Workflow

Setuptools

Latest version: v75.8.0

Safety actively analyzes 696893 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 10 of 114

67.7.1

Not secure
=======


Misc
----
* 3898: Fixes setuptools.dist:invalid_unless_false when value is false don't raise error -- by :user:`jammarher`

67.7.0

Not secure
=======


Changes
-------
* 3849: Overhaul warning system for better visibility.

Documentation changes
---------------------
* 3859: Added a note about historical presence of ``wheel``
in ``build-system.requires``, in ``pyproject.toml``.
* 3893: Improved the documentation example regarding making a thin :pep:`517` in-tree
backend wrapper of ``setuptools.build_meta`` that is future-proof and supports
:pep:`660` hook too -- by :user:`webknjaz`.

Misc
----
* 3884: Add a ``stacklevel`` parameter to ``warnings.warn()`` to provide more information to the user.
-- by :user:`cclauss`

67.6.1

Not secure
=======


Misc
----
* 3865: Fixed ``_WouldIgnoreField`` warnings for ``scripts`` and ``gui_scripts``,
when ``entry-points`` is not listed in dynamic.
* 3875: Update code generated by ``validate-pyproject`` to use v0.12.2.
This should fix default license patterns when ``pyproject.toml`` is used.

67.6.0

Not secure
=======


Changes
-------
* 3804: Added caching for supported wheel tags.
* 3846: Added pruning heuristics to ``PackageFinder`` based on ``exclude``.

67.5.1

Not secure
=======


Misc
----
* 3836: Fixed interaction between ``setuptools``' package auto-discovery and
auto-generated ``htmlcov`` files.

Previously, the ``htmlcov`` name was ignored when searching for single-file
modules, however the correct behaviour is to ignore it when searching for
packages (since it is supposed to be a directory, see `coverage config`_)
-- by :user:`yukihiko-shinoda`.

.. _coverage config: https://coverage.readthedocs.io/en/stable/config.html#html-directory
* 3838: Improved error messages for ``pyproject.toml`` validations.
* 3839: Fixed ``pkg_resources`` errors caused when parsing metadata of packages that
are already installed but do not conform with PEP 440.

67.5.0

Not secure
=======


Changes
-------
* 3843: Although pkg_resources has been discouraged for use, some projects still consider pkg_resources viable for usage. This change makes it clear that pkg_resources should not be used, emitting a DeprecationWarning when imported.

Page 10 of 114

Links

Releases

Has known vulnerabilities

Previous Next

© 2025 Safety CLI Cybersecurity Inc. All Rights Reserved.