diff --git a/NEWS.rst b/NEWS.rst index 750a532387c..c284b9b09b8 100644 --- a/NEWS.rst +++ b/NEWS.rst @@ -7,6 +7,91 @@ .. towncrier release notes start +19.2 (2019-07-22) +================= + +Deprecations and Removals +------------------------- + +- Drop support for EOL Python 3.4. (`#6685 `_) +- Improve deprecation messages to include the version in which the functionality will be removed. (`#6549 `_) + +Features +-------- + +- Credentials will now be loaded using `keyring` when installed. (`#5948 `_) +- Fully support using ``--trusted-host`` inside requirements files. (`#3799 `_) +- Update timestamps in pip's ``--log`` file to include milliseconds. (`#6587 `_) +- Respect whether a file has been marked as "yanked" from a simple repository + (see `PEP 592 `__ for details). (`#6633 `_) +- When choosing candidates to install, prefer candidates with a hash matching + one of the user-provided hashes. (`#5874 `_) +- Improve the error message when ``METADATA`` or ``PKG-INFO`` is None when + accessing metadata. (`#5082 `_) +- Add a new command ``pip debug`` that can display e.g. the list of compatible + tags for the current Python. (`#6638 `_) +- Display hint on installing with --pre when search results include pre-release versions. (`#5169 `_) +- Report to Warehouse that pip is running under CI if the ``PIP_IS_CI`` environment variable is set. (`#5499 `_) +- Allow ``--python-version`` to be passed as a dotted version string (e.g. + ``3.7`` or ``3.7.3``). (`#6585 `_) +- Log the final filename and SHA256 of a ``.whl`` file when done building a + wheel. (`#5908 `_) +- Include the wheel's tags in the log message explanation when a candidate + wheel link is found incompatible. (`#6121 `_) +- Add a ``--path`` argument to ``pip freeze`` to support ``--target`` + installations. (`#6404 `_) +- Add a ``--path`` argument to ``pip list`` to support ``--target`` + installations. (`#6551 `_) + +Bug Fixes +--------- + +- Set ``sys.argv[0]`` to the underlying ``setup.py`` when invoking ``setup.py`` + via the setuptools shim so setuptools doesn't think the path is ``-c``. (`#1890 `_) +- Update ``pip download`` to respect the given ``--python-version`` when checking + ``"Requires-Python"``. (`#5369 `_) +- Respect ``--global-option`` and ``--install-option`` when installing from + a version control url (e.g. ``git``). (`#5518 `_) +- Make the "ascii" progress bar really be "ascii" and not Unicode. (`#5671 `_) +- Fail elegantly when trying to set an incorrectly formatted key in config. (`#5963 `_) +- Prevent DistutilsOptionError when prefix is indicated in the global environment and `--target` is used. (`#6008 `_) +- Fix ``pip install`` to respect ``--ignore-requires-python`` when evaluating + links. (`#6371 `_) +- Fix a debug log message when freezing an editable, non-version controlled + requirement. (`#6383 `_) +- Extend to Subversion 1.8+ the behavior of calling Subversion in + interactive mode when pip is run interactively. (`#6386 `_) +- Prevent ``pip install `` from permitting directory traversal if e.g. + a malicious server sends a ``Content-Disposition`` header with a filename + containing ``../`` or ``..\\``. (`#6413 `_) +- Hide passwords in output when using ``--find-links``. (`#6489 `_) +- Include more details in the log message if ``pip freeze`` can't generate a + requirement string for a particular distribution. (`#6513 `_) +- Add the line number and file location to the error message when reading an + invalid requirements file in certain situations. (`#6527 `_) +- Prefer ``os.confstr`` to ``ctypes`` when extracting glibc version info. (`#6543 `_, `#6675 `_) +- Improve error message printed when an invalid editable requirement is provided. (`#6648 `_) +- Improve error message formatting when a command errors out in a subprocess. (`#6651 `_) + +Vendored Libraries +------------------ + +- Upgrade certifi to 2019.6.16 +- Upgrade distlib to 0.2.9.post0 +- Upgrade msgpack to 0.6.1 +- Upgrade requests to 2.22.0 +- Upgrade urllib3 to 1.25.3 +- Patch vendored html5lib, to prefer using `collections.abc` where possible. + +Improved Documentation +---------------------- + +- Document how Python 2.7 support will be maintained. (`#6726 `_) +- Upgrade Sphinx version used to build documentation. (`#6471 `_) +- Fix generation of subcommand manpages. (`#6724 `_) +- Mention that pip can install from git refs. (`#6512 `_) +- Replace a failing example of pip installs with extras with a working one. (`#4733 `_) + 19.1.1 (2019-05-06) =================== diff --git a/news/1234.trivial b/news/1234.trivial deleted file mode 100644 index e69de29bb2d..00000000000 diff --git a/news/1890.bugfix b/news/1890.bugfix deleted file mode 100644 index 8f85e1255a2..00000000000 --- a/news/1890.bugfix +++ /dev/null @@ -1,2 +0,0 @@ -Set ``sys.argv[0]`` to the underlying ``setup.py`` when invoking ``setup.py`` -via the setuptools shim so setuptools doesn't think the path is ``-c``. diff --git a/news/3662.trivial b/news/3662.trivial deleted file mode 100644 index 2a94f55f317..00000000000 --- a/news/3662.trivial +++ /dev/null @@ -1 +0,0 @@ -Work around an issue with Jython's `re` implementation that resulted in a Java StackOverflowError. diff --git a/news/3799.feature b/news/3799.feature deleted file mode 100644 index e15c2a1da32..00000000000 --- a/news/3799.feature +++ /dev/null @@ -1 +0,0 @@ -Fully support using ``--trusted-host`` inside requirements files. diff --git a/news/4733.doc b/news/4733.doc deleted file mode 100644 index 95873624862..00000000000 --- a/news/4733.doc +++ /dev/null @@ -1 +0,0 @@ -Replace a failing example of pip installs with extras with a working one. diff --git a/news/5059.trivial b/news/5059.trivial deleted file mode 100644 index e69de29bb2d..00000000000 diff --git a/news/5082.feature b/news/5082.feature deleted file mode 100644 index 17c67876439..00000000000 --- a/news/5082.feature +++ /dev/null @@ -1,2 +0,0 @@ -Improve the error message when ``METADATA`` or ``PKG-INFO`` is None when -accessing metadata. diff --git a/news/5169.feature b/news/5169.feature deleted file mode 100644 index 49efa997db6..00000000000 --- a/news/5169.feature +++ /dev/null @@ -1 +0,0 @@ -Display hint on installing with --pre when search results include pre-release versions. \ No newline at end of file diff --git a/news/5369.bugfix b/news/5369.bugfix deleted file mode 100644 index e17f88289d8..00000000000 --- a/news/5369.bugfix +++ /dev/null @@ -1,2 +0,0 @@ -Update ``pip download`` to respect the given ``--python-version`` when checking -``"Requires-Python"``. diff --git a/news/5499.feature b/news/5499.feature deleted file mode 100644 index 8f5d4773126..00000000000 --- a/news/5499.feature +++ /dev/null @@ -1 +0,0 @@ -Report to Warehouse that pip is running under CI if the ``PIP_IS_CI`` environment variable is set. diff --git a/news/5518.bugfix b/news/5518.bugfix deleted file mode 100644 index 832098a71e5..00000000000 --- a/news/5518.bugfix +++ /dev/null @@ -1,2 +0,0 @@ -Respect ``--global-option`` and ``--install-option`` when installing from -a version control url (e.g. ``git``). diff --git a/news/5671.bugfix b/news/5671.bugfix deleted file mode 100644 index 1dfa6c39442..00000000000 --- a/news/5671.bugfix +++ /dev/null @@ -1 +0,0 @@ -Make the "ascii" progress bar really be "ascii" and not Unicode. diff --git a/news/5874.feature b/news/5874.feature deleted file mode 100644 index 844e3790fb3..00000000000 --- a/news/5874.feature +++ /dev/null @@ -1,2 +0,0 @@ -When choosing candidates to install, prefer candidates with a hash matching -one of the user-provided hashes. diff --git a/news/5908.feature b/news/5908.feature deleted file mode 100644 index 4e63748593f..00000000000 --- a/news/5908.feature +++ /dev/null @@ -1,2 +0,0 @@ -Log the final filename and SHA256 of a ``.whl`` file when done building a -wheel. diff --git a/news/5948.feature b/news/5948.feature deleted file mode 100644 index af2d8cdd63f..00000000000 --- a/news/5948.feature +++ /dev/null @@ -1 +0,0 @@ -Credentials will now be loaded using `keyring` when installed. diff --git a/news/5963.bugfix b/news/5963.bugfix deleted file mode 100644 index 60875b2e580..00000000000 --- a/news/5963.bugfix +++ /dev/null @@ -1 +0,0 @@ -Fail elegantly when trying to set an incorrectly formatted key in config. diff --git a/news/6008.bugfix b/news/6008.bugfix deleted file mode 100644 index ff83dfa0275..00000000000 --- a/news/6008.bugfix +++ /dev/null @@ -1 +0,0 @@ -Prevent DistutilsOptionError when prefix is indicated in the global environment and `--target` is used. diff --git a/news/6121.feature b/news/6121.feature deleted file mode 100644 index afe1f3857d1..00000000000 --- a/news/6121.feature +++ /dev/null @@ -1,2 +0,0 @@ -Include the wheel's tags in the log message explanation when a candidate -wheel link is found incompatible. diff --git a/news/6371.bugfix b/news/6371.bugfix deleted file mode 100644 index 8376039615d..00000000000 --- a/news/6371.bugfix +++ /dev/null @@ -1,2 +0,0 @@ -Fix ``pip install`` to respect ``--ignore-requires-python`` when evaluating -links. diff --git a/news/6383.bugfix b/news/6383.bugfix deleted file mode 100644 index 9fcd1903b45..00000000000 --- a/news/6383.bugfix +++ /dev/null @@ -1,2 +0,0 @@ -Fix a debug log message when freezing an editable, non-version controlled -requirement. diff --git a/news/6386.bugfix b/news/6386.bugfix deleted file mode 100644 index 366ec28620f..00000000000 --- a/news/6386.bugfix +++ /dev/null @@ -1,2 +0,0 @@ -Extend to Subversion 1.8+ the behavior of calling Subversion in -interactive mode when pip is run interactively. diff --git a/news/6404.feature b/news/6404.feature deleted file mode 100644 index f3f6bae5539..00000000000 --- a/news/6404.feature +++ /dev/null @@ -1,2 +0,0 @@ -Add a ``--path`` argument to ``pip freeze`` to support ``--target`` -installations. diff --git a/news/6413.bugfix b/news/6413.bugfix deleted file mode 100644 index 68d0a72f64a..00000000000 --- a/news/6413.bugfix +++ /dev/null @@ -1,3 +0,0 @@ -Prevent ``pip install `` from permitting directory traversal if e.g. -a malicious server sends a ``Content-Disposition`` header with a filename -containing ``../`` or ``..\\``. diff --git a/news/6471.doc b/news/6471.doc deleted file mode 100644 index f66096a09c2..00000000000 --- a/news/6471.doc +++ /dev/null @@ -1 +0,0 @@ -Upgrade Sphinx version used to build documentation. diff --git a/news/6486.trivial b/news/6486.trivial deleted file mode 100644 index e9f69608f32..00000000000 --- a/news/6486.trivial +++ /dev/null @@ -1 +0,0 @@ -This change will add .DS_Store to .gitignore diff --git a/news/6489.bugfix b/news/6489.bugfix deleted file mode 100644 index a5eb4f9c1ee..00000000000 --- a/news/6489.bugfix +++ /dev/null @@ -1 +0,0 @@ -Hide passwords in output when using ``--find-links``. diff --git a/news/6512.doc b/news/6512.doc deleted file mode 100644 index 25a5dfa53f3..00000000000 --- a/news/6512.doc +++ /dev/null @@ -1 +0,0 @@ -Mention that pip can install from git refs. diff --git a/news/6513.bugfix b/news/6513.bugfix deleted file mode 100644 index 0e1757ae7b8..00000000000 --- a/news/6513.bugfix +++ /dev/null @@ -1,2 +0,0 @@ -Include more details in the log message if ``pip freeze`` can't generate a -requirement string for a particular distribution. diff --git a/news/6527.bugfix b/news/6527.bugfix deleted file mode 100644 index 92d29d9ff58..00000000000 --- a/news/6527.bugfix +++ /dev/null @@ -1,2 +0,0 @@ -Add the line number and file location to the error message when reading an -invalid requirements file in certain situations. diff --git a/news/6533.trivial b/news/6533.trivial deleted file mode 100644 index fe243a74488..00000000000 --- a/news/6533.trivial +++ /dev/null @@ -1 +0,0 @@ -Override the definition of the function was_installed_by_pip (src\pip\_internal\utils\outdated.py) too specific with a more general alternative \ No newline at end of file diff --git a/news/6543.bugfix b/news/6543.bugfix deleted file mode 100644 index faf68532c9d..00000000000 --- a/news/6543.bugfix +++ /dev/null @@ -1 +0,0 @@ -Prefer ``os.confstr`` to ``ctypes`` when extracting glibc version info. diff --git a/news/6549.feature b/news/6549.feature deleted file mode 100644 index d4970e39ad6..00000000000 --- a/news/6549.feature +++ /dev/null @@ -1 +0,0 @@ -Improve deprecation messages to include the version in which the functionality will be removed. diff --git a/news/6551.feature b/news/6551.feature deleted file mode 100644 index 68487d2183c..00000000000 --- a/news/6551.feature +++ /dev/null @@ -1,2 +0,0 @@ -Add a ``--path`` argument to ``pip list`` to support ``--target`` -installations. diff --git a/news/6579.trivial b/news/6579.trivial deleted file mode 100644 index 497dfaefde0..00000000000 --- a/news/6579.trivial +++ /dev/null @@ -1 +0,0 @@ -Link with developer documentation added in .github/CONTRIBUTING.md \ No newline at end of file diff --git a/news/6585.feature b/news/6585.feature deleted file mode 100644 index 1d46a8e59e5..00000000000 --- a/news/6585.feature +++ /dev/null @@ -1,2 +0,0 @@ -Allow ``--python-version`` to be passed as a dotted version string (e.g. -``3.7`` or ``3.7.3``). diff --git a/news/6587.feature b/news/6587.feature deleted file mode 100644 index d47c206d269..00000000000 --- a/news/6587.feature +++ /dev/null @@ -1 +0,0 @@ -Update timestamps in pip's ``--log`` file to include milliseconds. diff --git a/news/6633.feature b/news/6633.feature deleted file mode 100644 index 889cafadc62..00000000000 --- a/news/6633.feature +++ /dev/null @@ -1,2 +0,0 @@ -Respect whether a file has been marked as "yanked" from a simple repository -(see `PEP 592 `__ for details). diff --git a/news/6638.feature b/news/6638.feature deleted file mode 100644 index f96b9133d29..00000000000 --- a/news/6638.feature +++ /dev/null @@ -1,2 +0,0 @@ -Add a new command ``pip debug`` that can display e.g. the list of compatible -tags for the current Python. diff --git a/news/6644.trivial b/news/6644.trivial deleted file mode 100644 index e69de29bb2d..00000000000 diff --git a/news/6648.bugfix b/news/6648.bugfix deleted file mode 100644 index 9f986fe17c6..00000000000 --- a/news/6648.bugfix +++ /dev/null @@ -1 +0,0 @@ -Improve error message printed when an invalid editable requirement is provided. diff --git a/news/6651.bugfix b/news/6651.bugfix deleted file mode 100644 index 2a78fac0b34..00000000000 --- a/news/6651.bugfix +++ /dev/null @@ -1 +0,0 @@ -Improve error message formatting when a command errors out in a subprocess. diff --git a/news/6659.trivial b/news/6659.trivial deleted file mode 100644 index e69de29bb2d..00000000000 diff --git a/news/6675.bugfix b/news/6675.bugfix deleted file mode 100644 index faf68532c9d..00000000000 --- a/news/6675.bugfix +++ /dev/null @@ -1 +0,0 @@ -Prefer ``os.confstr`` to ``ctypes`` when extracting glibc version info. diff --git a/news/6685.removal b/news/6685.removal deleted file mode 100644 index 60e26e4692e..00000000000 --- a/news/6685.removal +++ /dev/null @@ -1 +0,0 @@ -Drop support for EOL Python 3.4. diff --git a/news/6724.doc b/news/6724.doc deleted file mode 100644 index eae5303d03b..00000000000 --- a/news/6724.doc +++ /dev/null @@ -1 +0,0 @@ -Fix generation of subcommand manpages. diff --git a/news/6726.doc b/news/6726.doc deleted file mode 100644 index 3a711cfab95..00000000000 --- a/news/6726.doc +++ /dev/null @@ -1 +0,0 @@ -Document how Python 2.7 support will be maintained. diff --git a/news/certifi.vendor b/news/certifi.vendor deleted file mode 100644 index 3d9ab36c50a..00000000000 --- a/news/certifi.vendor +++ /dev/null @@ -1 +0,0 @@ -Upgrade certifi to 2019.6.16 diff --git a/news/cleanup.trivial b/news/cleanup.trivial deleted file mode 100644 index a298aeadfe2..00000000000 --- a/news/cleanup.trivial +++ /dev/null @@ -1,2 +0,0 @@ -Exit conditional sooner if not local_version_is_older for faster execution (src/pip/_internal/utils/outdated.py) -Moved local and remote pip version check conditional to a variable (src/pip/_internal/utils/outdated.py) \ No newline at end of file diff --git a/news/distlib.vendor b/news/distlib.vendor deleted file mode 100644 index 8b11e09a35b..00000000000 --- a/news/distlib.vendor +++ /dev/null @@ -1 +0,0 @@ -Upgrade distlib to 0.2.9.post0 diff --git a/news/git_looks_like_hash.trivial b/news/git_looks_like_hash.trivial deleted file mode 100644 index 6086b84b3d9..00000000000 --- a/news/git_looks_like_hash.trivial +++ /dev/null @@ -1 +0,0 @@ -Be stricter in identifying git commit hashes. \ No newline at end of file diff --git a/news/html5lib-collections-patch.vendor b/news/html5lib-collections-patch.vendor deleted file mode 100644 index de29b1f6bcb..00000000000 --- a/news/html5lib-collections-patch.vendor +++ /dev/null @@ -1 +0,0 @@ -Patch vendored html5lib, to prefer using `collections.abc` where possible. diff --git a/news/msgpack.vendor b/news/msgpack.vendor deleted file mode 100644 index e30a444c4c8..00000000000 --- a/news/msgpack.vendor +++ /dev/null @@ -1 +0,0 @@ -Upgrade msgpack to 0.6.1 diff --git a/news/pathlib-refactor-1.trivial b/news/pathlib-refactor-1.trivial deleted file mode 100644 index e69de29bb2d..00000000000 diff --git a/news/pathlib-refactor-2.trivial b/news/pathlib-refactor-2.trivial deleted file mode 100644 index e69de29bb2d..00000000000 diff --git a/news/requests.vendor b/news/requests.vendor deleted file mode 100644 index aac729b0e10..00000000000 --- a/news/requests.vendor +++ /dev/null @@ -1 +0,0 @@ -Upgrade requests to 2.22.0 diff --git a/news/urllib3.vendor b/news/urllib3.vendor deleted file mode 100644 index ff45e8a5485..00000000000 --- a/news/urllib3.vendor +++ /dev/null @@ -1 +0,0 @@ -Upgrade urllib3 to 1.25.3