Bump the dependencies group with 16 updates

[dependabot[bot]]

Bumps the dependencies group with 16 updates:

Package	From	To
sphinx-autobuild	2021.3.14	2024.2.4
alabaster	0.7.13	0.7.16
certifi	2023.11.17	2024.2.2
charset-normalizer	3.2.0	3.3.2
docutils	0.18.1	0.20.1
idna	3.4	3.6
importlib-metadata	7.0.0	7.0.1
markupsafe	2.1.3	2.1.5
packaging	23.1	23.2
sphinxcontrib-applehelp	1.0.7	1.0.8
sphinxcontrib-devhelp	1.0.5	1.0.6
sphinxcontrib-htmlhelp	2.0.4	2.0.5
sphinxcontrib-qthelp	1.0.6	1.0.7
sphinxcontrib-serializinghtml	1.1.9	1.1.10
tornado	6.3.3	6.4
urllib3	2.1.0	2.2.1

Updates sphinx-autobuild from 2021.3.14 to 2024.2.4

Release notes

Sourced from sphinx-autobuild's releases.

Release 2024.02.04

2024.02.04

Changelog

Sourced from sphinx-autobuild's changelog.

Changelog

unreleased

2024.02.04 - 2024-02-04

• Declare support for Python 3.9, 3.10, 3.11, and 3.12
• Drop support for Python 3.8 and earlier
• Allow passing relative paths to --ignore
• Support all valid sphinx-build options (except Make-mode)
• Fix path issues on Windows
• Differentiate pre-build command failures from Sphinx failures

2021.03.14 - 2021-03-14

• Change output handling for subprocesses.
• Present helpful error message when the subprocesses fail.
• Skip the main sphinx build, if pre-build commands fail.

2020.09.01 - 2020-09-01

• Adopt Calendar Versioning.
• Modernize codebase and require Python 3.6+.
• Directly depend on sphinx.
• Rewritten documentation.
• Invoke sphinx via {sys.executable} -m sphinx instead of sphinx-build.
• Trim dependencies down to only livereload and sphinx.
• Drop custom adapter for watchdog.
• Drop --poll flag.
• Drop single letter variants for flags that were specific to sphinx-autobuild.

0.7.1 - 2017/07/05

• Remove spurious virtualenv directory from published packages.

0.7.0 - 2017/07/05

• Add support for python 3.5, 3.6 and deprecate official python 2.6 support.
• Add __main__ module for python 3.
• Add a --version argument.

... (truncated)

Commits

• 7a8fa12 Release 2024.02.04
• 65d4e06 Update NEWS
• 4d7f939 Add create-release workflow
• 7683185 Apply formatting
• d57f117 Call Sphinx's build directly
• 6f9627e Move main() to the top
• 19541fb Use Sphinx's argument parser
• 88a1098 Rename portn to port_num
• e7c7daa Split pre_build_commands from _get_build_args()
• f62d325 Move _get_ignore_handler
• Additional commits viewable in compare view

Updates alabaster from 0.7.13 to 0.7.16

Release notes

Sourced from alabaster's releases.

Alabaster 0.7.16

Changelog: https://alabaster.readthedocs.io/en/latest/changelog.html

Alabaster 0.7.15

Changelog: https://alabaster.readthedocs.io/en/latest/changelog.html

Alabaster 0.7.14

Changelog: https://alabaster.readthedocs.io/en/latest/changelog.html

Changelog

Sourced from alabaster's changelog.

:git_tag:0.7.16 -- 2024-01-10

• :bug:215 Do not display logo_name if it is set to False.

:git_tag:0.7.15 -- 2024-01-08

• :feature:213 Allow an arbitrary string in the logo_name option.
• :feature:114 Improved sidebar CSS styles.
• :issue:178 Deprecated canonical_url in favor of html_baseurl.
• :bug:200 Removed duplicate <meta name="viewport" ... /> tag.
• :bug:188 Removed underline from whitespace.
• :bug:164 Removed type="text/javascript" from elements.
• :bug:161 Replaced © with unicode decimal code entity [#169](https://github.com/sphinx-doc/alabaster/issues/169);.

:git_tag:0.7.14 -- 2024-01-08

• Dropped support for Python 3.8 and earlier.
• Dropped support for Sphinx 3.3 and earlier.
• :issue:198 Fix horizontal scrolling on mobile.
• :issue:206 Properly support the html_support_sphinx config value.
• :issue:211 Fix the GitHub 'forkme' banner.
• Added alabaster_version_info to the HTML template context.
• Declare support for Python 3.13.
• Adopt the Ruff linter and formatter.
• Migrate from CircleCI to GitHub Actions.

Commits

• f3fdc04 Bump to 0.7.16
• 39cbbc1 Do not display logo_name == 'false'
• d24c4cb Bump to 0.7.15
• 56f12de Include documentation in the sdist
• 2d8d038 Adorn the LICENSE file with a suffix
• a31816c Remove obscenities (#173)
• 166d6e7 Replace © with unicode decimal code entity (#161)
• b9e8d79 Deprecate canonical_url in favor of html_baseurl (#178)
• 848e718 Allow an arbitrary string in the logo_name option (#213)
• 6922a16 Improve sidebar styles
• Additional commits viewable in compare view

Updates certifi from 2023.11.17 to 2024.2.2

Commits

• 45eb611 2024.02.02 (#266)
• 83f4f04 fix leaking certificate issue (#265)
• bbf2208 Bump actions/upload-artifact from 4.2.0 to 4.3.0 (#264)
• 9e837a5 Bump actions/upload-artifact from 4.1.0 to 4.2.0 (#262)
• 05d071b Bump actions/upload-artifact from 4.0.0 to 4.1.0 (#261)
• 2a3088a Bump actions/download-artifact from 4.1.0 to 4.1.1 (#260)
• d4ca66e Bump actions/upload-artifact from 3.1.3 to 4.0.0 (#258)
• 5d15663 Bump actions/download-artifact from 3.0.2 to 4.1.0 (#257)
• d66ef9d Bump actions/setup-python from 4.7.1 to 5.0.0 (#256)
• 8f0d412 Bump pypa/gh-action-pypi-publish from 1.8.10 to 1.8.11 (#255)
• Additional commits viewable in compare view

Updates charset-normalizer from 3.2.0 to 3.3.2

Release notes

Sourced from charset-normalizer's releases.

Version 3.3.2

3.3.2 (2023-10-31)

Fixed

• Unintentional memory usage regression when using large payloads that match several encodings (#376)
• Regression on some detection cases showcased in the documentation (#371)

Added

• Noise (md) probe that identifies malformed Arabic representation due to the presence of letters in isolated form (credit to my wife, thanks!)

Version 3.3.1

3.3.1 (2023-10-22)

Changed

• Optional mypyc compilation upgraded to version 1.6.1 for Python >= 3.8
• Improved the general detection reliability based on reports from the community

Release 3.3.0

3.3.0 (2023-09-30)

Added

• Allow to execute the CLI (e.g. normalizer) through python -m charset_normalizer.cli or python -m charset_normalizer
• Support for 9 forgotten encodings that are supported by Python but unlisted in encoding.aliases as they have no alias (#323)

Removed

• (internal) Redundant utils.is_ascii function and unused function is_private_use_only
• (internal) charset_normalizer.assets is moved inside charset_normalizer.constant

Changed

• (internal) Unicode code blocks in constants are updated using the latest v15.0.0 definition to improve detection
• Optional mypyc compilation upgraded to version 1.5.1 for Python >= 3.8

Fixed

• Unable to properly sort CharsetMatch when both chaos/noise and coherence were close due to an unreachable condition in __lt__ (#350)

Changelog

Sourced from charset-normalizer's changelog.

3.3.2 (2023-10-31)

Fixed

• Unintentional memory usage regression when using large payload that match several encoding (#376)
• Regression on some detection case showcased in the documentation (#371)

Added

• Noise (md) probe that identify malformed arabic representation due to the presence of letters in isolated form (credit to my wife)

3.3.1 (2023-10-22)

Changed

• Optional mypyc compilation upgraded to version 1.6.1 for Python >= 3.8
• Improved the general detection reliability based on reports from the community

3.3.0 (2023-09-30)

Added

• Allow to execute the CLI (e.g. normalizer) through python -m charset_normalizer.cli or python -m charset_normalizer
• Support for 9 forgotten encoding that are supported by Python but unlisted in encoding.aliases as they have no alias (#323)

Removed

• (internal) Redundant utils.is_ascii function and unused function is_private_use_only
• (internal) charset_normalizer.assets is moved inside charset_normalizer.constant

Changed

• (internal) Unicode code blocks in constants are updated using the latest v15.0.0 definition to improve detection
• Optional mypyc compilation upgraded to version 1.5.1 for Python >= 3.8

Fixed

• Unable to properly sort CharsetMatch when both chaos/noise and coherence were close due to an unreachable condition in __lt__ (#350)

Commits

• 79dce48 :bug: Regression on some detection case showcased in the documentation (#371)...
• a4b9b01 Bump github/codeql-action from 2.22.4 to 2.22.5 (#375)
• dcc01cc Bump ossf/scorecard-action from 2.3.0 to 2.3.1 (#374)
• 9cd402c Bump pytest from 7.4.2 to 7.4.3 (#373)
• e274dcc :bug: Fix unintentional memory usage regression when using large payload that...
• 07f3041 :arrow_up: Bump github/codeql-action from 2.22.3 to 2.22.4 (#370)
• 5208644 :bookmark: Release 3.3.1 (#367)
• 66966f1 :sparkle: Improve the detection around some cases (#366)
• 49653a6 :arrow_up: Bump actions/setup-python from 4.7.0 to 4.7.1 (#359)
• f6a66ed :arrow_up: Bump pypa/cibuildwheel from 2.16.0 to 2.16.2 (#361)
• Additional commits viewable in compare view

Updates docutils from 0.18.1 to 0.20.1

Updates idna from 3.4 to 3.6

Changelog

Sourced from idna's changelog.

3.6 (2023-11-25) ++++++++++++++++

• Fix regression to include tests in source distribution.

3.5 (2023-11-24) ++++++++++++++++

• Update to Unicode 15.1.0
• String codec name is now "idna2008" as overriding the system codec "idna" was not working.
• Fix typing error for codec encoding
• "setup.cfg" has been added for this release due to some downstream lack of adherence to PEP 517. Should be removed in a future release so please prepare accordingly.
• Removed reliance on a symlink for the "idna-data" tool to comport with PEP 517 and the Python Packaging User Guide for sdist archives.
• Added security reporting protocol for project

Thanks Jon Ribbens, Diogo Teles Sant'Anna, Wu Tingfeng for contributions to this release.

Commits

• 4ae74cf Release v3.6
• 21888f3 Merge pull request #164 from mgorny/sdist-test
• c5ba76a Include tests in sdist
• 2eb16d3 Merge pull request #162 from kjd/release-3.5
• 89cd061 Release v3.5
• 9fc29cd Merge pull request #161 from kjd/master
• acb8c4a Merge pull request #160 from cclauss/patch-1
• adca101 README.rst: Fix typos
• 33a8f7b Merge pull request #159 from diogoteles08/add-scorecard
• 354a412 Add Scorecard GitHub Action
• Additional commits viewable in compare view

Updates importlib-metadata from 7.0.0 to 7.0.1

Changelog

Sourced from importlib-metadata's changelog.

v7.0.1

Bugfixes

• Corrected the interface for SimplePath to encompass the expectations of locate_file and PackagePath.
• Fixed type annotations to allow strings.

Commits

• f2e84e3 Finalize
• e9e9f77 Merge commit '98196a'
• 98196a7 Fixed type annotations to allow strings.
• f38e051 Add Python 3.13 to compatibility matrix. Ref python/cpython#113174.
• 0c1d32e Inline os.PathLike using future annotations.
• b99c9d6 Refine SimplePath to allow for os.PathLike on input and SimplePath on output.
• 200cf45 Merge pull request #480 from python/bugfix/distribution-simplepath
• ac243d3 Include _meta in docs to fix doc build failures.
• 1b3f272 Corrected the interface for SimplePath to encompass the expectations of locat...
• fc4df51 Rely on read_text and read_bytes from located paths.
• Additional commits viewable in compare view

Updates markupsafe from 2.1.3 to 2.1.5

Release notes

Sourced from markupsafe's releases.

2.1.5

This is a fix release for the 2.1.x feature release branch. It fixes bugs but does not otherwise change behavior and should not result in breaking changes.

Fixes a regression in striptags behavior from 2.14. Spaces are now collapsed correctly.

• Changes: https://markupsafe.palletsprojects.com/en/2.1.x/changes/#version-2-1-5
• Milestone: https://github.com/pallets/markupsafe/milestone/12?closed=1
• PyPI: https://pypi.org/project/MarkupSafe/2.1.5/

2.1.4

This is a fix release for the 2.1.x feature release branch. It fixes bugs but does not otherwise change behavior and should not result in breaking changes.

• Improves performance of the Markup.striptags method for large input.

• Changes: https://markupsafe.palletsprojects.com/en/2.1.x/changes/#version-2-1-4

• Milestone: https://github.com/pallets/markupsafe/milestone/11?closed=1

• PyPI: https://pypi.org/project/MarkupSafe/2.1.4/

Changelog

Sourced from markupsafe's changelog.

Version 2.1.5

Released 2024-02-02

• Fix striptags not collapsing spaces. :issue:417

Version 2.1.4

Released 2024-01-19

• Don't use regular expressions for striptags, avoiding a performance issue. :pr:413

Commits

• fbba4ac release version 2.1.5
• c5fa23b update publish actions
• 60a6512 striptags collapses spaces correctly (#418)
• 0b6bee0 collapse spaces after stripping tags
• 73e6a48 start version 2.1.5
• d704bf4 use pip-compile, dependabot updates (#419)
• 1f82932 use pip-compile, dependabot updates
• 25a640f release version 2.1.4 (#414)
• b7cd652 release version 2.1.4
• 3bead8e update cibuildwheel for 3.12 wheels
• Additional commits viewable in compare view

Updates packaging from 23.1 to 23.2

Release notes

Sourced from packaging's releases.

23.2

What's Changed

• parse_marker should consume the entire source string by @​mwerschy in pypa/packaging#687
• Create a Security Policy file by @​joycebrum in pypa/packaging#695
• Add python 3.12 to CI by @​mayeut in pypa/packaging#689
• Remove URL validation from requirement parsing by @​uranusjr in pypa/packaging#684
• Add types for packaging.version._Version by @​hauntsaninja in pypa/packaging#665
• Add PyPy 3.10 to CI by @​mayeut in pypa/packaging#699
• Remove unused argument in _manylinux._is_compatible by @​mayeut in pypa/packaging#700
• Canonicalize names for requirements comparison by @​astrojuanlu in pypa/packaging#696
• Add platform tag support for LoongArch by @​loongson-zn in pypa/packaging#693
• Ability to install armv7l manylinux/musllinux wheels on armv8l by @​mayeut in pypa/packaging#690
• Include CHANGELOG.rst in sdist by @​astrojuanlu in pypa/packaging#704
• Update pyupgrade to Python 3.7+ by @​fangchenli in pypa/packaging#580
• Fix version pattern pre-releases by @​deathaxe in pypa/packaging#705
• Fix typos found by codespell by @​DimitriPapadopoulos in pypa/packaging#706
• Support enriched metadata by @​brettcannon in pypa/packaging#686
• Correct rST syntax in CHANGELOG.rst by @​atugushev in pypa/packaging#709
• fix: platform tag for GraalPy by @​mayeut in pypa/packaging#711
• Document that this library uses a calendar-based versioning scheme by @​faph in pypa/packaging#717
• fix: Update copyright date for docs by @​garrypolley in pypa/packaging#713
• Bump pip version to avoid known vulnerabilities by @​joycebrum in pypa/packaging#720
• Typing annotations fixed in version.py by @​jolaf in pypa/packaging#723
• parse_{sdist,wheel}_filename: don't raise InvalidVersion by @​SpecLad in pypa/packaging#721
• Fix code blocks in CHANGELOG.md by @​edmorley in pypa/packaging#724

New Contributors

• @​mwerschy made their first contribution in pypa/packaging#687
• @​joycebrum made their first contribution in pypa/packaging#695
• @​astrojuanlu made their first contribution in pypa/packaging#696
• @​loongson-zn made their first contribution in pypa/packaging#693
• @​fangchenli made their first contribution in pypa/packaging#580
• @​deathaxe made their first contribution in pypa/packaging#705
• @​DimitriPapadopoulos made their first contribution in pypa/packaging#706
• @​atugushev made their first contribution in pypa/packaging#709
• @​faph made their first contribution in pypa/packaging#717
• @​garrypolley made their first contribution in pypa/packaging#713
• @​jolaf made their first contribution in pypa/packaging#723
• @​SpecLad made their first contribution in pypa/packaging#721
• @​edmorley made their first contribution in pypa/packaging#724

Full Changelog: https://github.com/pypa/packaging/compare/23.1...23.2

Changelog

Sourced from packaging's changelog.

23.2 - 2023-10-01

* Document calendar-based versioning scheme (:issue:`716`)
* Enforce that the entire marker string is parsed (:issue:`687`)
* Requirement parsing no longer automatically validates the URL (:issue:`120`)
* Canonicalize names for requirements comparison (:issue:`644`)
* Introduce ``metadata.Metadata`` (along with ``metadata.ExceptionGroup`` and ``metadata.InvalidMetadata``; :issue:`570`)
* Introduce the ``validate`` keyword parameter to ``utils.normalize_name()`` (:issue:`570`)
* Introduce ``utils.is_normalized_name()`` (:issue:`570`)
* Make ``utils.parse_sdist_filename()`` and ``utils.parse_wheel_filename()``
  raise ``InvalidSdistFilename`` and ``InvalidWheelFilename``, respectively,
  when the version component of the name is invalid

Commits

• b3a5d7d Bump for release
• d7ce40d Fix code blocks in CHANGELOG.md (#724)
• 524b701 parse_{sdist,wheel}_filename: don't raise InvalidVersion (#721)
• b509bef Typing annotations fixed (#723)
• 0206c39 Bump pip version to avoid known vulnerabilities (#720)
• 7023537 fix: Update copyright date for docs (#713)
• 39786bb Document use of calendar-based versioning scheme (#717)
• c1346df fix: Detect when a platform is 32-bit more accurately (#711)
• 7e68d82 Correct rST syntax in CHANGELOG.rst (#709)
• 61e6efb Support enriched metadata in packaging.metadata (#686)
• Additional commits viewable in compare view

Updates sphinxcontrib-applehelp from 1.0.7 to 1.0.8

Release notes

Sourced from sphinxcontrib-applehelp's releases.

sphinxcontrib-applehelp 1.0.8

Changelog: https://www.sphinx-doc.org/en/master/changes.html

Changelog

Sourced from sphinxcontrib-applehelp's changelog.

Release 1.0.8 (2024-01-13)

• Remove Sphinx as a required dependency, as circular dependencies may cause failure with package managers that expect a directed acyclic graph (DAG) of dependencies.

Commits

• cadf870 Bump to 1.0.8 final
• ccc77c8 Remove Sphinx as a required dependency (#15)
• See full diff in compare view

Updates sphinxcontrib-devhelp from 1.0.5 to 1.0.6

Release notes

Sourced from sphinxcontrib-devhelp's releases.

sphinxcontrib-devhelp 1.0.6

Changelog: https://www.sphinx-doc.org/en/master/changes.html

Changelog

Sourced from sphinxcontrib-devhelp's changelog.

Release 1.0.6 (2024-01-13)

• Remove Sphinx as a required dependency, as circular dependencies may cause failure with package managers that expect a directed acyclic graph (DAG) of dependencies.

Commits

• 1ace65f Bump to 1.0.6 final
• ff26d1f Remove Sphinx as a required dependency (#11)
• 6401cf7 Use Node.findall over Node.traverse (#10)
• See full diff in compare view

Updates sphinxcontrib-htmlhelp from 2.0.4 to 2.0.5

Release notes

Sourced from sphinxcontrib-htmlhelp's releases.

sphinxcontrib-htmlhelp 2.0.5

Changelog: https://www.sphinx-doc.org/en/master/changes.html

Changelog

Sourced from sphinxcontrib-htmlhelp's changelog.

Release 2.0.5 (2024-01-13)

• Remove Sphinx as a required dependency, as circular dependencies may cause failure with package managers that expect a directed acyclic graph (DAG) of dependencies.

Commits

• 244375f Bump to 2.0.5 final
• 25f9218 Remove Sphinx as a required dependency (#18)
• See full diff in compare view

Updates sphinxcontrib-qthelp from 1.0.6 to 1.0.7

Release notes

Sourced from sphinxcontrib-qthelp's releases.

sphinxcontrib-qthelp 1.0.7

Changelog: https://www.sphinx-doc.org/en/master/changes.html

Changelog

Sourced from sphinxcontrib-qthelp's changelog.

Release 1.0.7 (2024-01-13)

• Remove Sphinx as a required dependency, as circular dependencies may cause failure with package managers that expect a directed acyclic graph (DAG) of dependencies.

Commits

• 79f0780 Bump to 1.0.7 final
• b4d64f5 Remove Sphinx as a required dependency (#15)
• See full diff in compare view

Updates sphinxcontrib-serializinghtml from 1.1.9 to 1.1.10

Release notes

Sourced from sphinxcontrib-serializinghtml's releases.

sphinxcontrib-serializinghtml 1.1.10

Changelog: https://www.sphinx-doc.org/en/master/changes.html

Changelog

Sourced from sphinxcontrib-serializinghtml's changelog.

Release 1.1.10 (2024-01-13)

• Remove Sphinx as a required dependency, as circular dependencies may cause failure with package managers that expect a directed acyclic graph (DAG) of dependencies.

Commits

• 941e0e8 Bump to 1.0.10 final
• f0b7604 Remove Sphinx as a required dependency (#10)
• See full diff in compare view

Updates tornado from 6.3.3 to 6.4

Changelog

Sourced from tornado's changelog.

Release notes

.. toctree:: :maxdepth: 2

releases/v6.4.0 releases/v6.3.3 releases/v6.3.2 releases/v6.3.1 releases/v6.3.0 releases/v6.2.0 releases/v6.1.0 releases/v6.0.4 releases/v6.0.3 releases/v6.0.2 releases/v6.0.1 releases/v6.0.0 releases/v5.1.1 releases/v5.1.0 releases/v5.0.2 releases/v5.0.1 releases/v5.0.0 releases/v4.5.3 releases/v4.5.2 releases/v4.5.1 releases/v4.5.0 releases/v4.4.3 releases/v4.4.2 releases/v4.4.1 releases/v4.4.0 releases/v4.3.0 releases/v4.2.1 releases/v4.2.0 releases/v4.1.0 releases/v4.0.2 releases/v4.0.1 releases/v4.0.0 releases/v3.2.2 releases/v3.2.1 releases/v3.2.0 releases/v3.1.1 releases/v3.1.0 releases/v3.0.2 releases/v3.0.1 releases/v3.0.0 releases/v2.4.1 releases/v2.4.0 releases/v2.3.0 releases/v2.2.1

... (truncated)

Commits

• b3f2a4b Merge pull request #3352 from bdarnell/master
• 451419c Set version to 6.4 final
• 5a87723 Merge pull request #3348 from bdarnell/iostream-hostname-test
• 2da0a99 iostream_test: Don't require server-side log on windows
• 06e1a65 iostream_test: Test check_hostname functionality.
• a6dfd70 Merge pull request #3341 from bdarnell/more-utcnow
• c60d80c web,demos: Remove more uses of deprecated datetime utc methods
• 55db80e Merge pull request #3339 from tornadoweb/dependabot/pip/urllib3-1.26.18
• ec59fa0 Merge pull request #3332 from bdarnell/selector-thread-atexit
• dcc6e59 build(deps): bump urllib3 from 1.26.17 to 1.26.18
• Additional commits viewable in compare view

Updates urllib3 from 2.1.0 to 2.2.1

Release notes

Sourced from urllib3's releases.

2.2.1

🚀 urllib3 is fundraising for HTTP/2 support

urllib3 is raising ~$40,000 USD to release HTTP/2 support and ensure long-term sustainable maintenance of the project after a sharp decline in financial support for 2023. If your company or organization uses Python and would benefit from HTTP/2 support in Requests, pip, cloud SDKs, and thousands of other projects please consider contributing financially to ensure HTTP/2 support is developed sustainably and maintained for the long-haul.

Thank you for your support.

Changes

• Fixed issue where InsecureRequestWarning was emitted for HTTPS connections when using Emscripten. (#3331)
• Fixed HTTPConnectionPool.urlopen to stop automatically casting non-proxy headers to HTTPHeaderDict. This change was premature as it did not apply to proxy headers and HTTPHeaderDict does not handle byte header values correctly yet. (#3343)
• Changed ProtocolError to InvalidChunkLength when response terminates before the chunk length is sent. (#2860)
• Changed ProtocolError to be more verbose on incomplete reads with excess content. (#3261)

2.2.0

🖥️ urllib3 now works in the browser

:tada: This release adds experimental support for using urllib3 in the browser with Pyodide! :tada:

Thanks to Joe Marshall (@​joemarshall) for contributing this feature. This change was possible thanks to work done in urllib3 v2.0 to detach our API from http.client. Please report all bugs to the urllib3 issue tracker.

🚀 urllib3 is fundraising for HTTP/2 support

urllib3 is raising ~$40,000 USD to release HTTP/2 support and ensure long-term sustainable maintenance of the project after a sharp decline in financial support for 2023. If your company or organization uses Python and would benefit from HTTP/2 support in Requests, pip, cloud SDKs, and thousands of other projects please consider contributing financially to ensure HTTP/2 support is developed sustainably and maintained for the long-haul.

Thank you for your support.

Changes

• Added support for Emscripten and Pyodide, including streaming support in cross-origin isolated browser environments where threading is enabled. (#2951)
• Added support for HTTPResponse.read1() method. (#3186)
• Added rudimentary support for HTTP/2. (#3284)
• Fixed issue where requests against urls with trailing dots were failing due to SSL errors when using proxy. (#2244)
• Fixed HTTPConnection.proxy_is_verified and HTTPSConnection.proxy_is_verified to be always set to a boolean after connecting to a proxy. It could be None in some cases previously. (#3130)
• Fixed an issue where headers passed in a request with json= would be mutated (#3203)
• Fixed HTTPSConnection.is_verified to be set to False when connecting from a HTTPS proxy to an HTTP target. It was set to True previously. (#3267)
• Fixed handling of new error message from OpenSSL 3.2.0 when configuring an HTTP proxy as HTTPS (#3268)
• Fixed TLS 1.3 post-handshake auth when the server certificate validation is disabled (#3325)

Note for downstream distributors: To run integration tests, you now need to run the tests a second time with the --integration pytest flag. (#3181)

Changelog

Sourced from urllib3's changelog.

2.2.1 (2024-02-16)

• Fixed issue where InsecureRequestWarning was emitted for HTTPS connections when using Emscripten. ([#3331](https://github.com/urllib3/urllib3/issues/3331) <https://github.com/urllib3/urllib3/issues/3331>__)
• Fixed HTTPConnectionPool.urlopen to stop automatically casting non-proxy headers to HTTPHeaderDict. This change was premature as it did not apply to proxy headers and HTTPHeaderDict does not handle byte header values correctly yet. ([#3343](https://github.com/urllib3/urllib3/issues/3343) <https://github.com/urllib3/urllib3/issues/3343>__)
• Changed InvalidChunkLength to ProtocolError when response terminates before the chunk length is sent. ([#2860](https://github.com/urllib3/urllib3/issues/2860) <https://github.com/urllib3/urllib3/issues/2860>__)
• Changed ProtocolError to be more verbose on incomplete reads with excess content. ([#3261](https://github.com/urllib3/urllib3/issues/3261) <https://github.com/urllib3/urllib3/issues/3261>__)

2.2.0 (2024-01-30)

• Added support for Emscripten and Pyodide <https://urllib3.readthedocs.io/en/latest/reference/contrib/emscripten.html>, including streaming support in cross-origin isolated browser environments where threading is enabled. ([#2951](https://github.com/urllib3/urllib3/issues/2951) <https://github.com/urllib3/urllib3/issues/2951>)
• Added support for HTTPResponse.read1() method. ([#3186](https://github.com/urllib3/urllib3/issues/3186) <https://github.com/urllib3/urllib3/issues/3186>__)
• Added rudimentary support for HTTP/2. ([#3284](https://github.com/urllib3/urllib3/issues/3284) <https://github.com/urllib3/urllib3/issues/3284>__)
• Fixed issue where requests against urls with trailing dots were failing due to SSL errors when using proxy. ([#2244](https://github.com/urllib3/urllib3/issues/2244) <https://github.com/urllib3/urllib3/issues/2244>__)
• Fixed HTTPConnection.proxy_is_verified and HTTPSConnection.proxy_is_verified to be always set to a boolean after connecting to a proxy. It could be None in some cases previously. ([#3130](https://github.com/urllib3/urllib3/issues/3130) <https://github.com/urllib3/urllib3/issues/3130>__)
• Fixed an issue where headers passed in a request with json= would be mutated ([#3203](https://github.com/urllib3/urllib3/issues/3203) <https://github.com/urllib3/urllib3/issues/3203>__)
• Fixed HTTPSConnection.is_verified to be set to False when connecting from a HTTPS proxy to an HTTP target. It was set to True previously. ([#3267](https://github.com/urllib3/urllib3/issues/3267) <https://github.com/urllib3/urllib3/issues/3267>__)
• Fixed handling of new error message from OpenSSL 3.2.0 when configuring an HTTP proxy as HTTPS ([#3268](https://github.com/urllib3/urllib3/issues/3268) <https://github.com/urllib3/urllib3/issues/3268>__)
• Fixed TLS 1.3 post-handshake auth when the server certificate validation is disabled ([#3325](https://github.com/urllib3/urllib3/issues/3325) <https://github.com/urllib3/urllib3/issues/3325>__)
• Note for downstream distributors: To run integration tests, you now need to run the tests a second time with the --integration pytest flag. ([#3181](https://github.com/urllib3/urllib3/issues/3181) <https://github.com/urllib3/urllib3/issues/3181>__)

Commits

• 54d6edf Release 2.2.1
• 49b2dda Stop casting request headers to HTTPHeaderDict (#3344)
• e22f651 Fix docstring of retries parameter
• fa54179 Distinguish between truncated and excess content in response (#3273)
• cfe52f9 Fix InsecureRequestWarning for HTTPS Emscripten requests (#3333)
• 25155d7 Ensure no remote connections during testing (#3328)
• 12f9233 Bump cryptography to 42.0.2 and PyOpenSSL to 24.0.0 (#3340)
• 9929d3c Add nox session to start local Pyodide console
• aa8d3dd Fix ssl_version tests for upcoming migration to pytest 8
• 23f2287 Remove TODO about informational responses (