From 0bd6326d9176f4b47a5ffff37f9a4b847b93d862 Mon Sep 17 00:00:00 2001
From: Hugo Buddelmeijer <hugo@buddelmeijer.nl>
Date: Sat, 6 Dec 2025 17:47:53 +0100
Subject: [PATCH] gnu: python-jose: Update to 3.5.0 [security fixes].

This update includes fix for CVE-2024-33663 and CVE-2024-33664.

* gnu/packages/python-web.scm (python-jose): Update to 3.5.0.
[arguments]<#:test-flags>: Re-enable all tests.
[propagated-inputs]: Remove python-six.
[native-inputs]: Remove python-pytest-cov, python-pytest-runner, python-wheel.

Change-Id: I22867a51d333467ffb5e64512a3257f92fc540ee
Signed-off-by: Cayetano Santos <csantosb@inventati.org>
---
 gnu/packages/python-web.scm | 21 ++++-----------------
 1 file changed, 4 insertions(+), 17 deletions(-)

diff --git a/gnu/packages/python-web.scm b/gnu/packages/python-web.scm
index c6293f56b8..d3ffc7c35a 100644
--- a/gnu/packages/python-web.scm
+++ b/gnu/packages/python-web.scm
@@ -3405,7 +3405,7 @@ Swartz.")
 (define-public python-jose
   (package
     (name "python-jose")
-    (version "3.3.0")
+    (version "3.5.0")
     (home-page "https://github.com/mpdavis/python-jose")
     (source (origin
               (method git-fetch)
@@ -3413,25 +3413,12 @@ Swartz.")
               (file-name (git-file-name name version))
               (sha256
                (base32
-                "18whsdpllg8574ma4r0qawkgw4nam6lsf63pi6761j38rvl84lg9"))))
+                "0frv7r6q43mjl7s82hh8qvqpdgyfvmyq2b6aq4402riq2i238d7h"))))
     (build-system pyproject-build-system)
-    (arguments
-     (list
-      #:test-flags
-      '(list "-k"
-             ;; These fail because of unexpected locations of line breaks.
-             (string-append "not test_public_key_to_pem "
-                            "and not test_private_key_to_pem "
-                            "and not test_public_key_load_cycle "
-                            "and not test_private_key_load_cycle"))))
     (native-inputs
-     (list ;; All native inputs are for tests.
-           python-pyasn1 python-pytest python-pytest-cov
-           python-pytest-runner
-           python-setuptools
-           python-wheel))
+     (list python-pyasn1 python-pytest python-setuptools))
     (propagated-inputs
-     (list python-cryptography python-ecdsa python-rsa python-six))
+     (list python-cryptography python-ecdsa python-rsa))
     (synopsis "JOSE implementation in Python")
     (description
      "The @dfn{JavaScript Object Signing and Encryption} (JOSE) technologies