Version 3.10.3rc0

mborsetti · mborsetti · commit a772bdde9426 · 2022-07-11T09:45:50.000-07:00
diff --git a/.pre-commit-config.yaml b/.pre-commit-config.yaml
@@ -3,7 +3,7 @@
 
 # List of hooks at https://pre-commit.com/hooks.html
 
-# Prefer using local configurations so they don't have to be constantly auto-updated (slow).
+# Prefer using local configurations as they don't have to be constantly auto-updated (slow).
 # Local configuration follows the repo's .pre-commit-hooks.yaml
 
 # Requires the pre-commit package manager to be installed: pip install pre-commit
diff --git a/CONTRIBUTING.rst b/CONTRIBUTING.rst
@@ -70,7 +70,7 @@ packages, as below) before creating a pull request, starting from the project's
    pip install -U tox
    tox --parallel
 
-Alternatively, you can manually run the following commands
+Alternatively, you can manually run the following commands:
 
 .. code-block:: bash
 
@@ -86,3 +86,12 @@ Testing documentation
 ~~~~~~~~~~~~~~~~~~~~~
 For documentation, build it locally using ``$ make html`` (Linux) or ``make_html.bat`` (Windows) from within the docs
 directory and monitor for errors.
+
+
+Unreleased version
+------------------
+To install the unreleased version, please run:
+
+.. code-block:: bash
+
+   pip install https://github.com/mborsetti/webchanges/archive/unreleased.tar.gz
diff --git a/webchanges/filters.py b/webchanges/filters.py
@@ -1073,7 +1073,8 @@ def filter(self, data: Union[str, bytes], subfilter: Dict[str, Any]) -> str:
         """
         if isinstance(data, str):
             data = data.encode(errors='ignore')
-        return hashlib.sha1(data, usedforsecurity=False).hexdigest()
+        # Python 3.9: insert usedforsecurity=False argument in sha1() and remove nosec
+        return hashlib.sha1(data).hexdigest()  # nosec B324: Use of weak MD4, MD5, or SHA1 hash for security.
 
 
 class HexDumpFilter(FilterBase):
diff --git a/webchanges/jobs.py b/webchanges/jobs.py
@@ -394,7 +394,8 @@ def get_guid(self) -> str:
         :returns: the GUID.
         """
         location = self.get_location()
-        return hashlib.sha1(location.encode(), usedforsecurity=False).hexdigest()
+        # Python 3.9: insert usedforsecurity=False argument in sha1() and remove nosec
+        return hashlib.sha1(location.encode()).hexdigest()  # nosec B324: Use of weak hash for security.
 
     def retrieve(self, job_state: JobState, headless: bool = True) -> Tuple[Union[str, bytes], str]:
         """Runs job to retrieve the data, and returns data and ETag.
