Releases: exasol/exasol-python-test-framework
0.6.1
0.6.0
Exasol Python Test Framework 0.6.0, released 2024-07-08
Code name: Configure TLS certificate validation
Summary
This release adds a CLI option controlling parameter SSLCERTIFICATE in file odbc.ini.
Starting with version 0.6.0, EPTF is also available on pypi.
Additionally, the release fixes vulnerabilities by updating dependencies:
- CVE-2024-35195 in dependency
requestsin versions <2.32.0caused by requestsSessionobject not verifying requests after making first request withverify=False - CVE-2024-37891 in transitive dependency via
boto3tourllib3in versions <2.2.2caused by proxy-authorization request header not to be stripped during cross-origin redirects as no update of notebook-connector is available, yet. - GHSA-w235-7p84-xx57 in transitive dependency via
luigitotornadoin versions <6.4.1enabling CRLF injection inCurlAsyncHTTPClientheaders. - GHSA-753j-mpmx-qq6g in transitive dependency via
luigitotornadoin versions <6.4.1due to inconsistent interpretation of HTTP Requests ('HTTP Request/Response Smuggling')
However, the release ignores the following vulnerabilities
- GHSA-753j-mpmx-qq6g in dependency
configobjin versions ≤5.0.8being ReDoS exploitable by developers using values in a server-side configuration file as SLCT is used only client side and a patched version is not available, yet.
Security Fixes
- #70: Fixed vulnerabilities by updating dependencies.
Features
- #66: Added CLI option controlling parameter
SSLCERTIFICATEin fileodbc.ini.
Refactorings
- #67: Enabled publication on pypi
0.5.1: Support for newer Exasol ODBC driver
Summary
This release fixes a bug when using the newer Exasol ODBC drivers.
Features
n/a
Bugs
- #63: Ignored TLS certificates for tests
Documentation
n/a
Refactoring
n/a
Security
n/a
Dependency updates
Compile Dependency Updates
0.5.0: Python3.10
Summary
This release updates the minimal Python version to 3.10. Also it adds a mechanism to read the environment info from the test container.
Features
- #59: Implemented a mechanism to read the environment info from the test container
Bugs
n/a
Documentation
n/a
Refactoring
- #56: Updated to Python 3.10
Security
Security vulnerabilities have been addressed, hence we advise users of
our library to update and check the security of their own dependency tree.
E.g. by using a vulnerability scanner like trivy.
- Updated dependencies to address security issue (internal: poetry.lock)
Dependency updates
Compile Dependency Updates
0.4.0: Python 3.8 and implemented available package check for Python.
Summary
This release upgrades to Python 3.8 as minimum Python version. Also, it includes a new utility function which checks if specific Python packages are installed in the UDF environment.
Besides this, it includes a minor security fix.
Features
- #34: Add available python packages checks for UDFs to this package
Bugs
n/a
Documentation
- #39: Prepared release 0.4.0
Refactoring
- #37: Update minimal python version to 3.8
Security
- #30: Fix CVE 2021 32559 URLLib3
Dependency updates
Compile Dependency Updates
Udf Debug log
Summary
This release added the UDF Debug log redirection feature, which allows tests to read logs to stdout/stderr inside UDFs.
Features
- #24: Added Script Output Redirect to Test Framework
Bugs
n/a
Documentation
- #27: Prepared release 0.3.0
Refactoring
- #19: Change numpy and scipy versions
Security
- #15: Update URLLib3
Dependency updates
Compile Dependency Updates
- Updated
python >=3.6,<4 - Numpy
=1.19.5 - Scipy
>=1.2.1
Dependant package version updates for urllib3, numpy and scipy.
Initial release.
Summary
This is first release of the Exasol Python Test Framework.
Features
Bugs
n/a
Documentation
n/a
Refactoring
n/a
- #:
Dependency updates
Compile Dependency Updates
- Added
python >=3.6 - Added
pyodbc = 4.0.27 - Added
numpy = 1.19.5 - Added
scipy = 1.2.1 - Added
docker >= 5.0.3 - Added
pyftpdlib >=1.5.6