Drop the doctype check, that presented a warning for index pages that use non-compliant HTML 5. ([#10903](https://github.com/pypa/pip/issues/10903) <https://github.com/pypa/pip/issues/10903>_)
Vendored Libraries
Downgrade distlib to 0.3.3.
22.0.3 (2022-02-03)
Features
Print the exception via rich.traceback, when running with --debug. ([#10791](https://github.com/pypa/pip/issues/10791) <https://github.com/pypa/pip/issues/10791>_)
Bug Fixes
Only calculate topological installation order, for packages that are going to be installed/upgraded.
This fixes an AssertionError that occured when determining installation order, for a very specific combination of upgrading-already-installed-package + change of dependencies + fetching some packages from a package index. This combination was especially common in Read the Docs' builds. ([#10851](https://github.com/pypa/pip/issues/10851) <https://github.com/pypa/pip/issues/10851>_)
Use html.parser by default, instead of falling back to html5lib when --use-deprecated=html5lib is not passed. ([#10869](https://github.com/pypa/pip/issues/10869) <https://github.com/pypa/pip/issues/10869>_)
Improved Documentation
Clarify that using per-requirement overrides disables the usage of wheels. ([#9674](https://github.com/pypa/pip/issues/9674) <https://github.com/pypa/pip/issues/9674>_)
22.0.2 (2022-01-30)
Deprecations and Removals
Instead of failing on index pages that use non-compliant HTML 5, print a deprecation warning and fall back to html5lib-based parsing for now. This simplifies the migration for non-compliant index pages, by letting such indexes function with a warning. ([#10847](https://github.com/pypa/pip/issues/10847) <https://github.com/pypa/pip/issues/10847>_)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot]
commented
2 years ago
Bumps pip from 21.2.4 to 22.0.4.
Changelog
Sourced from pip's changelog.
... (truncated)
Commits
29ddc93Bump for releasec149468Merge pull request #10943 from pradyunsg/downgrade-distlib6c17e27Drop the doctype check (#10906)44018deBump for release65f096cUpdate AUTHORS.txt7d50964Merge pull request #10876 from mbacchi/vcs_support_typoff8dbb4Merge pull request #10867 from mauritsvanrees/maurits-topoligical-weights-req...b3f5cadUpdate news/10851.bugfix.rstcf4655fMerge pull request #10869 from pradyunsg/put-html5lib-behind-flag3608b42Fix minor typo in vcs support docDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)