Skip to content

Bump werkzeug from 1.0.1 to 2.0.1 #501

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

Bump werkzeug from 1.0.1 to 2.0.1 #501

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Aug 6, 2021
edited
Loading

Bumps werkzeug from 1.0.1 to 2.0.1.

Release notes

Sourced from werkzeug's releases.

2.0.1

2.0.0

New major versions of all the core Pallets libraries, including Werkzeug 2.0, have been released! 🎉

This represents a significant amount of work, and there are quite a few changes. Be sure to carefully read the changelog, and use tools such as pip-compile and Dependabot to pin your dependencies and control your updates.

2.0.0rc5

2.0.0rc4

2.0.0 Release Candidate 3

Use the --pre flag to install this pre-release:

pip install --pre Werkzeug==2.0.0rc3

2.0.0 Release Candidate 2

Use the --pre flag to install this pre-release:

pip install --pre Werkzeug==2.0.0rc2

2.0.0 Release Candidate 1

Use the --pre flag to install this pre-release:

pip install --pre Werkzeug==2.0.0rc1
Changelog

Sourced from werkzeug's changelog.

Version 2.0.1

Released 2021-05-17

  • Fix type annotation for send_file max_age callable. Don't pass pathlib.Path to max_age. :issue:2119
  • Mark top-level names as exported so type checking understands imports in user projects. :issue:2122
  • Fix some types that weren't available in Python 3.6.0. :issue:2123
  • cached_property is generic over its return type, properties decorated with it report the correct type. :issue:2113
  • Fix multipart parsing bug when boundary contains special regex characters. :issue:2125
  • Type checking understands that calling headers.get with a string default will always return a string. :issue:2128
  • If HTTPException.description is not a string, get_description will convert it to a string. :issue:2115

Version 2.0.0

Released 2021-05-11

  • Drop support for Python 2 and 3.5. :pr:1693
  • Deprecate :func:utils.format_string, use :class:string.Template instead. :issue:1756
  • Deprecate :func:utils.bind_arguments and :func:utils.validate_arguments, use :meth:Signature.bind and :func:inspect.signature instead. :issue:1757
  • Deprecate :class:utils.HTMLBuilder. :issue:1761
  • Deprecate :func:utils.escape and :func:utils.unescape, use MarkupSafe instead. :issue:1758
  • Deprecate the undocumented python -m werkzeug.serving CLI. :issue:1834
  • Deprecate the environ["werkzeug.server.shutdown"] function that is available when running the development server. :issue:1752
  • Deprecate the useragents module and the built-in user agent parser. Use a dedicated parser library instead by subclassing user_agent.UserAgent and setting Request.user_agent_class. :issue:2078
  • Remove the unused, internal posixemulation module. :issue:1759
  • All datetime values are timezone-aware with tzinfo=timezone.utc. This applies to anything using http.parse_date: Request.date, .if_modified_since, .if_unmodified_since; Response.date, .expires, .last_modified, .retry_after; parse_if_range_header, and IfRange.date. When comparing values, the other values must also be aware, or these values must be made naive. When passing

... (truncated)

Commits
  • 73ed5ef Merge pull request #2135 from pallets/release-2.0.1
  • c09fe3f release version 2.0.1
  • f0bc6b2 Merge pull request #2134 from pallets/typeshed
  • e6305ec Merge pull request #2133 from pallets/http-description
  • 67ef741 convert HTTPException.description to string
  • ca830ca use _typeshed.wsgi instead of wsgiref.types
  • c2fd0f1 update 2128 changelog
  • 1b8907a Merge pull request #2129 from bayesimpact/pascal-type-get
  • 625aaba Enhance type of headers.get method.
  • 1104012 Merge pull request #2126 from pgjones/mpfix
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Aug 6, 2021
@aaron-junot
Copy link
Member

@dependabot rebase

@aaron-junot
Copy link
Member

@dependabot recreate

@dependabot dependabot bot force-pushed the dependabot/pip/werkzeug-2.0.1 branch from 53e8ec8 to d855981 Compare August 6, 2021 22:17
@dependabot
Bump werkzeug from 1.0.1 to 2.0.1
53f85a9 
Bumps [werkzeug](https://github.com/pallets/werkzeug) from 1.0.1 to 2.0.1.
- [Release notes](https://github.com/pallets/werkzeug/releases)
- [Changelog](https://github.com/pallets/werkzeug/blob/main/CHANGES.rst)
- [Commits](pallets/werkzeug@1.0.1...2.0.1)

---
updated-dependencies:
- dependency-name: werkzeug
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/pip/werkzeug-2.0.1 branch from d855981 to 53f85a9 Compare August 6, 2021 22:30
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Oct 6, 2021

Superseded by #516.

@dependabot dependabot bot closed this Oct 6, 2021
@dependabot dependabot bot deleted the dependabot/pip/werkzeug-2.0.1 branch October 6, 2021 14:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@aaron-junot