psf/requests
### [`v2.26.0`](https://togithub.com/psf/requests/blob/HEAD/HISTORY.md#2260-2021-07-13)
[Compare Source](https://togithub.com/psf/requests/compare/v2.25.1...v2.26.0)
**Improvements**
- Requests now supports Brotli compression, if either the `brotli` or
`brotlicffi` package is installed. ([#5783](https://togithub.com/psf/requests/issues/5783))
- `Session.send` now correctly resolves proxy configurations from both
the Session and Request. Behavior now matches `Session.request`. ([#5681](https://togithub.com/psf/requests/issues/5681))
**Bugfixes**
- Fixed a race condition in zip extraction when using Requests in parallel
from zip archive. ([#5707](https://togithub.com/psf/requests/issues/5707))
**Dependencies**
- Instead of `chardet`, use the MIT-licensed `charset_normalizer` for Python3
to remove license ambiguity for projects bundling requests. If `chardet`
is already installed on your machine it will be used instead of `charset_normalizer`
to keep backwards compatibility. ([#5797](https://togithub.com/psf/requests/issues/5797))
You can also install `chardet` while installing requests by
specifying `[use_chardet_on_py3]` extra as follows:
```shell
pip install "requests[use_chardet_on_py3]"
```
Python2 still depends upon the `chardet` module.
- Requests now supports `idna` 3.x on Python 3. `idna` 2.x will continue to
be used on Python 2 installations. ([#5711](https://togithub.com/psf/requests/issues/5711))
**Deprecations**
- The `requests[security]` extra has been converted to a no-op install.
PyOpenSSL is no longer the recommended secure option for Requests. ([#5867](https://togithub.com/psf/requests/issues/5867))
- Requests has officially dropped support for Python 3.5. ([#5867](https://togithub.com/psf/requests/issues/5867))
### [`v2.25.1`](https://togithub.com/psf/requests/blob/master/HISTORY.md#2251-2020-12-16)
[Compare Source](https://togithub.com/psf/requests/compare/v2.25.0...v2.25.1)
**Bugfixes**
- Requests now treats `application/json` as `utf8` by default. Resolving
inconsistencies between `r.text` and `r.json` output. ([#5673](https://togithub.com/psf/requests/issues/5673))
**Dependencies**
- Requests now supports chardet v4.x.
### [`v2.25.0`](https://togithub.com/psf/requests/blob/master/HISTORY.md#2250-2020-11-11)
[Compare Source](https://togithub.com/psf/requests/compare/v2.24.0...v2.25.0)
**Improvements**
- Added support for NETRC environment variable. ([#5643](https://togithub.com/psf/requests/issues/5643))
**Dependencies**
- Requests now supports urllib3 v1.26.
**Deprecations**
- Requests v2.25.x will be the last release series with support for Python 3.5.
- The `requests[security]` extra is officially deprecated and will be removed
in Requests v2.26.0.
### [`v2.24.0`](https://togithub.com/psf/requests/blob/master/HISTORY.md#2240-2020-06-17)
[Compare Source](https://togithub.com/psf/requests/compare/v2.23.0...v2.24.0)
**Improvements**
- pyOpenSSL TLS implementation is now only used if Python
either doesn't have an `ssl` module or doesn't support
SNI. Previously pyOpenSSL was unconditionally used if available.
This applies even if pyOpenSSL is installed via the
`requests[security]` extra ([#5443](https://togithub.com/psf/requests/issues/5443))
- Redirect resolution should now only occur when
`allow_redirects` is True. ([#5492](https://togithub.com/psf/requests/issues/5492))
- No longer perform unnecessary Content-Length calculation for
requests that won't use it. ([#5496](https://togithub.com/psf/requests/issues/5496))
### [`v2.23.0`](https://togithub.com/psf/requests/blob/master/HISTORY.md#2230-2020-02-19)
[Compare Source](https://togithub.com/psf/requests/compare/v2.22.0...v2.23.0)
**Improvements**
- Remove defunct reference to `prefetch` in Session `__attrs__` ([#5110](https://togithub.com/psf/requests/issues/5110))
**Bugfixes**
- Requests no longer outputs password in basic auth usage warning. ([#5099](https://togithub.com/psf/requests/issues/5099))
**Dependencies**
- Pinning for `chardet` and `idna` now uses major version instead of minor.
This hopefully reduces the need for releases every time a dependency is updated.
### [`v2.22.0`](https://togithub.com/psf/requests/blob/master/HISTORY.md#2220-2019-05-15)
[Compare Source](https://togithub.com/psf/requests/compare/v2.21.0...v2.22.0)
**Dependencies**
- Requests now supports urllib3 v1.25.2.
(note: 1.25.0 and 1.25.1 are incompatible)
**Deprecations**
- Requests has officially stopped support for Python 3.4.
### [`v2.21.0`](https://togithub.com/psf/requests/blob/master/HISTORY.md#2210-2018-12-10)
[Compare Source](https://togithub.com/psf/requests/compare/v2.20.1...v2.21.0)
**Dependencies**
- Requests now supports idna v2.8.
### [`v2.20.1`](https://togithub.com/psf/requests/blob/master/HISTORY.md#2201-2018-11-08)
[Compare Source](https://togithub.com/psf/requests/compare/v2.20.0...v2.20.1)
**Bugfixes**
- Fixed bug with unintended Authorization header stripping for
redirects using default ports (http/80, https/443).
### [`v2.20.0`](https://togithub.com/psf/requests/blob/master/HISTORY.md#2200-2018-10-18)
[Compare Source](https://togithub.com/psf/requests/compare/v2.19.1...v2.20.0)
**Bugfixes**
- Content-Type header parsing is now case-insensitive (e.g.
charset=utf8 v Charset=utf8).
- Fixed exception leak where certain redirect urls would raise
uncaught urllib3 exceptions.
- Requests removes Authorization header from requests redirected
from https to http on the same hostname. (CVE-2018-18074)
- `should_bypass_proxies` now handles URIs without hostnames (e.g.
files).
**Dependencies**
- Requests now supports urllib3 v1.24.
**Deprecations**
- Requests has officially stopped support for Python 2.6.
Configuration
📅 Schedule: At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about these updates again.
[ ] If you want to rebase/retry this PR, click this checkbox.
This PR contains the following updates:
==2.19.1
->==2.26.0
==2.21.0
->==2.26.0
Release Notes
psf/requests
### [`v2.26.0`](https://togithub.com/psf/requests/blob/HEAD/HISTORY.md#2260-2021-07-13) [Compare Source](https://togithub.com/psf/requests/compare/v2.25.1...v2.26.0) **Improvements** - Requests now supports Brotli compression, if either the `brotli` or `brotlicffi` package is installed. ([#5783](https://togithub.com/psf/requests/issues/5783)) - `Session.send` now correctly resolves proxy configurations from both the Session and Request. Behavior now matches `Session.request`. ([#5681](https://togithub.com/psf/requests/issues/5681)) **Bugfixes** - Fixed a race condition in zip extraction when using Requests in parallel from zip archive. ([#5707](https://togithub.com/psf/requests/issues/5707)) **Dependencies** - Instead of `chardet`, use the MIT-licensed `charset_normalizer` for Python3 to remove license ambiguity for projects bundling requests. If `chardet` is already installed on your machine it will be used instead of `charset_normalizer` to keep backwards compatibility. ([#5797](https://togithub.com/psf/requests/issues/5797)) You can also install `chardet` while installing requests by specifying `[use_chardet_on_py3]` extra as follows: ```shell pip install "requests[use_chardet_on_py3]" ``` Python2 still depends upon the `chardet` module. - Requests now supports `idna` 3.x on Python 3. `idna` 2.x will continue to be used on Python 2 installations. ([#5711](https://togithub.com/psf/requests/issues/5711)) **Deprecations** - The `requests[security]` extra has been converted to a no-op install. PyOpenSSL is no longer the recommended secure option for Requests. ([#5867](https://togithub.com/psf/requests/issues/5867)) - Requests has officially dropped support for Python 3.5. ([#5867](https://togithub.com/psf/requests/issues/5867)) ### [`v2.25.1`](https://togithub.com/psf/requests/blob/master/HISTORY.md#2251-2020-12-16) [Compare Source](https://togithub.com/psf/requests/compare/v2.25.0...v2.25.1) **Bugfixes** - Requests now treats `application/json` as `utf8` by default. Resolving inconsistencies between `r.text` and `r.json` output. ([#5673](https://togithub.com/psf/requests/issues/5673)) **Dependencies** - Requests now supports chardet v4.x. ### [`v2.25.0`](https://togithub.com/psf/requests/blob/master/HISTORY.md#2250-2020-11-11) [Compare Source](https://togithub.com/psf/requests/compare/v2.24.0...v2.25.0) **Improvements** - Added support for NETRC environment variable. ([#5643](https://togithub.com/psf/requests/issues/5643)) **Dependencies** - Requests now supports urllib3 v1.26. **Deprecations** - Requests v2.25.x will be the last release series with support for Python 3.5. - The `requests[security]` extra is officially deprecated and will be removed in Requests v2.26.0. ### [`v2.24.0`](https://togithub.com/psf/requests/blob/master/HISTORY.md#2240-2020-06-17) [Compare Source](https://togithub.com/psf/requests/compare/v2.23.0...v2.24.0) **Improvements** - pyOpenSSL TLS implementation is now only used if Python either doesn't have an `ssl` module or doesn't support SNI. Previously pyOpenSSL was unconditionally used if available. This applies even if pyOpenSSL is installed via the `requests[security]` extra ([#5443](https://togithub.com/psf/requests/issues/5443)) - Redirect resolution should now only occur when `allow_redirects` is True. ([#5492](https://togithub.com/psf/requests/issues/5492)) - No longer perform unnecessary Content-Length calculation for requests that won't use it. ([#5496](https://togithub.com/psf/requests/issues/5496)) ### [`v2.23.0`](https://togithub.com/psf/requests/blob/master/HISTORY.md#2230-2020-02-19) [Compare Source](https://togithub.com/psf/requests/compare/v2.22.0...v2.23.0) **Improvements** - Remove defunct reference to `prefetch` in Session `__attrs__` ([#5110](https://togithub.com/psf/requests/issues/5110)) **Bugfixes** - Requests no longer outputs password in basic auth usage warning. ([#5099](https://togithub.com/psf/requests/issues/5099)) **Dependencies** - Pinning for `chardet` and `idna` now uses major version instead of minor. This hopefully reduces the need for releases every time a dependency is updated. ### [`v2.22.0`](https://togithub.com/psf/requests/blob/master/HISTORY.md#2220-2019-05-15) [Compare Source](https://togithub.com/psf/requests/compare/v2.21.0...v2.22.0) **Dependencies** - Requests now supports urllib3 v1.25.2. (note: 1.25.0 and 1.25.1 are incompatible) **Deprecations** - Requests has officially stopped support for Python 3.4. ### [`v2.21.0`](https://togithub.com/psf/requests/blob/master/HISTORY.md#2210-2018-12-10) [Compare Source](https://togithub.com/psf/requests/compare/v2.20.1...v2.21.0) **Dependencies** - Requests now supports idna v2.8. ### [`v2.20.1`](https://togithub.com/psf/requests/blob/master/HISTORY.md#2201-2018-11-08) [Compare Source](https://togithub.com/psf/requests/compare/v2.20.0...v2.20.1) **Bugfixes** - Fixed bug with unintended Authorization header stripping for redirects using default ports (http/80, https/443). ### [`v2.20.0`](https://togithub.com/psf/requests/blob/master/HISTORY.md#2200-2018-10-18) [Compare Source](https://togithub.com/psf/requests/compare/v2.19.1...v2.20.0) **Bugfixes** - Content-Type header parsing is now case-insensitive (e.g. charset=utf8 v Charset=utf8). - Fixed exception leak where certain redirect urls would raise uncaught urllib3 exceptions. - Requests removes Authorization header from requests redirected from https to http on the same hostname. (CVE-2018-18074) - `should_bypass_proxies` now handles URIs without hostnames (e.g. files). **Dependencies** - Requests now supports urllib3 v1.24. **Deprecations** - Requests has officially stopped support for Python 2.6.Configuration
📅 Schedule: At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about these updates again.
This PR has been generated by WhiteSource Renovate. View repository job log here.