PyPI - nautobot - Versions diffs - 1.6.20__py3-none-any.whl → 1.6.21__py3-none-any.whl - Mend

nautobot 1.6.20py3-none-any.whl → 1.6.21py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (11) hide show

nautobot/project-static/docs/release-notes/version-1.6.html CHANGED Viewed

@@ -3788,6 +3788,26 @@
       </ul>
     </nav>
+</li>
+        <li class="md-nav__item">
+  <a href="#v1621-2024-05-07" class="md-nav__link">
+    v1.6.21 (2024-05-07)
+  </a>
+    <nav class="md-nav" aria-label="v1.6.21 (2024-05-07)">
+      <ul class="md-nav__list">
+          <li class="md-nav__item">
+  <a href="#security" class="md-nav__link">
+    Security
+  </a>
+</li>
+      </ul>
+    </nav>
 </li>
         <li class="md-nav__item">
@@ -3799,7 +3819,7 @@
       <ul class="md-nav__list">
           <li class="md-nav__item">
-  <a href="#security" class="md-nav__link">
+  <a href="#security_1" class="md-nav__link">
     Security
   </a>
@@ -3826,7 +3846,7 @@
       <ul class="md-nav__list">
           <li class="md-nav__item">
-  <a href="#security_1" class="md-nav__link">
+  <a href="#security_2" class="md-nav__link">
     Security
   </a>
@@ -3853,7 +3873,7 @@
       <ul class="md-nav__list">
           <li class="md-nav__item">
-  <a href="#security_2" class="md-nav__link">
+  <a href="#security_3" class="md-nav__link">
     Security
   </a>
@@ -3900,7 +3920,7 @@
       <ul class="md-nav__list">
           <li class="md-nav__item">
-  <a href="#security_3" class="md-nav__link">
+  <a href="#security_4" class="md-nav__link">
     Security
   </a>
@@ -4050,7 +4070,7 @@
 </li>
           <li class="md-nav__item">
-  <a href="#security_4" class="md-nav__link">
+  <a href="#security_5" class="md-nav__link">
     Security
   </a>
@@ -4084,7 +4104,7 @@
       <ul class="md-nav__list">
           <li class="md-nav__item">
-  <a href="#security_5" class="md-nav__link">
+  <a href="#security_6" class="md-nav__link">
     Security
   </a>
@@ -4118,7 +4138,7 @@
       <ul class="md-nav__list">
           <li class="md-nav__item">
-  <a href="#security_6" class="md-nav__link">
+  <a href="#security_7" class="md-nav__link">
     Security
   </a>
@@ -4179,7 +4199,7 @@
       <ul class="md-nav__list">
           <li class="md-nav__item">
-  <a href="#security_7" class="md-nav__link">
+  <a href="#security_8" class="md-nav__link">
     Security
   </a>
@@ -4227,7 +4247,7 @@
       <ul class="md-nav__list">
           <li class="md-nav__item">
-  <a href="#security_8" class="md-nav__link">
+  <a href="#security_9" class="md-nav__link">
     Security
   </a>
@@ -4268,7 +4288,7 @@
       <ul class="md-nav__list">
           <li class="md-nav__item">
-  <a href="#security_9" class="md-nav__link">
+  <a href="#security_10" class="md-nav__link">
     Security
   </a>
@@ -4344,7 +4364,7 @@
 </li>
           <li class="md-nav__item">
-  <a href="#security_10" class="md-nav__link">
+  <a href="#security_11" class="md-nav__link">
     Security
   </a>
@@ -4426,7 +4446,7 @@
 </li>
           <li class="md-nav__item">
-  <a href="#security_11" class="md-nav__link">
+  <a href="#security_12" class="md-nav__link">
     Security
   </a>
@@ -5056,6 +5076,26 @@
       </ul>
     </nav>
+</li>
+        <li class="md-nav__item">
+  <a href="#v1621-2024-05-07" class="md-nav__link">
+    v1.6.21 (2024-05-07)
+  </a>
+    <nav class="md-nav" aria-label="v1.6.21 (2024-05-07)">
+      <ul class="md-nav__list">
+          <li class="md-nav__item">
+  <a href="#security" class="md-nav__link">
+    Security
+  </a>
+</li>
+      </ul>
+    </nav>
 </li>
         <li class="md-nav__item">
@@ -5067,7 +5107,7 @@
       <ul class="md-nav__list">
           <li class="md-nav__item">
-  <a href="#security" class="md-nav__link">
+  <a href="#security_1" class="md-nav__link">
     Security
   </a>
@@ -5094,7 +5134,7 @@
       <ul class="md-nav__list">
           <li class="md-nav__item">
-  <a href="#security_1" class="md-nav__link">
+  <a href="#security_2" class="md-nav__link">
     Security
   </a>
@@ -5121,7 +5161,7 @@
       <ul class="md-nav__list">
           <li class="md-nav__item">
-  <a href="#security_2" class="md-nav__link">
+  <a href="#security_3" class="md-nav__link">
     Security
   </a>
@@ -5168,7 +5208,7 @@
       <ul class="md-nav__list">
           <li class="md-nav__item">
-  <a href="#security_3" class="md-nav__link">
+  <a href="#security_4" class="md-nav__link">
     Security
   </a>
@@ -5318,7 +5358,7 @@
 </li>
           <li class="md-nav__item">
-  <a href="#security_4" class="md-nav__link">
+  <a href="#security_5" class="md-nav__link">
     Security
   </a>
@@ -5352,7 +5392,7 @@
       <ul class="md-nav__list">
           <li class="md-nav__item">
-  <a href="#security_5" class="md-nav__link">
+  <a href="#security_6" class="md-nav__link">
     Security
   </a>
@@ -5386,7 +5426,7 @@
       <ul class="md-nav__list">
           <li class="md-nav__item">
-  <a href="#security_6" class="md-nav__link">
+  <a href="#security_7" class="md-nav__link">
     Security
   </a>
@@ -5447,7 +5487,7 @@
       <ul class="md-nav__list">
           <li class="md-nav__item">
-  <a href="#security_7" class="md-nav__link">
+  <a href="#security_8" class="md-nav__link">
     Security
   </a>
@@ -5495,7 +5535,7 @@
       <ul class="md-nav__list">
           <li class="md-nav__item">
-  <a href="#security_8" class="md-nav__link">
+  <a href="#security_9" class="md-nav__link">
     Security
   </a>
@@ -5536,7 +5576,7 @@
       <ul class="md-nav__list">
           <li class="md-nav__item">
-  <a href="#security_9" class="md-nav__link">
+  <a href="#security_10" class="md-nav__link">
     Security
   </a>
@@ -5612,7 +5652,7 @@
 </li>
           <li class="md-nav__item">
-  <a href="#security_10" class="md-nav__link">
+  <a href="#security_11" class="md-nav__link">
     Security
   </a>
@@ -5694,7 +5734,7 @@
 </li>
           <li class="md-nav__item">
-  <a href="#security_11" class="md-nav__link">
+  <a href="#security_12" class="md-nav__link">
     Security
   </a>
@@ -5916,9 +5956,17 @@
 <h4 id="removed-python-37-support-3561">Removed Python 3.7 Support (<a href="https://github.com/nautobot/nautobot/issues/3561">#3561</a>)<a class="headerlink" href="#removed-python-37-support-3561" title="Permanent link">&para;</a></h4>
 <p>As Python 3.7 has reached end-of-life, Nautobot 1.6 and later do not support installation or operation under Python 3.7.</p>
 <!-- towncrier release notes start -->
-<h2 id="v1620-2024-04-30">v1.6.20 (2024-04-30)<a class="headerlink" href="#v1620-2024-04-30" title="Permanent link">&para;</a></h2>
+<h2 id="v1621-2024-05-07">v1.6.21 (2024-05-07)<a class="headerlink" href="#v1621-2024-05-07" title="Permanent link">&para;</a></h2>
 <h3 id="security">Security<a class="headerlink" href="#security" title="Permanent link">&para;</a></h3>
 <ul>
+<li><a href="https://github.com/nautobot/nautobot/issues/5521">#5521</a> - Updated <code>Pillow</code> dependency to <code>~10.3.0</code> to address <code>CVE-2024-28219</code>.</li>
+<li><a href="https://github.com/nautobot/nautobot/issues/5561">#5561</a> - Updated <code>idna</code> to <code>3.7</code> due to <code>CVE-2024-3651</code>. This is not a direct dependency so will not auto-update when upgrading. Please be sure to upgrade your local environment.</li>
+<li><a href="https://github.com/nautobot/nautobot/issues/5624">#5624</a> - Updated <code>social-auth-app-django</code> dependency to <code>~5.4.1</code> to address <code>CVE-2024-32879</code>.</li>
+<li><a href="https://github.com/nautobot/nautobot/issues/5675">#5675</a> - Updated <code>Jinja2</code> dependency to <code>3.1.4</code> to address <code>CVE-2024-34064</code>.</li>
+</ul>
+<h2 id="v1620-2024-04-30">v1.6.20 (2024-04-30)<a class="headerlink" href="#v1620-2024-04-30" title="Permanent link">&para;</a></h2>
+<h3 id="security_1">Security<a class="headerlink" href="#security_1" title="Permanent link">&para;</a></h3>
+<ul>
 <li><a href="https://github.com/nautobot/nautobot/issues/5647">#5647</a> - Fixed a reflected-XSS vulnerability (<a href="https://github.com/nautobot/nautobot/security/advisories/GHSA-jxgr-gcj5-cqqg">GHSA-jxgr-gcj5-cqqg</a>) in object-list view rendering of user-provided query parameters.</li>
 </ul>
 <h3 id="fixed">Fixed<a class="headerlink" href="#fixed" title="Permanent link">&para;</a></h3>
@@ -5926,7 +5974,7 @@
 <li><a href="https://github.com/nautobot/nautobot/issues/5626">#5626</a> - Increased performance of <code>brief=true</code> in API endpoints by eliminating unnecessary database joins.</li>
 </ul>
 <h2 id="v1619-2024-04-23">v1.6.19 (2024-04-23)<a class="headerlink" href="#v1619-2024-04-23" title="Permanent link">&para;</a></h2>
-<h3 id="security_1">Security<a class="headerlink" href="#security_1" title="Permanent link">&para;</a></h3>
+<h3 id="security_2">Security<a class="headerlink" href="#security_2" title="Permanent link">&para;</a></h3>
 <ul>
 <li><a href="https://github.com/nautobot/nautobot/issues/5579">#5579</a> - Updated <code>sqlparse</code> to <code>0.5.0</code> to fix <a href="https://github.com/advisories/GHSA-2m57-hf25-phgg">GHSA-2m57-hf25-phgg</a>. This is not a direct dependency so it will not auto-update when upgrading Nautobot. Please be sure to update your local environment.</li>
 </ul>
@@ -5935,7 +5983,7 @@
 <li><a href="https://github.com/nautobot/nautobot/issues/5610">#5610</a> - Fixed static media failure on <code>/graphql/</code> and <code>/admin/</code> pages.</li>
 </ul>
 <h2 id="v1618-2024-04-15">v1.6.18 (2024-04-15)<a class="headerlink" href="#v1618-2024-04-15" title="Permanent link">&para;</a></h2>
-<h3 id="security_2">Security<a class="headerlink" href="#security_2" title="Permanent link">&para;</a></h3>
+<h3 id="security_3">Security<a class="headerlink" href="#security_3" title="Permanent link">&para;</a></h3>
 <ul>
 <li><a href="https://github.com/nautobot/nautobot/issues/5543">#5543</a> - Updated <code>jquery-ui</code> to version <code>1.13.2</code> due to <code>CVE-2022-31160</code>.</li>
 </ul>
@@ -5950,7 +5998,7 @@
 <li><a href="https://github.com/nautobot/nautobot/issues/5495">#5495</a> - Changed <code>jsonschema</code> version constraint from <code>&gt;=4.7.0,&lt;4.18.0</code> to <code>^4.7.0</code>.</li>
 </ul>
 <h2 id="v1616-2024-03-25">v1.6.16 (2024-03-25)<a class="headerlink" href="#v1616-2024-03-25" title="Permanent link">&para;</a></h2>
-<h3 id="security_3">Security<a class="headerlink" href="#security_3" title="Permanent link">&para;</a></h3>
+<h3 id="security_4">Security<a class="headerlink" href="#security_4" title="Permanent link">&para;</a></h3>
 <ul>
 <li><a href="https://github.com/nautobot/nautobot/issues/5450">#5450</a> - Updated <code>django</code> to <code>~3.2.25</code> due to <code>CVE-2024-27351</code>.</li>
 <li><a href="https://github.com/nautobot/nautobot/issues/5465">#5465</a> - Added requirement for user authentication to access the endpoint <code>/extras/job-results/&lt;uuid:pk&gt;/log-table/</code>; furthermore it will not allow an authenticated user to view log entries for a JobResult they don't otherwise have permission to view. (<a href="https://github.com/nautobot/nautobot/security/advisories/GHSA-m732-wvh2-7cq4">GHSA-m732-wvh2-7cq4</a>)</li>
@@ -6027,7 +6075,7 @@
 <ul>
 <li><a href="https://github.com/nautobot/nautobot/issues/5104">#5104</a> - Added User Token as permission constraints.</li>
 </ul>
-<h3 id="security_4">Security<a class="headerlink" href="#security_4" title="Permanent link">&para;</a></h3>
+<h3 id="security_5">Security<a class="headerlink" href="#security_5" title="Permanent link">&para;</a></h3>
 <ul>
 <li><a href="https://github.com/nautobot/nautobot/issues/5251">#5251</a> - Updated <code>Django</code> dependency to 3.2.24 due to CVE-2024-24680.</li>
 </ul>
@@ -6042,7 +6090,7 @@
 <li><a href="https://github.com/nautobot/nautobot/issues/5261">#5261</a> - Fixed a regression introduced in v1.6.8 where Job Buttons would always run with <code>commit=False</code>.</li>
 </ul>
 <h2 id="v1611-2024-02-05">v1.6.11 (2024-02-05)<a class="headerlink" href="#v1611-2024-02-05" title="Permanent link">&para;</a></h2>
-<h3 id="security_5">Security<a class="headerlink" href="#security_5" title="Permanent link">&para;</a></h3>
+<h3 id="security_6">Security<a class="headerlink" href="#security_6" title="Permanent link">&para;</a></h3>
 <ul>
 <li><a href="https://github.com/nautobot/nautobot/issues/5151">#5151</a> - Updated <code>pillow</code> dependency to 10.2.0 due to CVE-2023-50447.</li>
 </ul>
@@ -6056,7 +6104,7 @@
 <li><a href="https://github.com/nautobot/nautobot/issues/5162">#5162</a> - Fixed incorrect rack group variable in device template.</li>
 </ul>
 <h2 id="v1610-2024-01-22">v1.6.10 (2024-01-22)<a class="headerlink" href="#v1610-2024-01-22" title="Permanent link">&para;</a></h2>
-<h3 id="security_6">Security<a class="headerlink" href="#security_6" title="Permanent link">&para;</a></h3>
+<h3 id="security_7">Security<a class="headerlink" href="#security_7" title="Permanent link">&para;</a></h3>
 <ul>
 <li><a href="https://github.com/nautobot/nautobot/issues/5109">#5109</a> - Removed <code>/files/get/</code> URL endpoint (for viewing FileAttachment files in the browser), as it was unused and could potentially pose security issues.</li>
 <li><a href="https://github.com/nautobot/nautobot/issues/5134">#5134</a> - Fixed an XSS vulnerability (<a href="https://github.com/nautobot/nautobot/security/advisories/GHSA-v4xv-795h-rv4h">GHSA-v4xv-795h-rv4h</a>) in the <code>render_markdown()</code> utility function used to render comments, notes, job log entries, etc.</li>
@@ -6081,7 +6129,7 @@
 <li><a href="https://github.com/nautobot/nautobot/issues/5042">#5042</a> - Fixed early return conditional in <code>ensure_git_repository</code>.</li>
 </ul>
 <h2 id="v168-2023-12-21">v1.6.8 (2023-12-21)<a class="headerlink" href="#v168-2023-12-21" title="Permanent link">&para;</a></h2>
-<h3 id="security_7">Security<a class="headerlink" href="#security_7" title="Permanent link">&para;</a></h3>
+<h3 id="security_8">Security<a class="headerlink" href="#security_8" title="Permanent link">&para;</a></h3>
 <ul>
 <li><a href="https://github.com/nautobot/nautobot/issues/4876">#4876</a> - Updated <code>cryptography</code> to <code>41.0.7</code> due to CVE-2023-49083. As this is not a direct dependency of Nautobot, it will not auto-update when upgrading. Please be sure to upgrade your local environment.</li>
 <li><a href="https://github.com/nautobot/nautobot/issues/4988">#4988</a> - Fixed missing object-level permissions enforcement when running a JobButton (<a href="https://github.com/nautobot/nautobot/security/advisories/GHSA-vf5m-xrhm-v999">GHSA-vf5m-xrhm-v999</a>).</li>
@@ -6105,7 +6153,7 @@
 <li><a href="https://github.com/nautobot/nautobot/issues/4988">#4988</a> - Fixed some bugs in <code>example_plugin.jobs.ExampleComplexJobButtonReceiver</code>.</li>
 </ul>
 <h2 id="v167-2023-12-12">v1.6.7 (2023-12-12)<a class="headerlink" href="#v167-2023-12-12" title="Permanent link">&para;</a></h2>
-<h3 id="security_8">Security<a class="headerlink" href="#security_8" title="Permanent link">&para;</a></h3>
+<h3 id="security_9">Security<a class="headerlink" href="#security_9" title="Permanent link">&para;</a></h3>
 <ul>
 <li><a href="https://github.com/nautobot/nautobot/issues/4959">#4959</a> - Enforce authentication and object permissions on DB file storage views (<a href="https://github.com/nautobot/nautobot/security/advisories/GHSA-75mc-3pjc-727q">GHSA-75mc-3pjc-727q</a>).</li>
 </ul>
@@ -6125,7 +6173,7 @@
 <li><a href="https://github.com/nautobot/nautobot/issues/4921">#4921</a> - Fixed inefficient queries in <code>Location.base_site</code>.</li>
 </ul>
 <h2 id="v166-2023-11-21">v1.6.6 (2023-11-21)<a class="headerlink" href="#v166-2023-11-21" title="Permanent link">&para;</a></h2>
-<h3 id="security_9">Security<a class="headerlink" href="#security_9" title="Permanent link">&para;</a></h3>
+<h3 id="security_10">Security<a class="headerlink" href="#security_10" title="Permanent link">&para;</a></h3>
 <ul>
 <li><a href="https://github.com/nautobot/nautobot/issues/4833">#4833</a> - Fixed cross-site-scripting (XSS) potential with maliciously crafted Custom Links, Computed Fields, and Job Buttons (GHSA-cf9f-wmhp-v4pr).</li>
 </ul>
@@ -6168,7 +6216,7 @@
 <ul>
 <li><a href="https://github.com/nautobot/nautobot/issues/4700">#4700</a> - Removed incorrect <code>NAUTOBOT_DYNAMIC_GROUPS_MEMBER_CACHE_TIMEOUT</code> environment variable reference from settings documentation.</li>
 </ul>
-<h3 id="security_10">Security<a class="headerlink" href="#security_10" title="Permanent link">&para;</a></h3>
+<h3 id="security_11">Security<a class="headerlink" href="#security_11" title="Permanent link">&para;</a></h3>
 <ul>
 <li><a href="https://github.com/nautobot/nautobot/issues/4671">#4671</a> - Updated <code>urllib3</code> to 2.0.7 due to CVE-2023-45803. This is not a direct dependency so it will not auto-update when upgrading. Please be sure to upgrade your local environment.</li>
 <li><a href="https://github.com/nautobot/nautobot/issues/4748">#4748</a> - Updated <code>Django</code> minimum version to 3.2.23 to protect against CVE-2023-46695.</li>
@@ -6205,7 +6253,7 @@
 <li><a href="https://github.com/nautobot/nautobot/issues/4587">#4587</a> - Fixed <code>release.yml</code> and <code>pre-release.yml</code> workflow files to target <code>ci_integration.yml</code> in its own branch.</li>
 <li><a href="https://github.com/nautobot/nautobot/issues/4587">#4587</a> - Enforced changelog requirement in <code>ci_pullrequest.yml</code> for <code>ltm/1.6</code>.</li>
 </ul>
-<h3 id="security_11">Security<a class="headerlink" href="#security_11" title="Permanent link">&para;</a></h3>
+<h3 id="security_12">Security<a class="headerlink" href="#security_12" title="Permanent link">&para;</a></h3>
 <ul>
 <li><a href="https://github.com/nautobot/nautobot/issues/4446">#4446</a> - Updated <code>GitPython</code> to <code>3.1.36</code> to address <code>CVE-2023-41040</code>.</li>
 </ul>

nautobot/project-static/docs/requirements.txt CHANGED Viewed

@@ -1,5 +1,5 @@
 griffe==0.31.0
-Jinja2==3.1.3
+Jinja2==3.1.4
 Markdown==3.3.7
 mkdocs==1.5.3
 mkdocs-gen-files==0.5.0

nautobot 1.6.20__py3-none-any.whl → 1.6.21__py3-none-any.whl

nautobot 1.6.20py3-none-any.whl → 1.6.21py3-none-any.whl