fedpkg 1.43 Release Notes

Released on September 6, 2022

This release requires rpkg >= 1.65-1.

Python compatibility

fedpkg works with Python 2.7, 3.6, 3.9, 3.10 and 3.11

What’s new in fedpkg 1.43

Enable Python argcomplete

You might miss it in the previous release. If it is not yet running for you after installation - in the previous release notes there is a description and a guide on how to enable it.

Fix high and medium level bandit findings

Fix the high & medium level bandit security findings. This allows enabling a more strict policy - when a new medium/high level warning appears, unit tests will fail.

‘rpmdefines’ changes depending on rpkg

‘rpmdefines’ structure needs a different format after it was changed in rpkg (#620)

request-branch: detect existing branch

Prevent opening an issue for ‘fedora-scm-requests’ team to create a new branch when the branch already exists.

Add compatibility for Bodhi >= 6.0.0

Compatibility with Bodhi 5.X is retained.

Fix tests with bodhi-client 6+

bodhi-client was ported to use OIDC Client for authentication. We need to mock out its OIDC provider metadata discovery because it does an unavoidable network request, and we also need to make sure HOME is defined in os.environ because the new OIDC code expects to read it (in BodhiClient._build_oidc_client()).

update --suggest-logout option added

Option –suggest-logout was not implemented although it is supported by Bodhi. This commit adds this option.

Remove python3-mock dependency from fedpkg

This commit introduces the use of unittest.mock on Python3. It is also necessary for EPEL 9 release because it doesn’t contain python3-mock.

Refactoring of ‘_request_branch’ method

Nesting if-statements usually leads to worse maintainability and understandability of a code. This commit refactors code in such a way that nested if-statements are removed.

Other small fixes

  • Improve change management process documentation - updated CONTRIBUTING.md

  • Fix new type flake8 issues.

Change Logs

  • Improve change management process documentation (onosek)

  • Fix medium level bandit findings (onosek)

  • rpmdefines changes depending on rpkg - #620 (onosek)

  • request-branch: detect existing branch - #481 (onosek)

  • Refactoring of _request_branch method (drumian)

  • Fix tests with bodhi-client 6+ (awilliam)

  • Add compatibility for Bodhi >= 6.0.0 (aurelien)

  • fedpkg update –suggest-logout option added - #472 (drumian)

  • WIP: Remove python3-mock dependency from fedpkg - rhbz#2061765 (drumian)