Bump requests from 2.22.0 to 2.27.1

dependabot[bot] commented 2 years ago

Bumps requests from 2.22.0 to 2.27.1.

Release notes

v2.27.1

2.27.1 (2022-01-05)

Bugfixes

Fixed parsing issue that resulted in the auth component being dropped from proxy URLs. (#6028)

Full Changelog: https://github.com/psf/requests/blob/v2.27.1/HISTORY.md#2271-2022-01-05

v2.27.0

2.27.0 (2022-01-03)

Improvements

Officially added support for Python 3.10. (#5928)

Added a requests.exceptions.JSONDecodeError to unify JSON exceptions between Python 2 and 3. This gets raised in the response.json() method, and is backwards compatible as it inherits from previously thrown exceptions. Can be caught from requests.exceptions.RequestException as well. (#5856)

Improved error text for misnamed InvalidSchema and MissingSchema exceptions. This is a temporary fix until exceptions can be renamed (Schema->Scheme). (#6017)

Improved proxy parsing for proxy URLs missing a scheme. This will address recent changes to urlparse in Python 3.9+. (#5917)

Bugfixes

Fixed defect in extract_zipped_paths which could result in an infinite loop for some paths. (#5851)

Fixed handling for AttributeError when calculating length of files obtained by Tarfile.extractfile(). (#5239)

Fixed urllib3 exception leak, wrapping urllib3.exceptions.InvalidHeader with requests.exceptions.InvalidHeader. (#5914)

Fixed bug where two Host headers were sent for chunked requests. (#5391)

Fixed regression in Requests 2.26.0 where Proxy-Authorization was incorrectly stripped from all requests sent with Session.send. (#5924)

Fixed performance regression in 2.26.0 for hosts with a large number of proxies available in the environment. (#5924)

... (truncated)

Changelog

Sourced from requests's changelog.

2.27.1 (2022-01-05)

Bugfixes

Fixed parsing issue that resulted in the auth component being dropped from proxy URLs. (#6028)

2.27.0 (2022-01-03)

Improvements

Officially added support for Python 3.10. (#5928)

Added a requests.exceptions.JSONDecodeError to unify JSON exceptions between Python 2 and 3. This gets raised in the response.json() method, and is backwards compatible as it inherits from previously thrown exceptions. Can be caught from requests.exceptions.RequestException as well. (#5856)

Improved error text for misnamed InvalidSchema and MissingSchema exceptions. This is a temporary fix until exceptions can be renamed (Schema->Scheme). (#6017)

Improved proxy parsing for proxy URLs missing a scheme. This will address recent changes to urlparse in Python 3.9+. (#5917)

Bugfixes

Fixed defect in extract_zipped_paths which could result in an infinite loop for some paths. (#5851)

Fixed handling for AttributeError when calculating length of files obtained by Tarfile.extractfile(). (#5239)

Fixed urllib3 exception leak, wrapping urllib3.exceptions.InvalidHeader with requests.exceptions.InvalidHeader. (#5914)

Fixed bug where two Host headers were sent for chunked requests. (#5391)

Fixed regression in Requests 2.26.0 where Proxy-Authorization was incorrectly stripped from all requests sent with Session.send. (#5924)

Fixed performance regression in 2.26.0 for hosts with a large number of proxies available in the environment. (#5924)

Fixed idna exception leak, wrapping UnicodeError with requests.exceptions.InvalidURL for URLs with a leading dot (.) in the domain. (#5414)

... (truncated)

Commits

31a89d9 v2.27.1
8fa9724 Merge pull request #6028 from nateprewitt/prox_auth_fix
38f3f8e Fix auth parsing for proxies
0192aac v2.27.0
e50dc12 Fix doc link
17e6e27 General cleanup for 2.27.0
ab38e2c Make the data vs json parameters more clear (#5382)
77d1e9a Merge pull request #5894 from dbaxa/do-not-re-build-proxies-when-proxies-have...
b0829a8 Merge pull request #6020 from nateprewitt/pypy_37
28d537d Merge pull request #5917 from nateprewitt/proxy_scheme_unknown_fix
Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

> **Note** > Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

guide-bot[bot] commented 2 years ago

Thanks for opening this Pull Request! We need you to:

Fill out the description.

Action: Edit description and replace <!- ... --> with actual values.

sonarcloud[bot] commented 2 years ago

Kudos, SonarCloud Quality Gate passed!

0 Bugs
0 Vulnerabilities
0 Security Hotspots
0 Code Smells

No Coverage information
0.0% Duplication

dependabot[bot] commented 2 years ago

A newer version of requests exists, but since this PR has been edited by someone other than Dependabot I haven't updated it. You'll get a PR for the updated version as normal once this PR is merged.

sonarcloud[bot] commented 2 years ago

Kudos, SonarCloud Quality Gate passed!

0 Bugs
0 Vulnerabilities
0 Security Hotspots
0 Code Smells