Follow our blog, Twitter, or GitHub to see future announcements.
This represents a significant amount of work, and there are quite a few changes. Be sure to carefully read the changelog, and use tools such as pip-compile and Dependabot to pin your dependencies and control your updates.
Deprecate :func:utils.format_string, use :class:string.Template
instead. :issue:1756
Deprecate :func:utils.bind_arguments and
:func:utils.validate_arguments, use :meth:Signature.bind and
:func:inspect.signature instead. :issue:1757
Deprecate :class:utils.HTMLBuilder. :issue:1761
Deprecate :func:utils.escape and :func:utils.unescape, use
MarkupSafe instead. :issue:1758
Deprecate the undocumented python -m werkzeug.serving CLI.
:issue:1834
Deprecate the environ["werkzeug.server.shutdown"] function
that is available when running the development server. :issue:1752
Deprecate the useragents module and the built-in user agent
parser. Use a dedicated parser library instead by subclassing
user_agent.UserAgent and setting Request.user_agent_class.
:issue:2078
Remove the unused, internal posixemulation module. :issue:1759
All datetime values are timezone-aware with
tzinfo=timezone.utc. This applies to anything using
http.parse_date: Request.date, .if_modified_since,
.if_unmodified_since; Response.date, .expires,
.last_modified, .retry_after; parse_if_range_header, and
IfRange.date. When comparing values, the other values must also
be aware, or these values must be made naive. When passing
parameters or setting attributes, naive values are still assumed to
be in UTC. :pr:2040
Merge all request and response wrapper mixin code into single
Request and Response classes. Using the mixin classes is no
longer necessary and will show a deprecation warning. Checking
isinstance or issubclass against BaseRequest and
BaseResponse will show a deprecation warning and check against
Request or Response instead. :issue:1963
JSON support no longer uses simplejson if it's installed. To use
another JSON module, override Request.json_module and
Response.json_module. :pr:1766
Response.get_json() no longer caches the result, and the
cache parameter is removed. :issue:1698
Response.freeze() generates an ETag header if one is not
set. The no_etag parameter (which usually wasn't visible
anyway) is no longer used. :issue:1963
Add a url_scheme argument to :meth:~routing.MapAdapter.build
to override the bound scheme. :pr:1721
Passing an empty list as a query string parameter to build()
won't append an unnecessary ?. Also drop any number of None
... (truncated)
Commits
af160e0 Merge pull request #2111 from pallets/release-2.0.0
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot]
commented
3 years ago
Bumps werkzeug from 1.0.1 to 2.0.0.
Release notes
Sourced from werkzeug's releases.
Changelog
Sourced from werkzeug's changelog.
... (truncated)
Commits
af160e0Merge pull request #2111 from pallets/release-2.0.0c987e02release version 2.0.0d6a0f17update requirements13b8520Merge pull request #2110 from pallets/pre-commit-ci-schedule264446fupdate pre-commit monthlyd6f89eeMerge pull request #2109 from pallets/more-typing2dfb6dcenable more mypy checks30ce9eeMerge pull request #2108 from pallets/pre-commit-ci-update-config6212134[pre-commit.ci] pre-commit autoupdate4970558Merge pull request #2107 from TrizlyBear/patch-1Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)