Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump urllib3 from 1.26.17 to 2.1.0 #765

Closed
wants to merge 41 commits into from
Closed

Bump urllib3 from 1.26.17 to 2.1.0 #765

wants to merge 41 commits into from

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Nov 20, 2023

Bumps urllib3 from 1.26.17 to 2.1.0.

Release notes

Sourced from urllib3's releases.

2.1.0

Read the v2 migration guide for help upgrading to the latest version of urllib3.

Removals

  • Removed support for the deprecated urllib3[secure] extra. (#2680)
  • Removed support for the deprecated SecureTransport TLS implementation. (#2681)
  • Removed support for the end-of-life Python 3.7. (#3143)

Bugfixes

  • Allowed loading CA certificates from memory for proxies. (#3065)
  • Fixed decoding Gzip-encoded responses which specified x-gzip content-encoding. (#3174)

2.0.7

  • Made body stripped from HTTP requests changing the request method to GET after HTTP 303 "See Other" redirect responses. (GHSA-g4mx-q9vg-27p4)

2.0.6

  • Added the Cookie header to the list of headers to strip from requests when redirecting to a different host. As before, different headers can be set via Retry.remove_headers_on_redirect. (GHSA-v845-jxx5-vc9f)

2.0.5

  • Allowed pyOpenSSL third-party module without any deprecation warning. #3126
  • Fixed default blocksize of HTTPConnection classes to match high-level classes. Previously was 8KiB, now 16KiB. #3066

2.0.4

  • Added support for union operators to HTTPHeaderDict (#2254)
  • Added BaseHTTPResponse to urllib3.__all__ (#3078)
  • Fixed urllib3.connection.HTTPConnection to raise the http.client.connect audit event to have the same behavior as the standard library HTTP client (#2757)
  • Relied on the standard library for checking hostnames in supported PyPy releases (#3087)

2.0.3

  • Allowed alternative SSL libraries such as LibreSSL, while still issuing a warning as we cannot help users facing issues with implementations other than OpenSSL. #3020
  • Deprecated URLs which don't have an explicit scheme #2950
  • Fixed response decoding with Zstandard when compressed data is made of several frames. #3008
  • Fixed assert_hostname=False to correctly skip hostname check. #3051

2.0.2

  • Fixed HTTPResponse.stream() to continue yielding bytes if buffered decompressed data was still available to be read even if the underlying socket is closed. This prevents a compressed response from being truncated. (urllib3/urllib3#3009)

2.0.1

  • Fixed a socket leak when fingerprint or hostname verifications fail. (#2991)
  • Fixed an error when HTTPResponse.read(0) was the first read call or when the internal response body buffer was otherwise empty. (#2998)

2.0.0

Read the v2.0 migration guide for help upgrading to the latest version of urllib3.

Removed

  • Removed support for Python 2.7, 3.5, and 3.6 (#883, #2336).

... (truncated)

Changelog

Sourced from urllib3's changelog.

2.1.0 (2023-11-13)

Read the v2 migration guide <https://urllib3.readthedocs.io/en/latest/v2-migration-guide.html>__ for help upgrading to the latest version of urllib3.

Removals

  • Removed support for the deprecated urllib3[secure] extra. ([#2680](https://github.com/urllib3/urllib3/issues/2680) <https://github.com/urllib3/urllib3/issues/2680>__)
  • Removed support for the deprecated SecureTransport TLS implementation. ([#2681](https://github.com/urllib3/urllib3/issues/2681) <https://github.com/urllib3/urllib3/issues/2681>__)
  • Removed support for the end-of-life Python 3.7. ([#3143](https://github.com/urllib3/urllib3/issues/3143) <https://github.com/urllib3/urllib3/issues/3143>__)

Bugfixes

  • Allowed loading CA certificates from memory for proxies. ([#3065](https://github.com/urllib3/urllib3/issues/3065) <https://github.com/urllib3/urllib3/issues/3065>__)
  • Fixed decoding Gzip-encoded responses which specified x-gzip content-encoding. ([#3174](https://github.com/urllib3/urllib3/issues/3174) <https://github.com/urllib3/urllib3/issues/3174>__)

2.0.7 (2023-10-17)

  • Made body stripped from HTTP requests changing the request method to GET after HTTP 303 "See Other" redirect responses.

2.0.6 (2023-10-02)

  • Added the Cookie header to the list of headers to strip from requests when redirecting to a different host. As before, different headers can be set via Retry.remove_headers_on_redirect.

2.0.5 (2023-09-20)

  • Allowed pyOpenSSL third-party module without any deprecation warning. ([#3126](https://github.com/urllib3/urllib3/issues/3126) <https://github.com/urllib3/urllib3/issues/3126>__)
  • Fixed default blocksize of HTTPConnection classes to match high-level classes. Previously was 8KiB, now 16KiB. ([#3066](https://github.com/urllib3/urllib3/issues/3066) <https://github.com/urllib3/urllib3/issues/3066>__)

2.0.4 (2023-07-19)

  • Added support for union operators to HTTPHeaderDict ([#2254](https://github.com/urllib3/urllib3/issues/2254) <https://github.com/urllib3/urllib3/issues/2254>__)
  • Added BaseHTTPResponse to urllib3.__all__ ([#3078](https://github.com/urllib3/urllib3/issues/3078) <https://github.com/urllib3/urllib3/issues/3078>__)
  • Fixed urllib3.connection.HTTPConnection to raise the http.client.connect audit event to have the same behavior as the standard library HTTP client ([#2757](https://github.com/urllib3/urllib3/issues/2757) <https://github.com/urllib3/urllib3/issues/2757>__)
  • Relied on the standard library for checking hostnames in supported PyPy releases ([#3087](https://github.com/urllib3/urllib3/issues/3087) <https://github.com/urllib3/urllib3/issues/3087>__)

2.0.3 (2023-06-07)

  • Allowed alternative SSL libraries such as LibreSSL, while still issuing a warning as we cannot help users facing issues with implementations other than OpenSSL. ([#3020](https://github.com/urllib3/urllib3/issues/3020) <https://github.com/urllib3/urllib3/issues/3020>__)

... (truncated)

Commits
  • 69be299 Release 2.1.0
  • 77f71d3 Mention myself in README
  • e601a0e Check _has_route within the test function (#3187)
  • f7cd7f3 Stop naming urllib3/requests tests "integration" (#3182)
  • 6fc4260 Use more precise type checks
  • 5fa8ea6 Fix lint on Python 3.12
  • 8727683 Remove Sphinx version pin
  • 5fc48e7 Treat x-gzip content encoding as gzip
  • ff764a0 Allow loading CA certificates from memory for proxies (#3150)
  • b99cc39 Replace deprecated set-output in GitHub Actions
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

ridoo and others added 30 commits October 12, 2023 16:28
@ridoo
Init workflow file
d58070f
@ridoo
Add docker container registry workflow
915fd64
@ridoo
Update meta tags in workflow
7ec8347
@ridoo
Add version tag 4.1
9117e8d
@ridoo
Add further images to build
fae80c9
@ridoo
Fix geoserver's context path
a5c84a0
@ridoo
Add tags for mayor, minor, and bugfix version
41ce5b7
@giohappy @ridoo
BUmp to 4.1.x (GeoNode#11371)
537ac90
@ridoo
Update geonode version to 4.1.2
dd53272
@ridoo
Clean up versions metadata
75859d8
@ridoo
Push core images to dedicated repos
ae6c474
@ridoo
Push geonode image to 52north/geonode
9f65048
@ridoo
Upload a dockerhub description
065aa07
@ridoo
Update dockerhub description workflow config
77cd1cf
@ridoo
Update 52n readme
dcbd060
@ridoo
Fix image repository config
650cbb1
@ridoo
Fix workflow name
57e1064
@ridoo
Link to 52n fork on github
76539f8
@ridoo
Add a note to version 3 tags
a592ddb
@ridoo
Add a note to version 3 tags
2ea3b29
@ridoo
Update dockerhub readme
2206371
@ridoo
Do not use commit SHA for labels
605a873
@ridoo
Separates 4.1.x and a release builds
649085b
@ridoo
Cancel running builds
44095c3
@ridoo
Trigger release build on tag having -52n suffix
afba6aa
@ridoo
Fix dockerhub secret refs
a169074
@ridoo
Failing action tested successfully
4a50a9c
@ridoo
Adds release build jobs for nginx and geoserver
952f0bb
@giohappy @ridoo
updated changelog
912f845
@ridoo
Add missing image tags in meta step
ebddab7
giohappy and others added 11 commits October 12, 2023 16:28
@giohappy @ridoo
changelog and fixes for packaging (GeoNode#11355)
e022610
@ridoo
Build latest from master
ba23dcd
@ridoo
Remove path exclusions
8d471c8
@ridoo
Rename workflow build
e8f27b5
@ridoo
Rename workflow file
c315d45
@ridoo
Release are built from dedicated branches
cf80dce
@ridoo
Deduplicates code by using composite action
3e7fdd4
@ridoo
Init workflow for 52n build pipeline
49b9698 
Add docker container registry workflow

Update meta tags in workflow

Add version tag 4.1

Add further images to build

Fix geoserver's context path

Add tags for mayor, minor, and bugfix version

BUmp to 4.1.x (GeoNode#11371)

Update geonode version to 4.1.2

Clean up versions metadata

Push core images to dedicated repos

Push geonode image to 52north/geonode

Upload a dockerhub description

Update dockerhub description workflow config

Update 52n readme

Fix image repository config

Fix workflow name

Link to 52n fork on github

Add a note to version 3 tags

Add a note to version 3 tags

Update dockerhub readme

Do not use commit SHA for labels

Separates 4.1.x and a release builds

Cancel running builds

Trigger release build on tag having -52n suffix

Fix dockerhub secret refs

Failing action tested successfully

Adds release build jobs for nginx and geoserver

Add missing image tags in meta step

Build latest from master

Remove path exclusions

Rename workflow build

Rename workflow file

Release are built from dedicated branches
@ridoo
Merge pull request #739 from 52North/workflows/52n-build-pipeline
a983c8d 
Init workflow for 52n build pipeline
@ridoo
Merge pull request #737 from 52North/workflows/use-composite-action
59c16d0 
Deduplicates code by using composite action
@dependabot
Bump urllib3 from 1.26.17 to 2.1.0
5f5ab73 
Bumps [urllib3](https://github.com/urllib3/urllib3) from 1.26.17 to 2.1.0.
- [Release notes](https://github.com/urllib3/urllib3/releases)
- [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst)
- [Commits](urllib3/urllib3@1.26.17...2.1.0)

---
updated-dependencies:
- dependency-name: urllib3
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot Dependabot
Copy link
Author

dependabot bot commented on behalf of github Nov 20, 2023

The following labels could not be found: dependencies.

@dependabot dependabot bot mentioned this pull request Nov 20, 2023
Closed
@dependabot Dependabot
Copy link
Author

dependabot bot commented on behalf of github Nov 4, 2024

Superseded by #901.

@dependabot dependabot bot closed this Nov 4, 2024
@dependabot dependabot bot deleted the dependabot/pip/urllib3-2.1.0 branch November 4, 2024 09:41
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@ridoo @giohappy