From 7b260006bf56769223267e585513ae4db2894055 Mon Sep 17 00:00:00 2001 From: Philip Sargent Date: Sat, 20 Jun 2020 23:26:50 +0100 Subject: [PATCH] dj.-reg. 2.5.2 all tested. --- core/migrations/0001_initial.py | 2 +- deprecations.txt | 2 +- flatpages/migrations/0001_initial.py | 2 +- lines-of-python.txt | 8 ++++---- requirements.txt | 2 +- security-warnings.txt | 3 ++- 6 files changed, 10 insertions(+), 9 deletions(-) diff --git a/core/migrations/0001_initial.py b/core/migrations/0001_initial.py index 80690d0..611ba94 100644 --- a/core/migrations/0001_initial.py +++ b/core/migrations/0001_initial.py @@ -1,5 +1,5 @@ # -*- coding: utf-8 -*- -# Generated by Django 1.11.29 on 2020-06-20 21:27 +# Generated by Django 1.11.29 on 2020-06-20 22:09 from __future__ import unicode_literals from django.conf import settings diff --git a/deprecations.txt b/deprecations.txt index 633261d..d4bfef2 100644 --- a/deprecations.txt +++ b/deprecations.txt @@ -4,7 +4,7 @@ from collections import Counter, Iterator, Mapping, OrderedDict /mnt/d/CUCC-Expo/t37/lib/python3.7/site-packages/django/core/paginator.py:126: DeprecationWarning: Using or importing the ABCs from 'collections' instead of from 'collections.abc' is deprecated since Python 3.3,and in 3.9 it will stop working class Page(collections.Sequence): -/mnt/d/CUCC-Expo/t37/lib/python3.7/site-packages/registration/auth_urls_classes.py:19: DeprecationWarning: +/mnt/d/CUCC-Expo/t37/lib/python3.7/site-packages/registration/auth_urls_classes.py:20: DeprecationWarning: include('registration.auth_urls') is deprecated and will be removed in django-registration 3.0. Use include('django.contrib.auth.urls') instead. diff --git a/flatpages/migrations/0001_initial.py b/flatpages/migrations/0001_initial.py index f833bf9..e2034fe 100644 --- a/flatpages/migrations/0001_initial.py +++ b/flatpages/migrations/0001_initial.py @@ -1,5 +1,5 @@ # -*- coding: utf-8 -*- -# Generated by Django 1.11.29 on 2020-06-20 21:27 +# Generated by Django 1.11.29 on 2020-06-20 22:09 from __future__ import unicode_literals from django.db import migrations, models diff --git a/lines-of-python.txt b/lines-of-python.txt index 984dc73..74c6a89 100644 --- a/lines-of-python.txt +++ b/lines-of-python.txt @@ -28,18 +28,18 @@ 69 ./urls.py 73 ./localsettings.py 73 ./localsettingsWSL.py -86 ./settings.py +85 ./settings.py 92 ./core/views_statistics.py 97 ./core/forms.py +97 ./core/view_surveys.py 98 ./core/admin.py 99 ./parsers/QMs.py 102 ./parsers/people.py -104 ./core/view_surveys.py 124 ./core/templatetags/wiki_markup.py 135 ./utils.py 150 ./parsers/surveys.py 160 ./core/models_survex.py -162 ./flatpages/views.py +164 ./flatpages/views.py 164 ./modelviz.py 167 ./core/models.py 175 ./core/views_other.py @@ -52,4 +52,4 @@ 431 ./parsers/survex.py 450 ./core/models_caves.py 515 ./parsers/logbooks.py -5966 +5960 diff --git a/requirements.txt b/requirements.txt index 47b0a61..01a37ef 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,6 +1,6 @@ confusable-homoglyphs==3.2.0 Django==1.11.29 -django-registration==2.5 +django-registration==2.5.2 Pillow==7.1.2 pytz==2020.1 six==1.15.0 diff --git a/security-warnings.txt b/security-warnings.txt index 8b82451..775e519 100644 --- a/security-warnings.txt +++ b/security-warnings.txt @@ -3,7 +3,8 @@ System check identified some issues: WARNINGS: ?: (security.W004) You have not set a value for the SECURE_HSTS_SECONDS setting. If your entire site is served only over SSL, you may want to consider setting a value and enabling HTTP Strict Transport Security. Be sure to read the documentation first; enabling HSTS carelessly can cause serious, irreversible problems. ?: (security.W008) Your SECURE_SSL_REDIRECT setting is not set to True. Unless your site should be available over both SSL and non-SSL connections, you may want to either set this setting True or configure a load balancer or reverse-proxy server to redirect all connections to HTTPS. +?: (security.W012) SESSION_COOKIE_SECURE is not set to True. Using a secure-only session cookie makes it more difficult for network traffic sniffers to hijack user sessions. ?: (security.W018) You should not have DEBUG set to True in deployment. ?: (security.W019) You have 'django.middleware.clickjacking.XFrameOptionsMiddleware' in your MIDDLEWARE_CLASSES, but X_FRAME_OPTIONS is not set to 'DENY'. The default is 'SAMEORIGIN', but unless there is a good reason for your site to serve other parts of itself in a frame, you should change it to 'DENY'. -System check identified 4 issues (0 silenced). +System check identified 5 issues (0 silenced).