* [bug#54737] gnu: python-multipart: Update to 0.2.4.
@ 2022-04-05 19:34 Peter Polidoro
2022-07-29 19:38 ` Maxime Devos
0 siblings, 1 reply; 5+ messages in thread
From: Peter Polidoro @ 2022-04-05 19:34 UTC (permalink / raw)
To: 54737
[-- Warning: decoded text below may be mangled, UTF-8 assumed --]
[-- Attachment #1: 0001-gnu-python-multipart-Update-to-0.2.4.patch --]
[-- Type: text/x-diff, Size: 2252 bytes --]
From ac80ae77c153ac8d39fa70ceacb6adf332e6f7bf Mon Sep 17 00:00:00 2001
From: Peter Polidoro <peter@polidoro.io>
Date: Tue, 5 Apr 2022 15:33:07 -0400
Subject: [PATCH] gnu: python-multipart: Update to 0.2.4.
* gnu/packages/python-xyz.scm (python-multipart): Update to 0.2.4.
---
gnu/packages/python-xyz.scm | 33 +++++++++++----------------------
1 file changed, 11 insertions(+), 22 deletions(-)
diff --git a/gnu/packages/python-xyz.scm b/gnu/packages/python-xyz.scm
index 30cab6a113..fd25d3b62e 100644
--- a/gnu/packages/python-xyz.scm
+++ b/gnu/packages/python-xyz.scm
@@ -29320,29 +29320,18 @@ (define-public python-stltools
(define-public python-multipart
(package
(name "python-multipart")
- (version "0.0.5")
- (source (origin
- (method url-fetch)
- (uri (pypi-uri "python-multipart" version))
- (sha256
- (base32
- "0hzshd665rl1bkwvaj9va4j3gs8nmb478fbvligx20663xhmzfzp"))))
+ (version "0.2.4")
+ (source
+ (origin
+ (method url-fetch)
+ (uri (pypi-uri "multipart" version))
+ (sha256
+ (base32 "1jr24lm931pkh4x0amr19w5qknrckcg4z3k1zvz9cw5wc19j1fh6"))))
(build-system python-build-system)
- (propagated-inputs (list python-six))
- (native-inputs (list python-pyyaml python-mock python-pytest-cov))
- (arguments
- `(#:phases (modify-phases %standard-phases
- ;; There is a bug in the test_suit specification.
- (add-after 'unpack 'patch-test-suite
- (lambda _
- (substitute* "setup.py"
- (("test_suite = 'multipart.tests.suite'")
- "test_suite = 'multipart.tests.test_multipart.suite'")))))))
- (home-page "https://github.com/andrew-d/python-multipart")
- (synopsis "Streaming multipart parser for Python")
- (description
- "This package provides a streaming multipart parser for Python.")
- (license license:asl2.0)))
+ (home-page "http://github.com/defnull/multipart")
+ (synopsis "Parser for multipart/form-data.")
+ (description "Parser for multipart/form-data.")
+ (license license:expat)))
(define-public python-aiopg
(package
--
2.35.1
^ permalink raw reply related [flat|nested] 5+ messages in thread
* [bug#54737] gnu: python-multipart: Update to 0.2.4.
2022-04-05 19:34 [bug#54737] gnu: python-multipart: Update to 0.2.4 Peter Polidoro
@ 2022-07-29 19:38 ` Maxime Devos
2022-07-30 12:19 ` Peter Polidoro
0 siblings, 1 reply; 5+ messages in thread
From: Maxime Devos @ 2022-07-29 19:38 UTC (permalink / raw)
To: Peter Polidoro, 54737
[-- Attachment #1.1.1: Type: text/plain, Size: 986 bytes --]
> (define-public python-multipart
> (package
> (name "python-multipart")
> - (version "0.0.5")
> - (source (origin
> - (method url-fetch)
> - (uri (pypi-uri "python-multipart" version))
> - (sha256
> - (base32
> - "0hzshd665rl1bkwvaj9va4j3gs8nmb478fbvligx20663xhmzfzp"))))
> + (version "0.2.4")
> + (source
> + (origin
> + (method url-fetch)
> + (uri (pypi-uri "multipart" version))
> + (sha256
> + (base32
> "1jr24lm931pkh4x0amr19w5qknrckcg4z3k1zvz9cw5wc19j1fh6"))))
What's the reason for changing from the python-multipart to multipart?
I've looked at the home page and the pypi page, and it doesn't state
that the latter is a successor of the former, so these look like
unrelated projects or a typosquatting attack.
Greetings,
Maxime.
[-- Attachment #1.1.2: OpenPGP public key --]
[-- Type: application/pgp-keys, Size: 929 bytes --]
[-- Attachment #2: OpenPGP digital signature --]
[-- Type: application/pgp-signature, Size: 236 bytes --]
^ permalink raw reply [flat|nested] 5+ messages in thread
* [bug#54737] gnu: python-multipart: Update to 0.2.4.
2022-07-29 19:38 ` Maxime Devos
@ 2022-07-30 12:19 ` Peter Polidoro
2022-08-01 17:35 ` Peter Polidoro
0 siblings, 1 reply; 5+ messages in thread
From: Peter Polidoro @ 2022-07-30 12:19 UTC (permalink / raw)
To: Maxime Devos; +Cc: 54737
[-- Attachment #1: Type: text/plain, Size: 1396 bytes --]
Hi. Good catch. I may have made a mistake when choosing between these two unfortunately named pypi packages. I need one of these two as a dependency for another Guix package. I am traveling at the moment, but I will double check this when I return in a few days. If I do need multipart instead of python-multipart, perhaps there is a better way to name the Guix packages to cause less confusion. Thanks!
> On Jul 29, 2022, at 3:38 PM, Maxime Devos <maximedevos@telenet.be> wrote:
>
>
>>
>> (define-public python-multipart
>> (package
>> (name "python-multipart")
>> - (version "0.0.5")
>> - (source (origin
>> - (method url-fetch)
>> - (uri (pypi-uri "python-multipart" version))
>> - (sha256
>> - (base32
>> - "0hzshd665rl1bkwvaj9va4j3gs8nmb478fbvligx20663xhmzfzp"))))
>> + (version "0.2.4")
>> + (source
>> + (origin
>> + (method url-fetch)
>> + (uri (pypi-uri "multipart" version))
>> + (sha256
>> + (base32 "1jr24lm931pkh4x0amr19w5qknrckcg4z3k1zvz9cw5wc19j1fh6"))))
>
> What's the reason for changing from the python-multipart to multipart? I've looked at the home page and the pypi page, and it doesn't state that the latter is a successor of the former, so these look like unrelated projects or a typosquatting attack.
>
> Greetings,
> Maxime.
[-- Attachment #2: OpenPGP_0x49E3EE22191725EE.asc --]
[-- Type: application/octet-stream, Size: 946 bytes --]
-----BEGIN PGP PUBLIC KEY BLOCK-----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=OVqp
-----END PGP PUBLIC KEY BLOCK-----
[-- Attachment #3: OpenPGP_signature --]
[-- Type: application/octet-stream, Size: 236 bytes --]
-----BEGIN PGP SIGNATURE-----
wnsEABYIACMWIQTB8z7iDFKP233XAR9J4+4iGRcl7gUCYuQ3HAUDAAAAAAAKCRBJ4+4iGRcl7npE
AQDioei8Cld0pARUiiMMCxPLI9WkitozMyhv6e8EQPRxNwD+KTFeTkzb5xViAJ3zRyXs7N2n88vU
EDoObJDYB1fxeAg=
=Grmb
-----END PGP SIGNATURE-----
^ permalink raw reply [flat|nested] 5+ messages in thread
* [bug#54737] gnu: python-multipart: Update to 0.2.4.
2022-07-30 12:19 ` Peter Polidoro
@ 2022-08-01 17:35 ` Peter Polidoro
2022-08-01 17:59 ` ( via Guix-patches via
0 siblings, 1 reply; 5+ messages in thread
From: Peter Polidoro @ 2022-08-01 17:35 UTC (permalink / raw)
To: Maxime Devos; +Cc: 54737
I looked at my notes and found that this was indeed a mistake. I
need the python-multipart pypi package, not the multipart pypi
package.
You can close this, thank you for catching my error. I apologize
for the confusion and for your time.
Peter Polidoro <peter@polidoro.io> writes:
> [1. text/plain]
> Hi. Good catch. I may have made a mistake when choosing between
> these two
> unfortunately named pypi packages. I need one of these two as a
> dependency for
> another Guix package. I am traveling at the moment, but I will
> double check this
> when I return in a few days. If I do need multipart instead of
> python-multipart,
> perhaps there is a better way to name the Guix packages to cause
> less confusion.
> Thanks!
>
>> On Jul 29, 2022, at 3:38 PM, Maxime Devos
>> <maximedevos@telenet.be> wrote:
>>
>>
>>>
>>> (define-public python-multipart
>>> (package
>>> (name "python-multipart")
>>> - (version "0.0.5")
>>> - (source (origin
>>> - (method url-fetch)
>>> - (uri (pypi-uri "python-multipart" version))
>>> - (sha256
>>> - (base32
>>> - "0hzshd665rl1bkwvaj9va4j3gs8nmb478fbvligx20663xhmzfzp"))))
>>> + (version "0.2.4")
>>> + (source
>>> + (origin
>>> + (method url-fetch)
>>> + (uri (pypi-uri "multipart" version))
>>> + (sha256
>>> + (base32
>>> "1jr24lm931pkh4x0amr19w5qknrckcg4z3k1zvz9cw5wc19j1fh6"))))
>>
>> What's the reason for changing from the python-multipart to
>> multipart? I've
>> looked at the home page and the pypi page, and it doesn't state
>> that the
>> latter is a successor of the former, so these look like
>> unrelated projects or
>> a typosquatting attack.
>>
>> Greetings,
>> Maxime.
>
> [2. application/pgp-keys; OpenPGP_0x49E3EE22191725EE.asc]...
>
> [3. application/octet-stream; OpenPGP_signature]...
^ permalink raw reply [flat|nested] 5+ messages in thread
* [bug#54737] gnu: python-multipart: Update to 0.2.4.
2022-08-01 17:35 ` Peter Polidoro
@ 2022-08-01 17:59 ` ( via Guix-patches via
0 siblings, 0 replies; 5+ messages in thread
From: ( via Guix-patches via @ 2022-08-01 17:59 UTC (permalink / raw)
To: Peter Polidoro, Maxime Devos; +Cc: 54737
On Mon Aug 1, 2022 at 6:35 PM BST, Peter Polidoro wrote:
> You can close this, thank you for catching my error. I apologize
> for the confusion and for your time.
Anyone can close an issue; you just send an email to control@debbugs.gnu.org
with the following contents:
```
close ISSUE_NUMBER
```
-- (
^ permalink raw reply [flat|nested] 5+ messages in thread
end of thread, other threads:[~2022-08-01 18:03 UTC | newest]
Thread overview: 5+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2022-04-05 19:34 [bug#54737] gnu: python-multipart: Update to 0.2.4 Peter Polidoro
2022-07-29 19:38 ` Maxime Devos
2022-07-30 12:19 ` Peter Polidoro
2022-08-01 17:35 ` Peter Polidoro
2022-08-01 17:59 ` ( via Guix-patches via
Code repositories for project(s) associated with this public inbox
https://git.savannah.gnu.org/cgit/guix.git
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).