Arjuna

Critical Fix for XPath based node conversion.

- Support for drag and drop operations for GuiElement.
- Support for attrs in node for XPath and CSS Selector generation.
- Initial support for frame handling. GuiFrame is a new class added with simple to use features.
- Added documentation for various GuiElement methods. Rearranged Gui Auto docs.
- Support for OAuth Auth Grant service added by Stefan.

- CRITICAL FIX: Xml.node_locator call retained attr dict values in successive calls. Fixed.

This release includes a major feature addition for Email reading automation along with support for URL Redirection security test and some minor enhancements in HTTP component and XML/HTML/Text parsers.

- Support for Reading Emails using IMAP (instead of POP) as it provides more stability and features.
- Support to connect to a given mailbox. Inbox is the default.
- State mechanism to identify new emails using save_state.
- The emails are filterable by sender, subject, content.
- The emails are got as latest first by default (IMAP gives the latest one at end). Can be overriden.
- Support for getting top x emails.
- Reading the email is a waitable event as there might be some delay in getting email from server.
- Server host, port, user, password etc are configurable. SSL usage is default.
- Support for finding all unique links.
- Support for HTML as well as text content in emails. Support for Multi-part Email.
- Support for easily available meta data of email like its sender, recipient, date, content and support for inquiring any custom headers.
- There is a lot of state management involved in maintaining connection to a mailbox. These intricacies are encapsulated to the max extent possible.
- The code represents a natural tester-oriented interface for automation.
- Added support for text and attr dict based search in XML/HTML NodeLocator.
- Added documentation for Email Reading Automation
- Introduced NotSet class for cases where code needs to differentiate not setting a value from Python None.
- An exception is raised if relative URL is provided for an HTTP request when the corresponding Service base URL is not set.
- Empty content POST/PUT/PATCH requests are allowed when request content handler is set at Service Level or HTTP Content object is provided at a request level.
- Empty content is supported for all content types except File/Multipart data.
- Added documentation for Malicious URL redirection HTTP action.
- HTTP Post and Put requests without content are allowed. Same as content="".
- Added URL Redirection security test action.
- FIX: Fixed Group selection.

- BUGFIX: HTTP layer tests at times got stuck after one test. This seems to happen when the socket library is not passed a timeout.
- A default socket timeout of 60 seconds is now configured.
- It can be changed at project level or in CLI options using SOCKET_TIMEOUT property.
- PyYAML version upgraded to 6.0.

Following are the significant changes in this build:

- Added assert_or and assert_and methods to Asserter object.
- Added support for or, and constructs in HTTP message.
- Added built-in security tests at HTTP layer:
- Autocomplete field
- Cookie HTTPOnly and Secure
- CORS policy
- Frameable Response
- Information Disclosure
- Minimum JS Version
- Private IP disclosure
- Private Resource Accessible
- Strict Transport Policy
- Vulnerable JS Version
- Fixed logic in HTTP stores in case of extraction failure.
- Added Security testing section for built-in tests.
- Rearranged docs for Parsing formats.
- arjuna_format_str used internally is now a bound method format() of Text object and a part of TPI.