main/py3-yaml: upgrade to 5.4

fixes CVE-2020-14343

main/py3-yaml: upgrade to 5.4
7cb323d5 · Leo · 8ff6e711 · 7cb323d5
Commit 7cb323d5 authored 4 years ago by Leo
--- a/main/py3-yaml/APKBUILD
+++ b/main/py3-yaml/APKBUILD
@@ -3,14 +3,14 @@
 # Maintainer: Fabian Affolter <fabian@affolter-engineering.ch>
 pkgname=py3-yaml
 _pkgname=PyYAML
-pkgver=5.3.1
-pkgrel=1
+pkgver=5.4
+pkgrel=0
 pkgdesc="Python3 bindings for YAML"
-url="http://pyyaml.org"
+url="https://pyyaml.org"
 arch="all"
 license="MIT"
 depends="python3"
-makedepends="python3-dev yaml-dev cython"
+makedepends="python3-dev yaml-dev cython py3-setuptools"
 source="$_pkgname-$pkgver.tar.gz::https://github.com/yaml/pyyaml/archive/$pkgver.tar.gz"
 builddir="$srcdir/pyyaml-$pkgver"

@@ -18,6 +18,8 @@ replaces="py-yaml" # Backwards compatibility
 provides="py-yaml=$pkgver-r$pkgrel" # Backwards compatibility

 # secfixes:
+#   5.4-r0:
+#     - CVE-2020-14343
 #   5.3.1-r0:
 #     - CVE-2020-1747

@@ -38,4 +40,4 @@ package() {
 	python3 setup.py install --prefix=/usr --root="$pkgdir"
 }

-sha512sums="27d97e8493c7660c7c0c471e20a8aa46c85431e4559a98bcbdafc2bd89a67fd04c6f2090e54ff6b206c868b33635ef8be68070a4c25d17a25c97fd5ad3549556  PyYAML-5.3.1.tar.gz"
+sha512sums="a76f9cf1838380b2e509bf1d5251f175cca1b413aadc511517de5fb3b4743747918f94abc1cf1976171731a1ba67596def3cb0652d08e1e3af3235cf7c0a610f  PyYAML-5.4.tar.gz"