Bump the python-packages group across 1 directory with 5 updates

Bumps the python-packages group with 5 updates in the / directory:

Package	From	To
cloudflare	`2.19.0`	`2.20.0`
django	`5.0.2`	`5.0.6`
gunicorn	`21.2.0`	`22.0.0`
pytest	`8.0.1`	`8.2.1`
requests	`2.31.0`	`2.32.1`

Updates cloudflare from 2.19.0 to 2.20.0

Release notes

Sourced from cloudflare's releases.

2.20.0

 - 2024-05-10 11:44:12 +0200 [655a379](https://github.com/cloudflare/python-cloudflare/commit/655a3792e436bba5e5e08ceb4a7457a31ffb0345) CHANGELOG.md pushed to github
 - 2024-05-10 11:43:43 +0200 [4281e37](https://github.com/cloudflare/python-cloudflare/commit/4281e371190738232100dd31f79630b31b8caf3c) 2.20.0
 - 2024-05-10 11:43:20 +0200 [a28996b](https://github.com/cloudflare/python-cloudflare/commit/a28996b6382a7e9fcd16dcd2e475a6cd4b891bf7) Added 2.20.* notes
 - 2024-05-10 11:35:00 +0200 [7c1b27c](https://github.com/cloudflare/python-cloudflare/commit/7c1b27c8b6d5a7f47a98020716dd767d8b3e1834) extra AI api endpoints
 - 2024-05-10 11:27:06 +0200 [ba62a0c](https://github.com/cloudflare/python-cloudflare/commit/ba62a0c6625eb38eef51e7dc8390120409cb9831) more api endpoints
 - 2024-05-09 11:56:55 +0200 [71afe0e](https://github.com/cloudflare/python-cloudflare/commit/71afe0e7a9fcf7b8e17a4a7d293eeb3e7a780f30) moved 2.20.* warnings into a proper Python PendingDeprecationWarning message
 - 2024-05-08 11:41:37 +0200 [89d76d9](https://github.com/cloudflare/python-cloudflare/commit/89d76d9e23ccce3779aa6080fc7613729bc7fbf1) Merge branch 'spew-warning-for-2.20'
 - 2024-05-08 11:34:59 +0200 [2720d21](https://github.com/cloudflare/python-cloudflare/commit/2720d21e4227e0a1a7728d50cfe283c346bc1ff9) Added --warnings flag to cli4 and associated warnings= flag to cloudflare() call. Provides an ability to control warning messages on or after 2.20.* release
 - 2024-05-07 11:54:19 +0200 [ddbe166](https://github.com/cloudflare/python-cloudflare/commit/ddbe16605f96a445a8dd730036ebe85e8416e417) reduce processing of OpenAPI logic when content-type is application/json
 - 2024-05-07 11:46:45 +0200 [676d258](https://github.com/cloudflare/python-cloudflare/commit/676d258abf89e2c07693756fc63a003049578334) 2.20.* warning now in its own file and warning sent to stderr or logging only if release number 2.20 or above
 - 2024-05-02 12:49:53 +1000 [3181096](https://github.com/cloudflare/python-cloudflare/commit/31810968cfaefa9bbf3e253f702159a6504efe8d) output major version release imminent warning
 - 2024-04-29 19:15:50 +0100 [34bcb1b](https://github.com/cloudflare/python-cloudflare/commit/34bcb1b3f504b4ddfd8040e6972ddd2c71bc673c) HTTPError can show up when you plan with the URL value

2.19.4

 - 2024-04-29 19:15:50 +0100 [34bcb1b](https://github.com/cloudflare/python-cloudflare/commit/34bcb1b3f504b4ddfd8040e6972ddd2c71bc673c) HTTPError can show up when you plan with the URL value
 - 2024-04-29 18:38:57 +0100 [7535d9a](https://github.com/cloudflare/python-cloudflare/commit/7535d9a7e00bb3e2623ee11ff466f4bcb75f3161) CHANGELOG.md pushed to github
 - 2024-04-29 18:38:21 +0100 [1bda322](https://github.com/cloudflare/python-cloudflare/commit/1bda322ccb2093c262cb65777327b1d1133d2a5a) 2.19.4
 - 2024-04-29 18:36:37 +0100 [a3cda63](https://github.com/cloudflare/python-cloudflare/commit/a3cda63d40e9bf25cbd90bef76b28ad16285c2ba) [#186](https://github.com/cloudflare/python-cloudflare/issues/186) - explain how to maps arguments
 - 2024-04-29 18:28:56 +0100 [389029a](https://github.com/cloudflare/python-cloudflare/commit/389029a6c8c20cd125333c81f758ffb718169ab9) [#188](https://github.com/cloudflare/python-cloudflare/issues/188) - url now uses strings - as it should!
 - 2024-04-29 18:07:15 +0100 [4bd76db](https://github.com/cloudflare/python-cloudflare/commit/4bd76dbd42a84a851719b7a5a3f47176db3a189f) [#190](https://github.com/cloudflare/python-cloudflare/issues/190) - remove Python 3.5 support because of f-string
 - 2024-04-29 18:04:12 +0100 [02e513f](https://github.com/cloudflare/python-cloudflare/commit/02e513f1607be04f031ee9387872d6666cabeb1a) 2.19.3
 - 2024-04-29 18:02:44 +0100 [8f2e7ad](https://github.com/cloudflare/python-cloudflare/commit/8f2e7ad974c71a4b507eb90ddc8d0210f318ab4e) Add version 3.0 code and pinning info to README
 - 2024-04-29 18:01:58 +0100 [b4dbc6e](https://github.com/cloudflare/python-cloudflare/commit/b4dbc6e8ee954ae264f72e2ac38d4f9c47201e19) more api endpoints
 - 2024-04-29 18:01:25 +0100 [63f1839](https://github.com/cloudflare/python-cloudflare/commit/63f18392d3346924f81e59e681a877a940cbd656) now that AI methods are in library - no need for CLOUDFLARE_API_EXTRAS code
 - 2024-04-18 16:35:32 -0700 [0c1fb92](https://github.com/cloudflare/python-cloudflare/commit/0c1fb926b0bf0595b025272b9e80bc77ed7c5ad3) more api endpoints
 - 2024-03-19 15:02:14 -0700 [839ac32](https://github.com/cloudflare/python-cloudflare/commit/839ac3206320206178fd67438a52e0f4357f3903) remove f-string for Python <3.6 compatibility
 - 2024-03-11 22:25:20 -0300 [ab8a1aa](https://github.com/cloudflare/python-cloudflare/commit/ab8a1aaa189ac5afdab20f966ef44fd675e1437b) added documentation urls, etc for pypi
 - 2024-03-11 22:21:01 -0300 [fc0e111](https://github.com/cloudflare/python-cloudflare/commit/fc0e1111e1824ea8c78cda43530b51343fb0a348) finally removed the VOID calls, added /ai/run endpoints
 - 2024-03-04 19:50:56 -0500 [56ffcfc](https://github.com/cloudflare/python-cloudflare/commit/56ffcfc1557610ae4d18eb305fbeb418966f038e) still testing docs
 - 2024-03-04 19:46:21 -0500 [82d2dcb](https://github.com/cloudflare/python-cloudflare/commit/82d2dcb2f8dc51bc72e3bca455bba38c55e66f8b) added more download stats
 - 2024-03-04 19:32:03 -0500 [1ae9c2a](https://github.com/cloudflare/python-cloudflare/commit/1ae9c2aa7a67f8f15bce6cdabc3a2b71a8744c11) still testing docs
 - 2024-03-04 19:29:14 -0500 [f9b565a](https://github.com/cloudflare/python-cloudflare/commit/f9b565a772c1ff06b2ed8a432734fa67ae2b24bc) added download stats
 - 2024-03-04 00:02:19 -0500 [984284f](https://github.com/cloudflare/python-cloudflare/commit/984284f563e90c91e296a0c5d5d2f65dad9f8a4e) still testing docs
 - 2024-03-04 00:01:25 -0500 [cf2b3d7](https://github.com/cloudflare/python-cloudflare/commit/cf2b3d7b6630f677e9224ed91ea4b8d462fbdd92) still testing docs
 - 2024-03-01 12:05:09 -0800 [26f6af8](https://github.com/cloudflare/python-cloudflare/commit/26f6af8bc79ab6c3c8c0c8526a73012d46350c0d) still testing docs
 - 2024-03-01 11:39:45 -0800 [35c0e06](https://github.com/cloudflare/python-cloudflare/commit/35c0e068df3459f6cfcb4c39cadd15f526386e4c) start of longstanding need for documentation, update of copyright string
 - 2024-03-01 10:15:38 -0800 [4fe03ee](https://github.com/cloudflare/python-cloudflare/commit/4fe03eed3c7bcc2130846b1be6ea4c9427a1bb99) readthedocs initial setup - long overdue
 - 2024-02-26 23:33:35 -0800 [77fee2e](https://github.com/cloudflare/python-cloudflare/commit/77fee2e5fcf9e3246f6f2d9f194dbb65e54cdcf4) pylint fixes
 - 2024-02-26 23:30:57 -0800 [e7cc964](https://github.com/cloudflare/python-cloudflare/commit/e7cc96452fb84338525ed1537e3523157ba634de) moved all requests code/exceptions into network where it belongs, import cleanup, exception handling cleanup
 - 2024-02-26 23:20:06 -0800 [dbaf7d6](https://github.com/cloudflare/python-cloudflare/commit/dbaf7d67c53e0baaf7a1ab6f33ee860c50672686) handle python < 3.10 to get utc time correctly
 - 2024-02-23 16:47:01 -0800 [036c5ed](https://github.com/cloudflare/python-cloudflare/commit/036c5edeac4d40e8bd9584541ce4a84f2e686d20) document cli4 having --header flag
 - 2024-02-23 16:39:32 -0800 [6eed220](https://github.com/cloudflare/python-cloudflare/commit/6eed2201254769b9bbcea69252fdad51bae62aa2) cli4 has --header flag, plus http_headers needed some more syntax checking
 - 2024-02-22 19:03:24 -0800 [dec9835](https://github.com/cloudflare/python-cloudflare/commit/dec98352d027e205bed762bebdbc8ea0eecbd7c5) added Python 3.5 note
 - 2024-02-22 15:10:24 -0800 [b3cf637](https://github.com/cloudflare/python-cloudflare/commit/b3cf637c2318e6aa09150a3f5f55e5a8a90221f3) remove excessive import statements
 - 2024-02-22 15:09:41 -0800 [c5a5587](https://github.com/cloudflare/python-cloudflare/commit/c5a5587abff4213ffc9fdeac515390a0982f73ee) improved date/time rfc/iso code, lint fixes

... (truncated)

Changelog

Sourced from cloudflare's changelog.

Change Log

2024-05-10 11:43:43 +0200 4281e37 2.20.0

2024-05-10 11:43:20 +0200 a28996b Added 2.20.* notes

2024-05-10 11:35:00 +0200 7c1b27c extra AI api endpoints

2024-05-10 11:27:06 +0200 ba62a0c more api endpoints

2024-05-09 11:56:55 +0200 71afe0e moved 2.20.* warnings into a proper Python PendingDeprecationWarning message

2024-05-08 11:41:37 +0200 89d76d9 Merge branch 'spew-warning-for-2.20'

2024-05-08 11:34:59 +0200 2720d21 Added --warnings flag to cli4 and associated warnings= flag to cloudflare() call. Provides an ability to control warning messages on or after 2.20.* release

2024-05-07 11:54:19 +0200 ddbe166 reduce processing of OpenAPI logic when content-type is application/json

2024-05-07 11:46:45 +0200 676d258 2.20.* warning now in its own file and warning sent to stderr or logging only if release number 2.20 or above

2024-05-02 12:49:53 +1000 3181096 output major version release imminent warning

2024-04-29 19:15:50 +0100 34bcb1b HTTPError can show up when you plan with the URL value

2024-04-29 18:38:57 +0100 7535d9a CHANGELOG.md pushed to github

2024-04-29 18:38:21 +0100 1bda322 2.19.4

2024-04-29 18:36:37 +0100 a3cda63 #186 - explain how to maps arguments

2024-04-29 18:28:56 +0100 389029a #188 - url now uses strings - as it should!

2024-04-29 18:07:15 +0100 4bd76db #190 - remove Python 3.5 support because of f-string

2024-04-29 18:04:12 +0100 02e513f 2.19.3

2024-04-29 18:02:44 +0100 8f2e7ad Add version 3.0 code and pinning info to README

2024-04-29 18:01:58 +0100 b4dbc6e more api endpoints

2024-04-29 18:01:25 +0100 63f1839 now that AI methods are in library - no need for CLOUDFLARE_API_EXTRAS code

2024-04-18 16:35:32 -0700 0c1fb92 more api endpoints

2024-03-19 15:02:14 -0700 839ac32 remove f-string for Python <3.6 compatibility

2024-03-11 22:25:20 -0300 ab8a1aa added documentation urls, etc for pypi

2024-03-11 22:21:01 -0300 fc0e111 finally removed the VOID calls, added /ai/run endpoints

2024-03-04 19:50:56 -0500 56ffcfc still testing docs

2024-03-04 19:46:21 -0500 82d2dcb added more download stats

2024-03-04 19:32:03 -0500 1ae9c2a still testing docs

2024-03-04 19:29:14 -0500 f9b565a added download stats

2024-03-04 00:02:19 -0500 984284f still testing docs

2024-03-04 00:01:25 -0500 cf2b3d7 still testing docs

2024-03-01 12:05:09 -0800 26f6af8 still testing docs

2024-03-01 11:39:45 -0800 35c0e06 start of longstanding need for documentation, update of copyright string

2024-03-01 10:15:38 -0800 4fe03ee readthedocs initial setup - long overdue

2024-02-26 23:33:35 -0800 77fee2e pylint fixes

2024-02-26 23:30:57 -0800 e7cc964 moved all requests code/exceptions into network where it belongs, import cleanup, exception handling cleanup

2024-02-26 23:20:06 -0800 dbaf7d6 handle python < 3.10 to get utc time correctly

2024-02-23 16:47:01 -0800 036c5ed document cli4 having --header flag

2024-02-23 16:39:32 -0800 6eed220 cli4 has --header flag, plus http_headers needed some more syntax checking

2024-02-22 19:03:24 -0800 dec9835 added Python 3.5 note

2024-02-22 15:10:24 -0800 b3cf637 remove excessive import statements

2024-02-22 15:09:41 -0800 c5a5587 improved date/time rfc/iso code, lint fixes

2024-02-22 13:49:22 +0900 9dca32b CHANGELOG.md pushed to github

2024-02-22 13:49:15 +0900 28b768a 2.19.2

2024-02-22 13:48:52 +0900 11d1270 typo

2024-02-22 13:37:13 +0900 287c8a7 CHANGELOG.md pushed to github

2024-02-22 13:36:59 +0900 6f9e5cf 2.19.1

2024-02-22 13:34:05 +0900 08123c1 http_headers documentation

2024-02-22 13:14:37 +0900 44751a0 fix tag name creation

... (truncated)

Commits

655a379 CHANGELOG.md pushed to github
4281e37 2.20.0
a28996b Added 2.20.* notes
7c1b27c extra AI api endpoints
ba62a0c more api endpoints
71afe0e moved 2.20.* warnings into a proper Python PendingDeprecationWarning message
89d76d9 Merge branch 'spew-warning-for-2.20'
2720d21 Added --warnings flag to cli4 and associated warnings= flag to cloudflare() c...
ddbe166 reduce processing of OpenAPI logic when content-type is application/json
676d258 2.20.* warning now in its own file and warning sent to stderr or logging only...
Additional commits viewable in compare view

Updates django from 5.0.2 to 5.0.6

Commits

2719a7f [5.0.x] Bumped version for 5.0.6 release.
c90b20f [5.0.x] Added release notes for 5.0.6 and 4.2.13.
0504608 [5.0.x] Added stub release notes for 5.0.6.
2fa9fe3 [5.0.x] Post-release version bump.
b6844c6 [5.0.x] Bumped version for 5.0.5 release.
e1eecba [5.0.x] Added release date for 5.0.5 and 4.2.12.
9b5029f [5.0.x] Fixed #35426 -- Updated querysets to be a required argument of Generi...
ac9e18f [5.0.x] Refs #35359 -- Fixed OperationTests.test_add_generate_field() test on...
59c3f8a [5.0.x] Fixed #35427 -- Corrected help text for makemessages --extension in d...
e18e931 [5.0.x] Refs #35422 -- Fixed typo in docs/releases/5.0.5.txt.
Additional commits viewable in compare view

Updates gunicorn from 21.2.0 to 22.0.0

Release notes

Sourced from gunicorn's releases.

Gunicorn 22.0 has been released

Gunicorn 22.0.0 has been released. This version fix the numerous security vulnerabilities. You're invited to upgrade asap your own installation.

Changes:

22.0.0 - 2024-04-17
===================

use utime to notify workers liveness
migrate setup to pyproject.toml
fix numerous security vulnerabilities in HTTP parser (closing some request smuggling vectors)
parsing additional requests is no longer attempted past unsupported request framing
on HTTP versions < 1.1 support for chunked transfer is refused (only used in exploits)
requests conflicting configured or passed SCRIPT_NAME now produce a verbose error
Trailer fields are no longer inspected for headers indicating secure scheme
support Python 3.12

** Breaking changes **

minimum version is Python 3.7
the limitations on valid characters in the HTTP method have been bounded to Internet Standards
requests specifying unsupported transfer coding (order) are refused by default (rare)
HTTP methods are no longer casefolded by default (IANA method registry contains none affected)
HTTP methods containing the number sign (#) are no longer accepted by default (rare)
HTTP versions < 1.0 or >= 2.0 are no longer accepted by default (rare, only HTTP/1.1 is supported)
HTTP versions consisting of multiple digits or containing a prefix/suffix are no longer accepted
HTTP header field names Gunicorn cannot safely map to variables are silently dropped, as in other software
HTTP headers with empty field name are refused by default (no legitimate use cases, used in exploits)
requests with both Transfer-Encoding and Content-Length are refused by default (such a message might indicate an attempt to perform request smuggling)
empty transfer codings are no longer permitted (reportedly seen with really old & broken proxies)

** SECURITY **

fix CVE-2024-1135

Documentation is available there: https://docs.gunicorn.org/en/stable/news.html
Packages: https://pypi.org/project/gunicorn/

Commits

f63d59e bump to 22.0
4ac81e0 Merge pull request #3175 from e-kwsm/typo
401cecf Merge pull request #3179 from dhdaines/exclude-eventlet-0360
0243ec3 fix(deps): exclude eventlet 0.36.0
628a0bc chore: fix typos
88fc4a4 Merge pull request #3131 from pajod/patch-py12-rebased
deae2fc CI: back off the agressive timeout
f470382 docs: promise 3.12 compat
5e30bfa add changelog to project.urls (updated for PEP621)
481c3f9 remove setup.cfg - overridden by pyproject.toml
Additional commits viewable in compare view

Updates pytest from 8.0.1 to 8.2.1

Release notes

Sourced from pytest's releases.

8.2.1

pytest 8.2.1 (2024-05-19)

Improvements

#12334: Support for Python 3.13 (beta1 at the time of writing).

Bug Fixes

#12120: Fix [PermissionError]{.title-ref} crashes arising from directories which are not selected on the command-line.

#12191: Keyboard interrupts and system exits are now properly handled during the test collection.

#12300: Fixed handling of 'Function not implemented' error under squashfuse_ll, which is a different way to say that the mountpoint is read-only.

#12308: Fix a regression in pytest 8.2.0 where the permissions of automatically-created .pytest_cache directories became rwx------ instead of the expected rwxr-xr-x.

Trivial/Internal Changes

#12333: pytest releases are now attested using the recent Artifact Attestation support from GitHub, allowing users to verify the provenance of pytest's sdist and wheel artifacts.

8.2.0

pytest 8.2.0 (2024-04-27)

Deprecations

#12069: A deprecation warning is now raised when implementations of one of the following hooks request a deprecated py.path.local parameter instead of the pathlib.Path parameter which replaced it:

pytest_ignore_collect{.interpreted-text role="hook"} - the path parameter - use collection_path instead.

pytest_collect_file{.interpreted-text role="hook"} - the path parameter - use file_path instead.

pytest_pycollect_makemodule{.interpreted-text role="hook"} - the path parameter - use module_path instead.

pytest_report_header{.interpreted-text role="hook"} - the startdir parameter - use start_path instead.

pytest_report_collectionfinish{.interpreted-text role="hook"} - the startdir parameter - use start_path instead.

The replacement parameters are available since pytest 7.0.0. The old parameters will be removed in pytest 9.0.0.

See legacy-path-hooks-deprecated{.interpreted-text role="ref"} for more details.

Features

#11871: Added support for reading command line arguments from a file using the prefix character @, like e.g.: pytest @tests.txt. The file must have one argument per line.

See Read arguments from file <args-from-file>{.interpreted-text role="ref"} for details.

Improvements

... (truncated)

Commits

66ff8df Prepare release version 8.2.1
3ffcfd1 Merge pull request #12340 from pytest-dev/backport-12334-to-8.2.x
0b28313 [8.2.x] Add Python 3.13 (beta) support
f3dd93a [8.2.x] Attest package provenance (#12335)
bb5a125 [8.2.x] Spelling (#12331)
f179bf2 Merge pull request #12327 from pytest-dev/backport-12325-to-8.2.x
2b671b5 [8.2.x] cacheprovider: fix .pytest_cache not being world-readable
65ab7cb Merge pull request #12324 from pytest-dev/backport-12320-to-8.2.x
4d5fb7d Merge pull request #12319 from pytest-dev/backport-12311-to-8.2.x
cbe5996 [8.2.x] changelog: document unittest 8.2 change as breaking
Additional commits viewable in compare view

Updates requests from 2.31.0 to 2.32.1

Release notes

Sourced from requests's releases.

v2.32.0

2.32.0 (2024-05-20)

🐍 PYCON US 2024 EDITION 🐍

Security

Fixed an issue where setting verify=False on the first request from a Session will cause subsequent requests to the same origin to also ignore cert verification, regardless of the value of verify. (https://github.com/psf/requests/security/advisories/GHSA-9wx4-h78v-vm56)

Improvements

verify=True now reuses a global SSLContext which should improve request time variance between first and subsequent requests. It should also minimize certificate load time on Windows systems when using a Python version built with OpenSSL 3.x. (#6667)

Requests now supports optional use of character detection (chardet or charset_normalizer) when repackaged or vendored. This enables pip and other projects to minimize their vendoring surface area. The Response.text() and apparent_encoding APIs will default to utf-8 if neither library is present. (#6702)

Bugfixes

Fixed bug in length detection where emoji length was incorrectly calculated in the request content-length. (#6589)

Fixed deserialization bug in JSONDecodeError. (#6629)

Fixed bug where an extra leading / (path separator) could lead urllib3 to unnecessarily reparse the request URI. (#6644)

Deprecations

Requests has officially added support for CPython 3.12 (#6503)

Requests has officially added support for PyPy 3.9 and 3.10 (#6641)

Requests has officially dropped support for CPython 3.7 (#6642)

Requests has officially dropped support for PyPy 3.7 and 3.8 (#6641)

Documentation

Various typo fixes and doc improvements.

Packaging

Requests has started adopting some modern packaging practices. The source files for the projects (formerly requests) is now located in src/requests in the Requests sdist. (#6506)

Starting in Requests 2.33.0, Requests will migrate to a PEP 517 build system using hatchling. This should not impact the average user, but extremely old versions of packaging utilities may have issues with the new packaging format.

New Contributors

@matthewarmand made their first contribution in psf/requests#6258

@cpzt made their first contribution in psf/requests#6456

... (truncated)

Changelog

Sourced from requests's changelog.

2.32.1 (2024-05-20)

Bugfixes

Add missing test certs to the sdist distributed on PyPI.

2.32.0 (2024-05-20)

Security

Fixed an issue where setting verify=False on the first request from a Session will cause subsequent requests to the same origin to also ignore cert verification, regardless of the value of verify. (https://github.com/psf/requests/security/advisories/GHSA-9wx4-h78v-vm56)

Improvements

verify=True now reuses a global SSLContext which should improve request time variance between first and subsequent requests. It should also minimize certificate load time on Windows systems when using a Python version built with OpenSSL 3.x. (#6667)

Requests now supports optional use of character detection (chardet or charset_normalizer) when repackaged or vendored. This enables pip and other projects to minimize their vendoring surface area. The Response.text() and apparent_encoding APIs will default to utf-8 if neither library is present. (#6702)

Bugfixes

Fixed bug in length detection where emoji length was incorrectly calculated in the request content-length. (#6589)

Fixed deserialization bug in JSONDecodeError. (#6629)

Fixed bug where an extra leading / (path separator) could lead urllib3 to unnecessarily reparse the request URI. (#6644)

Deprecations

Requests has officially added support for CPython 3.12 (#6503)

Requests has officially added support for PyPy 3.9 and 3.10 (#6641)

Requests has officially dropped support for CPython 3.7 (#6642)

Requests has officially dropped support for PyPy 3.7 and 3.8 (#6641)

Documentation

Various typo fixes and doc improvements.

Packaging

Requests has started adopting some modern packaging practices. The source files for the projects (formerly requests) is now located in src/requests in the Requests sdist. (#6506)

Starting in Requests 2.33.0, Requests will migrate to a PEP 517 build system using hatchling. This should not impact the average user, but extremely old

... (truncated)

Commits

970e8ce v2.32.1
d6ebc4a v2.32.0
9a40d12 Avoid reloading root certificates to improve concurrent performance (#6667)
0c030f7 Merge pull request #6702 from nateprewitt/no_char_detection
555b870 Allow character detection dependencies to be optional in post-packaging steps
d6dded3 Merge pull request #6700 from franekmagiera/update-redirect-to-invalid-uri-test
bf24b7d Use an invalid URI that will not cause httpbin to throw 500
2d5f547 Pin 3.8 and 3.9 runners back to macos-13 (#6688)
f1bb07d Merge pull request #6687 from psf/dependabot/github_actions/github/codeql-act...
60047ad Bump github/codeql-action from 3.24.0 to 3.25.0
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions

simonw / simonwillisonblog