futures is no longer there to be removed.  Be clear about why we’re
removing future (it was never a “pip-tools bug”), and leave evidence
behind to help indicate how long that will be needed.

Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-08-25 15:03:20 -07:00
Anders Kaseorg a053a925b3 requirements: Upgrade pip-tools to 3.8.0; downgrade pip to 19.1.1.
These are not the latest versions, but pip-tools 3.9.0 or 4.0.0 fails
to resolve dependencies from Git URLs:

pip._internal.exceptions.DistributionNotFound: No matching distribution found for zulip==0.6.1_git (from -r requirements/common.in (line 135))

while pip 19.2 breaks pip-tools 3.8.0:

TypeError: __init__() got an unexpected keyword argument 'find_links'

Fixes #10802.

Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-08-25 15:03:20 -07:00
Vishnu Ks d472d30c28 requirements: Upgrade stripe pip package from 2.21.0 to 2.35.0. 2019-08-19 11:09:33 -07:00
Anders Kaseorg a5596011a0 queue_processors, python_examples: Fix mypy errors.
zerver/openapi/python_examples.py:105: error: Argument 1 to "get_user_presence" of "Client" has incompatible type "str"; expected "Dict[str, Any]"
    zerver/openapi/python_examples.py:563: error: Argument 1 to "add_reaction" of "Client" has incompatible type "Dict[str, object]"; expected "Dict[str, str]"
    zerver/openapi/python_examples.py:576: error: Argument 1 to "remove_reaction" of "Client" has incompatible type "Dict[str, object]"; expected "Dict[str, str]"
    zerver/worker/queue_processors.py:587: error: Argument "client" to "extract_query_without_mention" has incompatible type "EmbeddedBotHandler"; expected "ExternalBotHandler"

These were only missed because mypy daemon mode requires us to set
`follow_imports = skip` for the `zulip` package.

Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-08-16 14:13:40 -07:00
Anders Kaseorg bfc5617f04 requirements: Update zulint.
Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-08-16 14:13:40 -07:00
David Rosa 0d52d24d64 docs: pip upgrade recommonmark and CommonMark
Summary:
- recommonmark: 0.4.0 -> 0.5.0
- CommonMark: 0.5.4 -> 0.9.0
- Fixed links getting their .md file extension cut off
- Supressed 262 new warnings

Details:
Appended #anchors to markdown github links as a workaround to
recommonmark 0.5.0 cutting off the ".md" part from them.
Sphinx build would fail as follows

[documentation_crawler] ERROR: Please check link:
<404 https://github.com/zulip/zulipbot/blob/master/.github/CONTRIBUTING>
<404 https://github.com/zulip/zulip/blob/master/requirements/README>
<404 https://github.com/zulip/python-zulip-api/blob/master/zulip_bots/README>

sphinx build would also log a "WARNING: None:any reference target not found"
for every link ending in .html
So a good temporary solution is to suppress all warnings with the method suggested here:
https://stackoverflow.com/questions/37359407/suppress-warnings-for-unfound-references-with-default-role-any-in-sphinx

A better solution would be to edit all links ending .html and use .md instead;
which would also solve PR #11719.

Fixes #11395.
2019-08-15 22:41:40 -07:00
Vishnu KS 7a433f279a requirements: Upgrade Django from 1.11.22 to 1.11.23. 2019-08-15 16:56:31 -07:00
Anders Kaseorg 72655611ce requirements: Use maintained fork django-sendfile2 of django-sendfile
The original seems to be unmaintained
(johnsensible/django-sendfile#65).  Notably, this fixes a bug in the
filename parameter, which perviously showed the Python 3 repr of a
byte string (johnsensible/django-sendfile#49).

Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-08-12 15:40:08 -07:00
Anders Kaseorg b0859f4b1e linter_lib: Fix mypy errors.
tools/linter_lib/pyflakes.py:35: error: Argument 3 to "run_pyflakes" has incompatible type "List[Tuple[bytes, bytes]]"; expected "List[Tuple[str, str]]"
    tools/linter_lib/custom_check.py:110: error: Argument "rules" to "RuleList" has incompatible type "List[Dict[str, Any]]"; expected "List[Rule]"
    tools/linter_lib/custom_check.py:214: error: Argument "rules" to "RuleList" has incompatible type "List[Dict[str, Any]]"; expected "List[Rule]"
    tools/linter_lib/custom_check.py:214: error: Argument "shebang_rules" to "RuleList" has incompatible type "List[Dict[str, Any]]"; expected "List[Rule]"
    tools/linter_lib/custom_check.py:502: error: Argument "rules" to "RuleList" has incompatible type "List[Dict[str, Any]]"; expected "List[Rule]"
    tools/linter_lib/custom_check.py:502: error: Argument "shebang_rules" to "RuleList" has incompatible type "List[Dict[str, Any]]"; expected "List[Rule]"
    tools/linter_lib/custom_check.py:519: error: Argument "rules" to "RuleList" has incompatible type "List[Dict[str, Any]]"; expected "List[Rule]"
    tools/linter_lib/custom_check.py:706: error: Argument "rules" to "RuleList" has incompatible type "List[Dict[str, Any]]"; expected "List[Rule]"
    tools/linter_lib/custom_check.py:728: error: Argument "rules" to "RuleList" has incompatible type "List[Dict[str, Any]]"; expected "List[Rule]"
    tools/linter_lib/custom_check.py:738: error: Argument "rules" to "RuleList" has incompatible type "List[Dict[str, Any]]"; expected "List[Rule]"
    tools/linter_lib/custom_check.py:779: error: Argument "rules" to "RuleList" has incompatible type "List[Dict[str, Any]]"; expected "List[Rule]"
    tools/linter_lib/custom_check.py:779: error: Argument "length_exclude" to "RuleList" has incompatible type "Set[str]"; expected "List[str]"
    tools/linter_lib/custom_check.py:803: error: Argument "length_exclude" to "RuleList" has incompatible type "Set[str]"; expected "List[str]"
    tools/linter_lib/custom_check.py:805: error: Unsupported operand types for + ("List[Rule]" and "List[Dict[str, Any]]")
    tools/linter_lib/custom_check.py:819: error: Argument "rules" to "RuleList" has incompatible type "List[Dict[str, Any]]"; expected "List[Rule]"

These were missed the `zulint` package was missing PEP 561 type
annotation markers, and if it’d had them, mypy daemon mode would’ve
required us to set `follow_imports = skip` for it.

Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-08-09 17:22:45 -07:00
Anders Kaseorg 7625f0ecae requirements: Use a pinned zulint commit, not master.
Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-08-06 23:05:43 -07:00
Anders Kaseorg 68dd8e4ec8 mypy: Migrate from mypy_extensions to typing_extensions.
This gives us access to typing_extensions.Deque, which was not added
to typing until 3.5.4.

(PROVISION_VERSION is not bumped because the transitive dependency set
in dev.txt hasn’t changed.)

Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-08-05 17:24:09 -07:00
Mateusz Mandera d8ee11d849 requirements: Add 'decorator' dependency.
We already had this as an indirect dependency, but now it's going to be
needed to write a decorator for rate limiting authenticate() functions,
so it should be added to common.in.
2019-08-02 15:03:00 -07:00
Mateusz Mandera 8f6f78b912 requirements: Upgrade redis from 2.10.6 to 3.2.1.
Fixes #11209.

This requires changing how zadd is used in rate_limiter.py:
In redis-py >= 3.0 the pairs to ZADD need to be passed as a dictionary,
not as *args or **kwargs, as described at
https://pypi.org/project/redis/3.2.1/ in the section
"Upgrading from redis-py 2.X to 3.0".

The rate_limiter change has to be in one commit with the redis upgrade,
because the dict format is not supported before redis-py 3.0.
2019-07-29 15:34:05 -07:00
Aman 2183a74040 zulint: Use zulint from the extracted repository.
zulint will be added as a "third-party" dependency in zulip from now
on.  See the new project at https://github.com/zulip/zulint for more
details.
2019-07-26 11:35:43 -07:00
Vishnu Ks b602cbbb82 requirements: Upgrade defusedxml from 0.5.0 to 0.6.0. 2019-07-26 10:57:31 -07:00
Vishnu Ks cb8b935ee8 requirements: Upgrade certifi from 2019.3.9 to 2019.6.16. 2019-07-26 10:57:31 -07:00
Vishnu Ks 628030b742 requirements: Upgrade wheel from 0.33.1 to 0.33.4. 2019-07-26 10:57:31 -07:00
Vishnu Ks 0b9b9e5673 requirements: Upgrade pip from 19.1 to 19.2.1. 2019-07-26 10:57:31 -07:00
Vishnu Ks 3ebffe06bf requirements: Upgrade tblib from 1.3.2 to 1.4.0. 2019-07-26 10:57:31 -07:00
Vishnu Ks 096244a783 requirements: Upgrade snakeviz from 2.0.0 to 2.0.1. 2019-07-26 10:57:31 -07:00
Vishnu Ks 5c4fcf809a requirements: Upgrade Scrapy from 1.6.0 to 1.7.2. 2019-07-26 10:57:31 -07:00
Vishnu Ks f6791b30af requirements: Upgrade moto from 1.3.7 to 1.3.13. 2019-07-26 10:57:31 -07:00
Vishnu Ks dccb41fa47 requirements: Upgrade isort from 4.3.17 to 4.3.21. 2019-07-26 10:57:31 -07:00
Vishnu Ks 4f6d6ff9e1 requirements: Upgrade gitlint from 0.11.0 to 0.12.0. 2019-07-26 10:57:31 -07:00
Vishnu Ks 9487539930 requirements: Upgrade twilio from 6.26.2 to 6.29.2. 2019-07-26 10:57:31 -07:00
Vishnu Ks 2ed41095d6 requirements: Upgrade SQLAlchemy from 1.3.3 to 1.3.6. 2019-07-26 10:57:31 -07:00
Vishnu Ks 65457441f3 requirements: Upgrade Pygments from 2.3.1 to 2.4.2. 2019-07-26 10:57:31 -07:00
Vishnu Ks 7531afa9a4 requirements: Upgrade psycopg2 from 2.8.2 to 2.8.3. 2019-07-26 10:57:31 -07:00
Vishnu Ks f3eb7a8aa9 requirements: Upgrade premailer from 3.4.0 to 3.5.0. 2019-07-26 10:57:31 -07:00
Vishnu Ks 43c8d915d8 requirements: Upgrade phonenumberslite from 8.10.12 to 8.10.15. 2019-07-26 10:57:31 -07:00
Vishnu Ks 5871a81ba0 requirements: Upgrade mock from 2.0.0 to 3.0.5. 2019-07-26 10:57:31 -07:00
Vishnu Ks b2bab27afe requirements: Upgrade lxml from 4.3.3 to 4.3.4. 2019-07-26 10:57:31 -07:00
Vishnu Ks e9920164e4 requirements: Upgrade ijson from 2.3 to 2.4. 2019-07-26 10:57:31 -07:00
Vishnu Ks b57d90d7f2 requirements: Upgrade httplib2 from 0.12.3 to 0.13.0. 2019-07-26 10:57:31 -07:00
Vishnu Ks da04697167 requirements: Upgrade django-two-factor-auth from 1.8.0 to 1.9.1. 2019-07-26 10:57:31 -07:00
Vishnu Ks 501b58c6e8 requirements: Upgrade django-bitfield from 1.9.5 to 1.9.6. 2019-07-26 10:57:31 -07:00
Vishnu Ks 5d40082fe0 requirements: Upgrade django-auth-ldap from 1.7.0 to 2.0.0. 2019-07-26 10:57:31 -07:00
Vishnu Ks aaa056b150 requirements: Upgrade disposable-email-domains from 0.0.49 to 0.0.52. 2019-07-26 10:57:31 -07:00
Vishnu Ks 20a466a73f requirements: Upgrade beautifulsoup4 from 4.7.1 to 4.8.0. 2019-07-26 10:57:31 -07:00
Vishnu Ks fb4db2c851 requirements: Upgrade apns2 from 0.4.1 to 0.5.0. 2019-07-26 10:57:31 -07:00
Wyatt Hoodes 3060bb2208 requirements: Upgrade to mypy 0.720.
We also add the option of the newly added `--warn_unreachable`
flag.
2019-07-25 17:41:10 -07:00
Anders Kaseorg 6d5a20ac62 requirements: Remove django-pipeline.
Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-07-24 17:40:31 -07:00
neiljp (Neil Pilgrim) ba7a0934e3 requirements: Upgrade mypy to 0.711.
This comes with it a big performance improvement; mypy is now only
barely our slowest linter even if it wasn't previously running.

Fixes: #12058
2019-07-22 17:12:50 -07:00
Harshit Bansal bf14a0af4d auth: Migrate google auth to python-social-auth.
This replaces the two custom Google authentication backends originally
written in 2012 with using the shared python-social-auth codebase that
we already use for the GitHub authentication backend.  These are:

* GoogleMobileOauth2Backend, the ancient code path for mobile
  authentication last used by the EOL original Zulip Android app.

* The `finish_google_oauth2` code path in zerver/views/auth.py, which
  was the webapp (and modern mobile app) Google authentication code
  path.

This change doesn't fix any known bugs; its main benefit is that we
get to remove hundreds of lines of security-sensitive semi-duplicated
code, replacing it with a widely trusted, high quality third-party
library.
2019-07-21 20:51:34 -07:00
Rohitt Vashishtha 726d5003e1 bugdown: Force absolute urls in topic links.
If a url doesn't have a scheme, browsers would treat it as a relative
url and open something like: https://chat.zulip.org/google.com instead.

This PR fixes the issue on the backend; the frontend implementation
remains out of sync and the user sending the message wouldn't see
any linkification for urls without a scheme.

Fixes #12791.
2019-07-19 12:02:52 -07:00
Eeshan Garg 8dfc9d8bca pypi: Upgrade to release 0.6.1. 2019-07-15 12:28:16 -07:00
Tim Abbott 06d3194ff6 dependencies: Use the django-bitfield 1.9.5 release.
The release contains all the fixes from our fork.
2019-07-12 16:25:40 -07:00
Anders Kaseorg 0555007bd0 requirements: Remove unused dependencies.
* backports-abc: For old Python versions.
* backports.ssl-match-hostname: For old Python versions.
* docopt: Has never been used directly.
* gitdb: Has never been used directly.
* ndg-httpsclient: No longer used by requests ≥ 2.12.1.
* pycrypto: Has never been used directly.
* smmap: Has never been used directly.
* typing: For old Python versions.
* typing_extensions: For old Python versions.

PROVISION_VERSION is not bumped because these were already unused
since at least the last major bump.

Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-07-10 15:44:50 -07:00
Anders Kaseorg 51b5188299 requirements: Delist recursive dependencies from *.in not used directly.
Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2019-07-10 15:44:50 -07:00
Vishnu Ks 0b35bb96f0 requirements: Upgrade pillow from 5.4.1 to 6.1.0.
Fixes #12193
2019-07-07 22:28:54 -07:00
Vishnu Ks 4f65b50c44 requirements: Upgrade django-otp from 0.5.2 to 0.6.0.
This indirect dependency was upgraded separately since
it contained a migration with autogenerated name.
2019-07-07 22:28:54 -07:00
Vishnu Ks 41f6de1e92 requirements: Upgrade django from 1.11.20 to 1.11.22. 2019-07-07 22:28:54 -07:00
Vishnu Ks ccf6710cd6 requirements: Upgrade Twisted from 19.2.0 to 19.2.1. 2019-07-07 22:28:54 -07:00
Vishnu Ks 8143b4e47f requirements: Upgrade indirect python dependencies. 2019-07-07 22:28:54 -07:00
Rohitt Vashishtha d6e8bd6515 dependencies: Upgrade markdown from 3.0.1 -> 3.1.1.
Fixes #12192.
2019-07-03 15:06:19 -07:00
Priyank Patel 352b864124 requirements: Add pyinotify dependency. 2019-05-29 16:49:33 -07:00
Vishnu Ks 9e86a8b4d4 requirements: Explicitly specefy phonenumberslite as a dependency.
If we don't specify phonenumberslite explicitly it would
be removed when setuptools is upgraded to latest version.
2019-05-27 12:07:47 -07:00
Rishi Gupta d9d0285865 requirements: Downgrade stripe from 2.27.0 to 2.21.0.
Reverts c09962b and 697b4b2. The lines that break look like
stripe.Invoice.finalize_invoice(stripe_invoice).

Something like stripe_invoice.finalize_invoice() would work, but it's a big
change given how the tests in test_stripe.py currently work.
2019-05-15 17:27:32 -07:00
Puneeth Chaganti 0884764421 url preview: Add python-magic dependency for content-type sniffing. 2019-05-06 12:37:32 -07:00
Mayank Madan aae01f5795 dependencies: Install line_profiler from our fork.
This is required for Python 3.7 support; line_profiler needs a release
with Cython rerun following the Python 3.7 release, and this achieves
that goal.
2019-05-05 17:53:00 -07:00
Vishnu Ks b4a54483ed Revert "requirements: Upgrade moto from 1.3.7 to 1.3.8."
This reverts commit 4ee65b70b4.
2019-04-28 21:18:01 -07:00
Vishnu Ks 8d2a3e58d7 requirements: Upgrade moto from 1.3.7 to 1.3.8. 2019-04-26 16:22:00 -07:00
Vishnu Ks c99b82bae8 requirements: Upgrade setuptools from 40.8.0 to 41.0.1. 2019-04-26 16:22:00 -07:00
Vishnu Ks 07ca80a7e6 requirements: Upgrade pip from 19.0.3 to 19.1. 2019-04-26 16:22:00 -07:00
Vishnu Ks 43bc029f68 requirements: Upgrade twilio from 6.26.1 to 6.26.2. 2019-04-26 16:22:00 -07:00
Vishnu Ks c09962bd7b requirements: Upgrade stripe from 2.26.0 to 2.27.0. 2019-04-26 16:22:00 -07:00
Vishnu Ks b8d74ad594 requirements: Upgrade gitlint from 0.10.0 to 0.11.0. 2019-04-26 16:22:00 -07:00
Vishnu Ks 3ccd8ef26d requirements: Upgrade coverage from 4.5.2 to 4.5.3. 2019-04-26 16:22:00 -07:00
Vishnu Ks f9f823066e requirements: Upgrade pyasn1-modules from 0.2.4 to 0.2.5. 2019-04-26 16:22:00 -07:00
Vishnu Ks a956854df3 requirements: Upgrade indirect dependencies in thumbor.txt. 2019-04-26 16:22:00 -07:00
Vishnu Ks 4c48ff3822 requirements: Upgrade indirect dependencies in docs.txt. 2019-04-26 16:22:00 -07:00
Vishnu Ks df47b6010e requirements: Upgrade Twisted from 18.9.0 to 19.2.0. 2019-04-26 16:22:00 -07:00
Vishnu Ks 5423188e07 requirements: Upgrade isort from 4.3.11 to 4.3.17. 2019-04-26 16:22:00 -07:00
Vishnu Ks 0e12626763 requirements: Upgrade snakeviz from 1.0.0 to 2.0.0. 2019-04-26 16:22:00 -07:00
Vishnu Ks 7e2e7ca0e5 requirements: Upgrade virtualenv-clone from 0.5.1 to 0.5.3. 2019-04-26 16:22:00 -07:00
Vishnu Ks 5970f0f277 requirements: Upgrade twilio from 6.25.0 to 6.26.1. 2019-04-26 16:22:00 -07:00
Vishnu Ks 697b4b22c2 requirements: Upgrade stripe from 2.21.0 to 2.26.0. 2019-04-26 16:22:00 -07:00
Vishnu Ks 45e6f07f63 requirements: Upgrade SQLAlchemy from 1.3.0 to 1.3.3. 2019-04-26 16:22:00 -07:00
Vishnu Ks 54ad03775e requirements: Upgrade pytz from 2018.9 to 2019.1. 2019-04-26 16:22:00 -07:00
Vishnu Ks a34cfd4782 requirements: Upgrade psycopg2 from 2.7.7 to 2.8.2. 2019-04-26 16:22:00 -07:00
Vishnu Ks eb00e78856 requirements: Upgrade premailer from 3.3.0 to 3.4.0. 2019-04-26 16:22:00 -07:00
Vishnu Ks 20cd564f27 requirements: Add Pillow to unupgradable.json. 2019-04-26 16:22:00 -07:00
Vishnu Ks f0bcb061a6 requirements: Add Markdown to unupgradable.json. 2019-04-26 16:22:00 -07:00
Vishnu Ks 4158251b0b requirements: Upgrade lxml from 4.3.2 to 4.3.3. 2019-04-26 16:22:00 -07:00
Vishnu Ks c33437d473 requirements: Upgrade Jinja2 from 2.10 to 2.10.1. 2019-04-26 16:22:00 -07:00
Vishnu Ks 9d022eb127 requirements: Upgrade httplib2 from 0.12.1 to 0.12.3. 2019-04-26 16:22:00 -07:00
Vishnu Ks 57c762d6c4 requirements: Upgrade disposable-email-domains from 0.0.46 to 0.0.49. 2019-04-26 16:22:00 -07:00
Vishnu Ks cc7ac7241d requirements: Add defusedxml to unupgradable.json. 2019-04-26 16:22:00 -07:00
Vishnu Ks 2c5510b34a requirements: Upgrade cffi from 1.12.2 to 1.12.3. 2019-04-26 16:22:00 -07:00
Vishnu Ks 3177e981fd requirements: Upgrade certifi from 2018.11.29 to 2019.3.9. 2019-04-26 16:22:00 -07:00
Vishnu Ks ab63f2b524 requirements: Upgrade indirect dependencies in dev.txt, prod.txt. 2019-04-26 16:22:00 -07:00
neiljp (Neil Pilgrim) 1348c8fd05 requirements: Upgrade mypy to 0.670.
Requires minor adjustment for accented 'i' in variable name.
2019-04-16 17:50:12 -07:00
neiljp (Neil Pilgrim) 2160ece8e2 requirements: Upgrade mypy to 0.660. 2019-04-16 17:50:12 -07:00
Eeshan Garg a6abafa54b python-zulip-api: Upgrade to release 0.6.0. 2019-03-19 20:07:53 -02:30
Tim Abbott dee2de91a9 Revert "docs: Update dependencies for docs."
This reverts commit 4303b42abd.

This appears to have broken various documentation links to
e.g. README.md on GitHub.
2019-03-06 09:55:51 -08:00
Vishnu Ks 65d0b5d501 requirements: Upgrade sphinx from 1.8.3 to 1.8.4. 2019-03-06 09:31:24 -08:00
Vishnu Ks 2c62e7cf6b requirements: Upgrade isort from 4.3.10 to 4.3.11. 2019-03-06 09:31:24 -08:00
Vishnu Ks d448034f17 requirements: Upgrade wheel from 0.32.3 to 0.33.1. 2019-03-06 09:31:24 -08:00
Vishnu Ks 1a2380fff4 requirements: Upgrade setuptools from 40.7.1 to 40.8.0. 2019-03-06 09:31:24 -08:00
Vishnu Ks bf0ae7a132 requirements: Upgrade pip from 19.0.1 to 19.0.3. 2019-03-06 09:31:24 -08:00
Vishnu Ks c20b73154c requirements: Upgrade twilio from 6.23.1 to 6.25.0. 2019-03-06 09:31:24 -08:00
Vishnu Ks 837d6c99c6 requirements: Upgrade stripe from 2.20.0 to 2.21.0. 2019-03-06 09:31:24 -08:00
Vishnu Ks 737d054571 requirements: Upgrade SQLAlchemy from 1.2.17 to 1.3.0. 2019-03-06 09:31:24 -08:00
Vishnu Ks 089b31e88a requirements: Upgrade sphinx-rtd-theme from 0.4.2 to 0.4.3. 2019-03-06 09:31:24 -08:00
Vishnu Ks ee53411f55 requirements: Upgrade Scrapy from 1.5.2 to 1.6.0. 2019-03-06 09:31:24 -08:00
Vishnu Ks d53b750acc requirements: Upgrade python-dateutil from 2.7.5 to 2.8.0. 2019-03-06 09:31:24 -08:00
Vishnu Ks 02f20c91d5 requirements: Upgrade pyflakes from 2.1.0 to 2.1.1. 2019-03-06 09:31:24 -08:00
Vishnu Ks 8d56976a0c requirements: Upgrade premailer from 3.2.0 to 3.3.0. 2019-03-06 09:31:24 -08:00
Vishnu Ks 2e69f50ced requirements: Upgrade MarkupSafe from 1.1.0 to 1.1.1. 2019-03-06 09:31:24 -08:00
Vishnu Ks 980293c63c requirements: Upgrade lxml from 4.3.0 to 4.3.2. 2019-03-06 09:31:24 -08:00
Vishnu Ks b9dc7859d5 requirements: Upgrade isort from 4.3.4 to 4.3.10. 2019-03-06 09:31:24 -08:00
Vishnu Ks d90192deb4 requirements: Upgrade httplib2 from 0.12.0 to 0.12.1. 2019-03-06 09:31:24 -08:00
Vishnu Ks 2c547f4855 requirements: Upgrade disposable-email-domains from 0.0.43 to 0.0.46. 2019-03-06 09:31:24 -08:00
Vishnu Ks b0039827fb requirements: Upgrade cryptography from 2.5 to 2.6.1. 2019-03-06 09:31:24 -08:00
Vishnu Ks 7709e6c420 requirements: Upgrade cffi from 1.11.5 to 1.12.2. 2019-03-06 09:31:24 -08:00
Vishnu Ks 21f61140f8 requirements: Upgrade indirect dependencies. 2019-03-06 09:31:24 -08:00
Samuel Searles-Bryant 4303b42abd docs: Update dependencies for docs.
This updates recommonmark so that relative links to .md files will
correctly be converted to links to html pages by Sphinx/ReadTheDocs.
This was repoprted in https://github.com/rtfd/recommonmark/issues/89

This will allow us to in a future commit use relative links to .md
files so all of the hyperlinks work both on ReadTheDocs and on GitHub.
2019-03-06 09:29:21 -08:00
Bennet Sunder 7c5f316cb8 alert_words: Performance improvements in looking for alert_words.
This commit leverages the ahocorasick algorithm to build a set of user_ids
that have their alert_words present in the message. It runs in linear time
of the order of length of the input message as opposed to number of
alert_words. This is after building a ahocorasick Automaton which runs
in O(number of alert_words in entire realm) which is usually cached.
2019-03-01 15:36:39 -08:00
Tim Abbott 42a5dc2649 requirements: Add line_profiler.
This library is super useful for doing line-by-line profiling of code
paths that we want to be really fast.
2019-02-27 17:48:49 -08:00
Tim Abbott f289801d23 requirements: Update Django to latest security release. 2019-02-27 17:02:02 -08:00
Eeshan Garg 8de84eea4c pypi_packages: Upgrade to release 0.5.9. 2019-02-17 02:57:03 -03:30
Shoumorup e8ba08367b requirements: Upgrade pyflakes.
Pyflakes has been upgraded from 2.0.0 to 2.1.0 and
a few new linter errors have been fixed.

Fixes #11397.
2019-02-01 07:26:13 -08:00
Pragati Agrawal e1772b3b8f tools: Upgrade Pycodestyle and fix new linter errors.
Here, we are upgrading pycodestyle version from 2.4.0 to 2.5.0.

Fixes: #11396.
2019-01-31 12:21:41 -08:00
Vishnu Ks 0d0007742f requirements: Upgrade pika from 0.12.0 to 0.13.0.
The important changes to pika for us are based on this PR of ours:
https://github.com/pika/pika/pull/1129

Fixes #11394.
2019-01-31 10:04:07 -08:00
Vishnu Ks 5bf437b964 thumbor requirements: Upgrade virtualenv-clone from 0.4.0 to 0.5.1. 2019-01-30 09:50:43 -08:00
Vishnu Ks 8ac5ebbf39 requirements: Upgrade setuptools from 40.6.3 to 40.7.1. 2019-01-30 09:50:43 -08:00
Vishnu Ks ec3ca2b30e requirements: Upgrade pip from 18.1 to 19.0.1. 2019-01-30 09:50:43 -08:00
Vishnu Ks 8fc3a1f6b7 requirements: Upgrade virtualenv-clone from 0.4.0 to 0.5.1. 2019-01-30 09:50:43 -08:00
Vishnu Ks 6e0764f32d requirements: Upgrade twilio from 6.22.1 to 6.23.1. 2019-01-30 09:50:43 -08:00
Vishnu Ks 50a53a4fc6 requirements: Upgrade stripe from 2.17.0 to 2.20.0. 2019-01-30 09:50:43 -08:00
Vishnu Ks 1159480ef8 requirements: Upgrade SQLAlchemy from 1.2.15 to 1.2.17. 2019-01-30 09:50:43 -08:00
Vishnu Ks 89467538c7 requirements: Upgrade Scrapy from 1.5.1 to 1.5.2. 2019-01-30 09:50:43 -08:00
Vishnu Ks 9231e5453c requirements: Upgrade pyasn1-modules from 0.2.3 to 0.2.4. 2019-01-30 09:50:43 -08:00
Vishnu Ks 84dd501775 requirements: Upgrade psycopg2 from 2.7.6.1 to 2.7.7. 2019-01-30 09:50:43 -08:00
Vishnu Ks 757e0e39b8 requirements: Upgrade oauthlib from 2.1.0 to 3.0.1. 2019-01-30 09:50:43 -08:00
Vishnu Ks f29aff0de6 requirements: Upgrade disposable-email-domains from 0.0.39 to 0.0.43. 2019-01-30 09:50:42 -08:00
Vishnu Ks 5c0dc326eb requirements: Upgrade cryptography from 2.4.2 to 2.5. 2019-01-30 09:50:42 -08:00
Vishnu Ks 2ecd02aa5d requirements: Upgrade backports.ssl-match-hostname from 3.5.0.1 to 3.7.0.1. 2019-01-30 09:50:42 -08:00
Vishnu Ks 2f9a38971d requirements: Upgrade argon2-cffi from 18.3.0 to 19.1.0.
This also upgrades various recursive dependencies of Zulip.
2019-01-30 09:50:33 -08:00
Vishnu Ks a3996098cb requirements: Fix JSON syntax in unupgradables.json. 2019-01-30 07:30:31 +00:00
Eeshan Garg 9cdcfad920 pypi: Upgrade to release 0.5.8. 2019-01-22 22:49:51 -03:30
Eeshan Garg 3c4e3ddcdb pypi: Upgrade to release 0.5.7. 2019-01-16 21:27:50 -03:30
Rohitt Vashishtha b7c5ae7bca dependencies: Upgrade markdown from 2.6.11 -> 3.0.1.
This is a major upgrade, and requires some significant compatibility
work:
* Migrating the pattern-removal logic to use the Registry feature.
* Handling the removal of positional arguments in markdown extensions.
* Handling the removal of safe mode.
2019-01-11 11:40:18 -08:00
Tim Abbott 53436766c1 hipchat: Improve import of public room subscribers.
Now, if you pass an api_key, we'll initialize the public room
subscribers to be whatever they were at the time the import happened.

Also, document the situation on the caveats section.
2019-01-09 16:50:00 -08:00
Vishnu Ks d9781ec46d requirements: Upgrade Sphinx to 1.8.3. 2019-01-07 10:30:49 -08:00
Vishnu Ks 58cf938aa2 requirements: Upgrade Django to 1.11.18. 2019-01-07 10:30:49 -08:00
Vishnu Ks aea4e014c3 requirements: Upgrade wheel from 0.32.2 to 0.32.3. 2019-01-07 10:30:48 -08:00
Vishnu Ks 2f11c44c34 requirements: Upgrade setuptools from 40.6.1 to 40.6.3. 2019-01-07 10:30:48 -08:00
Vishnu Ks 259f87fcdc requirements: Upgrade yamole from 2.1.5 to 2.1.6. 2019-01-07 10:30:48 -08:00
Vishnu Ks 728b4069f5 requirements: Upgrade twilio from 6.19.2 to 6.22.1. 2019-01-07 10:30:48 -08:00
Vishnu Ks 7f602f41c9 requirements: Upgrade stripe from 2.16.0 to 2.17.0. 2019-01-07 10:30:48 -08:00
Vishnu Ks 95bbcba089 requirements: Upgrade SQLAlchemy from 1.2.14 to 1.2.15. 2019-01-07 10:30:48 -08:00
Vishnu Ks aaf20d2768 requirements: Upgrade six from 1.11.0 to 1.12.0. 2019-01-07 10:30:48 -08:00
Vishnu Ks a028fb710b requirements: Upgrade pytz from 2018.5 to 2018.9. 2019-01-07 10:30:48 -08:00
Vishnu Ks 6cbbbbfd5a requirements: Upgrade python-dateutil from 2.6.1 to 2.7.5. 2019-01-07 10:30:48 -08:00
Vishnu Ks 5b7eec3d02 requirements: Upgrade PyJWT from 1.6.4 to 1.7.1. 2019-01-07 10:30:48 -08:00
Vishnu Ks c1d18c6976 requirements: Upgrade Pygments from 2.2.0 to 2.3.1. 2019-01-07 10:30:48 -08:00
Vishnu Ks 7773a277d9 requirements: Upgrade pyasn1-modules from 0.2.2 to 0.2.3. 2019-01-07 10:30:48 -08:00
Vishnu Ks 39d455e217 requirements: Upgrade pyasn1 from 0.4.4 to 0.4.5. 2019-01-07 10:30:48 -08:00
Vishnu Ks fdcb55873a requirements: Upgrade Pillow from 5.3.0 to 5.4.1. 2019-01-07 10:30:48 -08:00
Vishnu Ks 6825b9d3b6 requirements: Upgrade pika from 0.11.0 to 0.12.0.
Based on our analysis, the bug that made us uncomfortable with
upgrading to 0.11.2 was fixed in 0.12.0.

Fixes #8466.
2019-01-07 10:29:41 -08:00
Vishnu Ks c64ad40a04 requirements: Upgrade moto from 1.3.3 to 1.3.7. 2019-01-07 10:26:31 -08:00
Vishnu Ks 2b86e10eda requirements: Upgrade lxml from 4.2.5 to 4.3.0. 2019-01-07 10:26:31 -08:00
Vishnu Ks fc903e0b0e requirements: Upgrade httplib2 from 0.11.3 to 0.12.0. 2019-01-07 10:26:31 -08:00
Vishnu Ks 7354678215 requirements: Upgrade disposable-email-domains from 0.0.38 to 0.0.39. 2019-01-07 10:26:31 -08:00
Vishnu Ks 261475c2fd requirements: Upgrade cryptography from 2.4.1 to 2.4.2. 2019-01-07 10:26:31 -08:00
Vishnu Ks 110fb7cd7b requirements: Upgrade certifi from 2018.10.15 to 2018.11.29. 2019-01-07 10:26:31 -08:00
Vishnu Ks e566a450c4 requirements: Upgrade beautifulsoup4 from 4.6.3 to 4.7.1. 2019-01-07 10:26:31 -08:00
Vishnu Ks 13de959121 tools: Add script to automate python dependency upgrade. 2019-01-07 10:25:35 -08:00
Rishi Gupta fc41360ed9 billing: Update stripe python package.
Needed for stripe.Invoice.finalize_invoice().
2018-12-18 12:48:22 -08:00
Eeshan Garg 88cf6777d0 python-zulip-api: Upgrade to latest PyPI release (0.5.6). 2018-12-17 18:37:20 -03:30
neiljp (Neil Pilgrim) 63768858ff dependencies: Upgrade mypy to version 0.650.
Broaden the type of the AbstractEnum __reduce_ex__ parameter to object; this
matches the parameter type specified in the latest enum.pyi file in typeshed.

Fixes #10996.
2018-12-09 22:20:12 -08:00
Tim Abbott 11ffd6b370 requirements: Revert updates to thumbor virtualenv.
Apparently, this set of upgrades fails on the Travis production test
suite.  Not yet clear why, but reverting for now in any case.
2018-11-13 12:41:09 -08:00
Tim Abbott 6aee656f6b requirements: Update recursive dependencies.
This was generated by:
* `rm -f requirements/*.txt`
* `./tools/update-locked-requirements`

and passes tests.  The effect is to unpin ourselves from old versions
of a bunch of recursive dependencies of our third-party dependencies.
2018-11-13 12:31:35 -08:00
Vishnu Ks d3138d486e requirements: Upgrade setuptools to 40.6.1. 2018-11-13 12:15:07 -08:00
Vishnu Ks 5f69452d48 requirements: Upgrade coverage to 4.5.2. 2018-11-13 12:15:07 -08:00
Vishnu Ks 7fafcd438e requirements: Upgrade SQLAlchemy to 1.2.14. 2018-11-13 12:15:07 -08:00
Vishnu Ks 11c595a33e requirements: Upgrade disposable-email-domains to 0.0.38. 2018-11-12 15:27:26 -08:00
Vishnu Ks c4b197cd4f requirements: Upgrade Sphinx to 1.8.2. 2018-11-12 15:27:26 -08:00
Vishnu Ks 96bd1328a5 requirements: Upgrade pylibmc to 1.6.0. 2018-11-12 15:27:26 -08:00
Vishnu Ks 1657f0d161 requirements: Upgrade psycopg2 to 2.7.6.1. 2018-11-12 15:27:26 -08:00
Vishnu Ks 7121903fc5 requirements: Upgrade cryptography to 2.4.1. 2018-11-12 15:27:26 -08:00
Vishnu Ks 77473c2a6a requirements: Upgrade django-auth-ldap to 1.7.0. 2018-11-12 15:27:26 -08:00
Vishnu Ks b46aeaf00b requirements: Upgrade setuptools to 40.5.0. 2018-11-12 15:27:26 -08:00
Vishnu Ks c1aed13afe requirements: Upgrade wheel to 0.32.2. 2018-11-12 15:27:26 -08:00
Vishnu Ks 4f91a564ef requirements: Upgrade virtualenv-clone to 0.4.0. 2018-11-12 15:27:26 -08:00
Vishnu Ks 8f5cbb5c8c requirements: Upgrade typing to 3.6.6. 2018-11-12 15:27:26 -08:00
Vishnu Ks 3ae8e79c5a requirements: Upgrade Twisted to 18.9.0. 2018-11-12 15:27:26 -08:00
Vishnu Ks 1444fb8870 requirements: Upgrade sphinx-rtd-theme to 0.4.2. 2018-11-12 15:27:26 -08:00
Vishnu Ks fe931d9b66 requirements: Upgrade sockjs-tornado to 1.0.6. 2018-11-09 10:17:55 -08:00
Vishnu Ks 349a9fe75a requirements: Upgrade social-auth-app-django to 3.1.0. 2018-11-09 10:17:55 -08:00
Vishnu Ks 6c0dee5471 requirements: Upgrade snakeviz to 1.0.0. 2018-11-09 10:17:55 -08:00
Vishnu Ks 2de33e413f requirements: Upgrade rsa to 4.0. 2018-11-09 10:17:55 -08:00
Vishnu Ks ce4088c9ed requirements: Upgrade python-twitter to 3.5. 2018-11-09 10:17:55 -08:00
Vishnu Ks 502243bb75 requirements: Upgrade python-digital-ocean to 1.14.0. 2018-11-09 10:17:55 -08:00
Vishnu Ks 19db3088df requirements: Upgrade pip to 18.1. 2018-11-09 10:17:55 -08:00
Vishnu Ks f4a81b743e requirements: Upgrade Pillow to 5.3.0. 2018-11-09 10:17:55 -08:00
Vishnu Ks ff253fb1c7 requirements: Upgrade oauth2client to 4.1.3. 2018-11-09 10:17:55 -08:00
Vishnu Ks 6e15d4efc7 requirements: Upgrade Markupsafe to 1.1.0. 2018-11-09 10:17:55 -08:00
Vishnu Ks 90491692b7 requirements: Upgrade imagesize to 1.1.0. 2018-11-09 10:17:55 -08:00
Vishnu Ks c73eb25c83 requirements: Upgrade httpretty to 0.9.6. 2018-11-09 10:17:55 -08:00
Vishnu Ks ed973ebc71 requirements: Upgrade django-two-factor-auth to 1.8.0. 2018-11-09 10:17:55 -08:00
Vishnu Ks d039ef871b requirements: Upgrade disposable-email-domains to 0.0.37. 2018-11-09 10:17:55 -08:00
Vishnu Ks 5ec9eb819b requirements: Upgrade certifi to 2018.10.15. 2018-11-09 10:17:55 -08:00
Vishnu Ks 1789cbea30 requirements: Upgrade beautifulsoup4 to 4.6.3. 2018-11-09 10:17:55 -08:00
Vishnu Ks 70a426c7ce requirements: Upgrade argon2-cffi to 18.3.0. 2018-11-09 10:17:55 -08:00
Vishnu Ks 1d11fc578e requirements: Upgrade albaster to 0.7.12. 2018-11-09 10:17:55 -08:00
Tim Abbott 15519ee0bc requirements: Upgrade a few dependencies. 2018-11-06 16:28:02 -08:00
Tim Abbott c5b1406c54 requirements: Update disposable-email-domains. 2018-11-02 12:23:09 -07:00
Tim Abbott f5c3a4aea7 requirements: Update Django to 1.11.16. 2018-10-31 12:12:25 -07:00
Tim Abbott 275b1db32d requirements: Upgrade lxml to 4.2.5. 2018-10-31 12:12:24 -07:00
Aaditya Arora f4d4c55d92 dependencies: Upgrade mypy to version 0.641.
This requires upgrading a few other packages that mypy depends on.
2018-10-24 10:48:05 -07:00
Tim Abbott d58e5b8c16 requirements: Use a forked version of libthumbor for performance.
This optimizes the import performance of Zulip by using a fork of
pkgresources.  The fork just has a single commit, which replaces
libthumbor's use of pkgresources (which is really slow to import) with
a direct query to the version number.

This fixes part of #9953.
2018-10-17 11:21:29 -07:00
Eeshan Garg c9765da47d pypi: Upgrade to release 0.5.5. 2018-09-25 18:24:36 -07:00
Eeshan Garg e1c4df0acb pypi: Upgrade to release 0.5.4. 2018-08-31 13:44:59 -07:00
Eeshan Garg 080b1eccea pypi: Upgrade to release 0.5.3. 2018-08-18 08:00:56 -07:00
Yago González 2f7e4484c8 requirements: Upgrade python-zulip-api/zulip to 7dfecf557. 2018-08-16 14:12:44 -07:00
Yago González a9c8d9b3d9 requirements: Upgrade python-zulip-api/zulip to 7dfecf557. 2018-08-14 10:11:57 -07:00
Vishnu Ks c0ed2283d3 requirements: Upgrade django-auth-ldap to 1.6.0.
The autenticate function now follows the signature of
Django 2.0 https://github.com/django-auth-ldap/
django-auth-ldap/commit/27a8052b26f1d3a43cdbcdfc8e7dc0322580adae

Also AUTH_LDAP_CACHE_GROUPS is depricated in favor of
AUTH_LDAP_CACHE_TIMEOUT.
2018-08-02 15:53:11 -07:00
Vishnu Ks 70de33384e requirements: Upgrade stripe to 2.3.0. 2018-07-31 11:13:22 -07:00
Vishnu Ks 680c2100e3 requirements: Upgrade Pillow to 5.2.0. 2018-07-31 11:13:22 -07:00
Vishnu Ks cb4e0d32e2 requirements: Upgrade uWSGI to 2.0.17.1.
TLSv1 is now disabled by default. Can be re-enabled
with ssl-enable-tlsv1 at our own risk.

https://uwsgi-docs.readthedocs.io/en/latest/
Changelog-2.0.17.1.html
2018-07-31 11:13:22 -07:00
Vishnu Ks 22f4828dc9 requirements: Upgrade thumbor dependencies. 2018-07-31 11:13:22 -07:00
Tim Abbott 30a3c48ff3 thumbor: Fix missing virtualenv-clone package in dependencies.
This package is important in order to avoid scary-looking errors
whenever we upgrade the dependencies in thumbor.txt (where
virtualenv-clone isn't installed in the venv, and then gets installed
by the code we just added a TODO comment to.
2018-07-30 11:55:16 -07:00
Vishnu Ks 6f17db5731 requirements: Upgrade pytz to 2018.5.
https://github.com/stub42/pytz/blob/master/tz/NEWS
2018-07-30 10:09:19 -07:00
Vishnu Ks 2b57e1f639 requirements: Upgrade wheel to 0.31.1. 2018-07-30 10:09:18 -07:00
Vishnu Ks 9e39e136b9 requirements: Upgrade twilio to 6.15.2.
Lot of bug fixes and changes. But nothing looks like
it will bfeak Zulip.
2018-07-30 10:06:23 -07:00
Vishnu Ks de77728c86 requirements: Upgrade SQLAlchemy to 1.2.10.
Bunch of bug fixes.
http://docs.sqlalchemy.org/en/latest/changelog/
changelog_12.html#change-1.2.10
2018-07-30 10:06:23 -07:00
Vishnu Ks 8b857db5ae requirements: Upgrade sphinx-rtd-theme to 0.4.1. 2018-07-30 10:06:23 -07:00
Vishnu Ks ec5fad4cac requirements: Upgrade Sphinx to 1.7.6. 2018-07-30 10:06:23 -07:00
Vishnu Ks 46338f5418 requirements: Upgrade setuptools to 40.0.0. 2018-07-30 10:06:23 -07:00
Vishnu Ks 95c35e70d5 requirements: Upgrade Scrapy to 1.5.1. 2018-07-30 10:06:23 -07:00
Vishnu Ks ebad4d3aaa requirements: Upgrade python-twitter to 3.4.2.
Minor changes and cleanups.
2018-07-30 10:06:23 -07:00
Vishnu Ks 060ed8cb92 requirements: Upgrade pyasn1-modules to 0.2.2.
rfc2986 module added and some documentation changes.
2018-07-30 10:06:23 -07:00
Vishnu Ks dedb8735ec requirements: Upgrade pyasn1 to 0.4.4.
Two minor bug fixes.
2018-07-30 10:06:23 -07:00
Vishnu Ks 77f88ca0d7 requirements: Upgrade py3dns to 3.2.0.
A bunch of minor bug fixes.
2018-07-30 10:06:23 -07:00
Vishnu Ks d58cb80f9d requirements: Upgrade psycopg2 to 2.7.5.
Bunch of bug fixes.

* Allow non-ascii chars in namedtuple fields (regression
  introduced fixing ticket #211).
* Fixed adaptation of arrays of arrays of nulls (ticket #325).
* Fixed building on Solaris 11 and derivatives such as
  SmartOS and illumos (ticket #677).
* Maybe fixed building on MSYS2 (as reported in ticket #658).
* Allow string subclasses in connection and other places (ticket #679).
* Don’t raise an exception closing an unused named cursor (ticket #716).
* Wheel package compiled against PostgreSQL 10.4 libpq and OpenSSL 1.0.2o.
2018-07-30 10:06:23 -07:00
Vishnu Ks d144eac101 requirements: Upgrade pip to 18.0. 2018-07-30 10:06:23 -07:00
Vishnu Ks ba8dcbff0d requirements: Upgrade ndg-httpsclient to 0.5.1.
Some minor changes.
* Clean up handling for description file - pull in content
  from this file into setup()
* Allows the nightly build to fail
* Add Trove version classifiers to make it explicit what
  is supported
* Add python_requires to help pip
* Drop support for EOL Python 2.6 and 3.3
2018-07-30 10:06:23 -07:00
Vishnu Ks e466400799 requirements: Upgrade lxml to 4.2.3.
Only one bug fix -> Fix sporadic crash during
GC when parse-time schema validation is used.
2018-07-30 10:06:23 -07:00
Vishnu Ks be16e1e509 requirements: Upgrade ipython to 6.5.0.
No major changes. Miscellaneous bug fixes
and compatibility with Python 3.7.
2018-07-30 10:06:23 -07:00
Vishnu Ks c0bbea377d requirements: Upgrade httpretty to 0.9.5. 2018-07-30 10:06:23 -07:00
Vishnu Ks a8bd83cbd6 requirements: Upgrade alabaster to 0.7.11.
A bug fix and some new features like showing next
and previous links at the bottom and top of the
page content.
2018-07-30 10:06:23 -07:00
Vishnu Ks 0a3eba2c0a requirements: Upgrade google-api-python-client to 1.7.4.
Mostly cleanups. Also updated to catch ServerNotFoundError
and retry the request.
2018-07-30 10:06:23 -07:00
Vishnu Ks fbbd43719b requirements: Upgrade django to 1.11.14. 2018-07-30 10:06:23 -07:00
Vishnu Ks 9deae31b09 requirements: Upgrade disposable-email-domains to 0.0.30. 2018-07-30 10:06:23 -07:00
Vishnu Ks 96b9007aa8 requirements: Upgrade cryptography to 2.3.
Has a security fix involving finalize_with_tag
function.
2018-07-30 10:06:23 -07:00
Vishnu Ks 7e93df2262 requirements: Upgrade boto to 2.49.0.
Updated the CA Bundle as well as some bucket encryption fixes.
2018-07-30 10:06:23 -07:00
Rhea Parekh ddf011c915 requirements: Upgrade mypy to 0.620.
Fixes #9975.
2018-07-28 15:35:32 -07:00
Eeshan Garg 73e8daffbe pypi: Upgrade to release 0.5.2. 2018-07-27 00:11:52 -07:00
Anders Kaseorg f5d44e7355 Fork django-bitfield to save a few hundred ms of startup time
See #9953, https://github.com/zulip/django-bitfield/pull/1.

Signed-off-by: Anders Kaseorg <andersk@mit.edu>
2018-07-18 15:24:15 -04:00
Aditya Bansal 0e50afb599 thumbor: Add ldap and django as a dependancy.
We add this dependancy to thumbor for no use other than making an
import possible in one of the upcoming commits. Basically we wanted to
import LOCAL_UPLOADS_DIR from zproject.prod_settings or
zproject.dev_settings and prod_settings_template.py imports
django-auth-ldap (which depends on python-ldap and django).

This seems counterproductive, but it makes it possible for us to save
significant thumbor server startup time that would have been consumed
in `get-django-setting`, and once thumbor supports Python 3, we'll
probably be merging the virtualenvs anyway (in which case this change
would become a no-op).
2018-07-15 00:03:21 +05:30
Tim Abbott 52f5d83c90 thumbor: Add libthumbor dependency.
We need this for signing thumbnail requests from within Zulip.
2018-07-14 21:46:02 +05:30
Eeshan Garg 3f40240017 pypi_packages: Upgrade to release 0.5.1. 2018-07-01 08:17:17 -07:00
Yago González 93e75b9c84 requirements: Upgrade yamole to 2.1.5. 2018-06-23 12:42:11 +02:00
Aditya Bansal 998fb038a9 django-pylibmc: Add dependancy and use as cache backend for memcached. 2018-06-16 05:24:19 -07:00
Eeshan Garg 4446b76427 pypi: Upgrade to release 0.5.0. 2018-06-07 08:31:21 -07:00
Tim Abbott d615e84421 requirements: Update thumbor dependencies. 2018-06-05 10:09:09 -07:00