Scheduled daily dependency update on sunday

[pyup-bot]

Update coverage from 4.5.1 to 4.5.2.

The bot wasn't able to find a changelog for this release. Got an idea?

Links

• PyPI: https://pypi.org/project/coverage
• Changelog: https://pyup.io/changelogs/coverage/
• Repo: https://bitbucket.org/ned/coveragepy

Update coveralls from 1.5.0 to 1.5.1.

Changelog

1.5.1

Features
* **git:**  omit git info when git isn't installed (187) ([764956ea](764956ea))
* ... instead of erroring. The fixes the v1.4.0 release of "supporting
 non-git repos" when the git binary is not installed.
* Note that commit info can still be set with env vars, even in non-git
 repositories -- see the docs for more info!

Compatibility
* **python:**  include python 3.7 in matrix tests ([023d474](023d474))
* previous versions of `coveralls-python` should be compatible with Python 3.7, no
 code changes were required to make tests pass

Internal
* remove `pytest-runner` as a dependency (185) ([4cbbfcd](4cbbfcd))

<a name="1.5.0"></a>

Links

• PyPI: https://pypi.org/project/coveralls
• Changelog: https://pyup.io/changelogs/coveralls/
• Repo: http://github.com/coveralls-clients/coveralls-python

Update Django from 2.1.1 to 2.1.3.

Changelog

2.1.3

==========================

*November 1, 2018*

Django 2.1.3 fixes several bugs in 2.1.2.

Bugfixes
========

* Fixed a regression in Django 2.0 where combining ``Q`` objects with ``__in``
lookups and lists crashed (:ticket:`29838`).

* Fixed a regression in Django 1.11 where ``django-admin shell`` may hang
on startup (:ticket:`29774`).

* Fixed a regression in Django 2.0 where test databases aren't reused with
``manage.py test --keepdb`` on MySQL (:ticket:`29827`).

* Fixed a regression where cached foreign keys that use ``to_field`` were
incorrectly cleared in ``Model.save()`` (:ticket:`29896`).

* Fixed a regression in Django 2.0 where ``FileSystemStorage`` crashes with
``FileExistsError`` if concurrent saves try to create the same directory
(:ticket:`29890`).


==========================

2.1.2

==========================

*October 1, 2018*

Django 2.1.2 fixes a security issue and several bugs in 2.1.1. Also, the latest
string translations from Transifex are incorporated.

CVE-2018-16984: Password hash disclosure to "view only" admin users
===================================================================

If an admin user has the change permission to the user model, only part of the
password hash is displayed in the change form. Admin users with the view (but
not change) permission to the user model were displayed the entire hash. While
it's typically infeasible to reverse a strong password hash, if your site uses
weaker password hashing algorithms such as MD5 or SHA1, it could be a problem.

Bugfixes
========

* Fixed a regression where nonexistent joins in ``F()`` no longer raised
``FieldError`` (:ticket:`29727`).

* Fixed a regression where files starting with a tilde or underscore weren't
ignored by the migrations loader (:ticket:`29749`).

* Made migrations detect changes to ``Meta.default_related_name``
(:ticket:`29755`).

* Added compatibility for ``cx_Oracle`` 7 (:ticket:`29759`).

* Fixed a regression in Django 2.0 where unique index names weren't quoted
(:ticket:`29778`).

* Fixed a regression where sliced queries with multiple columns with the same
name crashed on Oracle 12.1 (:ticket:`29630`).

* Fixed a crash when a user with the view (but not change) permission made a
POST request to an admin user change form (:ticket:`29809`).


==========================

Links

• PyPI: https://pypi.org/project/django
• Changelog: https://pyup.io/changelogs/django/
• Homepage: https://www.djangoproject.com/

Update django-nose from 1.4.5 to 1.4.6.

Changelog

1.4.6

~~~~~~~~~~~~~~~~~~
* Document Django 2.0 and 2.1 support, no changes needed
* Document Python 3.7 support

Links

• PyPI: https://pypi.org/project/django-nose
• Changelog: https://pyup.io/changelogs/django-nose/
• Repo: http://github.com/django-nose/django-nose

[pyup-bot]

Closing this in favor of #304