chango.git - django

Age	Commit message (Collapse)	Author
2025-01-15	Fixed #36098 -- Fixed validate_ipv6_address()/validate_ipv46_address() crash ↵	Mariusz Felisiak
	for non-string values. Regression in ca2be7724e1244a4cb723de40a070f873c6e94bf.
2025-01-08	Fixed #36014 -- Supported international domains in EmailValidator.	Chaitanya Rahalkar

2024-12-13	Refs #36007 -- Added IDNA 2008 test case for URLValidator.	Mike Edmunds
	Test a domain that is valid under IDNA 2008 but not IDNA 2003. This helps verify that the branch in URLValidator which calls punycode() is not actually being used for IDNs. punycode() implements IDNA 2003, so the domain would fail to validate if that branch were active for IDNs.
2024-10-17	Fixed #35845 -- Updated DomainNameValidator to require entire string to be a ↵	Justin Thurman
	valid domain name. Bug in 4971a9afe5642569f3dcfcd3972ebb39e88dd457. Thank you to kazet for the report and Claude Paroz for the review.
2024-05-21	Fixed #18119 -- Added a DomainNameValidator validator.	Berker Peksag
	Thanks Claude Paroz for the review. Co-authored-by: Nina Menezes <77671865+nmenezes0@users.noreply.github.com>
2023-10-28	Fixed #34943 -- Made EmailValidator.__eq__() ignore domain_allowlist ordering.	ksg
	Signed-off-by: ksg97031 <ksg97031@gmail.com>
2023-10-24	Fixed #34920 -- Made FileExtensionValidator.__eq__() ignore ↵	ksg97031
	allowed_extensions ordering.
2023-08-02	Removed unneeded escapes in regexes.	Mariusz Felisiak
	Special characters lose their special meaning inside sets of characters. "-" lose its special meaning if it's placed as the first or last character. Follow up to 7c6b66383da5f9a67142334cd2ed2d769739e8f1.
2023-07-03	Fixed CVE-2023-36053 -- Prevented potential ReDoS in EmailValidator and ↵	Mariusz Felisiak
	URLValidator. Thanks Seokchan Yoon for reports.
2023-06-16	Fixed #34473 -- Fixed step validation for form fields with non-zero minimum ↵	Jacob Rief
	value.
2022-09-17	Fixed #34014 -- Fixed DecimalValidator validating 0 in positive exponent ↵	Kamil Turek
	scientific notation. Thanks Shiplu Mokaddim for the report.
2022-05-12	Fixed #32559 -- Added 'step_size’ to numeric form fields.	Kapil Bansal
	Co-authored-by: Jacob Rief <jacob.rief@uibk.ac.at>
2022-02-07	Refs #33476 -- Reformatted code with Black.	django-bot

2022-02-03	Refs #33476 -- Refactored problematic code before reformatting by Black.	Mariusz Felisiak
	In these cases Black produces unexpected results, e.g. def make_random_password( self, length=10, allowed_chars='abcdefghjkmnpqrstuvwxyz' 'ABCDEFGHJKLMNPQRSTUVWXYZ' '23456789', ): or cursor.execute(""" SELECT ... """, [table name], )
2021-09-20	Refs #31670 -- Removed whitelist argument and domain_whitelist attribute in ↵	Mariusz Felisiak
	EmailValidator per deprecation timeline.
2021-08-06	Refs #22123 -- Added more URLValidator test for invalid IPv6 literals.	Mariusz Felisiak

2021-07-28	Fixed #32959 -- Moved tests URLs to validators.tests.	chrishna1

2021-06-02	Fixed CVE-2021-33571 -- Prevented leading zeros in IPv4 addresses.	Mariusz Felisiak
	validate_ipv4_address() was affected only on Python < 3.9.5, see [1]. URLValidator() uses a regular expressions and it was affected on all Python versions. [1] https://bugs.python.org/issue36384
2021-05-06	Fixed #32713, Fixed CVE-2021-32052 -- Prevented newlines and tabs from being ↵	Mariusz Felisiak
	accepted in URLValidator on Python 3.9.5+. In Python 3.9.5+ urllib.parse() automatically removes ASCII newlines and tabs from URLs [1, 2]. Unfortunately it created an issue in the URLValidator. URLValidator uses urllib.urlsplit() and urllib.urlunsplit() for creating a URL variant with Punycode which no longer contains newlines and tabs in Python 3.9.5+. As a consequence, the regular expression matched the URL (without unsafe characters) and the source value (with unsafe characters) was considered valid. [1] https://bugs.python.org/issue43882 and [2] https://github.com/python/cpython/commit/76cd81d60310d65d01f9d7b48a8985d8ab89c8b4
2020-07-16	Fixed typo in DecimalValidator tests.	Claudio Catterina
	This replaces redundant test for -Infinity with +Infinity.
2020-06-18	Refs #31670 -- Renamed whitelist argument and attribute of EmailValidator.	David Smith

2020-05-08	Fixed #31548 -- Fixed URLValidator crash on non-strings.	Yash Saini

2020-05-08	Added URLValidator test for missing scheme.	Yash Saini

2019-10-01	Fixed #30651 -- Made __eq__() methods return NotImplemented for not ↵	ElizabethU
	implemented comparisons. Changed __eq__ to return NotImplemented instead of False if compared to an object of the same type, as is recommended by the Python data model reference. Now these models can be compared to ANY (or other objects with __eq__ overwritten) without returning False automatically.
2018-10-22	Fixed #29860 -- Allowed BaseValidator to accept a callable limit_value.	buzzi

2018-08-18	Refactored validators tests to use subtests.	Tom Forbes

2018-01-10	Fixed #29007 -- Fixed DecimalValidator crash on NaN, SNan, Inf, and Infinity ↵	Fabio Bonelli
	values.
2017-09-27	Fixed #28562 -- Fixed DecimalValidator handling of positive exponent ↵	Josh Schneier
	scientific notation.
2017-09-11	Added tests for DecimalValidator.	Josh Schneier

2017-08-12	Fixed #28201 -- Added ProhibitNullCharactersValidator and used it on ↵	Alejandro Zamora
	CharField form field.
2017-07-29	Used assertRaisesMessage() to test Django's error messages.	Mads Jensen

2017-06-07	Fixed #28165 -- Ignored case in FileExtensionValidator's allowed_extensions.	Arne de Laat

2017-06-07	Added FileExtensionValidator tests for uppercase and missing file extensions.	Arne de Laat

2017-01-20	Refs #23919 -- Removed str_prefix usage	Claude Paroz

2017-01-20	Refs #23919 -- Removed django.utils._os.upath()/npath()/abspathu() usage.	Tim Graham
	These functions do nothing on Python 3.
2017-01-18	Refs #23919 -- Replaced io.open() with open().	Aymeric Augustin
	io.open() is an alias for open() on Python 3.
2017-01-18	Refs #23919 -- Removed encoding preambles and future imports	Claude Paroz

2016-11-14	Fixed E305 flake8 warnings.	Ramin Farajpour Cami

2016-11-10	Refs #27392 -- Removed "Tests that", "Ensures that", etc. from test docstrings.	za

2016-10-28	Fixed #26578 -- Prohibited non-ASCII digits in validate_ipv4_address.	wim glenn

2016-07-02	Refs #21548 -- Skipped tests that rely on pillow when it's not installed	Baptiste Mispelon

2016-06-30	Fixed #21548 -- Added FileExtensionValidator and validate_image_file_extension.	Berker Peksag

2016-06-28	Replaced use of TestCase.fail() with assertRaises().	Tim Graham
	Also removed try/except/fail antipattern that hides exceptions.
2016-02-18	Fixed #26107 -- Added option to int_list_validator() to allow negative integers.	Akshesh

2015-10-31	Fixed #25635 -- Made URLValidator allow '+' in scheme.	Dheerendra Rathor

2015-09-18	Fixed #24636 -- Added model field validation for decimal places and max digits.	Iulia Chiriac

2015-07-17	Fixed #16501 -- Added an allow_unicode parameter to SlugField.	Edward Henderson
	Thanks Flavio Curella and Berker Peksag for the initial patch.
2015-07-08	Fixed catastrophic backtracking in URLValidator.	Shai Berger
	Thanks João Silva for reporting the problem and Tim Graham for finding the problematic RE and for review. This is a security fix; disclosure to follow shortly.
2015-07-08	Prevented newlines from being accepted in some validators.	Tim Graham
	This is a security fix; disclosure to follow shortly. Thanks to Sjoerd Job Postmus for the report and draft patch.
2015-04-17	Fixed #24349 -- Limited domain name labels to 63 characters in EmailValidator	Anoop Thomas Mathew