dependabot-preview[bot]
commented
5 years ago Superseded by #114.
Closed dependabot-preview[bot] closed 5 years ago
dependabot-preview[bot]
commented
5 years ago Superseded by #114.
Bumps urllib3 from 1.24.2 to 1.25.1.
Release notes
*Sourced from [urllib3's releases](https://github.com/urllib3/urllib3/releases).* > ## 1.25.1 > * Add support for Google's ``Brotli`` package. (Pull [#1572](https://github-redirect.dependabot.com/urllib3/urllib3/issues/1572), Pull [#1579](https://github-redirect.dependabot.com/urllib3/urllib3/issues/1579)) > * Upgrade bundled rfc3986 to v1.3.1 (Pull [#1578](https://github-redirect.dependabot.com/urllib3/urllib3/issues/1578)) > > ## 1.25 > Release: 1.25Changelog
*Sourced from [urllib3's changelog](https://github.com/urllib3/urllib3/blob/master/CHANGES.rst).* > 1.25.1 (2019-04-24) > =================== > > - Add support for Google's `Brotli` package. (Pull [\#1572](https://github.com/urllib3/urllib3/issues/\1572), Pull [\#1579](https://github.com/urllib3/urllib3/issues/\1579)) > - Upgrade bundled rfc3986 to v1.3.1 (Pull [\#1578](https://github.com/urllib3/urllib3/issues/\1578)) > > 1.25 (2019-04-22) > ================= > > - Require and validate certificates by default when using HTTPS (Pull [\#1507](https://github.com/urllib3/urllib3/issues/\1507)) > - Upgraded `urllib3.utils.parse_url()` to be RFC 3986 compliant. (Pull [\#1487](https://github.com/urllib3/urllib3/issues/\1487)) > - Added support for `key_password` for `HTTPSConnectionPool` to use encrypted `key_file` without creating your own `SSLContext` object. (Pull [\#1489](https://github.com/urllib3/urllib3/issues/\1489)) > - Add TLSv1.3 support to CPython, pyOpenSSL, and SecureTransport `SSLContext` implementations. (Pull [\#1496](https://github.com/urllib3/urllib3/issues/\1496)) > - Switched the default multipart header encoder from RFC 2231 to HTML 5 working draft. (Issue [\#303](https://github.com/urllib3/urllib3/issues/\303), PR [\#1492](https://github.com/urllib3/urllib3/issues/\1492)) > - Fixed issue where OpenSSL would block if an encrypted client private key was given and no password was given. Instead an `SSLError` is raised. (Pull [\#1489](https://github.com/urllib3/urllib3/issues/\1489)) > - Added support for Brotli content encoding. It is enabled automatically if `brotlipy` package is installed which can be requested with `urllib3[brotli]` extra. (Pull [\#1532](https://github.com/urllib3/urllib3/issues/\1532)) > - Drop ciphers using DSS key exchange from default TLS cipher suites. Improve default ciphers when using SecureTransport. (Pull [\#1496](https://github.com/urllib3/urllib3/issues/\1496)) > - Implemented a more efficient `HTTPResponse.__iter__()` method. (Issue [\#1483](https://github.com/urllib3/urllib3/issues/\1483))Commits
- [`85e7798`](https://github.com/urllib3/urllib3/commit/85e7798378fe1eda5c7425c0141c045974bd976f) Release 1.25.1 ([#1581](https://github-redirect.dependabot.com/urllib3/urllib3/issues/1581)) - [`64e413f`](https://github.com/urllib3/urllib3/commit/64e413f1b2fef86a150ae747f00aab0e2be8e59c) Add first-class support for Brotli package ([#1579](https://github-redirect.dependabot.com/urllib3/urllib3/issues/1579)) - [`ff8f721`](https://github.com/urllib3/urllib3/commit/ff8f7219d98a4f939260020244d0769bef81b305) Upgrade rfc3986 to v1.3.1 ([#1578](https://github-redirect.dependabot.com/urllib3/urllib3/issues/1578)) - [`d7ece60`](https://github.com/urllib3/urllib3/commit/d7ece604359520f1c80c0b28ce711244640ab907) Change deploy stage to have it's own job and not run unit tests ([#1574](https://github-redirect.dependabot.com/urllib3/urllib3/issues/1574)) - [`1e46888`](https://github.com/urllib3/urllib3/commit/1e468883a03491c806fb1a55ace17da82582c17a) Add integration tests for Google's Brotli package ([#1573](https://github-redirect.dependabot.com/urllib3/urllib3/issues/1573)) - [`ecb1c7a`](https://github.com/urllib3/urllib3/commit/ecb1c7a2d5862c3728f01bca9d21809e953654fa) Add compatibility with Google's 'Brotli' package ([#1572](https://github-redirect.dependabot.com/urllib3/urllib3/issues/1572)) - [`0144514`](https://github.com/urllib3/urllib3/commit/0144514d1b8f0d4980bd95c59b6af2cd1874482c) Restore dev version ([#1570](https://github-redirect.dependabot.com/urllib3/urllib3/issues/1570)) - [`c3157af`](https://github.com/urllib3/urllib3/commit/c3157af5e3b272d3fbffef23ee6215a229f8c61f) Release 1.25 ([#1568](https://github-redirect.dependabot.com/urllib3/urllib3/issues/1568)) - [`bbeeae2`](https://github.com/urllib3/urllib3/commit/bbeeae20cc9af5f9c833da8d35a95a42fad8393e) Apply lowercasing before IDNA-encoding ([#1569](https://github-redirect.dependabot.com/urllib3/urllib3/issues/1569)) - [`5d52370`](https://github.com/urllib3/urllib3/commit/5d523706c7b03f947dc50a7e783758a2bfff0532) Use rfc3986.validator.Validator for parse_url ([#1531](https://github-redirect.dependabot.com/urllib3/urllib3/issues/1531)) - Additional commits viewable in [compare view](https://github.com/urllib3/urllib3/compare/1.24.2...1.25.1)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot ignore this [patch|minor|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Automerge options (never/patch/minor, and dev/runtime dependencies) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired) Finally, you can contact us by mentioning @dependabot.