tjcsl / cslbot

An easily extensible, modular irc bot.
GNU General Public License v2.0
15 stars 16 forks source link

Bump requests-oauthlib from 1.3.1 to 1.4.0 #1515

Closed dependabot[bot] closed 8 months ago

dependabot[bot] commented 8 months ago

Bumps requests-oauthlib from 1.3.1 to 1.4.0.

Changelog

Sourced from requests-oauthlib's changelog.

v1.4.0 (27 Feb 2024) ++++++++++++++++++++++++

Full set of changes are in github.

Additions & changes:

  • OAuth2Session now correctly uses the self.verify value if verify is not overridden in fetch_token and refresh_token. Fixes [#404](https://github.com/requests/requests-oauthlib/issues/404) <https://github.com/requests/requests-oauthlib/issues/404>_.
  • OAuth2Session constructor now uses its client.scope when a client is provided and scope is not overridden. Fixes [#408](https://github.com/requests/requests-oauthlib/issues/408) <https://github.com/requests/requests-oauthlib/issues/408>_
  • Add refresh_token_request and access_token_request compliance hooks
  • Add PKCE support and Auth0 example
  • Add support for Python 3.8-3.12
  • Remove support of Python 2.x, <3.7
  • Migrated to Github Action
  • Updated dependencies
  • Cleanup some docs and examples
Commits
  • eee74a2 Merge pull request #529 from dosisod/drop-python2-support
  • ed578f1 Merge pull request #530 from requests/autotest
  • 6cdf982 Automated tests for examples in docs
  • 416d738 Remove old __future__ imports
  • 0e4400d Remove old import compatibility checks:
  • ff44fbe Remove unicode references
  • 7fb40e5 Remove to_unicode() calls since all strings are Unicode
  • f045f46 1.4.0 preparation
  • 39fe529 Merge pull request #497 from requests/pkce
  • 596beb5 Added include_client_id into Auth0 example i/o changing default behavior
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 8 months ago

Superseded by #1519.