From mboxrd@z Thu Jan 1 00:00:00 1970 From: Maxim Cournoyer Subject: bug#24450: bug#33569: Missing sanitizing of '[]' in pypi-importer Date: Fri, 29 Mar 2019 00:20:53 -0400 Message-ID: <87r2aq2twa.fsf@gmail.com> References: Mime-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Return-path: Received: from eggs.gnu.org ([209.51.188.92]:59621) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1h9jG4-000227-4C for bug-guix@gnu.org; Fri, 29 Mar 2019 00:36:49 -0400 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1h9j1m-0004lI-Fi for bug-guix@gnu.org; Fri, 29 Mar 2019 00:22:03 -0400 Received: from debbugs.gnu.org ([209.51.188.43]:49637) by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16) (Exim 4.71) (envelope-from ) id 1h9j1m-0004lC-Ab for bug-guix@gnu.org; Fri, 29 Mar 2019 00:22:02 -0400 Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2) (envelope-from ) id 1h9j1m-0005tK-56 for bug-guix@gnu.org; Fri, 29 Mar 2019 00:22:02 -0400 Sender: "Debbugs-submit" Resent-Message-ID: In-Reply-To: (swedebugia's message of "Sun, 2 Dec 2018 01:32:02 +0100") List-Id: Bug reports for GNU Guix List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: bug-guix-bounces+gcggb-bug-guix=m.gmane.org@gnu.org Sender: "bug-Guix" To: swedebugia Cc: 33569@debbugs.gnu.org, 24450@debbugs.gnu.org swedebugia writes: > E.g. > sdb@komputilo ~/guix-tree$ ~/guix-tree/pre-inst-env guix import pypi > snakemake > ... > (propagated-inputs > `(("python-[reports]" > ,#{python-\x5b;reports\x5d;}#) > ("python-appdirs" ,python-appdirs) > ... This one now gives (local branch): --8<---------------cut here---------------start------------->8--- ./pre-inst-env guix import pypi snakemake Starting download of /tmp/guix-file.4XvWMX >From https://files.pythonhosted.org/packages/4a/aa/aab1515d220be06fbdccf3c8= 9335d9585b08ac6be74b8e3c9e8c3c32798e/snakemake-5.4.4.tar.gz... =E2=80=A6.4.4.tar.gz 169KiB 723KiB/s 00:00 [#############= #####] 100.0% (package (name "python-snakemake") (version "5.4.4") (source (origin (method url-fetch) (uri (pypi-uri "snakemake" version)) (sha256 (base32 "0prpr5qajqwr8sh4gzggpj8l4np2rcm9nfdzvcp30d5yw7h26wqm")))) (build-system python-build-system) (propagated-inputs `(("python-appdirs" ,python-appdirs) ("python-configargparse" ,python-configargparse) ("python-datrie" ,python-datrie) ("python-docutils" ,python-docutils) ("python-gitpython" ,python-gitpython) ("python-jsonschema" ,python-jsonschema) ("python-pyyaml" ,python-pyyaml) ("python-ratelimiter" ,python-ratelimiter) ("python-requests" ,python-requests) ("python-wrapt" ,python-wrapt))) (home-page "http://snakemake.bitbucket.io") (synopsis "Snakemake is a workflow management system that aims to reduce the comp= lexity of creating workflows by providing a fast and comfortable execution = environment, together with a clean and modern specification language in pyt= hon style. Snakemake workflows are essentially Python scripts extended by d= eclarative code to define rules. Rules describe how to create output files = from input files.") (description "Snakemake is a workflow management system that aims to reduce the comp= lexity of creating workflows by providing a fast and comfortable execution = environment, together with a clean and modern specification language in pyt= hon style. Snakemake workflows are essentially Python scripts extended by d= eclarative code to define rules. Rules describe how to create output files = from input files.") (license license:expat)) --8<---------------cut here---------------end--------------->8---