RestrictedPython 7.3__tar.gz → 8.0__tar.gz

restrictedpython-8.0/.pre-commit-config.yaml

@@ -0,0 +1,28 @@
+# Generated from:
+# https://github.com/zopefoundation/meta/tree/master/config/pure-python
+minimum_pre_commit_version: '3.6'
+repos:
+  - repo: https://github.com/pycqa/isort
+    rev: "5.13.2"
+    hooks:
+    - id: isort
+  - repo: https://github.com/hhatto/autopep8
+    rev: "v2.3.1"
+    hooks:
+    - id: autopep8
+      args: [--in-place, --aggressive, --aggressive]
+  - repo: https://github.com/asottile/pyupgrade
+    rev: v3.19.0
+    hooks:
+    - id: pyupgrade
+      args: [--py39-plus]
+  - repo: https://github.com/isidentical/teyit
+    rev: 0.4.3
+    hooks:
+    - id: teyit
+  - repo: https://github.com/PyCQA/flake8
+    rev: "7.1.1"
+    hooks:
+    - id: flake8
+      additional_dependencies:
+        - flake8-debugger == 4.1.2

{RestrictedPython-7.3 → restrictedpython-8.0}/CHANGES.rst

@@ -1,6 +1,41 @@
 Changes
 =======
 
+8.0 (2025-01-23)
+----------------
+
+Backwards incompatible changes
+++++++++++++++++++++++++++++++
+
+- Disallow ``try/except*`` clauses due to a possible sandbox escape and
+  probable uselessness of this feature in the context of ``RestrictedPython``.
+  In addition, remove ``ExceptionGroup`` from ``safe_builtins`` (as useful only
+  with ``try/except*``). - This feature was introduced into
+  ``RestrictedPython`` in version 6.0 for Python 3.11+. (CVE-2025-22153)
+
+- Drop support for Python 3.8.
+
+Features
+++++++++
+
+- Update setuptools version pin.
+  (`#292 <https://github.com/zopefoundation/RestrictedPython/issues/292>`_)
+
+
+7.4 (2024-10-09)
+----------------
+
+- Allow to use the package with Python 3.13.
+
+- Drop support for Python 3.7.
+
+- Provide new function ``RestrictedPython.Guards.safer_getattr_raise``.
+  It is similar to ``safer_getattr`` but handles its parameter
+  ``default`` like ``getattr``, i.e. it raises ``AttributeError``
+  if the attribute lookup fails and this parameter is not provided,
+  fixes `#287 <https://github.com/zopefoundation/RestrictedPython/issues/287>`_.
+
+
 7.3 (2024-09-30)
 ----------------
 
@@ -9,7 +44,7 @@ Changes
   and give the same level of protection as direct attribute access in an
   environment based on ``RestrictedPython``'s ``safe_builtints``.
 - Prevent information leakage via ``AttributeError.obj``
-  and the ``string`` module.
+  and the ``string`` module. (CVE-2024-47532)
 
 
 7.2 (2024-08-02)

{RestrictedPython-7.3 → restrictedpython-8.0}/MANIFEST.in

@@ -5,6 +5,7 @@ include *.rst
 include *.txt
 include buildout.cfg
 include tox.ini
+include .pre-commit-config.yaml
 
 recursive-include docs *.py
 recursive-include docs *.rst

{RestrictedPython-7.3 → restrictedpython-8.0}/PKG-INFO

@@ -1,11 +1,11 @@
 Metadata-Version: 2.1
 Name: RestrictedPython
-Version: 7.3
+Version: 8.0
 Summary: RestrictedPython is a defined subset of the Python language which allows to provide a program input into a trusted environment.
 Home-page: https://github.com/zopefoundation/RestrictedPython
 Author: Zope Foundation and Contributors
-Author-email: zope-dev@zope.org
-License: ZPL 2.1
+Author-email: zope-dev@zope.dev
+License: ZPL-2.1
 Project-URL: Documentation, https://restrictedpython.readthedocs.io/
 Project-URL: Source, https://github.com/zopefoundation/RestrictedPython
 Project-URL: Tracker, https://github.com/zopefoundation/RestrictedPython/issues
@@ -15,15 +15,14 @@ Classifier: License :: OSI Approved :: Zope Public License
 Classifier: Programming Language :: Python
 Classifier: Operating System :: OS Independent
 Classifier: Programming Language :: Python :: 3
-Classifier: Programming Language :: Python :: 3.7
-Classifier: Programming Language :: Python :: 3.8
 Classifier: Programming Language :: Python :: 3.9
 Classifier: Programming Language :: Python :: 3.10
 Classifier: Programming Language :: Python :: 3.11
 Classifier: Programming Language :: Python :: 3.12
+Classifier: Programming Language :: Python :: 3.13
 Classifier: Programming Language :: Python :: Implementation :: CPython
 Classifier: Topic :: Security
-Requires-Python: >=3.7, <3.13
+Requires-Python: >=3.9, <3.14
 Description-Content-Type: text/x-rst
 License-File: LICENSE.txt
 Provides-Extra: test
@@ -31,7 +30,7 @@ Requires-Dist: pytest; extra == "test"
 Requires-Dist: pytest-mock; extra == "test"
 Provides-Extra: docs
 Requires-Dist: Sphinx; extra == "docs"
-Requires-Dist: sphinx_rtd_theme; extra == "docs"
+Requires-Dist: furo; extra == "docs"
 
 .. image:: https://github.com/zopefoundation/RestrictedPython/actions/workflows/tests.yml/badge.svg
     :target: https://github.com/zopefoundation/RestrictedPython/actions/workflows/tests.yml
@@ -124,6 +123,41 @@ the documentation `Contributing page
 Changes
 =======
 
+8.0 (2025-01-23)
+----------------
+
+Backwards incompatible changes
+++++++++++++++++++++++++++++++
+
+- Disallow ``try/except*`` clauses due to a possible sandbox escape and
+  probable uselessness of this feature in the context of ``RestrictedPython``.
+  In addition, remove ``ExceptionGroup`` from ``safe_builtins`` (as useful only
+  with ``try/except*``). - This feature was introduced into
+  ``RestrictedPython`` in version 6.0 for Python 3.11+. (CVE-2025-22153)
+
+- Drop support for Python 3.8.
+
+Features
+++++++++
+
+- Update setuptools version pin.
+  (`#292 <https://github.com/zopefoundation/RestrictedPython/issues/292>`_)
+
+
+7.4 (2024-10-09)
+----------------
+
+- Allow to use the package with Python 3.13.
+
+- Drop support for Python 3.7.
+
+- Provide new function ``RestrictedPython.Guards.safer_getattr_raise``.
+  It is similar to ``safer_getattr`` but handles its parameter
+  ``default`` like ``getattr``, i.e. it raises ``AttributeError``
+  if the attribute lookup fails and this parameter is not provided,
+  fixes `#287 <https://github.com/zopefoundation/RestrictedPython/issues/287>`_.
+
+
 7.3 (2024-09-30)
 ----------------
 
@@ -132,7 +166,7 @@ Changes
   and give the same level of protection as direct attribute access in an
   environment based on ``RestrictedPython``'s ``safe_builtints``.
 - Prevent information leakage via ``AttributeError.obj``
-  and the ``string`` module.
+  and the ``string`` module. (CVE-2024-47532)
 
 
 7.2 (2024-08-02)

{RestrictedPython-7.3 → restrictedpython-8.0}/docs/conf.py

@@ -16,8 +16,13 @@
 # documentation root, use os.path.abspath to make it absolute, like shown here.
 # sys.path.insert(0, os.path.abspath('.'))
 
+import datetime
+
+
 # -- General configuration ------------------------------------------------
 
+year = datetime.datetime.now().year
+
 # If your documentation needs a minimal Sphinx version, state it here.
 # needs_sphinx = '1.0'
 
@@ -37,7 +42,7 @@ templates_path = ['_templates']
 # The suffix(es) of source filenames.
 # You can specify multiple suffix as a list of string:
 # source_suffix = ['.rst', '.md']
-source_suffix = '.rst'
+source_suffix = {'.rst': 'restructuredtext'}
 
 # The encoding of source files.
 # source_encoding = 'utf-8-sig'
@@ -47,7 +52,7 @@ master_doc = 'index'
 
 # General information about the project.
 project = 'RestrictedPython'
-copyright = '2017-2023, Zope Foundation and Contributors'
+copyright = f'2017-{year}, Zope Foundation and Contributors'
 author = 'The Zope & Plone developer community'
 
 # The version info for the project you're documenting, acts as replacement for
@@ -55,9 +60,9 @@ author = 'The Zope & Plone developer community'
 # built documents.
 #
 # The short X.Y version.
-version = '7.0'
+version = '7.5'
 # The full version, including alpha/beta/rc tags.
-release = '7.0'
+release = '7.5'
 
 # The language for content autogenerated by Sphinx. Refer to documentation
 # for a list of supported languages.
@@ -107,12 +112,11 @@ todo_include_todos = True
 # Intersphinx Mapping for Links between different Documentations
 intersphinx_mapping = {
     'python3': ('https://docs.python.org/3', None),
-    'python37': ('https://docs.python.org/3.7', None),
-    'python38': ('https://docs.python.org/3.8', None),
     'python39': ('https://docs.python.org/3.9', None),
     'python310': ('https://docs.python.org/3.10', None),
     'python311': ('https://docs.python.org/3.11', None),
     'python312': ('https://docs.python.org/3.12', None),
+    'python313': ('https://docs.python.org/3.13', None),
 }
 
 # Options for sphinx.ext.todo:
@@ -123,7 +127,7 @@ todo_emit_warnings = True
 
 # The theme to use for HTML and HTML Help pages.  See the documentation for
 # a list of builtin themes.
-html_theme = 'default'
+html_theme = 'furo'
 
 # Theme options are theme-specific and customize the look and feel of a theme
 # further.  For a list of options available for each theme, see the
@@ -274,8 +278,11 @@ latex_documents = [
 # One entry per manual page. List of tuples
 # (source start file, name, description, authors, manual section).
 man_pages = [
-    (master_doc, 'restrictedpython', 'RestrictedPython Documentation', [author], 1)
-]
+    (master_doc,
+     'restrictedpython',
+     'RestrictedPython Documentation',
+     [author],
+     1)]
 
 # If true, show URL addresses after external links.
 # man_show_urls = False

restrictedpython-8.0/docs/contributing/ast/python3_13.ast

@@ -0,0 +1,194 @@
+-- Python 3.13 AST
+-- ASDL's 4 builtin types are:
+-- identifier, int, string, constant
+
+module Python version "3.13"
+{
+    mod = Module(stmt* body, type_ignore* type_ignores)
+        | Interactive(stmt* body)
+        | Expression(expr body)
+        | FunctionType(expr* argtypes, expr returns)
+
+    stmt = FunctionDef(identifier name,
+                       arguments args,
+                       stmt* body,
+                       expr* decorator_list,
+                       expr? returns,
+                       string? type_comment,
+                       type_param* type_params)
+         | AsyncFunctionDef(identifier name,
+                            arguments args,
+                            stmt* body,
+                            expr* decorator_list,
+                            expr? returns,
+                            string? type_comment,
+                            type_param* type_params)
+
+         | ClassDef(identifier name,
+                    expr* bases,
+                    keyword* keywords,
+                    stmt* body,
+                    expr* decorator_list,
+                    type_param* type_params)
+         | Return(expr? value)
+
+         | Delete(expr* targets)
+         | Assign(expr* targets, expr value, string? type_comment)
+         | TypeAlias(expr name, type_param* type_params, expr value)
+         | AugAssign(expr target, operator op, expr value)
+         -- 'simple' indicates that we annotate simple name without parens
+         | AnnAssign(expr target, expr annotation, expr? value, int simple)
+
+         -- use 'orelse' because else is a keyword in target languages
+         | For(expr target, expr iter, stmt* body, stmt* orelse, string? type_comment)
+         | AsyncFor(expr target, expr iter, stmt* body, stmt* orelse, string? type_comment)
+         | While(expr test, stmt* body, stmt* orelse)
+         | If(expr test, stmt* body, stmt* orelse)
+         | With(withitem* items, stmt* body, string? type_comment)
+         | AsyncWith(withitem* items, stmt* body, string? type_comment)
+
+         | Match(expr subject, match_case* cases)
+
+         | Raise(expr? exc, expr? cause)
+         | Try(stmt* body, excepthandler* handlers, stmt* orelse, stmt* finalbody)
+         | TryStar(stmt* body, excepthandler* handlers, stmt* orelse, stmt* finalbody)
+         | Assert(expr test, expr? msg)
+
+         | Import(alias* names)
+         | ImportFrom(identifier? module, alias* names, int? level)
+
+         | Global(identifier* names)
+         | Nonlocal(identifier* names)
+         | Expr(expr value)
+         | Pass
+         | Break
+         | Continue
+
+         -- col_offset is the byte offset in the utf8 string the parser uses
+         attributes (int lineno, int col_offset, int? end_lineno, int? end_col_offset)
+
+         -- BoolOp() can use left & right?
+    expr = BoolOp(boolop op, expr* values)
+         | NamedExpr(expr target, expr value)
+         | BinOp(expr left, operator op, expr right)
+         | UnaryOp(unaryop op, expr operand)
+         | Lambda(arguments args, expr body)
+         | IfExp(expr test, expr body, expr orelse)
+         | Dict(expr* keys, expr* values)
+         | Set(expr* elts)
+         | ListComp(expr elt, comprehension* generators)
+         | SetComp(expr elt, comprehension* generators)
+         | DictComp(expr key, expr value, comprehension* generators)
+         | GeneratorExp(expr elt, comprehension* generators)
+         -- the grammar constrains where yield expressions can occur
+         | Await(expr value)
+         | Yield(expr? value)
+         | YieldFrom(expr value)
+         -- need sequences for compare to distinguish between
+         -- x < 4 < 3 and (x < 4) < 3
+         | Compare(expr left, cmpop* ops, expr* comparators)
+         | Call(expr func, expr* args, keyword* keywords)
+         | FormattedValue(expr value, int conversion, expr? format_spec)
+         | JoinedStr(expr* values)
+         | Constant(constant value, string? kind)
+
+         -- the following expression can appear in assignment context
+         | Attribute(expr value, identifier attr, expr_context ctx)
+         | Subscript(expr value, expr slice, expr_context ctx)
+         | Starred(expr value, expr_context ctx)
+         | Name(identifier id, expr_context ctx)
+         | List(expr* elts, expr_context ctx)
+         | Tuple(expr* elts, expr_context ctx)
+
+         -- can appear only in Subscript
+         | Slice(expr? lower, expr? upper, expr? step)
+
+          -- col_offset is the byte offset in the utf8 string the parser uses
+          attributes (int lineno, int col_offset, int? end_lineno, int? end_col_offset)
+
+    expr_context = Load
+                 | Store
+                 | Del
+
+    boolop = And
+           | Or
+
+    operator = Add
+             | Sub
+             | Mult
+             | MatMult
+             | Div
+             | Mod
+             | Pow
+             | LShift
+             | RShift
+             | BitOr
+             | BitXor
+             | BitAnd
+             | FloorDiv
+
+    unaryop = Invert
+            | Not
+            | UAdd
+            | USub
+
+    cmpop = Eq
+          | NotEq
+          | Lt
+          | LtE
+          | Gt
+          | GtE
+          | Is
+          | IsNot
+          | In
+          | NotIn
+
+    comprehension = (expr target, expr iter, expr* ifs, int is_async)
+
+    excepthandler = ExceptHandler(expr? type, identifier? name, stmt* body)
+                    attributes (int lineno, int col_offset, int? end_lineno, int? end_col_offset)
+
+    arguments = (arg* posonlyargs,
+                 arg* args,
+                 arg? vararg,
+                 arg* kwonlyargs,
+                 expr* kw_defaults,
+                 arg? kwarg,
+                 expr* defaults)
+
+    arg = (identifier arg, expr? annotation, string? type_comment)
+          attributes (int lineno, int col_offset, int? end_lineno, int? end_col_offset)
+
+    -- keyword arguments supplied to call (NULL identifier for **kwargs)
+    keyword = (identifier? arg, expr value)
+              attributes (int lineno, int col_offset, int? end_lineno, int? end_col_offset)
+
+    -- import name with optional 'as' alias.
+    alias = (identifier name, identifier? asname)
+            attributes (int lineno, int col_offset, int? end_lineno, int? end_col_offset)
+
+    withitem = (expr context_expr, expr? optional_vars)
+
+    match_case = (pattern pattern, expr? guard, stmt* body)
+
+    pattern = MatchValue(expr value)
+            | MatchSingleton(constant value)
+            | MatchSequence(pattern* patterns)
+            | MatchMapping(expr* keys, pattern* patterns, identifier? rest)
+            | MatchClass(expr cls, pattern* patterns, identifier* kwd_attrs, pattern* kwd_patterns)
+
+            | MatchStar(identifier? name)
+            -- The optional "rest" MatchMapping parameter handles capturing extra mapping keys
+
+            | MatchAs(pattern? pattern, identifier? name)
+            | MatchOr(pattern* patterns)
+
+             attributes (int lineno, int col_offset, int end_lineno, int end_col_offset)
+
+    type_ignore = TypeIgnore(int lineno, string tag)
+
+    type_param = TypeVar(identifier name, expr? bound, expr? default_value)
+               | ParamSpec(identifier name, expr? default_value)
+               | TypeVarTuple(identifier name, expr? default_value)
+               attributes (int lineno, int col_offset, int end_lineno, int end_col_offset)
+}

restrictedpython-8.0/docs/contributing/changes_from312to313.rst

@@ -0,0 +1,5 @@
+Changes from Python 3.12 to Python 3.13
+---------------------------------------
+
+.. literalinclude:: ast/python3_13.ast
+   :diff: ast/python3_12.ast

{RestrictedPython-7.3 → restrictedpython-8.0}/docs/contributing/index.rst

@@ -1,7 +1,6 @@
 Contributing
 ============
 
-.. contents::
 
 Contributing to RestrictedPython
 --------------------------------
@@ -99,12 +98,11 @@ A (modified style) Copy of all Abstract Grammar Definitions for the Python versi
 .. toctree::
    :maxdepth: 2
 
-   changes_from36to37
-   changes_from37to38
    changes_from38to39
    changes_from39to310
    changes_from310to311
    changes_from311to312
+   changes_from312to313
 
 .. _understand:
 
@@ -237,12 +235,11 @@ Technical Backgrounds - Links to External Documentation
 
   * AST Grammar of Python (`Status of Python Versions`_)
 
+    * `Python 3.13 AST`_ (EOL 2029-10)
     * `Python 3.12 AST`_ (EOL 2028-10)
     * `Python 3.11 AST`_ (EOL 2027-10)
     * `Python 3.10 AST`_ (EOL 2026-10)
     * `Python 3.9 AST`_ (EOL 2025-10)
-    * `Python 3.8 AST`_ (EOL 2024-10)
-    * `Python 3.7 AST`_ (EOL 2023-06-27)
 
   * `AST NodeVistiors Class`_
   * `AST NodeTransformer Class`_
@@ -260,6 +257,8 @@ Todos
 
 .. _`What's new in Python`: https://docs.python.org/3/whatsnew/
 
+.. _`What's new in Python 3.13`: https://docs.python.org/3.13/whatsnew/3.13.html
+
 .. _`What's new in Python 3.12`: https://docs.python.org/3.12/whatsnew/3.12.html
 
 .. _`What's new in Python 3.11`: https://docs.python.org/3.11/whatsnew/3.11.html
@@ -268,10 +267,6 @@ Todos
 
 .. _`What's new in Python 3.9`: https://docs.python.org/3.9/whatsnew/3.9.html
 
-.. _`What's new in Python 3.8`: https://docs.python.org/3.8/whatsnew/3.8.html
-
-.. _`What's new in Python 3.7`: https://docs.python.org/3.7/whatsnew/3.7.html
-
 .. _`Status of Python Versions`: https://devguide.python.org/versions/
 
 .. _`Concept of Immutable Types and Python Example`: https://en.wikipedia.org/wiki/Immutable_object#Python
@@ -286,6 +281,8 @@ Todos
 
 .. _`Python 3 AST`: https://docs.python.org/3/library/ast.html#abstract-grammar
 
+.. _`Python 3.13 AST`: https://docs.python.org/3.13/library/ast.html#abstract-grammar
+
 .. _`Python 3.12 AST`: https://docs.python.org/3.12/library/ast.html#abstract-grammar
 
 .. _`Python 3.11 AST`: https://docs.python.org/3.11/library/ast.html#abstract-grammar
@@ -294,10 +291,6 @@ Todos
 
 .. _`Python 3.9 AST`: https://docs.python.org/3.9/library/ast.html#abstract-grammar
 
-.. _`Python 3.8 AST`: https://docs.python.org/3.8/library/ast.html#abstract-grammar
-
-.. _`Python 3.7 AST`: https://docs.python.org/3.7/library/ast.html#abstract-grammar
-
 .. _`AST NodeVistiors Class`: https://docs.python.org/3/library/ast.html#ast.NodeVisitor
 
 .. _`AST NodeTransformer Class`: https://docs.python.org/3/library/ast.html#ast.NodeTransformer

{RestrictedPython-7.3 → restrictedpython-8.0}/docs/index.rst

@@ -15,7 +15,7 @@ RestrictedPython is not a sandbox system or a secured environment, but it helps
 Supported Python versions
 =========================
 
-RestrictedPython supports CPython 3.7 up to 3.12.
+RestrictedPython supports CPython 3.9 up to 3.13.
 It does _not_ support PyPy or other alternative Python implementations.
 
 Contents
@@ -29,8 +29,6 @@ Contents
    usage/index
    usage/api
 
-   upgrade_dependencies/index
-
    roadmap/index
    contributing/index
 

{RestrictedPython-7.3 → restrictedpython-8.0}/docs/requirements.txt

@@ -1 +1,2 @@
 Sphinx
+furo

restrictedpython-8.0/pyproject.toml

@@ -0,0 +1,21 @@
+# 
+# Generated from:
+# https://github.com/zopefoundation/meta/tree/master/config/pure-python
+
+[build-system]
+requires = ["setuptools <= 75.6.0"]
+build-backend = "setuptools.build_meta"
+
+[tool.coverage.run]
+branch = true
+source = ["RestrictedPython"]
+
+[tool.coverage.report]
+fail_under = 97.3
+precision = 2
+ignore_errors = true
+show_missing = true
+exclude_lines = ["pragma: no cover", "pragma: nocover", "except ImportError:", "raise NotImplementedError", "if __name__ == '__main__':", "self.fail", "raise AssertionError", "raise unittest.Skip"]
+
+[tool.coverage.html]
+directory = "parts/htmlcov"

{RestrictedPython-7.3 → restrictedpython-8.0}/setup.cfg

@@ -1,6 +1,3 @@
-[bdist_wheel]
-universal = 0
-
 [flake8]
 doctests = 1
 
@@ -17,6 +14,7 @@ ignore =
 	docs/_build/html/_sources/roadmap/*
 	docs/_build/html/_sources/upgrade_dependencies/*
 	docs/_build/html/_sources/usage/*
+	docs/_build/html/_static/scripts/*
 
 [isort]
 force_single_line = True

{RestrictedPython-7.3 → restrictedpython-8.0}/setup.py

@@ -24,15 +24,10 @@ def read(*rnames):
         return f.read()
 
 
-tests_require = [
-    'pytest',
-    'pytest-mock',
-]
-
 setup(name='RestrictedPython',
-      version='7.3',
+      version='8.0',
       url='https://github.com/zopefoundation/RestrictedPython',
-      license='ZPL 2.1',
+      license='ZPL-2.1',
       description=(
           'RestrictedPython is a defined subset of the Python language which '
           'allows to provide a program input into a trusted environment.'),
@@ -44,18 +39,17 @@ setup(name='RestrictedPython',
           'Programming Language :: Python',
           'Operating System :: OS Independent',
           'Programming Language :: Python :: 3',
-          'Programming Language :: Python :: 3.7',
-          'Programming Language :: Python :: 3.8',
           'Programming Language :: Python :: 3.9',
           'Programming Language :: Python :: 3.10',
           'Programming Language :: Python :: 3.11',
           'Programming Language :: Python :: 3.12',
+          'Programming Language :: Python :: 3.13',
           'Programming Language :: Python :: Implementation :: CPython',
           'Topic :: Security',
       ],
       keywords='restricted execution security untrusted code',
       author='Zope Foundation and Contributors',
-      author_email='zope-dev@zope.org',
+      author_email='zope-dev@zope.dev',
       project_urls={
           "Documentation": "https://restrictedpython.readthedocs.io/",
           "Source": "https://github.com/zopefoundation/RestrictedPython",
@@ -65,10 +59,10 @@ setup(name='RestrictedPython',
       packages=find_packages('src'),
       package_dir={'': 'src'},
       install_requires=[],
-      python_requires=">=3.7, <3.13",
+      python_requires=">=3.9, <3.14",
       extras_require={
-          'test': tests_require,
-          'docs': ['Sphinx', 'sphinx_rtd_theme'],
+          'test': ['pytest', 'pytest-mock'],
+          'docs': ['Sphinx', 'furo'],
       },
       include_package_data=True,
       zip_safe=False)