Skip to content

Commit 65663d8

Browse files
bors[bot]dependabot[bot]
bors[bot]
and
dependabot[bot]
authored
Merge #488
488: Bump requests from 2.27.1 to 2.28.1 r=alallema a=dependabot[bot] Bumps [requests](https://github.com/psf/requests) from 2.27.1 to 2.28.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/psf/requests/releases">requests's releases</a>.</em></p> <blockquote> <h2>v2.28.1</h2> <h2>2.28.1 (2022-06-29)</h2> <p><strong>Improvements</strong></p> <ul> <li>Speed optimization in <code>iter_content</code> with transition to <code>yield from</code>. (<a href="https://github-redirect.dependabot.com/psf/requests/issues/6170">#6170</a>)</li> </ul> <p><strong>Dependencies</strong></p> <ul> <li>Added support for chardet 5.0.0 (<a href="https://github-redirect.dependabot.com/psf/requests/issues/6179">#6179</a>)</li> <li>Added support for charset-normalizer 2.1.0 (<a href="https://github-redirect.dependabot.com/psf/requests/issues/6169">#6169</a>)</li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/hswong3i"><code>`@​hswong3i</code></a>` made their first contribution in <a href="https://github-redirect.dependabot.com/psf/requests/pull/6179">psf/requests#6179</a></li> <li><a href="https://github.com/frenzymadness"><code>`@​frenzymadness</code></a>` made their first contribution in <a href="https://github-redirect.dependabot.com/psf/requests/pull/6169">psf/requests#6169</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/psf/requests/blob/main/HISTORY.md#2281-2022-06-29">https://github.com/psf/requests/blob/main/HISTORY.md#2281-2022-06-29</a></p> <h2>v2.28.0</h2> <h2>2.28.0 (2022-06-09)</h2> <p><strong>Deprecations</strong></p> <ul> <li>⚠️ Requests has officially dropped support for Python 2.7. ⚠️ (<a href="https://github-redirect.dependabot.com/psf/requests/issues/6091">#6091</a>)</li> <li>Requests has officially dropped support for Python 3.6 (including pypy3). (<a href="https://github-redirect.dependabot.com/psf/requests/issues/6091">#6091</a>)</li> </ul> <p><strong>Improvements</strong></p> <ul> <li>Wrap JSON parsing issues in Request's JSONDecodeError for payloads without an encoding to make <code>json()</code> API consistent. (<a href="https://github-redirect.dependabot.com/psf/requests/issues/6097">#6097</a>)</li> <li>Parse header components consistently, raising an InvalidHeader error in all invalid cases. (<a href="https://github-redirect.dependabot.com/psf/requests/issues/6154">#6154</a>)</li> <li>Added provisional 3.11 support with current beta build. (<a href="https://github-redirect.dependabot.com/psf/requests/issues/6155">#6155</a>)</li> <li>Requests got a makeover and we decided to paint it black. (<a href="https://github-redirect.dependabot.com/psf/requests/issues/6095">#6095</a>)</li> </ul> <p><strong>Bugfixes</strong></p> <ul> <li>Fixed bug where setting <code>CURL_CA_BUNDLE</code> to an empty string would disable cert verification. All Requests 2.x versions before 2.28.0 are affected. (<a href="https://github-redirect.dependabot.com/psf/requests/issues/6074">#6074</a>)</li> <li>Fixed urllib3 exception leak, wrapping <code>urllib3.exceptions.SSLError</code> with <code>requests.exceptions.SSLError</code> for <code>content</code> and <code>iter_content</code>. (<a href="https://github-redirect.dependabot.com/psf/requests/issues/6057">#6057</a>)</li> <li>Fixed issue where invalid Windows registry entires caused proxy resolution to raise an exception rather than ignoring the entry. (<a href="https://github-redirect.dependabot.com/psf/requests/issues/6149">#6149</a>)</li> <li>Fixed issue where entire payload could be included in the error message for JSONDecodeError. (<a href="https://github-redirect.dependabot.com/psf/requests/issues/6079">#6079</a>)</li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/marwanpro"><code>`@​marwanpro</code></a>` made their first contribution in <a href="https://github-redirect.dependabot.com/psf/requests/pull/6035">psf/requests#6035</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/psf/requests/blob/main/HISTORY.md">requests's changelog</a>.</em></p> <blockquote> <h2>2.28.1 (2022-06-29)</h2> <p><strong>Improvements</strong></p> <ul> <li>Speed optimization in <code>iter_content</code> with transition to <code>yield from</code>. (<a href="https://github-redirect.dependabot.com/psf/requests/issues/6170">#6170</a>)</li> </ul> <p><strong>Dependencies</strong></p> <ul> <li>Added support for chardet 5.0.0 (<a href="https://github-redirect.dependabot.com/psf/requests/issues/6179">#6179</a>)</li> <li>Added support for charset-normalizer 2.1.0 (<a href="https://github-redirect.dependabot.com/psf/requests/issues/6169">#6169</a>)</li> </ul> <h2>2.28.0 (2022-06-09)</h2> <p><strong>Deprecations</strong></p> <ul> <li>⚠️ Requests has officially dropped support for Python 2.7. ⚠️ (<a href="https://github-redirect.dependabot.com/psf/requests/issues/6091">#6091</a>)</li> <li>Requests has officially dropped support for Python 3.6 (including pypy3.6). (<a href="https://github-redirect.dependabot.com/psf/requests/issues/6091">#6091</a>)</li> </ul> <p><strong>Improvements</strong></p> <ul> <li>Wrap JSON parsing issues in Request's JSONDecodeError for payloads without an encoding to make <code>json()</code> API consistent. (<a href="https://github-redirect.dependabot.com/psf/requests/issues/6097">#6097</a>)</li> <li>Parse header components consistently, raising an InvalidHeader error in all invalid cases. (<a href="https://github-redirect.dependabot.com/psf/requests/issues/6154">#6154</a>)</li> <li>Added provisional 3.11 support with current beta build. (<a href="https://github-redirect.dependabot.com/psf/requests/issues/6155">#6155</a>)</li> <li>Requests got a makeover and we decided to paint it black. (<a href="https://github-redirect.dependabot.com/psf/requests/issues/6095">#6095</a>)</li> </ul> <p><strong>Bugfixes</strong></p> <ul> <li>Fixed bug where setting <code>CURL_CA_BUNDLE</code> to an empty string would disable cert verification. All Requests 2.x versions before 2.28.0 are affected. (<a href="https://github-redirect.dependabot.com/psf/requests/issues/6074">#6074</a>)</li> <li>Fixed urllib3 exception leak, wrapping <code>urllib3.exceptions.SSLError</code> with <code>requests.exceptions.SSLError</code> for <code>content</code> and <code>iter_content</code>. (<a href="https://github-redirect.dependabot.com/psf/requests/issues/6057">#6057</a>)</li> <li>Fixed issue where invalid Windows registry entires caused proxy resolution to raise an exception rather than ignoring the entry. (<a href="https://github-redirect.dependabot.com/psf/requests/issues/6149">#6149</a>)</li> <li>Fixed issue where entire payload could be included in the error message for JSONDecodeError. (<a href="https://github-redirect.dependabot.com/psf/requests/issues/6036">#6036</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/psf/requests/commit/4d394574f5555a8ddcc38f707e0c9f57f55d9a3b"><code>4d39457</code></a> v2.28.1</li> <li><a href="https://github.com/psf/requests/commit/16b418b44a04981ec452df607730079a6178a804"><code>16b418b</code></a> Use yield from instead of looping yield (<a href="https://github-redirect.dependabot.com/psf/requests/issues/6170">#6170</a>)</li> <li><a href="https://github.com/psf/requests/commit/0e28c8f1dc1db297fb2ba5a953bee2097a554c38"><code>0e28c8f</code></a> Allow charset normalizer &gt;=2 and &lt;3 (<a href="https://github-redirect.dependabot.com/psf/requests/issues/6169">#6169</a>)</li> <li><a href="https://github.com/psf/requests/commit/73793ce43e3d940a0f8d6b9b8ff125617828d8a1"><code>73793ce</code></a> Update Dependency with <code>chardet&gt;=3.0.2,&lt;6</code> (<a href="https://github-redirect.dependabot.com/psf/requests/issues/6179">#6179</a>)</li> <li><a href="https://github.com/psf/requests/commit/da9996fe4dc63356e9467d0a5e10df3d89a8528e"><code>da9996f</code></a> v2.28.0</li> <li><a href="https://github.com/psf/requests/commit/1dcf3b71223b8a5895e7bf28f0c4f4045cfe8af5"><code>1dcf3b7</code></a> Add GitHub action to automate linting (<a href="https://github-redirect.dependabot.com/psf/requests/issues/6157">#6157</a>)</li> <li><a href="https://github.com/psf/requests/commit/e36f34597ca96c40dbb81d63a8fe9ac0860b8dc3"><code>e36f345</code></a> Add valdation for header name (<a href="https://github-redirect.dependabot.com/psf/requests/issues/6154">#6154</a>)</li> <li><a href="https://github.com/psf/requests/commit/60865f21aea4eb319d5b916adcc76de10c64e506"><code>60865f2</code></a> Run 3.11 CI on all platforms (<a href="https://github-redirect.dependabot.com/psf/requests/issues/6155">#6155</a>)</li> <li><a href="https://github.com/psf/requests/commit/3af2f456d8c0a90bd6609f2205cd0b2d0f7f800e"><code>3af2f45</code></a> Fix output of test_lowlevel tests in case of timeout (<a href="https://github-redirect.dependabot.com/psf/requests/issues/6136">#6136</a>)</li> <li><a href="https://github.com/psf/requests/commit/0f358eabe6f8e4c472a5030d9cd513965868bd6c"><code>0f358ea</code></a> Reduce lock thread runs to daily (<a href="https://github-redirect.dependabot.com/psf/requests/issues/6150">#6150</a>)</li> <li>Additional commits viewable in <a href="https://github.com/psf/requests/compare/v2.27.1...v2.28.1">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=requests&package-manager=pip&previous-version=2.27.1&new-version=2.28.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) You can trigger a rebase of this PR by commenting ``@dependabot` rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - ``@dependabot` rebase` will rebase this PR - ``@dependabot` recreate` will recreate this PR, overwriting any edits that have been made to it - ``@dependabot` merge` will merge this PR after your CI passes on it - ``@dependabot` squash and merge` will squash and merge this PR after your CI passes on it - ``@dependabot` cancel merge` will cancel a previously requested merge and block automerging - ``@dependabot` reopen` will reopen this PR if it is closed - ``@dependabot` close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - ``@dependabot` ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - ``@dependabot` ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - ``@dependabot` ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2 parents fb63884 + fe43f2d commit 65663d8

File tree

1 file changed

+8
-8
lines changed

1 file changed

+8
-8
lines changed

Pipfile.lock

Lines changed: 8 additions & 8 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

0 commit comments

Comments
 (0)