kbase / relation_engine

Repository containing the KBase Relation Engine API, specs, and other related files.
MIT License
3 stars 11 forks source link

Bump flask from 1.0.2 to 2.1.2 #145

Closed dependabot[bot] closed 2 years ago

dependabot[bot] commented 2 years ago

Bumps flask from 1.0.2 to 2.1.2.

Release notes

Sourced from flask's releases.

2.1.2

This is a fix release for the 2.1.0 feature release.

2.1.1

This is a fix release for the 2.1.0 feature release.

2.1.0

This is a feature release, which includes new features and removes previously deprecated features. The 2.1.x branch is now the supported bugfix branch, the 2.0.x branch will become a tag marking the end of support for that branch. We encourage everyone to upgrade, and to use a tool such as pip-tools to pin all dependencies and control upgrades.

We also encourage upgrading to the latest versions of the other Pallets projects as well.

2.0.3

2.0.2

2.0.1

2.0.0

New major versions of all the core Pallets libraries, including Flask 2.0, have been released! :tada:

This represents a significant amount of work, and there are quite a few changes. Be sure to carefully read the changelog, and use tools such as pip-compile and Dependabot to pin your dependencies and control your updates.

2.0.0rc2

2.0.0rc1

... (truncated)

Changelog

Sourced from flask's changelog.

Version 2.1.2

Released 2022-04-28

  • Fix type annotation for json.loads, it accepts str or bytes. :issue:4519
  • The --cert and --key options on flask run can be given in either order. :issue:4459

Version 2.1.1

Released on 2022-03-30

  • Set the minimum required version of importlib_metadata to 3.6.0, which is required on Python < 3.10. :issue:4502

Version 2.1.0

Released 2022-03-28

  • Drop support for Python 3.6. :pr:4335

  • Update Click dependency to >= 8.0. :pr:4008

  • Remove previously deprecated code. :pr:4337

    • The CLI does not pass script_info to app factory functions.
    • config.from_json is replaced by config.from_file(name, load=json.load).
    • json functions no longer take an encoding parameter.
    • safe_join is removed, use werkzeug.utils.safe_join instead.
    • total_seconds is removed, use timedelta.total_seconds instead.
    • The same blueprint cannot be registered with the same name. Use name= when registering to specify a unique name.
    • The test client's as_tuple parameter is removed. Use response.request.environ instead. :pr:4417
  • Some parameters in send_file and send_from_directory were renamed in 2.0. The deprecation period for the old names is extended to 2.2. Be sure to test with deprecation warnings visible.

    • attachment_filename is renamed to download_name.
    • cache_timeout is renamed to max_age.
    • add_etags is renamed to etag.
    • filename is renamed to path.

... (truncated)

Commits
  • 50374e3 Merge pull request #4558 from pallets/release-2.1.2
  • 7b28a90 release version 2.1.2
  • a0bb10b Merge pull request #4555 from pallets/pytest_raises_cleanup
  • ef6c2b9 clean up pytest.raises tests
  • ef7d01f update requirements
  • ff6290d Merge pull request #4551 from bbayles/patch-1
  • 3fd24c1 Fix copy/paste error in wsgi-standalone.rst
  • c395b13 update requirements
  • 2ec1193 Merge pull request #4544 from bebleo/mark_run_cert_option_eager
  • 5050a18 evaluate --cert before --key
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)