firework / deployer

0 stars 4 forks source link

Bump guzzlehttp/guzzle from 6.2.3 to 6.5.7 #100

Closed dependabot[bot] closed 2 years ago

dependabot[bot] commented 2 years ago

Bumps guzzlehttp/guzzle from 6.2.3 to 6.5.7.

Release notes

Sourced from guzzlehttp/guzzle's releases.

Release 6.5.7

See change log for changes.

Release 6.5.6

See change log for changes.

6.5.5

No release notes provided.

6.5.4

No release notes provided.

6.5.3

No release notes provided.

6.5.2

  • idn_to_ascii() fix for old PHP versions #2489

6.5.1

  • Better defaults for PHP installations with old ICU lib #2454
  • IDN support for redirects #2424

6.5.0

No release notes provided.

6.4.1

No release notes provided.

6.3.3

No release notes provided.

6.3.2

  • Bug fix: Parsing 0 epoch expiry times in cookies #2014
  • Improvement: Better ConnectException detection #2012
  • Bug fix: Malformed domain that contains a "/" #1999
  • Bug fix: Undefined offset when a cookie has no first key-value pair #1998
  • Improvement: Support PHPUnit 6 #1953
  • Bug fix: Support empty headers #1915
  • Bug fix: Ignore case during header modifications #1916
  • Minor code cleanups, documentation fixes and clarifications.

6.3.0

  • Feature: force IP resolution (ipv4 or ipv6) #1608, #1659
  • Improvement: Don't include summary in exception message when body is empty #1621
  • Improvement: Handle on_headers option in MockHandler #1580
  • Improvement: Added SUSE Linux CA path #1609
  • Improvement: Use class reference for getting the name of the class instead of using hardcoded strings #1641
  • Feature: Added read_timeout option #1611
  • Bug fix: PHP 7.x fixes #1685, #1686, #1811

... (truncated)

Changelog

Sourced from guzzlehttp/guzzle's changelog.

6.5.7 - 2022-06-09

  • Fix failure to strip Authorization header on HTTP downgrade
  • Fix failure to strip the Cookie header on change in host or HTTP downgrade

6.5.6 - 2022-05-25

  • Fix cross-domain cookie leakage

6.5.5 - 2020-06-16

  • Unpin version constraint for symfony/polyfill-intl-idn #2678

6.5.4 - 2020-05-25

  • Fix various intl icu issues #2626

6.5.3 - 2020-04-18

  • Use Symfony intl-idn polyfill #2550
  • Remove use of internal functions #2548

6.5.2 - 2019-12-23

  • idn_to_ascii() fix for old PHP versions #2489

6.5.1 - 2019-12-21

  • Better defaults for PHP installations with old ICU lib #2454
  • IDN support for redirects #2424

6.5.0 - 2019-12-07

  • Improvement: Added support for reset internal queue in MockHandler. #2143
  • Improvement: Added support to pass arbitrary options to curl_multi_init. #2287
  • Fix: Gracefully handle passing null to the header option. #2132
  • Fix: RetryMiddleware did not do exponential delay between retries due unit mismatch. #2132 Previously, RetryMiddleware would sleep for 1 millisecond, then 2 milliseconds, then 4 milliseconds. After this change, RetryMiddleware will sleep for 1 second, then 2 seconds, then 4 seconds. Middleware::retry() accepts a second callback parameter to override the default timeouts if needed.
  • Fix: Prevent undefined offset when using array for ssl_key options. #2348
  • Deprecated ClientInterface::VERSION

6.4.1 - 2019-10-23

  • No guzzle.phar was created in 6.4.0 due expired API token. This release will fix that
  • Added parent::__construct() to FileCookieJar and SessionCookieJar

6.4.0 - 2019-10-23

... (truncated)

Commits


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/firework/deployer/network/alerts).
dependabot[bot] commented 2 years ago

Superseded by #101.