search

mendersoftware / mender-server

Other
2 stars 10 forks source link

chore: Bump the backend-tests-python-dependencies group across 3 directories with 29 updates #77

Closed dependabot[bot] closed 2 weeks ago

dependabot[bot] commented 2 weeks ago

Bumps the backend-tests-python-dependencies group with 5 updates in the /backend/services/deployments/tests/mock-workflows directory:

Package From To
click 8.1.3 8.1.7
flask 2.2.5 3.0.3
itsdangerous 2.1.2 2.2.0
markupsafe 2.1.2 2.1.5
werkzeug 3.0.3 3.0.4

Bumps the backend-tests-python-dependencies group with 2 updates in the /backend/services/iot-manager/tests directory: docker and requests. Bumps the backend-tests-python-dependencies group with 23 updates in the /backend/tests directory:

Package From To
pymongo 4.6.3 4.10.1
certifi 2024.7.4 2024.8.30
urllib3 2.2.2 2.2.3
requests 2.32.2 2.32.3
idna 3.7 3.10
attrs 23.2.0 24.2.0
boto3 1.34.101 1.35.32
cffi 1.16.0 1.17.1
cryptography 42.0.5 43.0.1
filelock 3.14.0 3.16.1
kubernetes 29.0.0 31.0.0
packaging 24.0 24.1
pillow 10.3.0 10.4.0
pyparsing 3.1.2 3.1.4
pytest 8.1.1 8.3.3
pytest-httpserver 1.0.10 1.1.0
pyyaml 6.0.1 6.0.2
redo 2.0.4 3.0.0
stripe 9.9.0 11.0.0
websockets 12.0 13.1
bravado 9.2.2 11.0.3
minio 7.2.5 7.2.9
redis 5.0.4 5.1.0

Updates click from 8.1.3 to 8.1.7

Release notes

Sourced from click's releases.

8.1.7

This is a fix release for the 8.1.x feature branch.

8.1.6

This is a fix release for the 8.1.x feature branch. If you were having issues with type checking tools like pyright or mypy not accepting uses of Click's decorators, this should fix that.

8.1.5

This is a fix release for the 8.1.x feature branch. This fixes an issue with decorator type annotations that caused type checkers to fail for valid code. There are no runtime behavior changes.

8.1.4

This is a fix release for the 8.1.x feature branch.

Changelog

Sourced from click's changelog.

Version 8.1.7

Released 2023-08-17

  • Fix issue with regex flags in shell completion. :issue:2581
  • Bash version detection issues a warning instead of an error. :issue:2574
  • Fix issue with completion script for Fish shell. :issue:2567

Version 8.1.6

Released 2023-07-18

  • Fix an issue with type hints for @click.group(). :issue:2558

Version 8.1.5

Released 2023-07-13

  • Fix an issue with type hints for @click.command(), @click.option(), and other decorators. Introduce typing tests. :issue:2558

Version 8.1.4

Released 2023-07-06

  • Replace all typing.Dict occurrences to typing.MutableMapping for parameter hints. :issue:2255
  • Improve type hinting for decorators and give all generic types parameters. :issue:2398
  • Fix return value and type signature of shell_completion.add_completion_class function. :pr:2421
  • Bash version detection doesn't fail on Windows. :issue:2461
  • Completion works if there is a dot (.) in the program name. :issue:2166
  • Improve type annotations for pyright type checker. :issue:2268
  • Improve responsiveness of click.clear(). :issue:2284
  • Improve command name detection when using Shiv or PEX. :issue:2332
  • Avoid showing empty lines if command help text is empty. :issue:2368
  • ZSH completion script works when loaded from fpath. :issue:2344.
  • EOFError and KeyboardInterrupt tracebacks are not suppressed when standalone_mode is disabled. :issue:2380
  • @group.command does not fail if the group was created with a custom command_class. :issue:2416
  • multiple=True is allowed for flag options again and does not require

... (truncated)

Commits
  • 874ca2b release version 8.1.7
  • 6e1f6d3 completion(fish): add back ; as line endings in fish script (#2570)
  • a955c77 update fish enabling script
  • 3c1529e add back semicolons in fish script
  • a260ca6 Replace bash shell completion version error with warning (#2576)
  • d9db70c bash version support shows warning instead of error
  • 22b9b1c Fix incorrect passing of flags to re.sub (#2581)
  • d69d210 fix flake8 finding
  • af2da1e Fix incorrect passing of flags to re.sub
  • bb6a872 start version 8.1.7
  • Additional commits viewable in compare view


Updates flask from 2.2.5 to 3.0.3

Release notes

Sourced from flask's releases.

3.0.3

This is a fix release for the 3.0.x feature branch.

PyPI: https://pypi.org/project/Flask/3.0.3/ Changes: https://flask.palletsprojects.com/en/3.0.x/changes/#version-3-0-3 Milestone: https://github.com/pallets/flask/milestone/35?closed=1

  • The default hashlib.sha1 may not be available in FIPS builds. Don't access it at import time so the developer has time to change the default. #5448
  • Don't initialize the cli attribute in the sansio scaffold, but rather in the Flask concrete class. #5270

3.0.2

This is a fix release for the 3.0.x feature release branch. It fixes bugs but does not otherwise change behavior and should not result in breaking changes.

3.0.1

This is a fix release for the 3.0.x feature release branch.

Fixes an issue where using other JSON providers, such as flask-orjson, previously caused loaded session data to have an incorrect format in some cases.

3.0.0

This is a feature release, which includes new features, removes previously deprecated code, and adds new deprecations. The 3.0.x branch is now the supported fix branch, the 2.3.x branch will become a tag marking the end of support for that branch. We encourage everyone to upgrade, and to use a tool such as pip-tools to pin all dependencies and control upgrades. Test with warnings treated as errors to be able to adapt to deprecation warnings early.

2.3.3

This is a fix release for the 2.3.x feature branch.

2.3.2

This is a security fix release for the 2.3.x release branch.

2.3.1

This is a fix release for the 2.3.x release branch.

... (truncated)

Changelog

Sourced from flask's changelog.

Version 3.0.3

Released 2024-04-07

  • The default hashlib.sha1 may not be available in FIPS builds. Don't access it at import time so the developer has time to change the default. :issue:5448
  • Don't initialize the cli attribute in the sansio scaffold, but rather in the Flask concrete class. :pr:5270

Version 3.0.2

Released 2024-02-03

  • Correct type for jinja_loader property. :issue:5388
  • Fix error with --extra-files and --exclude-patterns CLI options. :issue:5391

Version 3.0.1

Released 2024-01-18

  • Correct type for path argument to send_file. :issue:5230
  • Fix a typo in an error message for the flask run --key option. :pr:5344
  • Session data is untagged without relying on the built-in json.loads object_hook. This allows other JSON providers that don't implement that. :issue:5381
  • Address more type findings when using mypy strict mode. :pr:5383

Version 3.0.0

Released 2023-09-30

  • Remove previously deprecated code. :pr:5223
  • Deprecate the __version__ attribute. Use feature detection, or importlib.metadata.version("flask"), instead. :issue:5230
  • Restructure the code such that the Flask (app) and Blueprint classes have Sans-IO bases. :pr:5127
  • Allow self as an argument to url_for. :pr:5264
  • Require Werkzeug >= 3.0.0.

Version 2.3.3

... (truncated)

Commits


Updates itsdangerous from 2.1.2 to 2.2.0

Release notes

Sourced from itsdangerous's releases.

2.2.0

This is a feature release, which includes new features, removes previously deprecated code, and adds new deprecations. The 2.2.x branch is now the supported fix branch, the 2.1.x branch will become a tag marking the end of support for that branch. We encourage everyone to upgrade, and to use a tool such as pip-tools to pin all dependencies and control upgrades. Test with warnings treated as errors to be able to adapt to deprecation warnings early.

Changes: https://itsdangerous.palletsprojects.com/en/2.2.x/changes/#version-2-2-0 Milestone: https://github.com/pallets/itsdangerous/milestone/8?closed=1

  • Drop support for Python 3.7.
  • Use modern packaging metadata with pyproject.toml instead of setup.cfg.
  • Use flit_core instead of setuptools as build backend.
  • Deprecate the __version__ attribute. Use feature detection, or importlib.metadata.version("itsdangerous"), instead.
  • Serializer and the return type of dumps is generic for type checking. By default it is Serializer[str] and dumps returns a str. If a different serializer argument is given, it will try to infer the return type of its dumps method.
  • The default hashlib.sha1 may not be available in FIPS builds. Don't access it at import time so the developer has time to change the default.
Changelog

Sourced from itsdangerous's changelog.

Version 2.2.0

Released 2024-04-16

  • Drop support for Python 3.7. :pr:372
  • Use modern packaging metadata with pyproject.toml instead of setup.cfg. :pr:326
  • Use flit_core instead of setuptools as build backend.
  • Deprecate the __version__ attribute. Use feature detection, or importlib.metadata.version("itsdangerous"), instead. :issue:371
  • Serializer and the return type of dumps is generic for type checking. By default it is Serializer[str] and dumps returns a str. If a different serializer argument is given, it will try to infer the return type of its dumps method. :issue:347
  • The default hashlib.sha1 may not be available in FIPS builds. Don't access it at import time so the developer has time to change the default. :issue:375
Commits


Updates markupsafe from 2.1.2 to 2.1.5

Release notes

Sourced from markupsafe's releases.

2.1.5

This is a fix release for the 2.1.x feature release branch. It fixes bugs but does not otherwise change behavior and should not result in breaking changes.

Fixes a regression in striptags behavior from 2.14. Spaces are now collapsed correctly.

2.1.4

This is a fix release for the 2.1.x feature release branch. It fixes bugs but does not otherwise change behavior and should not result in breaking changes.

2.1.3

This is a fix release for the 2.1.x feature branch.

Changelog

Sourced from markupsafe's changelog.

Version 2.1.5

Released 2024-02-02

  • Fix striptags not collapsing spaces. :issue:417

Version 2.1.4

Released 2024-01-19

  • Don't use regular expressions for striptags, avoiding a performance issue. :pr:413

Version 2.1.3

Released 2023-06-02

  • Implement format_map, casefold, removeprefix, and removesuffix methods. :issue:370
  • Fix static typing for basic str methods on Markup. :issue:358
  • Use Self for annotating return types. :pr:379
Commits


Updates werkzeug from 3.0.3 to 3.0.4

Release notes

Sourced from werkzeug's releases.

3.0.4

This is the Werkzeug 3.0.4 fix release, which fixes bugs but does not otherwise change behavior and should not result in breaking changes.

PyPI: https://pypi.org/project/Werkzeug/3.0.4/ Changes: https://werkzeug.palletsprojects.com/en/3.0.x/changes/#version-3-0-4 Milestone: https://github.com/pallets/werkzeug/milestone/36?closed=1

  • Restore behavior where parsing multipart/x-www-form-urlencoded data with invalid UTF-8 bytes in the body results in no form data parsed rather than a 413 error. #2930
  • Improve parse_options_header performance when parsing unterminated quoted string values. #2904
  • Debugger pin auth is synchronized across threads/processes when tracking failed entries. #2916
  • Dev server handles unexpected SSLEOFError due to issue in Python < 3.13. #2926
  • Debugger pin auth works when the URL already contains a query string. #2918
Changelog

Sourced from werkzeug's changelog.

Version 3.0.4

Released 2024-08-21

  • Restore behavior where parsing multipart/x-www-form-urlencoded data with invalid UTF-8 bytes in the body results in no form data parsed rather than a 413 error. :issue:2930
  • Improve parse_options_header performance when parsing unterminated quoted string values. :issue:2904
  • Debugger pin auth is synchronized across threads/processes when tracking failed entries. :issue:2916
  • Dev server handles unexpected SSLEOFError due to issue in Python < 3.13. :issue:2926
  • Debugger pin auth works when the URL already contains a query string. :issue:2918
Commits
  • b933ccb release version 3.0.4
  • c09de73 debugger works on urls with query string (#2942)
  • 1d1d987 debugger works on urls with query string
  • 32a77a0 treat SSLEOFError as dropped connection (#2941)
  • cf18d03 treat SSLEOFError as dropped connection
  • a1db120 synchronize failed pin entry (#2940)
  • 6504819 synchronize failed pin entry
  • 7abec4b improve parse_options_header performance (#2939)
  • 3a893d2 improve parse_options_header performance
  • 3a52597 restore invalid bytes behavior for form parser (#2938)
  • Additional commits viewable in compare view


Updates docker from 6.1.3 to 7.1.0

Release notes

Sourced from docker's releases.

7.1.0

Upgrade Notes

  • Bumped minimum engine API version to 1.24
  • Bumped default engine API version to 1.44 (Moby 25.0)

Bugfixes

  • Fixed issue with tag parsing when the registry address includes ports that resulted in invalid tag format errors
  • Fixed issue preventing creating new configs (ConfigCollection), which failed with a KeyError due to the name field
  • Fixed an issue due to an update in the requests package breaking docker-py by applying the suggested fix

Miscellaneous

  • Documentation improvements
  • Updated Ruff (linter) and fixed minor linting issues
  • Packaging/CI updates
  • Updated tests
    • Stopped checking for deprecated container and image related fields (Container and ContainerConfig)
    • Updated tests that check NetworkSettings.Networks.<network>.Aliases due to engine changes

What's Changed

New Contributors

Full Changelog: https://github.com/docker/docker-py/compare/7.0.0...7.1.0

... (truncated)

Commits
  • a365202 Merge pull request #3264 from krissetto/rename-env-var-in-release-pipeline
  • 1ab40c8 Fix env var name in release pipeline to match hatch expectations
  • b33088e Merge pull request #3263 from krissetto/fix-release-pipeline
  • 45488ac Fix env var name in release pipeline
  • 20879ec Merge pull request #3262 from krissetto/changelog-7.1.0
  • 4f2a26d Added 7.1.0 changelog
  • 7785ad9 Merge pull request #3257 from felixfontein/requests-hotfix
  • d8e9bcb requests 2.32.0 and 2.32.1 have been yanked.
  • 2a059a9 Extend fix to requests 2.32.2+.
  • e33e0a4 Hotfix for requests 2.32.0.
  • Additional commits viewable in compare view


Updates requests from 2.31.0 to 2.32.3

Release notes

Sourced from requests's releases.

v2.32.3

2.32.3 (2024-05-29)

Bugfixes

  • Fixed bug breaking the ability to specify custom SSLContexts in sub-classes of HTTPAdapter. (#6716)
  • Fixed issue where Requests started failing to run on Python versions compiled without the ssl module. (#6724)

v2.32.2

2.32.2 (2024-05-21)

Deprecations

  • To provide a more stable migration for custom HTTPAdapters impacted by the CVE changes in 2.32.0, we've renamed _get_connection to a new public API, get_connection_with_tls_context. Existing custom HTTPAdapters will need to migrate their code to use this new API. get_connection is considered deprecated in all versions of Requests>=2.32.0.

    A minimal (2-line) example has been provided in the linked PR to ease migration, but we strongly urge users to evaluate if their custom adapter is subject to the same issue described in CVE-2024-35195. (#6710)

v2.32.1

2.32.1 (2024-05-20)

Bugfixes

  • Add missing test certs to the sdist distributed on PyPI.

v2.32.0

2.32.0 (2024-05-20)

🐍 PYCON US 2024 EDITION 🐍

Security

Improvements

  • verify=True now reuses a global SSLContext which should improve request time variance between first and subsequent requests. It should also minimize certificate load time on Windows systems when using a Python version built with OpenSSL 3.x. (#6667)
  • Requests now supports optional use of character detection (chardet or charset_normalizer) when repackaged or vendored.

... (truncated)

Changelog

Sourced from requests's changelog.

2.32.3 (2024-05-29)

Bugfixes

  • Fixed bug breaking the ability to specify custom SSLContexts in sub-classes of HTTPAdapter. (#6716)
  • Fixed issue where Requests started failing to run on Python versions compiled without the ssl module. (#6724)

2.32.2 (2024-05-21)

Deprecations

  • To provide a more stable migration for custom HTTPAdapters impacted by the CVE changes in 2.32.0, we've renamed _get_connection to a new public API, get_connection_with_tls_context. Existing custom HTTPAdapters will need to migrate their code to use this new API. get_connection is considered deprecated in all versions of Requests>=2.32.0.

    A minimal (2-line) example has been provided in the linked PR to ease migration, but we strongly urge users to evaluate if their custom adapter is subject to the same issue described in CVE-2024-35195. (#6710)

2.32.1 (2024-05-20)

Bugfixes

  • Add missing test certs to the sdist distributed on PyPI.

2.32.0 (2024-05-20)

Security

Improvements

  • verify=True now reuses a global SSLContext which should improve request time variance between first and subsequent requests. It should also minimize certificate load time on Windows systems when using a Python version built with OpenSSL 3.x. (#6667)
  • Requests now supports optional use of character detection (chardet or charset_normalizer) when repackaged or vendored. This enables pip and other projects to minimize their vendoring surface area. The Response.text() and apparent_encoding APIs will default to utf-8 if neither library is present. (#6702)

... (truncated)

Commits
  • 0e322af v2.32.3
  • e188799 Don't create default SSLContext if ssl module isn't present (#6724)
  • 145b539 Merge pull request #6716 from sigmavirus24/bug/6715
  • b1d73dd Don't use default SSLContext with custom poolmanager kwargs
  • 6badbac Update HISTORY.md
  • a62a2d3 Allow for overriding of specific pool key params
  • 88dce9d v2.32.2
  • c98e4d1 Merge pull request #6710 from nateprewitt/api_rename
  • 92075b3 Add deprecation warning
  • aa1461b Move _get_connection to get_connection_with_tls_context
  • Additional commits viewable in compare view


Updates pymongo from 4.6.3 to 4.10.1

Release notes

Sourced from pymongo's releases.

PyMongo 4.10.1

Community notes: https://www.mongodb.com/community/forums/t/pymongo-4-10-1-released/299573

PyMongo 4.10.0

Community notes: https://www.mongodb.com/community/forums/t/pymongo-4-10-0-released/299474

PyMongo 4.9.2

  • Fixed a bug where pymongo.asynchronous.mongo_client.AsyncMongoClient could deadlock.
  • Fixed a bug where PyMongo could fail to import on Windows if asyncio is misconfigured.
  • Fixed a bug where pymongo.results.UpdateResult.did_upsert would raise a TypeError.

PyMongo 4.9.1

Community notes: https://www.mongodb.com/community/forums/t/pymongo-4-9-released/297833

PyMongo 4.8.0

Changes in Version 4.8.0

PyMongo 4.8 brings a number of improvements including:

  • The handshake metadata for "os.name" on Windows has been simplified to "Windows" to improve import time.
  • The repr of bson.binary.Binary is now redacted when the subtype is SENSITIVE_SUBTYPE(8).
  • Secure Software Development Life Cycle automation for release process. GitHub Releases now include a Software Bill of Materials, and signature files corresponding to the distribution files released on PyPI.
  • Fixed a bug in change streams where both startAtOperationTime and resumeToken could be added to a retry attempt, which caused the retry to fail.
  • Fallback to stdlib ssl module when pyopenssl import fails with AttributeError.
  • Improved performance of MongoClient operations, especially when many operations are being run concurrently.

Unavoidable breaking changes

  • Since we are now using hatch as our build backend, we no longer have a usable setup.py file and require installation using pip. Attempts to invoke the setup.py file will raise an exception. Additionally, pip >= 21.3 is now required for editable installs.

Issues Resolved

See the PyMongo 4.8 release notes in JIRA for the list of resolved issues in this release.

Full Changelog: https://github.com/mongodb/mongo-python-driver/compare/4.7.1...4.8.0

PyMongo 4.7.3

Community notes: https://www.mongodb.com/community/forums/t/pymongo-4-7-3-released/283508

PyMongo 4.7.2

Community Notes: https://www.mongodb.com/community/forums/t/pymongo-4-7-2-released/279584

PyMongo 4.7.1

Community release note: https://www.mongodb.com/community/forums/t/pymongo-4-7-1-released/278459

PyMongo 4.7.0

Community notes: https://www.mongodb.com/community/forums/t/pymongo-4-7-0-released/277656

Changelog

Sourced from pymongo's changelog.

Changes in Version 4.10.1

Version 4.10.1 is a bug fix release.

  • Fixed a bug where :meth:~pymongo.results.UpdateResult.did_upsert would raise a TypeError.
  • Fixed Binary BSON subtype (9) support on big-endian operating systems (such as zSeries).

Issues Resolved ...............

See the PyMongo 4.10.1 release notes in JIRA_ for the list of resolved issues in this release.

.. _PyMongo 4.10.1 release notes in JIRA: https://jira.mongodb.org/secure/ReleaseNote.jspa?projectId=10004&version=40788

Changes in Version 4.10.0

  • Added provisional (BETA) support for a new Binary BSON subtype (9) used for efficient storage and retrieval of vectors: densely packed arrays of numbers, all of the same type. This includes new methods :meth:~bson.binary.Binary.from_vector and :meth:~bson.binary.Binary.as_vector.
  • Added C extension use to client metadata, for example: {"driver": {"name": "PyMongo|c", "version": "4.10.0"}, ...}
  • Fixed a bug where :class:~pymongo.asynchronous.mongo_client.AsyncMongoClient could deadlock.
  • Fixed a bug where PyMongo could fail to import on Windows if asyncio is misconfigured.

Issues Resolved ...............

See the PyMongo 4.10 release notes in JIRA_ for the list of resolved issues in this release.

.. _PyMongo 4.10 release notes in JIRA: https://jira.mongodb.org/secure/ReleaseNote.jspa?projectId=10004&version=40553

Changes in Version 4.9.2

  • Fixed a bug where :class:~pymongo.asynchronous.mongo_client.AsyncMongoClient could deadlock.
  • Fixed a bug where PyMongo could fail to import on Windows if asyncio is misconfigured.
  • Fixed a bug where :meth:~pymongo.results.UpdateResult.did_upsert would raise a TypeError.

Issues Resolved ...............

See the PyMongo 4.9.2 release notes in JIRA_ for the list of resolved issues in this release.

.. _PyMongo 4.9.2 release notes in JIRA: https://jira.mongodb.org/secure/ReleaseNote.jspa?projectId=10004&version=40732

... (truncated)

Commits
  • 77cd7ab BUMP 4.10.1
  • 1c28430 PYTHON-4808 Add changelog for 4.10.1 (#1890)
  • 7848feb PYTHON-4786 - Fix UpdateResult.did_upsert TypeError (#1878)
  • 0279407 PYTHON-4806 Fix expected metadata in mockupdb tests (#1888)
  • 7fbeca9 [PYTHON-4803] Big endian fix for binary bson vectors (#1885)
  • bfba548 PYTHON-4789 Migrate test_retryable_reads.py to async (#1877)
  • 8791aa0 PYTHON-4790 Migrate test_retryable_writes.py to async (#1876)
  • c0f7810 BUMP 4.11.0.dev0
  • 4713afa BUMP 4.10.0
  • ae6cfd6 [DRIVERS-2926] [PYTHON-4577] BSON Binary Vector Subtype Support (#1813)
  • Additional commits viewable in compare view


Updates certifi from 2024.7.4 to 2024.8.30

Commits


Updates urllib3 from 2.2.2 to 2.2.3

Release notes

Sourced from urllib3's releases.

2.2.3

🚀 urllib3 is fundraising for HTTP/2 support

urllib3 is raising ~$40,000 USD to release HTTP/2 support and ensure long-term sustainable maintenance of the project after a sharp decline in financial support for 2023. If your company or organization uses Python and would benefit from HTTP/2 support in Requests, pip, cloud SDKs, and thousands of other projects please consider contributing financially to ensure HTTP/2 support is developed sustainably and maintained for the long-haul.

Thank you for your support.

Features

  • Added support for Python 3.13. (#3473)

Bugfixes

  • Fixed the default encoding of chunked request bodies to be UTF-8 instead of ISO-8859-1. All other methods of supplying a request body already use UTF-8 starting in urllib3 v2.0. (#3053)
  • Fixed ResourceWarning on CONNECT with Python < 3.11.4 by backporting python/cpython#103472. (`#3252)
  • Adjust tolerance for floating-point comparison on Windows to avoid flakiness in CI (#3413)
  • Fixed a crash where certain standard library hash functions were absent in restricted environments. (#3432)
  • Fixed mypy error when adding to HTTPConnection.default_socket_options. (#3448)

HTTP/2 (experimental)

HTTP/2 support is still in early development.

  • Excluded Transfer-Encoding: chunked from HTTP/2 request body (#3425)
  • Added version checking for h2 (https://pypi.org/project/h2/) usage. Now only accepting supported h2 major version 4.x.x. (#3290)
  • Added a probing mechanism for determining whether a given target origin supports HTTP/2 via ALPN. (#3301)
  • Add support for sending a request body with HTTP/2 (#3302)

Full Changelog: https://github.com/urllib3/urllib3/compare/2.2.2...2.2.3

Changelog

Sourced from urllib3's changelog.

2.2.3 (2024-09-12)

Features

  • Added support for Python 3.13. ([#3473](https://github.com/urllib3/urllib3/issues/3473) <https://github.com/urllib3/urllib3/issues/3473>__)

Bugfixes

  • Fixed the default encoding of chunked request bodies to be UTF-8 instead of ISO-8859-1. All other methods of supplying a request body already use UTF-8 starting in urllib3 v2.0. ([#3053](https://github.com/urllib3/urllib3/issues/3053) <https://github.com/urllib3/urllib3/issues/3053>__)
  • Fixed ResourceWarning on CONNECT with Python `__)
  • Adjust tolerance for floating-point comparison on Windows to avoid fla... _Description has been truncated_
mzedel commented 2 weeks ago

@dependabot ignore bravado

dependabot[bot] commented 2 weeks ago

OK, I won't notify you about bravado again, unless you unignore it.

dependabot[bot] commented 2 weeks ago

Looks like these dependencies are updatable in another way, so this is no longer needed.