py-django vulnerabilities

Li-Wen Hsu lwhsu at FreeBSD.org
Tue Aug 25 20:05:01 UTC 2015 

On Thu, Aug 20, 2015 at 13:10:41 -0500, Mark Felder wrote:
> On Thu, Aug 20, 2015, at 07:15, Li-Wen Hsu wrote:
> > On Wed, Aug 19, 2015 at 10:36:54 -0500, Mark Felder wrote:
> > > On Wed, Aug 19, 2015, at 10:30, Mark Felder wrote:
> > > > On Wed, Aug 19, 2015, at 10:27, Li-Wen Hsu wrote:
> > > > > Thanks for the update.  I have the same patch with you.  But I haven't
> > > > > had www/py-django-devel pass the poudriere test.  Are you working on
> > > > > that too?
> > > > 
> > > > I have not yet touched www/py-django-devel. I figure fewer users are
> > > > affected by it, so I wanted to get the stable releases pushed out first.
> > > 
> > > Setting the snapshot date to 20150819 seems to fetch and build fine. Is
> > > that OK? Do you follow django development and prefer to carefully choose
> > > a different snapshot date to avoid any recent bugs/issues that could
> > > affect users?
> > 
> > GH_TAGNAME should also be updated, or you will get the old code.
> > 
> > I got following error from poudriere.
> > 
> > https://gist.github.com/anonymous/7fdf1a8d9645ef324e82
> > 
> > I am a bit not sure if this is due to our python port infrastructure or
> > django itself.  Haven't looked into it, but `python setup.py install` on
> > Mac also failed.
> > 
> 
> 
> I just had a chat with a django developer and he told me those things
> are not supposed to be byte-compiled
> 
> https://github.com/django/django/blob/master/setup.py#L26-L28
> 
> They're listed right there in the setup.py
> 
> So the question is: is this a bug on their side if you also saw it on
> OSX?

Sorry for late reply, I was busy at $work recently.

I think so, but I wanted to check how does it work on Linux.  Maybe it's
my Python setup issue on both FreeBSD and OSX.  Can anybody help to
verify this?

Li-Wen

-- 
Li-Wen Hsu <lwhsu at FreeBSD.org>
http://lwhsu.org
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 949 bytes
Desc: not available
URL: <http://lists.freebsd.org/pipermail/freebsd-python/attachments/20150826/3350577f/attachment.bin>

More information about the freebsd-python mailing list