Workflow

Cornice

Latest version: v6.1.0

Safety actively analyzes 682404 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 5 of 6

2.4.1

**Bug fixes**

- Disable CSRF check on predicate fallback view (fixes 458)
- Fix to use own validator for Header Accept (fixes 431)

2.4.0

**Enhancements**
- Add support for arrays on request body top level (fixes 433)

2.3.0

**Enhancements**
- Add support for validation with specific JSON Content-Types
(i.e application/merge-patch+json). Thanks gabisurita!
- Add `X-Content-Type-Options: nosniff` headers to responses (fixes 102)
- Add a `request.current_service` attribute (fixes 105)

**Bug fixes**
- Fix `cornice.cors.get_cors_preflight_view` to make it parse
`Access-Control-Request-Headers` header correctly event if its value
contains zero number of white spaces between commas (422, thanks spoof!)

**Internal changes**
- Clean-up an inconsistency in `cornice.service.decorate_view()` function
where `acl` and `factory` were expected as view arguments (whereas
deprecated since 1.0)

2.2.0

**Enhancements**
- Add support of custom predicates in resources (344, thanks VDigitall!)

**Internal changes**
- Assert proper behaviour of UTF-8 content JSON body (366, thanks thruflo!)

2.1.0

**Enhancements**
- `Cornice.validators.colander_validator` and
`cornice.validators.colander_body_validator` now accept colander
schema node instances. Previously only schema classes were
accepted. For some discussion see 412.

**Deprecations**
- Passing schema classes to `Cornice.validators.colander_validator` and
`cornice.validators.colander_body_validator` is now deprecated.
(See above.)

**Bug fixes**
- To maintain consistency with cornice 1.2 as to the semantics of
`location='path'`, change `cornice.validators.extract_cstruct`
so that it places `request.matchdict` (rather than
`request.path`) into `cstruct['path']`. (411)
- Fix `cornice.validators.colander_validator` so that it does
nothing if `schema` is unset (or set to `None`.) Previously
(contrary to its docstring) it was raising a `TypeError`.

**Internal changes**
- Raised test coverage to 100% (417)

Huge thanks to dairiki for his help on this release

2.0.2

**Bug fixes**
- Exclude `tests` from install (407, thanks doctaweeks!)

**Internal changes**
- Deprecate `cornice.util.extract_json_data()` and `cornice.util.extract_form_urlencoded_data()`
in favor of `cornice.validators.extract_cstruct()` (409)

Page 5 of 6

Links

Releases

Has known vulnerabilities

Previous Next

© 2024 Safety CLI Cybersecurity Inc. All Rights Reserved.