Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Release 3.1.1 #736

Closed
JonathanHuot opened this issue May 12, 2020 · 16 comments
Closed

Release 3.1.1 #736

JonathanHuot opened this issue May 12, 2020 · 16 comments
Assignees
@auvipy
Labels
Discussion
Milestone
3.1.1

Comments

@JonathanHuot
Copy link
Member

Based on latest contributions and the previous release was not so recent, I suggest to release 3.1.1.

That will be a good opportunity for @auvipy to make your first release, if you want ;)

BTW: to synchronize that will be helpful if you join the oauthlib gitter community.
@JonathanHuot JonathanHuot added this to the 3.1.1 milestone May 12, 2020
@auvipy
Copy link
Contributor

auvipy commented May 12, 2020
edited

what is the link? I would love to contribute to the release 👯‍♂️

@auvipy
Copy link
Contributor

auvipy commented May 12, 2020

i joined!

@JonathanHuot
Copy link
Member Author

I tried to add milestone "3.1.1" to closed issues and PR. Then, it could be useful to create a PR with Changelog description, and maybe we could discuss based on that.

Once everything are in master, tagging the new version should trigger the build process to release a github version and pypi. I think we should probably document the release process as well.

@auvipy
Copy link
Contributor

auvipy commented May 12, 2020

that sounds reasonable to me

@mvaled
Copy link

mvaled commented Nov 4, 2020

What's the status of this release?

@JonathanHuot
Copy link
Member Author

@mvaled : it is ready, only some paperwork are still needed to deploy it.
@auvipy : do you have time to finish it for this year?

@auvipy
Copy link
Contributor

auvipy commented Nov 17, 2020

I can, but do I need PyPI access for that?

@JonathanHuot
Copy link
Member Author

The release rollout must be done by creating a PR with all changelog and version changes. Once it is reviewed and merged, we can tag the git revision and tagging will automatically release a pypi release with Travis.

@auvipy
Copy link
Contributor

auvipy commented Dec 14, 2020

The release rollout must be done by creating a PR with all changelog and version changes. Once it is reviewed and merged, we can tag the git revision and tagging will automatically release a pypi release with Travis.

oh OK

@valentijnscholten
Copy link

I think this is really needed because with the newer pips installing requirements may break due to the dependency on an old PyJWT version: b69fa53

@Sri-krishna98
Copy link

Yes oauthlib 3.1.0 is already causing CVE issues checkout PRISMA-2021-0041, the CVE scan setup in our pipeline throws a high severity vulnerability for this package, can you please update it as it's been quite some time

@rolweber
Copy link

Hmm, this issue was created a year ago, and still no new release. Things seem to have stalled a bit.

That CVE 2021-0041 is currently reserved, but not yet disclosed. Maybe a fix is in the making.

@JonathanHuot
Copy link
Member Author

Give me a couple of days and I will trigger the release. Thanks for your patience

@Sri-krishna98
Copy link

Sri-krishna98 commented May 12, 2021 via email

@JonathanHuot
Copy link
Member Author

Release is finally out. Sorry for the delay, and enjoy...
3.2.0 coming soon with remaining PRs

@ankit-jha
Copy link

Release is finally out. Sorry for the delay, and enjoy... 3.2.0 coming soon with remaining PRs

Please start the new year with the new release.
We're waiting on it.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@auvipy auvipy

Labels
Discussion
Projects
None yet
Milestone
3.1.1
Development

No branches or pull requests
7 participants
@mvaled @JonathanHuot @valentijnscholten @ankit-jha @auvipy @rolweber @Sri-krishna98