Update to 1.0.6 for fix CVE-2025-24359

python-asteval.spec

@@ -1,11 +1,11 @@
 %global _empty_manifest_terminate_build 0
 Name:		python-asteval
-Version:	0.9.31
+Version:	1.0.6
 Release:	1
 Summary:	Safe, minimalistic evaluator of python expression using ast module
 License:	MIT
-URL:		https://github.com/newville/asteval
-Source0:	https://files.pythonhosted.org/packages/80/7e/89beb152649fb53d9f56ee2a4bf92b88bfc6fb62872be657872a140db7dc/asteval-0.9.31.tar.gz
+URL:		https://github.com/lmfit/asteval
+Source0:	%{pypi_source asteval}
 BuildArch:	noarch
 
 
@@ -92,6 +92,24 @@ mv %{buildroot}/doclist.lst .
 %{_docdir}/*
 
 %changelog
+* Sun Jan 26 2025 yaoxin <1024769339@qq.com> - 1.0.6-1
+- Update to 1.0.6:
+  * drop testing and support for Python3.8, add Python 3.13, change document to reflect this.
+  * implement safe_getattr and safe_format functions; fix bugs in UNSAFE_ATTRS and UNSAFE_ATTRS_DTYPES usage
+  * make all procedure attributes private to curb access to AST nodes, which can be exploited
+  * improvements to error messages, including use ast functions to construct better error messages
+  * remove import of numpy.linalg, as documented
+  * update doc description for security advisory
+
+* Wed Oct 16 2024 jiangxinyu <jiangxinyu@kylinos.cn> - 1.0.5-1
+- Update package to version 1.0.5
+- fix error handling that might result in null exception
+  cleanups of exception handling : errors must now have an exception
+  Handling NameError is not working
+
+* Mon Aug 19 2024 Ge Wang <wang__ge@126.com> - 1.0.2-1
+- Update package to version 1.0.2
+
 * Tue Aug 01 2023 niuyaru <niuyaru@kylinos.cn> - 0.9.31-1
 - Update package to version 0.9.31
 

python-asteval.yaml

@@ -0,0 +1,4 @@
+version_control: github
+src_repo: lmfit/asteval
+tag_prefix: "^"
+separator: "."