Bump urllib3 from 2.0.2 to 2.0.3 #871

dependabot · 2023-06-07T13:14:35Z

Bumps urllib3 from 2.0.2 to 2.0.3.

Release notes

2.0.3

Allowed alternative SSL libraries such as LibreSSL, while still issuing a warning as we cannot help users facing issues with implementations other than OpenSSL. #3020

Deprecated URLs which don't have an explicit scheme #2950

Fixed response decoding with Zstandard when compressed data is made of several frames. #3008

Fixed assert_hostname=False to correctly skip hostname check. #3051

Changelog

Sourced from urllib3's changelog.

2.0.3 (2023-06-07)

Allowed alternative SSL libraries such as LibreSSL, while still issuing a warning as we cannot help users facing issues with implementations other than OpenSSL. ([#3020](https://github.com/urllib3/urllib3/issues/3020) <https://github.com/urllib3/urllib3/issues/3020>__)

Deprecated URLs which don't have an explicit scheme ([#2950](https://github.com/urllib3/urllib3/issues/2950) <https://github.com/urllib3/urllib3/pull/2950>_)

Fixed response decoding with Zstandard when compressed data is made of several frames. ([#3008](https://github.com/urllib3/urllib3/issues/3008) <https://github.com/urllib3/urllib3/issues/3008>__)

Fixed assert_hostname=False to correctly skip hostname check. ([#3051](https://github.com/urllib3/urllib3/issues/3051) <https://github.com/urllib3/urllib3/issues/3051>__)

Commits

92196a0 Release 2.0.3
52d2eb1 Fix assert_hostname=False (#3055)
bfbd47e Fix Python 3.12 CI
b63cc4c Correct docstring for Retry backoff factor (#3037)
7e3884d Allow non-OpenSSL TLS libaries with a warning
e67f13c Add 1.26.16 release to CHANGES.rst on main
ffa2b63 Deprecate URLs without an explicit scheme
4e9060b Added OpenGraph information to the documentation
8e94754 Remove outdated reference in LICENSE.txt
5dbc8e2 Bump slsa-framework/slsa-github-generator from 1.5.0 to 1.6.0
Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

> **Note** > Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

codecov · 2023-06-07T13:18:57Z

Codecov Report

Patch and project coverage have no change.

Comparison is base (3485bbf) 77.15% compared to head (ce83323) 77.15%.

❗ Current head ce83323 differs from pull request most recent head 8b95299. Consider uploading reports for the commit 8b95299 to get more accurate results

Additional details and impacted files

@@           Coverage Diff           @@
##           master     #871   +/-   ##
=======================================
  Coverage   77.15%   77.15%           
=======================================
  Files          20       20           
  Lines        1309     1309           
=======================================
  Hits         1010     1010           
  Misses        299      299

☔ View full report in Codecov by Sentry.
📢 Do you have feedback about the report comment? Let us know in this issue.

bastelfreak · 2023-07-14T19:27:12Z

@dependabot rebase

Bumps [urllib3](https://github.com/urllib3/urllib3) from 2.0.2 to 2.0.3. - [Release notes](https://github.com/urllib3/urllib3/releases) - [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst) - [Commits](urllib3/urllib3@2.0.2...2.0.3) --- updated-dependencies: - dependency-name: urllib3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot · 2023-07-20T13:20:59Z

Superseded by #897.

dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Jun 7, 2023

dependabot bot force-pushed the dependabot/pip/urllib3-2.0.3 branch from ce83323 to 8b95299 Compare July 14, 2023 19:28

dependabot bot closed this Jul 20, 2023

dependabot bot deleted the dependabot/pip/urllib3-2.0.3 branch July 20, 2023 13:21

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump urllib3 from 2.0.2 to 2.0.3 #871

Bump urllib3 from 2.0.2 to 2.0.3 #871

dependabot bot commented on behalf of github Jun 7, 2023 •

edited

Loading

codecov bot commented Jun 7, 2023 •

edited

Loading

bastelfreak commented Jul 14, 2023

dependabot bot commented on behalf of github Jul 20, 2023

Bump urllib3 from 2.0.2 to 2.0.3 #871

Bump urllib3 from 2.0.2 to 2.0.3 #871

Conversation

dependabot bot commented on behalf of github Jun 7, 2023 • edited Loading

2.0.3

2.0.3 (2023-06-07)

codecov bot commented Jun 7, 2023 • edited Loading

Codecov Report

bastelfreak commented Jul 14, 2023

dependabot bot commented on behalf of github Jul 20, 2023

dependabot bot commented on behalf of github Jun 7, 2023 •

edited

Loading

codecov bot commented Jun 7, 2023 •

edited

Loading