dependabot-preview[bot]
commented
5 years ago Superseded by #113.
Closed dependabot-preview[bot] closed 5 years ago
dependabot-preview[bot]
commented
5 years ago Superseded by #113.
Bumps urllib3 from 1.24.2 to 1.25.
Release notes
*Sourced from [urllib3's releases](https://github.com/urllib3/urllib3/releases).* > ## 1.25 > Release: 1.25Changelog
*Sourced from [urllib3's changelog](https://github.com/urllib3/urllib3/blob/master/CHANGES.rst).* > 1.25 (2019-04-22) > ================= > > - Require and validate certificates by default when using HTTPS (Pull [\#1507](https://github.com/urllib3/urllib3/issues/\1507)) > - Upgraded `urllib3.utils.parse_url()` to be RFC 3986 compliant. (Pull [\#1487](https://github.com/urllib3/urllib3/issues/\1487)) > - Added support for `key_password` for `HTTPSConnectionPool` to use encrypted `key_file` without creating your own `SSLContext` object. (Pull [\#1489](https://github.com/urllib3/urllib3/issues/\1489)) > - Add TLSv1.3 support to CPython, pyOpenSSL, and SecureTransport `SSLContext` implementations. (Pull [\#1496](https://github.com/urllib3/urllib3/issues/\1496)) > - Switched the default multipart header encoder from RFC 2231 to HTML 5 working draft. (Issue [\#303](https://github.com/urllib3/urllib3/issues/\303), PR [\#1492](https://github.com/urllib3/urllib3/issues/\1492)) > - Fixed issue where OpenSSL would block if an encrypted client private key was given and no password was given. Instead an `SSLError` is raised. (Pull [\#1489](https://github.com/urllib3/urllib3/issues/\1489)) > - Added support for Brotli content encoding. It is enabled automatically if `brotlipy` package is installed which can be requested with `urllib3[brotli]` extra. (Pull [\#1532](https://github.com/urllib3/urllib3/issues/\1532)) > - Drop ciphers using DSS key exchange from default TLS cipher suites. Improve default ciphers when using SecureTransport. (Pull [\#1496](https://github.com/urllib3/urllib3/issues/\1496)) > - Implemented a more efficient `HTTPResponse.__iter__()` method. (Issue [\#1483](https://github.com/urllib3/urllib3/issues/\1483))Commits
- [`c3157af`](https://github.com/urllib3/urllib3/commit/c3157af5e3b272d3fbffef23ee6215a229f8c61f) Release 1.25 ([#1568](https://github-redirect.dependabot.com/urllib3/urllib3/issues/1568)) - [`bbeeae2`](https://github.com/urllib3/urllib3/commit/bbeeae20cc9af5f9c833da8d35a95a42fad8393e) Apply lowercasing before IDNA-encoding ([#1569](https://github-redirect.dependabot.com/urllib3/urllib3/issues/1569)) - [`5d52370`](https://github.com/urllib3/urllib3/commit/5d523706c7b03f947dc50a7e783758a2bfff0532) Use rfc3986.validator.Validator for parse_url ([#1531](https://github-redirect.dependabot.com/urllib3/urllib3/issues/1531)) - [`1d3e60e`](https://github.com/urllib3/urllib3/commit/1d3e60e86fce8938845fdc052f47ed9ef3da8859) Update urllib3.contrib.socks documentation ([#1567](https://github-redirect.dependabot.com/urllib3/urllib3/issues/1567)) - [`1ebcbc2`](https://github.com/urllib3/urllib3/commit/1ebcbc2fe6743b3fff9985dc33abe7da2aa93b5d) Apply changes from 1.24.2 release to master ([#1566](https://github-redirect.dependabot.com/urllib3/urllib3/issues/1566)) - [`c427daf`](https://github.com/urllib3/urllib3/commit/c427daf83f1adc71c2a3ced9c0a53ccacb814abd) Remove mercurial files ([#1558](https://github-redirect.dependabot.com/urllib3/urllib3/issues/1558)) - [`46331f9`](https://github.com/urllib3/urllib3/commit/46331f94275a4c3b4c71a358a495b1caeaececa0) Encode field names using HTML5 by default instead of RFC 2231 ([#1492](https://github-redirect.dependabot.com/urllib3/urllib3/issues/1492)) - [`edfd345`](https://github.com/urllib3/urllib3/commit/edfd3450c6ab8a9d6e1ecc441c665b0afd4084ba) Improve CI stability for timeouts and branch coverage ([#1554](https://github-redirect.dependabot.com/urllib3/urllib3/issues/1554)) - [`cbe558b`](https://github.com/urllib3/urllib3/commit/cbe558b11d10f7e456b62bfba9ce142878d35dea) Remove unreachable line within to_input_type() ([#1551](https://github-redirect.dependabot.com/urllib3/urllib3/issues/1551)) - [`6bb3d54`](https://github.com/urllib3/urllib3/commit/6bb3d5416d28af7a60a2637e214178b5ee5d5ad5) Only run downstream tests on release candidate branches ([#1552](https://github-redirect.dependabot.com/urllib3/urllib3/issues/1552)) - Additional commits viewable in [compare view](https://github.com/urllib3/urllib3/compare/1.24.2...1.25)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot ignore this [patch|minor|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Automerge options (never/patch/minor, and dev/runtime dependencies) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired) Finally, you can contact us by mentioning @dependabot.