Bump untangle from 1.1.1 to 1.2.1

[dependabot[bot]]

Bumps untangle from 1.1.1 to 1.2.1.

Release notes

Sourced from untangle's releases.

1.2.1

Bugfixes

• (SECURITY) Use defusedxml to prevent external entity exploits by @​stchris in stchris/untangle#94

Full Changelog: https://github.com/stchris/untangle/compare/1.2.0...1.2.1

1.2.0

Major changes

• (SECURITY) Prevent XML SAX vulnerability: External Entities injection (#60)
• support for python keywords as element names (#43)
• support Element truthiness on Python 3 (#68)
• dropped support for Python 3.4-3.6 and pypy, untangle currently support Python 3.7-3.10
• fixed setup.py warning (#77)

Development related changes

• dropped support for Python 2.6, 3.3
• formatted code with black
• flake8 linter enforced in CI
• main is now the default branch
• switch to Github Actions
• switch to poetry and pytest

Changes by PRs

• adding trailing underscore for python keywords by @​reverbc in stchris/untangle#43
• support 'in' and 'not in' operator by @​reverbc in stchris/untangle#40
• Make hasattribute work with 3.6 by @​CarlosSolrac in stchris/untangle#57
• Added equality tests for #63 by @​stchris in stchris/untangle#67
• Make untangle available from conda-forge by @​HTenkanen in stchris/untangle#75
• Make main the default branch by @​stchris in stchris/untangle#81
• Github Actions for CI by @​stchris in stchris/untangle#84
• Release to testpypi by @​stchris in stchris/untangle#85
• Remove Python versions mentioned in docs by @​stchris in stchris/untangle#86
• Fix simple typo: addded -> added by @​timgates42 in stchris/untangle#71
• Remove duplicated tests module by @​stchris in stchris/untangle#88
• Add a test with an unicode element name by @​stchris in stchris/untangle#89
• Disable feature_external_ges by @​stchris in stchris/untangle#90
• Updating pip & Suggestion for better doc in parse method by @​domi877 in stchris/untangle#76
• Make classifiers a list not a tuple by @​juliangilbey in stchris/untangle#77
• Support Element truthiness on Python 3 by @​davidjb in stchris/untangle#68
• Prepare 1.2.0 release by @​stchris in stchris/untangle#91

New Contributors

• @​reverbc made their first contribution in stchris/untangle#43
• @​CarlosSolrac made their first contribution in stchris/untangle#57
• @​HTenkanen made their first contribution in stchris/untangle#75
• @​timgates42 made their first contribution in stchris/untangle#71
• @​domi877 made their first contribution in stchris/untangle#76
• @​juliangilbey made their first contribution in stchris/untangle#77
• @​davidjb made their first contribution in stchris/untangle#68

... (truncated)

Changelog

Sourced from untangle's changelog.

1.2.1

• (SECURITY) Use defusedxml to prevent XML SAX vulnerabilities (#94)

1.2.0

• (SECURITY) Prevent XML SAX vulnerability: External Entities injection (#60)

• support for python keywords as element names (#43)

• support Element truthiness on Python 3 (#68)

• dropped support for Python 3.4-3.6 and pypy, untangle currently support Python 3.7-3.10

• fixed setup.py warning (#77)

• dropped support for Python 2.6, 3.3

• formatted code with black

• flake8 linter enforced in CI

• main is now the default branch

• switch to Github Actions

• switch to poetry and pytest

Commits

• e988ee2 Merge pull request #95 from stchris/release-1.2.1
• 06bd035 Prepare 1.2.1 release
• 6f2c105 Use defusedxml to prevent external entity exploits (#94)
• 42e4b3a Merge pull request #91 from stchris/prepare-1.2.0
• 3b303a7 Prepare 1.2.0 release
• f0370dc Merge pull request #68 from davidjb/truthiness
• b7e96f3 Support Element truthiness on Python 3
• bfa52f7 Merge pull request #77 from juliangilbey/fix-setup-classifiers
• ad6b529 Merge branch 'main' into fix-setup-classifiers
• 858354b Merge pull request #76 from domi877/patch-1
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/TOTON95/ros_pyparrot/network/alerts).