tiagoluizrs, updated 🕥 2023-02-02 06:32:48

livro_flask

Instalação do projeto nos capítulos 1 e 2 do livro.

Para saber mais conheça o livro. https://www.casadocodigo.com.br/products/livro-flask-a-z

Issues

Bump werkzeug from 0.15.4 to 0.15.5

opened on 2023-02-02 06:32:48 by dependabot[bot]

Bumps werkzeug from 0.15.4 to 0.15.5.

Release notes

Sourced from werkzeug's releases.

0.15.5

Changelog

Sourced from werkzeug's changelog.

Version 0.15.5

Released 2019-07-17

  • Fix a TypeError due to changes to ast.Module in Python 3.8. :issue:1551
  • Fix a C assertion failure in debug builds of some Python 2.7 releases. :issue:1553
  • :class:~exceptions.BadRequestKeyError adds the KeyError message to the description if e.show_exception is set to True. This is a more secure default than the original 0.15.0 behavior and makes it easier to control without losing information. :pr:1592
  • Upgrade the debugger to jQuery 3.4.1. :issue:1581
  • Work around an issue in some external debuggers that caused the reloader to fail. :issue:1607
  • Work around an issue where the reloader couldn't introspect a setuptools script installed as an egg. :issue:1600
  • The reloader will use sys.executable even if the script is marked executable, reverting a behavior intended for NixOS introduced in 0.15. The reloader should no longer cause OSError: [Errno 8] Exec format error. :issue:1482, :issue:1580
  • SharedDataMiddleware safely handles paths with Windows drive names. :issue:1589
Commits
  • 8cfab30 release version 0.15.5
  • d1f5fab update project links
  • 726b25b Merge pull request #1613 from pallets/revert-nixos-reloader-check
  • 1f532b8 don't detect executable file for reloader
  • a8d26bf Merge pull request #1612 from pallets/shared-data
  • acc999e SharedDataMiddleware uses safe_join
  • 8afe4eb Merge pull request #1582 from Cerebus/fix/1581-jquery-3.4.1
  • e0de4a4 Merge pull request #1601 from pokoli/reloader_package
  • ec68771 update to jQuery 3.4.1
  • 7a01660 explain reloader workaround for egg script
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/tiagoluizrs/livro_flask/network/alerts).

Bump mako from 1.0.12 to 1.2.2

opened on 2022-09-16 18:04:07 by dependabot[bot]

Bumps mako from 1.0.12 to 1.2.2.

Release notes

Sourced from mako's releases.

1.2.2

Released: Mon Aug 29 2022

bug

  • [bug] [lexer] Fixed issue in lexer where the regexp used to match tags would not correctly interpret quoted sections individually. While this parsing issue still produced the same expected tag structure later on, the mis-handling of quoted sections was also subject to a regexp crash if a tag had a large number of quotes within its quoted sections.

    References: #366

1.2.1

Released: Thu Jun 30 2022

bug

  • [bug] [tests] Various fixes to the test suite in the area of exception message rendering to accommodate for variability in Python versions as well as Pygments.

    References: #360

misc

  • [performance] Optimized some codepaths within the lexer/Python code generation process, improving performance for generation of templates prior to their being cached. Pull request courtesy Takuto Ikuta.

    References: #361

1.2.0

Released: Thu Mar 10 2022

changed

  • [changed] [py3k] Corrected "universal wheel" directive in setup.cfg so that building a wheel does not target Python 2.

    References: #351

  • [changed] [py3k] The bytestring_passthrough template argument is removed, as this flag only applied to Python 2.

... (truncated)

Commits


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/tiagoluizrs/livro_flask/network/alerts).

Bump pyjwt from 1.7.1 to 2.4.0

opened on 2022-05-25 02:12:37 by dependabot[bot]

Bumps pyjwt from 1.7.1 to 2.4.0.

Release notes

Sourced from pyjwt's releases.

2.4.0

Security

What's Changed

New Contributors

Full Changelog: https://github.com/jpadilla/pyjwt/compare/2.3.0...2.4.0

2.3.0

What's Changed

... (truncated)

Changelog

Sourced from pyjwt's changelog.

v2.4.0 <https://github.com/jpadilla/pyjwt/compare/2.3.0...2.4.0>__

Security


- [CVE-2022-29217] Prevent key confusion through non-blocklisted public key formats. https://github.com/jpadilla/pyjwt/security/advisories/GHSA-ffqj-6fqr-9h24

Changed



- Explicit check the key for ECAlgorithm by @estin in https://github.com/jpadilla/pyjwt/pull/713
- Raise DeprecationWarning for jwt.decode(verify=...) by @akx in https://github.com/jpadilla/pyjwt/pull/742

Fixed
~~~~~

- Don't use implicit optionals by @rekyungmin in https://github.com/jpadilla/pyjwt/pull/705
- documentation fix: show correct scope for decode_complete() by @sseering in https://github.com/jpadilla/pyjwt/pull/661
- fix: Update copyright information by @kkirsche in https://github.com/jpadilla/pyjwt/pull/729
- Don't mutate options dictionary in .decode_complete() by @akx in https://github.com/jpadilla/pyjwt/pull/743

Added
~~~~~

- Add support for Python 3.10 by @hugovk in https://github.com/jpadilla/pyjwt/pull/699
- api_jwk: Add PyJWKSet.__getitem__ by @woodruffw in https://github.com/jpadilla/pyjwt/pull/725
- Update usage.rst by @guneybilen in https://github.com/jpadilla/pyjwt/pull/727
- Docs: mention performance reasons for reusing RSAPrivateKey when encoding by @dmahr1 in https://github.com/jpadilla/pyjwt/pull/734
- Fixed typo in usage.rst by @israelabraham in https://github.com/jpadilla/pyjwt/pull/738
- Add detached payload support for JWS encoding and decoding by @fviard in https://github.com/jpadilla/pyjwt/pull/723
- Replace various string interpolations with f-strings by @akx in https://github.com/jpadilla/pyjwt/pull/744
- Update CHANGELOG.rst by @hipertracker in https://github.com/jpadilla/pyjwt/pull/751

`v2.3.0 &lt;https://github.com/jpadilla/pyjwt/compare/2.2.0...2.3.0&gt;`__
-----------------------------------------------------------------------

Fixed
~~~~~

- Revert &quot;Remove arbitrary kwargs.&quot; `[#701](https://github.com/jpadilla/pyjwt/issues/701) &lt;https://github.com/jpadilla/pyjwt/pull/701&gt;`__

Added
~~~~~

- Add exception chaining `[#702](https://github.com/jpadilla/pyjwt/issues/702) &lt;https://github.com/jpadilla/pyjwt/pull/702&gt;`__

`v2.2.0 &lt;https://github.com/jpadilla/pyjwt/compare/2.1.0...2.2.0&gt;`__
-----------------------------------------------------------------------

&lt;/tr&gt;&lt;/table&gt; 
</code></pre>
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>

<ul>
<li><a href="https://github.com/jpadilla/pyjwt/commit/83ff831a4d11190e3a0bed781da43f8d84352653"><code>83ff831</code></a> chore: update changelog</li>
<li><a href="https://github.com/jpadilla/pyjwt/commit/4c1ce8fd9019dd312ff257b5141cdb6d897379d9"><code>4c1ce8f</code></a> chore: update changelog</li>
<li><a href="https://github.com/jpadilla/pyjwt/commit/96f3f0275745c5a455c019a0d3476a054980e8ea"><code>96f3f02</code></a> fix: failing advisory test</li>
<li><a href="https://github.com/jpadilla/pyjwt/commit/9c528670c455b8d948aff95ed50e22940d1ad3fc"><code>9c52867</code></a> Merge pull request from GHSA-ffqj-6fqr-9h24</li>
<li><a href="https://github.com/jpadilla/pyjwt/commit/24b29adfebcb4f057a3cef5aaf35653bc0c1c8cc"><code>24b29ad</code></a> Update CHANGELOG.rst (<a href="https://github-redirect.dependabot.com/jpadilla/pyjwt/issues/751">#751</a>)</li>
<li><a href="https://github.com/jpadilla/pyjwt/commit/31f5acb8fb3ec6cdfe2b1b0a4a8f329b5f3ca67f"><code>31f5acb</code></a> Replace various string interpolations with f-strings (<a href="https://github-redirect.dependabot.com/jpadilla/pyjwt/issues/744">#744</a>)</li>
<li><a href="https://github.com/jpadilla/pyjwt/commit/5581a31c21de70444c1162bcfa29f7e0fc86edda"><code>5581a31</code></a> [pre-commit.ci] pre-commit autoupdate (<a href="https://github-redirect.dependabot.com/jpadilla/pyjwt/issues/748">#748</a>)</li>
<li><a href="https://github.com/jpadilla/pyjwt/commit/3d4d82248f1120c87f1f4e0e8793eaa1d54843a6"><code>3d4d822</code></a> Don't mutate options dictionary in .decode_complete() (<a href="https://github-redirect.dependabot.com/jpadilla/pyjwt/issues/743">#743</a>)</li>
<li><a href="https://github.com/jpadilla/pyjwt/commit/1f1fe15bb41846c602b3e106176b2c692b93a613"><code>1f1fe15</code></a> Add a deprecation warning when jwt.decode() is called with the legacy verify=...</li>
<li><a href="https://github.com/jpadilla/pyjwt/commit/35fa28e59d99b99c6a780d2a029a74d6bbba8b1e"><code>35fa28e</code></a> [pre-commit.ci] pre-commit autoupdate (<a href="https://github-redirect.dependabot.com/jpadilla/pyjwt/issues/740">#740</a>)</li>
<li>Additional commits viewable in <a href="https://github.com/jpadilla/pyjwt/compare/1.7.1...2.4.0">compare view</a></li>
</ul>
</details>

<br />




[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pyjwt&package-manager=pip&previous-version=1.7.1&new-version=2.4.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---



Dependabot commands and options



You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/tiagoluizrs/livro_flask/network/alerts).





Bump ipython from 7.6.0 to 7.16.3


opened on 2022-01-21 19:55:31 by dependabot[bot]

Bumps ipython from 7.6.0 to 7.16.3.



Commits







Dependabot compatibility score


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.





Dependabot commands and options



You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/tiagoluizrs/livro_flask/network/alerts).





DUVIDA - LIVRO


opened on 2021-09-13 17:42:50 by chwiee

Durante o aprendizado do livro, me deparei com um problema na hora de rodar o migrate, ele me retorna o erro que está abaixo:


O 1 erro eu removi o MigrateCommand da linha e o segundo erro eu não sei o que fazer....
1


Esse é meu req.txt:
alembic==1.7.1
click==8.0.1
colorama==0.4.4
Flask==1.1.2
Flask-Migrate==3.1.0
Flask-Script==2.0.6
Flask-SQLAlchemy==2.5.1
greenlet==1.1.1
itsdangerous==2.0.1
Jinja2==3.0.1
Mako==1.1.5
MarkupSafe==2.0.1
mysqlclient==2.0.3
PyMySQL==1.0.2
SQLAlchemy==1.4.23
Werkzeug==2.0.1


Essa é a confg do PC:


Windows 10 PRO 
MySQL rodando em Docker 


Poderia me ajudar por favor?



Bump pygments from 2.4.2 to 2.7.4


opened on 2021-03-29 19:54:03 by dependabot[bot]

Bumps pygments from 2.4.2 to 2.7.4.



Release notes

Sourced from pygments's releases.




2.7.4


    

  • 

    Updated lexers:
    

      

    • 

      Apache configurations: Improve handling of malformed tags (#1656)
      

      • 

    • 

      CSS: Add support for variables (#1633, #1666)
      

      • 

    • 

      Crystal (#1650, #1670)
      

      • 

    • 

      Coq (#1648)
      

      • 

    • 

      Fortran: Add missing keywords (#1635, #1665)
      

      • 

    • 

      Ini (#1624)
      

      • 

    • 

      JavaScript and variants (#1647 -- missing regex flags, #1651)
      

      • 

    • 

      Markdown (#1623, #1617)
      

      • 

    • 

      Shell
      

        

      • Lex trailing whitespace as part of the prompt (#1645)
        • 

      • Add missing in keyword (#1652)
        • 

      

      • 

    • 

      SQL - Fix keywords (#1668)
      

      • 

    • 

      Typescript: Fix incorrect punctuation handling (#1510, #1511)
      

      • 

    

    • 

  • 

    Fix infinite loop in SML lexer (#1625)
    

    • 

  • 

    Fix backtracking string regexes in JavaScript/TypeScript, Modula2
and many other lexers (#1637)
    

    • 

  • 

    Limit recursion with nesting Ruby heredocs (#1638)
    

    • 

  • 

    Fix a few inefficient regexes for guessing lexers
    

    • 

  • 

    Fix the raw token lexer handling of Unicode (#1616)
    

    • 

  • 

    Revert a private API change in the HTML formatter (#1655) --
please note that private APIs remain subject to change!
    

    • 

  • 

    Fix several exponential/cubic-complexity regexes found by
Ben Caller/Doyensec (#1675)
    

    • 

  • 

    Fix incorrect MATLAB example (#1582)
    

    • 



Thanks to Google's OSS-Fuzz project for finding many of these bugs.


2.7.3






... (truncated)





Changelog

Sourced from pygments's changelog.




Version 2.7.4


(released January 12, 2021)


    

  • 

    Updated lexers:
    

      

    • 

      Apache configurations: Improve handling of malformed tags (#1656)
      

      • 

    • 

      CSS: Add support for variables (#1633, #1666)
      

      • 

    • 

      Crystal (#1650, #1670)
      

      • 

    • 

      Coq (#1648)
      

      • 

    • 

      Fortran: Add missing keywords (#1635, #1665)
      

      • 

    • 

      Ini (#1624)
      

      • 

    • 

      JavaScript and variants (#1647 -- missing regex flags, #1651)
      

      • 

    • 

      Markdown (#1623, #1617)
      

      • 

    • 

      Shell
      

        

      • Lex trailing whitespace as part of the prompt (#1645)
        • 

      • Add missing in keyword (#1652)
        • 

      

      • 

    • 

      SQL - Fix keywords (#1668)
      

      • 

    • 

      Typescript: Fix incorrect punctuation handling (#1510, #1511)
      

      • 

    

    • 

  • 

    Fix infinite loop in SML lexer (#1625)
    

    • 

  • 

    Fix backtracking string regexes in JavaScript/TypeScript, Modula2
and many other lexers (#1637)
    

    • 

  • 

    Limit recursion with nesting Ruby heredocs (#1638)
    

    • 

  • 

    Fix a few inefficient regexes for guessing lexers
    

    • 

  • 

    Fix the raw token lexer handling of Unicode (#1616)
    

    • 

  • 

    Revert a private API change in the HTML formatter (#1655) --
please note that private APIs remain subject to change!
    

    • 

  • 

    Fix several exponential/cubic-complexity regexes found by
Ben Caller/Doyensec (#1675)
    

    • 

  • 

    Fix incorrect MATLAB example (#1582)
    

    • 



Thanks to Google's OSS-Fuzz project for finding many of these bugs.


Version 2.7.3


(released December 6, 2020)






... (truncated)





Commits

    

  • 4d555d0 Bump version to 2.7.4.
    • 

  • fc3b05d Update CHANGES.
    • 

  • ad21935 Revert "Added dracula theme style (#1636)"
    • 

  • e411506 Prepare for 2.7.4 release.
    • 

  • 275e34d doc: remove Perl 6 ref
    • 

  • 2e7e8c4 Fix several exponential/cubic complexity regexes found by Ben Caller/Doyensec
    • 

  • eb39c43 xquery: fix pop from empty stack
    • 

  • 2738778 fix coding style in test_analyzer_lexer
    • 

  • 02e0f09 Added 'ERROR STOP' to fortran.py keywords. (#1665)
    • 

  • c83fe48 support added for css variables (#1633)
    • 

  • Additional commits viewable in compare view
    • 








Dependabot compatibility score


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.





Dependabot commands and options



You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/tiagoluizrs/livro_flask/network/alerts).
Tiago Silva

Full-Stack Developer e Software Engineer, especialista em Python e JavaScript, professor e Escritor dos Livros Python de A a Z, Flask de A a Z e Django de A a Z

GitHub Repository