Workflow

Openfisca-core

Latest version: v41.4.5

Safety actively analyzes 628924 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 4 of 60

39.0.0

Breaking changes

- Upgrade every dependencies to their latest versions.
- Upgrade to Python >= 3.9

Main changes, that may require some code changes in country packages:
- numpy
- pytest
- Flask

38.0.4

Technical changes

- Method `_get_tax_benefit_system()` of class `YamlItem` in file `openfisca_core/tools/test_runner.py` will now clone the TBS when applying reforms to avoid running tests with previously reformed TBS.

38.0.3

Bug fix

- Do not install dependencies outside the `setup.py`
- Dependencies installed outside the `setup.py` are not taken into account by
`pip`'s dependency resolver.
- In case of conflicting transient dependencies, the last library installed
will "impose" its dependency version.
- This makes the installation and build of the library non-deterministic and
prone to unforeseen bugs caused by external changes in dependencies'
versions.

Note

A definite way to solve this issue is to clearly separate library dependencies
(with a `virtualenv`) and a universal dependency installer for CI requirements
(like `pipx`), taking care of:

- Always running tests inside the `virtualenv` (for example with `nox`).
- Always building outside of the `virtualenv` (for example with `poetry`
installed by `pipx`).

Moreover, it is indeed even better to have a lock file for dependencies,
using `pip freeze`) or with tools providing such features (`pipenv`, etc.).

38.0.2

Technical changes

- Remove use of `importlib_metadata`.

38.0.1

> Note: Version `38.0.1` has been unpublished as was deployed by mistake.
> Please use versions `38.0.2` and subsequents.

38.0.0

> Note: Version `38.0.0` has been unpublished as `35.11.1` introduced a bug
> preventing users to load a tax-benefit system. Please use versions `38.0.2`
> and subsequents.

New Features

- Upgrade OpenAPI specification of the API to v3 from Swagger v2.
- Continuously validate OpenAPI specification.

Breaking changes

- Drop support for OpenAPI specification v2 and prior.
- Users relying on OpenAPI v2 can use [Swagger Converter](https://converter.swagger.io/api/convert?url=OAS2_YAML_OR_JSON_URL) to migrate ([example](https://web.archive.org/web/20221103230822/https://converter.swagger.io/api/convert?url=https://api.demo.openfisca.org/latest/spec)).

Page 4 of 60

Links

Releases

Has known vulnerabilities

Previous Next

© 2024 Safety CLI Cybersecurity Inc. All Rights Reserved.