On Mon, May 19, 2025 at 09:50:44AM +0000, Santiago Vila wrote:
Package: src:python-w3lib Version: 2.1.1-1 Severity: serious Control: close -1 2.3.1-1 Tags: ftbfs bookwormDear maintainer: During a rebuild of all packages in bookworm, your package failed to build: [ Note: The bug is closed with the version in trixie/sid, but packages in bookworm must still build in bookworm ].
[...]
FAILED
tests/test_url.py::test_safe_url_string_url[https:/"%;<=>@[]^`{|}\x7f:"%;<=>@[]^`{|}\x7f:@example.com-https:/%22%25%3B%3C%3D%3E%40%5B%5D%5E%60%7B%7C%7D%7F:%22%25%3b%3c%3d%3e%40%5b%5d%5e%60%7b%7c%7d%7f...@example.com]
FAILED
tests/test_url.py::test_safe_url_string_url[http:/[2a01:5cc0:1:2:3:4]-ValueError]
Hi! This is #1042345 aka https://github.com/scrapy/w3lib/issues/212The upstream fix is https://github.com/scrapy/w3lib/pull/213/files (note that it checks the interpreter version for one of the failing tests, which won't work in Debian, because the CVE-2024-11168 fix is included upstream in 3.11.4 but in Debian it was backported into 3.11.2-6+deb12u5).
Note: The following packages fail in a similar weird way: asyncpg python-taskflow python-w3lib yarl Maybe there is a common reason, or maybe the packages need to adapt anyway.
All of that should be fallout from https://github.com/python/cpython/issues/103848 -- WBR, wRAR
signature.asc
Description: PGP signature
