Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / theupdateframework/python-tuf issues and pull requests

#2068 - build(deps): bump github/codeql-action from 2.1.17 to 2.1.18

Pull Request - State: closed - Opened by dependabot[bot] over 2 years ago - 1 comment
Labels: dependencies, github_actions

#2062 - build(deps): bump pypa/gh-action-pypi-publish from 1.5.0 to 1.5.1

Pull Request - State: closed - Opened by dependabot[bot] over 2 years ago - 4 comments
Labels: dependencies, github_actions

#2059 - build(deps): bump pylint from 2.14.4 to 2.14.5

Pull Request - State: closed - Opened by dependabot[bot] over 2 years ago - 1 comment
Labels: dependencies, python

#2058 - build(deps): bump github/codeql-action from 2.1.15 to 2.1.16

Pull Request - State: closed - Opened by dependabot[bot] over 2 years ago - 2 comments
Labels: dependencies, github_actions

#2057 - build(deps): bump actions/dependency-review-action from 2.0.2 to 2.0.4

Pull Request - State: closed - Opened by dependabot[bot] over 2 years ago - 1 comment
Labels: dependencies, github_actions

#2056 - The client-example has a confusing return for the `download` function.

Issue - State: closed - Opened by kairoaraujo over 2 years ago - 3 comments

#2055 - build(deps): bump coverage from 6.4.1 to 6.4.2

Pull Request - State: closed - Opened by dependabot[bot] over 2 years ago - 1 comment
Labels: dependencies, python

#2054 - build(deps): bump actions/setup-python from 4.0.0 to 4.1.0

Pull Request - State: closed - Opened by dependabot[bot] over 2 years ago - 1 comment
Labels: dependencies, github_actions

#2053 - build(deps): bump urllib3 from 1.26.9 to 1.26.10

Pull Request - State: closed - Opened by dependabot[bot] over 2 years ago - 1 comment
Labels: dependencies, python

#2051 - Updated updater.py

Pull Request - State: closed - Opened by abs007 over 2 years ago - 1 comment

#2050 - build(deps): bump cryptography from 37.0.3 to 37.0.4

Pull Request - State: closed - Opened by dependabot[bot] over 2 years ago - 1 comment
Labels: dependencies, python

#2049 - Tap 14 draft pr

Pull Request - State: closed - Opened by abs007 over 2 years ago - 8 comments

#2048 - ngclient: Prevent automatic decoding of gzip files

Pull Request - State: closed - Opened by dennisvang over 2 years ago - 17 comments

#2046 - build(deps): bump cffi from 1.15.0 to 1.15.1

Pull Request - State: closed - Opened by dependabot[bot] over 2 years ago - 1 comment
Labels: dependencies, python

#2043 - build(deps): bump github/codeql-action from 2.1.14 to 2.1.15

Pull Request - State: closed - Opened by dependabot[bot] over 2 years ago - 1 comment
Labels: dependencies, github_actions

#2042 - build(deps): bump black from 22.3.0 to 22.6.0

Pull Request - State: closed - Opened by dependabot[bot] over 2 years ago - 1 comment
Labels: dependencies, python

#2041 - Grammar fix

Pull Request - State: closed - Opened by abs007 over 2 years ago - 3 comments

#2038 - Add an example script about succinct roles usage

Pull Request - State: closed - Opened by MVrachev over 2 years ago - 17 comments

#2035 - Bump supported spec version to 1.0.30

Pull Request - State: closed - Opened by MVrachev over 2 years ago - 2 comments

#2033 - build(deps): bump charset-normalizer from 2.0.12 to 2.1.0

Pull Request - State: closed - Opened by dependabot[bot] over 2 years ago - 3 comments
Labels: dependencies, python

#2031 - Tests: download a target with succinct_roles enabled

Pull Request - State: closed - Opened by MVrachev over 2 years ago - 5 comments

#2027 - docs: Rename blog post

Pull Request - State: closed - Opened by jku over 2 years ago - 1 comment

#2024 - ngclient: pick old timestamp if new.version is equal

Pull Request - State: closed - Opened by MVrachev over 2 years ago - 15 comments

#2022 - build(deps): bump requests from 2.27.1 to 2.28.0

Pull Request - State: closed - Opened by dependabot[bot] over 2 years ago - 1 comment
Labels: dependencies, python

#2021 - build(deps): bump actions/setup-python from 3.1.2 to 4

Pull Request - State: closed - Opened by dependabot[bot] over 2 years ago - 1 comment
Labels: dependencies, github_actions

#2019 - build(deps): bump mypy from 0.960 to 0.961

Pull Request - State: closed - Opened by dependabot[bot] over 2 years ago - 1 comment
Labels: dependencies, python

#2018 - build(deps): bump pylint from 2.14.0 to 2.14.1

Pull Request - State: closed - Opened by dependabot[bot] over 2 years ago - 1 comment
Labels: dependencies, python

#2017 - Tests: simplify and shorten test_metadata_eq_.py

Pull Request - State: closed - Opened by MVrachev over 2 years ago - 3 comments

#2016 - build(deps): bump coverage from 6.4 to 6.4.1

Pull Request - State: closed - Opened by dependabot[bot] over 2 years ago - 1 comment
Labels: dependencies, python

#2015 - build(deps): bump pylint from 2.13.9 to 2.14.0

Pull Request - State: closed - Opened by dependabot[bot] over 2 years ago - 1 comment
Labels: dependencies, python

#2014 - document dependabot PR review strategy

Issue - State: open - Opened by jku over 2 years ago - 11 comments
Labels: documentation

#2013 - build(deps): bump mypy from 0.950 to 0.960

Pull Request - State: closed - Opened by dependabot[bot] over 2 years ago - 1 comment
Labels: dependencies, python

#2012 - build(deps): bump actions/upload-artifact from 3.0.0 to 3.1.0

Pull Request - State: closed - Opened by dependabot[bot] over 2 years ago - 2 comments
Labels: dependencies, github_actions

#2011 - build(deps): bump coverage from 6.3.2 to 6.4

Pull Request - State: closed - Opened by dependabot[bot] over 2 years ago - 1 comment
Labels: dependencies, python

#2010 - Add support for succinct roles (TAP 15)

Pull Request - State: closed - Opened by MVrachev over 2 years ago - 28 comments

#2009 - build(deps): bump certifi from 2021.10.8 to 2022.5.18.1

Pull Request - State: closed - Opened by dependabot[bot] over 2 years ago - 1 comment
Labels: dependencies, python

#2007 - build(deps): bump pylint from 2.13.8 to 2.13.9

Pull Request - State: closed - Opened by dependabot[bot] over 2 years ago - 1 comment
Labels: dependencies, python

#2006 - build(deps): bump actions/github-script from 6.0.0 to 6.1.0

Pull Request - State: closed - Opened by dependabot[bot] over 2 years ago - 1 comment
Labels: dependencies, github_actions

#2005 - build(deps): bump coverage from 6.3.2 to 6.3.3

Pull Request - State: closed - Opened by dependabot[bot] over 2 years ago - 2 comments
Labels: dependencies, python

#2004 - docs: remove a duplicated word in refresh() doc comment

Pull Request - State: closed - Opened by rdimitrov over 2 years ago - 1 comment

#2003 - fix: ngclient: temp_file could be undefined #1999

Pull Request - State: closed - Opened by dhavalgshah over 2 years ago - 4 comments

#2002 - Appending Fetcher docs to state the method to be implemented.

Pull Request - State: closed - Opened by abs007 over 2 years ago - 2 comments

#2001 - chore: update the workflow responsible for notifying of new TUF spec release

Pull Request - State: closed - Opened by rdimitrov over 2 years ago - 3 comments

#1995 - RFE: expose delegated metadata to client application

Issue - State: open - Opened by jku over 2 years ago - 16 comments
Labels: enhancement, ngclient

#1983 - Update maintainers permission checklist

Pull Request - State: closed - Opened by jku over 2 years ago - 2 comments

#1982 - verify_release: Tweak pip download

Pull Request - State: closed - Opened by jku over 2 years ago - 1 comment

#1980 - python-tuf 1.1.0 release

Pull Request - State: closed - Opened by jku over 2 years ago - 4 comments

#1979 - Add option to sign release artifacts with verify_release

Pull Request - State: closed - Opened by lukpueh over 2 years ago - 2 comments

#1977 - build(deps): bump securesystemslib[crypto,pynacl] from 0.22.0 to 0.23.0

Pull Request - State: closed - Opened by dependabot[bot] over 2 years ago - 1 comment
Labels: dependencies, python

#1974 - chore: Dependency Review Action

Pull Request - State: closed - Opened by naveensrinivasan over 2 years ago - 3 comments

#1968 - cd: auto-generate release notes for GitHub release page

Issue - State: open - Opened by lukpueh over 2 years ago - 2 comments
Labels: low-prio

#1941 - Add tricky test case blog post

Pull Request - State: closed - Opened by ivanayov over 2 years ago - 5 comments

#1912 - Support HSM signing

Issue - State: closed - Opened by lukpueh over 2 years ago - 2 comments
Labels: enhancement, securesystemslib, backlog

#1893 - MetaFile is missing from_bytes() or equivalent

Issue - State: closed - Opened by jku over 2 years ago - 2 comments
Labels: enhancement, good first issue, backlog

#1874 - tox run with latest securesystemslib changes doesn't seem to work

Issue - State: closed - Opened by MVrachev over 2 years ago - 3 comments
Labels: bug, good first issue, backlog

#1797 - doc: consider re-adding a "quickstart" document

Issue - State: open - Opened by lukpueh almost 3 years ago - 7 comments
Labels: documentation, backlog

#1672 - Create constants for top-level rolenames

Pull Request - State: closed - Opened by ivanayov about 3 years ago - 13 comments

#1670 - Tests: self.assertRaises -> with self.assertRaises

Pull Request - State: closed - Opened by MVrachev about 3 years ago - 1 comment

#1649 - Clarify key rotations test cases by using keywords

Pull Request - State: closed - Opened by MVrachev about 3 years ago - 3 comments

#1636 - ngclient: top-level-roles update tests

Pull Request - State: closed - Opened by sechkova about 3 years ago - 5 comments

#1626 - Modernise packaging configuration

Pull Request - State: closed - Opened by joshuagl about 3 years ago - 5 comments

#1625 - Release 0.19.0

Pull Request - State: closed - Opened by jku about 3 years ago - 3 comments

#1624 - Start linting tests with black, isort and mypy and exclude old test files

Pull Request - State: closed - Opened by MVrachev about 3 years ago - 13 comments

#1621 - build(deps): bump cffi from 1.14.6 to 1.15.0

Pull Request - State: closed - Opened by dependabot[bot] about 3 years ago - 1 comment
Labels: dependencies

#1620 - Add missing method args docs in metadata API

Pull Request - State: closed - Opened by lukpueh about 3 years ago - 4 comments

#1619 - DO NOT MERGE: testing

Pull Request - State: closed - Opened by jku about 3 years ago - 1 comment

#1618 - Reuse computation of hashes and length

Pull Request - State: closed - Opened by MVrachev about 3 years ago - 2 comments

#1616 - build(deps): bump idna from 3.2 to 3.3

Pull Request - State: closed - Opened by dependabot[bot] about 3 years ago - 1 comment
Labels: dependencies

#1611 - build(deps): bump charset-normalizer from 2.0.6 to 2.0.7

Pull Request - State: closed - Opened by dependabot[bot] about 3 years ago - 2 comments
Labels: dependencies

#1610 - Add support for python 3.10

Pull Request - State: closed - Opened by MVrachev about 3 years ago - 7 comments

#1609 - build(deps): bump certifi from 2021.5.30 to 2021.10.8

Pull Request - State: closed - Opened by dependabot[bot] about 3 years ago - 1 comment
Labels: dependencies

#1608 - ngclient: remove sleep_before_round

Pull Request - State: closed - Opened by sechkova about 3 years ago - 1 comment

#1605 - Introduce the idea of trusted/untrusted snapshot

Pull Request - State: closed - Opened by MVrachev about 3 years ago - 9 comments

#1604 - Ngclient api polish

Pull Request - State: closed - Opened by jku about 3 years ago - 11 comments

#1603 - Snapshot abstraction

Pull Request - State: closed - Opened by mnm678 about 3 years ago - 5 comments

#1593 - ngclient: Avoid loading targets metadata twice

Pull Request - State: closed - Opened by sechkova about 3 years ago - 9 comments

#1591 - Fix handling consistent targets same as legacy updater

Pull Request - State: closed - Opened by MVrachev about 3 years ago - 10 comments

#1590 - API doc improvements

Pull Request - State: closed - Opened by jku about 3 years ago - 4 comments

#1589 - build(deps): bump urllib3 from 1.26.6 to 1.26.7

Pull Request - State: closed - Opened by dependabot[bot] about 3 years ago - 1 comment
Labels: dependencies

#1587 - tests: Add target support to RepositorySimulator

Pull Request - State: closed - Opened by jku about 3 years ago - 2 comments

#1584 - Fix pylint warnings

Pull Request - State: closed - Opened by MVrachev about 3 years ago - 3 comments

#1583 - GitHub CI workflow: tweak names

Pull Request - State: closed - Opened by jku about 3 years ago - 6 comments

#1581 - build(deps): bump charset-normalizer from 2.0.4 to 2.0.5

Pull Request - State: closed - Opened by dependabot[bot] about 3 years ago - 1 comment
Labels: dependencies

#1574 - Ngclient: persist metadata safely

Pull Request - State: closed - Opened by jku about 3 years ago - 4 comments

#1572 - Have dependabot also monitor actions

Pull Request - State: closed - Opened by joshuagl about 3 years ago - 1 comment

#1569 - test ngclient with simulated repo

Pull Request - State: closed - Opened by jku about 3 years ago - 4 comments

#1568 - docs: python-tuf version should be visible in docs (readthedocs)

Issue - State: open - Opened by jku about 3 years ago - 16 comments
Labels: documentation, good first issue, backlog

#1567 - Prepare v0.18.1

Pull Request - State: closed - Opened by joshuagl about 3 years ago - 1 comment

#1566 - Don't build universal wheels

Pull Request - State: closed - Opened by joshuagl about 3 years ago - 1 comment

#1565 - ngclient: Fix intermediate metadata loading with rollback checks

Pull Request - State: closed - Opened by jku about 3 years ago - 3 comments

#1564 - Add ngclient to coverage report

Pull Request - State: closed - Opened by sechkova about 3 years ago - 3 comments

#1561 - README: Badge updates

Pull Request - State: closed - Opened by jku about 3 years ago - 1 comment

#1556 - ngclient: feature request "download target as bytes"

Issue - State: open - Opened by jku about 3 years ago - 2 comments
Labels: enhancement, ngclient

#1551 - Release preparations for 0.18

Pull Request - State: closed - Opened by jku about 3 years ago - 3 comments

#1549 - Fixes #1526 to make the persist_metadata function an atomic operation

Pull Request - State: closed - Opened by suvadityamuk about 3 years ago - 16 comments

#1537 - Enforce role name uniqueness and add Targets key helpers

Pull Request - State: closed - Opened by MVrachev about 3 years ago - 12 comments

#1533 - Metadata API: improve metadata module documentation

Pull Request - State: closed - Opened by MVrachev about 3 years ago - 9 comments

#1521 - Add an option to create TargetFile from data/file

Pull Request - State: closed - Opened by avelichka over 3 years ago - 1 comment

#1446 - Metadata API: change meta type in Timestamp

Pull Request - State: closed - Opened by MVrachev over 3 years ago - 20 comments

#1248 - GitHub Actions: Find and implement fail-fast strategy

Issue - State: closed - Opened by lukpueh almost 4 years ago - 2 comments
Labels: good first issue, github_actions