Sourced from superfly/fly-pr-review-apps's releases.
v1.3.0
What's Changed
- Configure additional launch options at create by
@jphenowin superfly/fly-pr-review-apps#69New Contributors
@jphenowmade their first contribution in superfly/fly-pr-review-apps#69Full Changelog: https://github.com/superfly/fly-pr-review-apps/compare/1.2.1...1.3.0
f7152c1
Configure additional launch options at create (#69)bd81538
2024.07.04 (#295)06a2cbf
Bump peter-evans/create-pull-request from 6.0.5 to 6.1.0 (#294)13bba02
Bump actions/checkout from 4.1.6 to 4.1.7 (#293)e8abcd0
Bump pypa/gh-action-pypi-publish from 1.8.14 to 1.9.0 (#292)124f4ad
2024.06.02 (#291)c2196ce
--- (#290)fefdeec
Bump actions/checkout from 4.1.4 to 4.1.5 (#289)3c5fb15
Bump actions/download-artifact from 4.1.6 to 4.1.7 (#286)4a9569a
Bump actions/checkout from 4.1.2 to 4.1.4 (#287)1fc8086
Bump peter-evans/create-pull-request from 6.0.4 to 6.0.5 (#288)Sourced from cryptography's changelog.
43.0.1 - 2024-09-03
* Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.3.2... _v43-0-0:
43.0.0 - 2024-07-20
- BACKWARDS INCOMPATIBLE: Support for OpenSSL less than 1.1.1e has been removed. Users on older version of OpenSSL will need to upgrade.
- BACKWARDS INCOMPATIBLE: Dropped support for LibreSSL < 3.8.
- Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.3.1.
- Updated the minimum supported Rust version (MSRV) to 1.65.0, from 1.63.0.
- :func:
~cryptography.hazmat.primitives.asymmetric.rsa.generate_private_keynow enforces a minimum RSA key size of 1024-bit. Note that 1024-bit is still considered insecure, users should generally use a key size of 2048-bits.- :func:
~cryptography.hazmat.primitives.serialization.pkcs7.serialize_certificatesnow emits ASN.1 that more closely follows the recommendations in :rfc:2315.- Added new :doc:
/hazmat/decrepit/indexmodule which contains outdated and insecure cryptographic primitives. :class:~cryptography.hazmat.primitives.ciphers.algorithms.CAST5, :class:~cryptography.hazmat.primitives.ciphers.algorithms.SEED, :class:~cryptography.hazmat.primitives.ciphers.algorithms.IDEA, and :class:~cryptography.hazmat.primitives.ciphers.algorithms.Blowfish, which were deprecated in 37.0.0, have been added to this module. They will be removed from theciphermodule in 45.0.0.- Moved :class:
~cryptography.hazmat.primitives.ciphers.algorithms.TripleDESand :class:~cryptography.hazmat.primitives.ciphers.algorithms.ARC4into :doc:/hazmat/decrepit/indexand deprecated them in theciphermodule. They will be removed from theciphermodule in 48.0.0.- Added support for deterministic :class:
~cryptography.hazmat.primitives.asymmetric.ec.ECDSA(:rfc:6979)- Added support for client certificate verification to the :mod:
X.509 path validation <cryptography.x509.verification>APIs in the form of :class:~cryptography.x509.verification.ClientVerifier, :class:~cryptography.x509.verification.VerifiedClient, andPolicyBuilder:meth:~cryptography.x509.verification.PolicyBuilder.build_client_verifier.- Added Certificate :attr:
~cryptography.x509.Certificate.public_key_algorithm_oidand Certificate Signing Request :attr:~cryptography.x509.CertificateSigningRequest.public_key_algorithm_oidto determine the :class:~cryptography.hazmat._oid.PublicKeyAlgorithmOIDObject Identifier of the public key found inside the certificate.- Added :attr:
~cryptography.x509.InvalidityDate.invalidity_date_utc, a timezone-aware alternative to the naïvedatetimeattribute :attr:~cryptography.x509.InvalidityDate.invalidity_date.- Added support for parsing empty DN string in
... (truncated)
a773387
bump for 43.0.1 (#11533)0393fef
Backport setuptools version ban (#11526)6687bab
Bump openssl from 0.10.65 to 0.10.66 in /src/rust (#11320)
(#11324)ebf14f2
bump for 43.0.0 and update changelog (#11311)42788a0
Fix exchange with keys that had Q automatically computed (#11309)2dbdfb8
don't assign unused name (#11310)ccc66e6
Bump openssl from 0.10.64 to 0.10.65 in /src/rust (#11308)4310c87
Bump sphinxcontrib-qthelp from 1.0.7 to 1.0.8 (#11307)f66a9c4
Bump sphinxcontrib-htmlhelp from 2.0.5 to 2.0.6 (#11306)a8fcf18
Bump openssl-sys from 0.9.102 to 0.9.103 in /src/rust (#11305)Sourced from urllib3's releases.
2.2.2
🚀 urllib3 is fundraising for HTTP/2 support
urllib3 is raising ~$40,000 USD to release HTTP/2 support and ensure long-term sustainable maintenance of the project after a sharp decline in financial support for 2023. If your company or organization uses Python and would benefit from HTTP/2 support in Requests, pip, cloud SDKs, and thousands of other projects please consider contributing financially to ensure HTTP/2 support is developed sustainably and maintained for the long-haul.
Thank you for your support.
Changes
- Added the
Proxy-Authorizationheader to the list of headers to strip from requests when redirecting to a different host. As before, different headers can be set viaRetry.remove_headers_on_redirect.- Allowed passing negative integers as
amtto read methods ofhttp.client.HTTPResponseas an alternative toNone. (#3122)- Fixed return types representing copying actions to use
typing.Self. (#3363)Full Changelog: https://github.com/urllib3/urllib3/compare/2.2.1...2.2.2
Sourced from urllib3's changelog.
2.2.2 (2024-06-17)
- Added the
Proxy-Authorizationheader to the list of headers to strip from requests when redirecting to a different host. As before, different headers can be set viaRetry.remove_headers_on_redirect.- Allowed passing negative integers as
amtto read methods ofhttp.client.HTTPResponseas an alternative toNone. ([#3122](https://github.com/urllib3/urllib3/issues/3122) <https://github.com/urllib3/urllib3/issues/3122>__)- Fixed return types representing copying actions to use
typing.Self. ([#3363](https://github.com/urllib3/urllib3/issues/3363) <https://github.com/urllib3/urllib3/issues/3363>__)
27e2a5c
Release 2.2.2 (#3406)accff72
Merge pull request from GHSA-34jh-p97f-mpxf34be4a5
Pin CFFI to a new release candidate instead of a Git commit (#3398)da41058
Bump browser-actions/setup-chrome from 1.6.0 to 1.7.1 (#3399)b07a669
Bump github/codeql-action from 2.13.4 to 3.25.6 (#3396)b8589ec
Measure coverage with v4 of artifact actions (#3394)f3bdc55
Allow triggering CI manually (#3391)5239265
Fix HTTP version in debug log (#3316)b34619f
Bump actions/checkout to 4.1.4 (#3387)9961d14
Bump browser-actions/setup-chrome from 1.5.0 to 1.6.0 (#3386)Sourced from flask's releases.
3.1.0
This is the Flask 3.1.0 feature release. A feature release may include new features, remove previously deprecated code, add new deprecations, or introduce potentially breaking changes. We encourage everyone to upgrade, and to use a tool such as pip-tools to pin all dependencies and control upgrades. Test with warnings treated as errors to be able to adapt to deprecation warnings early.
PyPI: https://pypi.org/project/Flask/3.1.0/ Changes: https://flask.palletsprojects.com/en/stable/changes/#version-3-1-0 Milestone: https://github.com/pallets/flask/milestone/33?closed=1
- Drop support for Python 3.8. #5623
- Update minimum dependency versions to latest feature releases. Werkzeug >= 3.1, ItsDangerous >= 2.2, Blinker >= 1.9. #5624, #5633
- Provide a configuration option to control automatic option responses. #5496
Flask.open_resource/open_instance_resourceandBlueprint.open_resourcetake anencodingparameter to use when opening in text mode. It defaults toutf-8. #5504Request.max_content_lengthcan be customized per-request instead of only through theMAX_CONTENT_LENGTHconfig. AddedMAX_FORM_MEMORY_SIZEandMAX_FORM_PARTSconfig. Added documentation about resource limits to the security page. #5625- Add support for the
Partitionedcookie attribute (CHIPS), with theSESSION_COOKIE_PARTITIONEDconfig. #5472-e pathtakes precedence over default.envand.flaskenvfiles.load_dotenvloads default files in addition to a path unlessload_defaults=Falseis passed. #5628- Support key rotation with the
SECRET_KEY_FALLBACKSconfig, a list of old secret keys that can still be used for unsigning. Extensions will need to add support. #5621- Fix how setting
host_matching=Trueorsubdomain_matching=Falseinteracts withSERVER_NAME. SettingSERVER_NAMEno longer restricts requests to only that domain. #5553Request.trusted_hostsis checked during routing, and can be set through theTRUSTED_HOSTSconfig. #5636
Sourced from flask's changelog.
Version 3.1.0
Released 2024-11-13
- Drop support for Python 3.8. :pr:
5623- Update minimum dependency versions to latest feature releases. Werkzeug >= 3.1, ItsDangerous >= 2.2, Blinker >= 1.9. :pr:
5624,5633- Provide a configuration option to control automatic option responses. :pr:
5496Flask.open_resource/open_instance_resourceandBlueprint.open_resourcetake anencodingparameter to use when opening in text mode. It defaults toutf-8. :issue:5504Request.max_content_lengthcan be customized per-request instead of only through theMAX_CONTENT_LENGTHconfig. AddedMAX_FORM_MEMORY_SIZEandMAX_FORM_PARTSconfig. Added documentation about resource limits to the security page. :issue:5625- Add support for the
Partitionedcookie attribute (CHIPS), with theSESSION_COOKIE_PARTITIONEDconfig. :issue:5472-e pathtakes precedence over default.envand.flaskenvfiles.load_dotenvloads default files in addition to a path unlessload_defaults=Falseis passed. :issue:5628- Support key rotation with the
SECRET_KEY_FALLBACKSconfig, a list of old secret keys that can still be used for unsigning. Extensions will need to add support. :issue:5621- Fix how setting
host_matching=Trueorsubdomain_matching=Falseinteracts withSERVER_NAME. SettingSERVER_NAMEno longer restricts requests to only that domain. :issue:5553Request.trusted_hostsis checked during routing, and can be set through theTRUSTED_HOSTSconfig. :issue:5636
ab81496
release version 3.1.070602a1
remove test pypi6748a09
update dev dependencies22c48a7
Merge remote-tracking branch 'origin/stable'2eab96a
use generic bases for session (#5638)f49dbfd
use generic bases for session7b21d43
configure and check request.trusted_hosts (#5637)4f7156f
configure and check trusted_hosts10bdf61
setting SERVER_NAME does not restrict routing for both
subdomain_matching...4995a77
fix subdomain_matching=False behaviorSourced from coverage's changelog.
Version 7.6.8 — 2024-11-23
Fix: the LCOV report code assumed that a branch line that took no branches meant that the entire line was unexecuted. This isn't true in a few cases: the line might always raise an exception, or might have been optimized away. Fixes
issue 1896_.Fix: similarly, the HTML report will now explain that a line that jumps to none of its expected destinations must have always raised an exception. Previously, it would say something nonsensical like, "line 4 didn't jump to line 5 because line 4 was never true, and it didn't jump to line 7 because line 4 was always true." This was also shown in
issue 1896_... _issue 1896: nedbat/coveragepy#1896
.. _changes_7-6-7:
Version 7.6.7 — 2024-11-15
- Fix: ugh, the other assert from 7.6.5 can also be encountered in the wild, so it's been restored to a conditional. Sorry for the churn.
.. _changes_7-6-6:
Version 7.6.6 — 2024-11-15
- One of the new asserts from 7.6.5 caused problems in real projects, as reported in
issue 1891_. The assert has been removed... _issue 1891: nedbat/coveragepy#1891
.. _changes_7-6-5:
Version 7.6.5 — 2024-11-14
Fix: fine-tuned the exact Python version (3.12.6) when exiting from
withstatements changed how they traced. This affected whether people saw the fix forissue 1880_.Fix: isolate our code more from mocking in the os module that in rare cases can cause
bizarre behavior <pytest-cov-666_>_.Refactor: some code unreachable code paths in parser.py were changed to
... (truncated)
6134266
docs: sample HTML for 7.6.8041f963
docs: prep for 7.6.87fe48b6
build: don't search generated report filesf219144
docs: start changelog entries with capital lettersd1a916a
fix: a line that branches nowhere must always raise an exception2ace7a2
fix: don't assume 'no branches' means 'not executed' #18963ed5915
style: all of ci should use underscores0db86f2
build: automate updating readthedocs2a89551
chore: make upgrade (not sure why files became absolute)ba9c157
chore: make doc_upgrade325c2fd
2024.08.30 (#304)d66bf5f
Bump actions/upload-artifact from 4.3.5 to 4.3.6 (#302)2150f23
Bump actions/upload-artifact from 4.3.4 to 4.3.5 (#301)fc9b771
Bump actions/setup-python from 5.1.0 to 5.1.1 (#300)965b239
Bump actions/download-artifact from 4.1.7 to 4.1.8 (#297)c1f50cc
Bump actions/upload-artifact from 4.3.3 to 4.3.4 (#296)Sourced from cryptography's changelog.
44.0.0 - 2024-11-27
* **BACKWARDS INCOMPATIBLE:** Dropped support for LibreSSL < 3.9. * Deprecated Python 3.7 support. Python 3.7 is no longer supported by the Python core team. Support for Python 3.7 will be removed in a future ``cryptography`` release. * Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.4.0. * macOS wheels are now built against the macOS 10.13 SDK. Users on older versions of macOS should upgrade, or they will need to build ``cryptography`` themselves. * Enforce the :rfc:`5280` requirement that extended key usage extensions must not be empty. * Added support for timestamp extraction to the :class:`~cryptography.fernet.MultiFernet` class. * Relax the Authority Key Identifier requirements on root CA certificates during X.509 verification to allow fields permitted by :rfc:`5280` but forbidden by the CA/Browser BRs. * Added support for :class:`~cryptography.hazmat.primitives.kdf.argon2.Argon2id` when using OpenSSL 3.2.0+. * Added support for the :class:`~cryptography.x509.Admissions` certificate extension. * Added basic support for PKCS7 decryption (including S/MIME 3.2) via :func:`~cryptography.hazmat.primitives.serialization.pkcs7.pkcs7_decrypt_der`, :func:`~cryptography.hazmat.primitives.serialization.pkcs7.pkcs7_decrypt_pem`, and :func:`~cryptography.hazmat.primitives.serialization.pkcs7.pkcs7_decrypt_smime`... _v43-0-3:
43.0.3 - 2024-10-18
- Fixed release metadata for
cryptography-vectors.. _v43-0-2:
43.0.2 - 2024-10-18
* Fixed compilation when using LibreSSL 4.0.0... _v43-0-1:
f299a48
remove deprecated call (#12052)439eb05
Bump version for 44.0.0 (#12051)2c5ad4d
chore(deps): bump maturin from 1.7.4 to 1.7.5 in /.github/requirements
(#12050)d23968a
chore(deps): bump libc from 0.2.165 to 0.2.166 (#12049)133c0e0
Bump x509-limbo and/or wycheproof in CI (#12047)f2259d7
Bump BoringSSL and/or OpenSSL in CI (#12046)e201c87
fixed metadata in changelog (#12044)c6104cc
Prohibit Python 3.9.0, 3.9.1 -- they have a bug that causes errors (#12045)d6cac75
Add support for decrypting S/MIME messages (#11555)b8e5bfd
chore(deps): bump libc from 0.2.164 to 0.2.165 (#12042)Sourced from urllib3's releases.
2.2.3
🚀 urllib3 is fundraising for HTTP/2 support
urllib3 is raising ~$40,000 USD to release HTTP/2 support and ensure long-term sustainable maintenance of the project after a sharp decline in financial support for 2023. If your company or organization uses Python and would benefit from HTTP/2 support in Requests, pip, cloud SDKs, and thousands of other projects please consider contributing financially to ensure HTTP/2 support is developed sustainably and maintained for the long-haul.
Thank you for your support.
Features
- Added support for Python 3.13. (#3473)
Bugfixes
- Fixed the default encoding of chunked request bodies to be UTF-8 instead of ISO-8859-1. All other methods of supplying a request body already use UTF-8 starting in urllib3 v2.0. (#3053)
- Fixed ResourceWarning on CONNECT with Python < 3.11.4 by backporting python/cpython#103472. (`#3252)
- Adjust tolerance for floating-point comparison on Windows to avoid flakiness in CI (#3413)
- Fixed a crash where certain standard library hash functions were absent in restricted environments. (#3432)
- Fixed mypy error when adding to
HTTPConnection.default_socket_options. (#3448)HTTP/2 (experimental)
HTTP/2 support is still in early development.
- Excluded Transfer-Encoding: chunked from HTTP/2 request body (#3425)
- Added version checking for
h2(https://pypi.org/project/h2/) usage. Now only accepting supported h2 major version 4.x.x. (#3290)- Added a probing mechanism for determining whether a given target origin supports HTTP/2 via ALPN. (#3301)
- Add support for sending a request body with HTTP/2 (#3302)
Full Changelog: https://github.com/urllib3/urllib3/compare/2.2.2...2.2.3
Sourced from urllib3's changelog.
2.2.3 (2024-09-12)
Features
- Added support for Python 3.13. (
[#3473](https://github.com/urllib3/urllib3/issues/3473) <https://github.com/urllib3/urllib3/issues/3473>__)Bugfixes
- Fixed the default encoding of chunked request bodies to be UTF-8 instead of ISO-8859-1. All other methods of supplying a request body already use UTF-8 starting in urllib3 v2.0. (
[#3053](https://github.com/urllib3/urllib3/issues/3053) <https://github.com/urllib3/urllib3/issues/3053>__)- Fixed ResourceWarning on CONNECT with Python `__)
- Adjust tolerance for floating-point comparison on Windows to avoid flakiness in CI (
[#3413](https://github.com/urllib3/urllib3/issues/3413) <https://github.com/urllib3/urllib3/issues/3413>__)- Fixed a crash where certain standard library hash functions were absent in restricted environments. (
[#3432](https://github.com/urllib3/urllib3/issues/3432) <https://github.com/urllib3/urllib3/issues/3432>__)- Fixed mypy error when adding to
HTTPConnection.default_socket_options. ([#3448](https://github.com/urllib3/urllib3/issues/3448) <https://github.com/urllib3/urllib3/issues/3448>__)HTTP/2 (experimental)
HTTP/2 support is still in early development.
Excluded Transfer-Encoding: chunked from HTTP/2 request body (
[#3425](https://github.com/urllib3/urllib3/issues/3425) <https://github.com/urllib3/urllib3/issues/3425>__)Added version checking for
h2(https://pypi.org/project/h2/) usage.Now only accepting supported h2 major version 4.x.x. (
[#3290](https://github.com/urllib3/urllib3/issues/3290) <https://github.com/urllib3/urllib3/issues/3290>__)Added a probing mechanism for determining whether a given target origin supports HTTP/2 via ALPN. (
[#3301](https://github.com/urllib3/urllib3/issues/3301) <https://github.com/urllib3/urllib3/issues/3301>__)Add support for sending a request body with HTTP/2 (
[#3302](https://github.com/urllib3/urllib3/issues/3302) <https://github.com/urllib3/urllib3/issues/3302>__)Deprecations and Removals
- Note for downstream distributors: the
_version.pyfile has been removed and is now created at build time by hatch-vcs. ([#3412](https://github.com/urllib3/urllib3/issues/3412) <https://github.com/urllib3/urllib3/issues/3412>__)- Drop support for end-of-life PyPy3.8 and PyPy3.9. (
[#3475](https://github.com/urllib3/urllib3/issues/3475) <https://github.com/urllib3/urllib3/issues/3475>__)
2458bfc
Release 2.2.39b25db6
Only attempt to publish for upstreamb9adeef
Drop support for EOL PyPy3.8 and PyPy3.9b1d4649
Add explicit support for Python 3.13cc42860
Bump cryptography from 42.0.4 to 43.0.1 (#3470)3dae2e9
Bump pypa/gh-action-pypi-publish from 1.9.0 to 1.10.1 (#3469)1e94feb
Revert "Add TLS settings for HTTP/2 (#3456)"
(#3466)aa73abc
Bump actions/setup-python from 5.1.0 to 5.2.0 (#3468)abbfbcb
Add 1.26.20 to changelog and make the publish workflow the same (#3464)d480615
Add TLS settings for HTTP/2 (#3456)