annotate tests/_files/README @ 4212:5f2d496c633f
core: get rid of `pickle`:
Use of `pickle` to serialise data was a technical legacy that was causing trouble to store
in database, to update (if a class was serialised, a change could break update), and to
security (pickle can lead to code execution).
This patch remove all use of Pickle in favour in JSON, notably:
- for caching data, a Pydantic model is now used instead
- for SQLAlchemy model, the LegacyPickle is replaced by JSON serialisation
- in XEP-0373 a class `PublicKeyMetadata` was serialised. New method `from_dict` and
`to_dict` method have been implemented to do serialisation.
- new methods to (de)serialise data can now be specified with Identity data types. It is
notably used to (de)serialise `path` of avatars.
A migration script has been created to convert data (for upgrade or downgrade), with
special care for XEP-0373 case. Depending of size of database, this migration script can
be long to run.
rel 443
author |
Goffi <goffi@goffi.org> |
date |
Fri, 23 Feb 2024 13:31:04 +0100 |
parents |
a6ea53248c14 |
children |
|
rev |
line source |
3428
|
1 Those files are used for testing, and use big compression level on purpose. |
|
2 |
|
3 They are personal work from Jérôme Poisson and can be re-used under the licence CC By-SA 4.0 |
|
4 Note that this licence only apply to this dir and its subdirectories. |
|
5 |
|
6 This work is licensed under the Creative Commons Attribution-ShareAlike 4.0 International License. To view a copy of this license, visit http://creativecommons.org/licenses/by-sa/4.0/ or send a letter to Creative Commons, PO Box 1866, Mountain View, CA 94042, USA. |