[python-tw2-jquery] Remove older bundled versions of jquery at prep time.
Ralph Bean
ralph at fedoraproject.org
Mon Jan 21 15:27:37 UTC 2013
commit f37a4b6b819e27f876b84325e4e0450786f286a0
Author: Ralph Bean <rbean at redhat.com>
Date: Mon Jan 21 10:27:25 2013 -0500
Remove older bundled versions of jquery at prep time.
python-tw2-jquery.spec | 15 ++++++++++++++-
1 files changed, 14 insertions(+), 1 deletions(-)
---
diff --git a/python-tw2-jquery.spec b/python-tw2-jquery.spec
index 191af42..ac35327 100644
--- a/python-tw2-jquery.spec
+++ b/python-tw2-jquery.spec
@@ -4,7 +4,7 @@
Name: python-tw2-jquery
Version: 2.0.3
-Release: 4%{?dist}
+Release: 5%{?dist}
Summary: jQuery for ToscaWidgets2
Group: Development/Languages
@@ -61,6 +61,16 @@ classes for creating these plugins.
%prep
%setup -q -n %{modname}-%{version}
+# tw2 bundles *all* these versions of jquery (and 1.7.1 as well).
+# Versions prior to 1.6.3 have an XSS vulnerability; so we remove them.
+# If someone ends up needing this, we could probably patch 1.6.2, but
+# it is likely that noone is using them.
+rm -rf tw2/jquery/static/jquery/1.3.2/
+rm -rf tw2/jquery/static/jquery/1.4.2/
+rm -rf tw2/jquery/static/jquery/1.4.4/
+rm -rf tw2/jquery/static/jquery/1.6.0/
+rm -rf tw2/jquery/static/jquery/1.6.2/
+
%if %{?rhel}%{!?rhel:0} >= 6
# Make sure that epel/rhel picks up the correct version of webob
@@ -93,6 +103,9 @@ PYTHONPATH=$(pwd) python setup.py test
%{python_sitelib}/%{modname}-%{version}*
%changelog
+* Mon Jan 21 2013 Ralph Bean <rbean at redhat.com> - 2.0.3-5
+- Remove older bundled versions of jquery at prep time.
+
* Sat Jul 21 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 2.0.3-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
More information about the scm-commits
mailing list