172: Bump requests from 2.24.0 to 2.25.0 r=curquiza a=dependabot-preview[bot] Bumps [requests](https://github.com/psf/requests) from 2.24.0 to 2.25.0. <details> <summary>Changelog</summary> Sourced from <a href="https://github.com/psf/requests/blob/master/HISTORY.md">requests's changelog</a>. <blockquote> <h2>2.25.0 (2020-11-11)</h2> Improvements <ul> <li>Added support for NETRC environment variable. (<a href="https://github-redirect.dependabot.com/psf/requests/issues/5643">#5643</a>)</li> </ul> Dependencies <ul> <li>Requests now supports urllib3 v1.26.</li> </ul> Deprecations <ul> <li>Requests v2.25.x will be the last release series with support for Python 3.5.</li> <li>The <code>requests[security]</code> extra is officially deprecated and will be removed in Requests v2.26.0.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/psf/requests/commit/03957eb1c2b9a1e5e6d61f5e930d7c5ed7cfe853"><code>03957eb</code></a> v2.25.0</li> <li><a href="https://github.com/psf/requests/commit/320a10d142a7cbe224f0dcb1732484fff08cdd8e"><code>320a10d</code></a> Remove Pipfile/Pipfile.lock</li> <li><a href="https://github.com/psf/requests/commit/9cd2d33489f95a97fdbb22a977ff4b7f51199702"><code>9cd2d33</code></a> Move CI to Github Actions</li> <li><a href="https://github.com/psf/requests/commit/2f70990cd3fabf7b05cb9a69b3dab1a43bbf0096"><code>2f70990</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/psf/requests/issues/5643">#5643</a> from tarmath/netrc</li> <li><a href="https://github.com/psf/requests/commit/ba543713d35067866d68b09f644042c0c021a8ba"><code>ba54371</code></a> Respect the NETRC environment variable</li> <li><a href="https://github.com/psf/requests/commit/143150233162d609330941ec2aacde5ed4caa510"><code>1431502</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/psf/requests/issues/5614">#5614</a> from smstong/master</li> <li><a href="https://github.com/psf/requests/commit/4840d4a3768d8eb4416875a921ad95ca9b86e789"><code>4840d4a</code></a> small typo corrected.</li> <li><a href="https://github.com/psf/requests/commit/4f6c0187150af09d085c03096504934eb91c7a9e"><code>4f6c018</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/psf/requests/issues/5611">#5611</a> from psf/add-codescanning</li> <li><a href="https://github.com/psf/requests/commit/d09c0e0f24486f66ceaa03b0631d7e23f385e7c2"><code>d09c0e0</code></a> Update codeql-analysis.yml</li> <li><a href="https://github.com/psf/requests/commit/941ac53ba0251496b56b28c47ae48ea5a88e477a"><code>941ac53</code></a> Create codeql-analysis.yml</li> <li>Additional commits viewable in <a href="https://github.com/psf/requests/compare/v2.24.0...v2.25.0">compare view</a></li> </ul> </details> [![Dependabot compatibility score](https://api.dependabot.com/badges/compatibility_score?dependency-name=requests&package-manager=pip&previous-version=2.24.0&new-version=2.25.0)](https://dependabot.com/compatibility-score/?dependency-name=requests&package-manager=pip&previous-version=2.24.0&new-version=2.25.0) You can trigger a rebase of this PR by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired) </details> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>