LDO-CERT / orochi

The Volatility Collaborative GUI
MIT License
227 stars 19 forks source link

Bump whitenoise from 6.7.0 to 6.8.1 in /requirements #1121

Closed dependabot[bot] closed 3 weeks ago

dependabot[bot] commented 3 weeks ago

Bumps whitenoise from 6.7.0 to 6.8.1.

Changelog

Sourced from whitenoise's changelog.

6.8.1 (2024-10-28)

  • Raise any errors from threads in the whitenoise.compress command.

    Regression in 6.8.0. Thanks to Tom Grainger for the spotting this with a comment on PR [#484](https://github.com/evansd/whitenoise/issues/484) <https://github.com/evansd/whitenoise/pull/484#discussion_r1818989096>__.

6.8.0 (2024-10-28)

  • Drop Django 3.2 to 4.1 support.

  • Drop Python 3.8 support.

  • Support Python 3.13.

  • Fix a bug introduced in version 6.0.0 where Range requests could lead to database connection errors in other requests.

    Thanks to Per Myren for the detailed investigation and fix in PR [#612](https://github.com/evansd/whitenoise/issues/612) <https://github.com/evansd/whitenoise/pull/612>__.

  • Use Django’s |FORCE_SCRIPT_NAME|__ setting correctly. This reverts a change from version 5.3.0 that added a call to Django’s |get_script_prefix() method|__ outside of the request-response cycle.

    .. |FORCE_SCRIPT_NAME| replace:: FORCE_SCRIPT_NAME __ https://docs.djangoproject.com/en/stable/ref/settings/#std:setting-FORCE_SCRIPT_NAME

    .. |get_script_prefix() method| replace:: get_script_prefix() method __ https://docs.djangoproject.com/en/stable/ref/urlresolvers/#django.urls.get_script_prefix

    Thanks to Sarah Boyce in PR [#486](https://github.com/evansd/whitenoise/issues/486) <https://github.com/evansd/whitenoise/pull/486>__.

  • Compress files using a thread pool. This speeds up the compression step up to four times in benchmarks.

    Thanks to Anthony Ricaud in PR [#484](https://github.com/evansd/whitenoise/issues/484) <https://github.com/evansd/whitenoise/pull/484>__.

Commits


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 3 weeks ago

Superseded by #1123.