Fellow Reports -- July 2020

[Carlton Gibson]

Hi all. 

Calendar Week 27 -- ending 05 July.

Triaged:

https://code.djangoproject.com/ticket/20081 -- Minimize the risk of SECRET_KEY leaks (needsinfo)

https://code.djangoproject.com/ticket/31755 -- make temporal subtraction work without ExpressionWrapper (Accepted)

https://code.djangoproject.com/ticket/31754 -- preserve_filters doesn't work (needsinfo)

https://code.djangoproject.com/ticket/30415 -- Refactor runtests.py to allow using other test runners. (needsinfo

)

https://code.djangoproject.com/ticket/31752 -- Intermittent test failure on Windows with PostgreSQL (Accepted)

https://code.djangoproject.com/ticket/31750 -- Abstract model field should not be equal across models (Accepted)

https://code.djangoproject.com/ticket/31751 -- Add support for cx_Oracle 8 (Accepted)

https://code.djangoproject.com/ticket/31747 -- Avoid potential admin model enumeration (Accepted)

Reviewed:

https://github.com/django/django/pull/13135 -- [2.2.x] Fixed ForeignKeyRawIdWidgetTest.test_render_unsafe_limit_choices_to on Python 3.5.

https://github.com/django/django/pull/13120 -- Improved performance of MEDIA_URL/STATIC_URL access and check SECRET_KEY on access.

https://github.com/django/django/pull/12752 -- Fixed #17664 -- Deprecated silencing exceptions in the {% if %} template tag.

https://github.com/django/django/pull/13101 -- Made JavaScript URL manipulation more robust with URL and URLSearchParams.

https://github.com/django/django/pull/13098 -- Simplified JavaScript with Array.prototype.includes().

https://github.com/django/django/pull/12646 -- Fixed #31169 -- Adapted the parallel test runner to use spawn. [GSoC]

https://github.com/django/django/pull/13123 -- [2.2.x] Refs #31751 -- Doc'd that cx_Oracle < 8 is required.

https://github.com/django/django/pull/13122 -- Fixed #31751 -- Fixed database introspection with cx_Oracle 8.

Authored:

https://github.com/django/django/pull/13137 -- Refs #6903 -- Adjusted ModelAdmin.preserve_filters docs.

https://github.com/django/django/pull/13126 -- Fixed #31752 -- Set explicit datetime for M2M ordering test.

Calendar Week 28 -- ending 12 July.

Triaged:

https://code.djangoproject.com/ticket/31774 -- validate_unique in Model class doesn't validate uniqueness for ImageField. (worksforme)

https://code.djangoproject.com/ticket/31775 -- An option to enforce raw_id_fields in Admin site for all relation fields by default (Duplicate of #17881)

https://code.djangoproject.com/ticket/31768 -- `django.http.request` `validate_domains` - should be optional "Invalid HTTP_HOST header" (Invalid)

https://code.djangoproject.com/ticket/31764 -- Add a way to allow subdomain wildcards in the set of allowed hosts for redirects after login/logout (needsinfo)

https://code.djangoproject.com/ticket/31759 -- Why do instance hints in ForwardManyToOneDescriptor use the related object? (Invalid)

Reviewed:

https://github.com/django/django/pull/13168 -- Used urllib.parse.urljoin() in auth_tests to join URLs.

https://code.djangoproject.com/ticket/31773 -- ExpressionWrapper loses output_field for combined expression without an output_field.

https://github.com/django/django/pull/12632 -- Fixed #31405 -- Added LoginRequiredAuthenticationMiddleware force all views to require authentication by default.

https://github.com/django/django/pull/13088 -- Fixed #31573 -- Made QuerySet.update() respect ordering on MariaDB/MySQL.

https://github.com/django/django/pull/13164 -- Fixed #31739 -- Documented dependency between HttpRequest stream IO methods and body.

https://github.com/django/django/pull/13158 -- Fixed #31767 -- Fixed QuerySet.none() on combined queryset.

https://github.com/django/django/pull/13153 -- Fixed #31765 -- Use feature detection to detect if SQlite supports atomically renaming references

https://github.com/django/django/pull/13157 -- Fixed #31502 -- Document Model._state.db and Model._state.adding.

https://github.com/django/django/pull/12310 -- Fixed #31180 -- Configured applications automatically.

https://code.djangoproject.com/ticket/31747 -- Avoid potential admin model enumeration

Authored:

https://github.com/django/django/pull/13072 -- Removed unsupported third-party backends from docs.

Kind Regards,

Carlton

[Carlton Gibson]

Hi all.

Calendar Week 29 -- ending 19 July.


Triaged:

https://code.djangoproject.com/ticket/31780 -- Include the Python traceback in the debug-page footer as a HTML comment (wontfix)
https://code.djangoproject.com/ticket/31774 -- validate_unique in Model class doesn't validate uniqueness for ImageField. (needsinfo)
https://code.djangoproject.com/ticket/31793 -- Async management command support (wontfix)
https://code.djangoproject.com/ticket/31791 -- Make technical 404 page always show tried URL patterns (Accepted)
https://code.djangoproject.com/ticket/31777 -- Custom collations (needsinfo)
https://code.djangoproject.com/ticket/31007 -- Make it possible to change the default AutoField to BigAutoField. (Accepted)
https://code.djangoproject.com/ticket/31785 -- Documentation suggesting using UUIDField as a good alternative for primary_key, without inviting to consider performance drawbacks (Invalid)



Reviewed:

https://github.com/django/django/pull/11414 -- Fixed #30509 -- Various FileResponse fixes and changes
https://github.com/django/django/pull/13197 -- Stopped adapting DecimalField values to strings on Oracle.
https://github.com/django/django/pull/13145 -- Fixed #31623 -- Allowed specifying number of adjacent time units in timesince()/timeuntil().
https://github.com/django/django/pull/13192 -- Fixed #31784 -- Fixed sanitize_address() crash on wrapped display names.
https://github.com/django/django/pull/13195 -- Fixed #31790 -- Fixed setting SameSite cookie flag for deleted session/messages cookies.

https://github.com/django/django/pull/12310 -- Fixed #31180 -- Configured applications automatically.

https://github.com/django/django/pull/13186 -- Fixed #31789 -- Added a new response headers interface
https://github.com/django/django/pull/13134 -- Fixed #31747 -- Fixed model enumeration via admin URLs.
https://github.com/django/django/pull/13171 -- Fixed #21528 -- Added note about filtering form field's queryset based on instance to admin docs.







Calendar Week 30 -- ending 26 July.


Triaged:

https://code.djangoproject.com/ticket/31819 -- Django + Django REST Framework generates API errors with swagger (Invalid)
https://code.djangoproject.com/ticket/31805 -- MySQL Schema tests fail when table names are case-insensitive. (Accepted)
https://code.djangoproject.com/ticket/30114 -- ValidationError sometimes raised for valid UUIDs with mod_wsgi (Invalid)
https://code.djangoproject.com/ticket/31804 -- Parallelize database cloning process (Accepted)



Reviewed:

https://github.com/django/django/pull/13227 -- [2.2.x] Pinned geoip2 < 4.0.0 in test requirements.
https://github.com/django/django/pull/13224 -- Fixed #31811 -- Add optional timing outputs to the test runner
https://github.com/django/django/pull/12449 -- Fixed #31262 -- Allowed dictionaries in Field.choices for named groups.
https://github.com/django/django/pull/13221 -- Fixed #31805 -- Fixed SchemaTests.tearDown() when table names are case-insensitive.
https://github.com/django/django/pull/13215 -- Fixed #31797 -- Skipped schema tests on specific MariaDB versions.
https://github.com/django/django/pull/13183 -- Fixed #31757 - add dj::insecure to default SECRET_KEY
https://github.com/django/django/pull/13153 -- Fixed #31765 -- Disabled bundled SQLite renaming atomic references on macOS 10.15.
https://github.com/django/django/pull/13213 -- Update tutorial04.txt

https://github.com/django/django/pull/12310 -- Fixed #31180 -- Configured applications automatically.

Authored:

https://github.com/django/django/pull/13214 -- Fixed #29988 -- Updated coding style allow f-strings.



Kind Regards,

Carlton

[Carlton Gibson]

Hi all.


Calendar Week 31 -- ending 02 August.


Triaged:

https://code.djangoproject.com/ticket/31840 -- Adding Support for Cross-Origin Opener Policy (Accepted)
https://code.djangoproject.com/ticket/31827 -- Add test runner option to show N slowest tests (Accepted)
https://code.djangoproject.com/ticket/31835 -- JSONField's __contains lookup doesn't work in nested values on Oracle. (Accepted)



Reviewed:

https://github.com/django/django/pull/13262 -- Fixed #31842 -- Added DEFAULT_HASHING_ALGORITHM setting.
https://code.djangoproject.com/ticket/31842 -- django.core.signing.dumps() and loads() not backwards compatible
https://github.com/django/django/pull/13261 -- Refs #27996 -- Fixed postgres_tests crash if not running with PostgreSQL.
https://github.com/django/django/pull/13173 -- Fixed #25513 -- Extracted admin pagination to EllipsisPaginator.
https://github.com/django/django/pull/12387 -- Fixed #31216 -- Added support for colorama terminal colors on Windows.
https://github.com/django/django/pull/13247 -- Fixed #29336 -- Doc'd circular template inheritance
https://github.com/django/django/pull/13254 -- Corrected function signature in admin docs.
https://github.com/django/django/pull/13220 -- Fixed #28507 -- Made ValidationError.__eq__() ignore messages and params ordering.
https://github.com/django/django/pull/11937 -- Fixed #27395 -- Updated sitemap to generate 'alternates'
https://github.com/django/django/pull/13240 -- Fixed #29324 -- Validate SECRET_KEY lazily (on access).
https://github.com/django/django/pull/13239 -- Don't run `add_script_prefix` on every access to static/media urls in settings.
https://github.com/django/django/pull/13250 -- Fixed #31836 -- Dropped support for JSONField __contains and __contained_by lookup on SQLite.
https://github.com/django/django/pull/13248 -- Fixed #31835 -- Dropped support for JSONField __contains lookup on Oracle.

https://github.com/django/django/pull/13224 -- Fixed #31811 -- Add optional timing outputs to the test runner

Authored:

https://github.com/django/djangoproject.com/pull/1011 -- Added banner for 2020 survey.



Kind Regards,

Carlton