Workflow

Proxpi

Latest version: v1.1.0

Safety actively analyzes 620978 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 1 of 4

1.2.0b0

*Changes since v1.2a1*

Features

* Server health endpoint `GET /health` (38)
* Request timeout configuration (35)
* ARM Docker image (45)

Improvements

* Use Python 3.12, Flask v3, Gunicorn v21, Werkzeug v3

1.2.0a1

*Changes since v1.2a0*

Features

* Implement [PEP 714](https://peps.python.org/pep-0714/) - rename `"dist-info-metadata"` attribute to `"core-metadata"`

Improvements

* Warn on invalid core-metadata attribute value
* Don't rely on exceptions being raised during HTML hash attribute value parsing

1.2.0a0

*Changes since v1.1*

Features
* Environment variable `PROXPI_DISABLE_INDEX_SSL_VERIFICATION` (`=1`) to disable index SSL certificate verification
* Environment variable `PROXPI_DOWNLOAD_TIMEOUT` for fallback redirect timeout

Miscellanous
* Docker app uses Python 3.11
* Update app dependency pins

1.1.0

*Changes since v1.0.1*

Features
* Optionally provide JSON simple repository index responses ([PEP 691](https://peps.python.org/pep-0691/))
* Serve distribution metadata if provided from source package indexes
* Add option to force binary content-type (ie `application/octet-stream`) in file responses via environment variable `PROXPI_BINARY_FILE_MIME_TYPE`

Fixes
* `Vary` response header now correctly contains `Accept` and `Accept-Encoding`
* Support package index HTML responses with no `body` element
* Provide package only found in extra indexes instead of 404
* Fix cache refreshed-time after recently starting the OS. This affects when the project sub-route is directly called instead of calling the project-list route
* Fix file attributes in HTML responses, importantly the data-yanked attribute, and all hashes when the source index provides multiple hashes

Improvements
* HTML simple repository index API version declared in response body ([PEP 629](https://peps.python.org/pep-0629/))
* Declare HTML generator (as `proxpi`) in response body
* Add user-agent (as `proxpi/vX.Y.Z`) to package index requests
* Support and prefer JSON simple repository index responses from source package indexes
* Include `coloredlogs` in Docker image

Miscellaneous
* Test with Python 3.11 in CI (and drop 3.6)
* Docker app has dependencies pinned

1.1.0rc0

*Changes since v1.1b1*

Miscellaneous
* Test with Python 3.11 in CI (and drop 3.6)
* Update Docker image app dependency pins
* Include `coloredlogs` in Docker image

1.1.0b1

*Changes since v1.1b0*

Fixes
* Fix file attributes in both HTML and JSON responses, importantly the data-yanked attribute in HTML responses, but also JSON-response metadata hashes, and HTML-response all hashes when the source index provides multiple hashes

Miscellaneous
* Docker app has dependencies pinned

Page 1 of 4

Links

Releases

Has known vulnerabilities

Next

© 2024 Safety CLI Cybersecurity Inc. All Rights Reserved.