Skip to content

chore(deps): bump aiohttp from 3.14.0 to 3.14.1 in /client-python in the pip group across 1 directory#59

Open
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/pip/client-python/pip-e01e180ce9
Open

chore(deps): bump aiohttp from 3.14.0 to 3.14.1 in /client-python in the pip group across 1 directory#59
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/pip/client-python/pip-e01e180ce9

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 17, 2026

Copy link
Copy Markdown

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
    You can disable automated security fix PRs for this repo from the Security Alerts page.

---
updated-dependencies:
- dependency-name: aiohttp
  dependency-version: 3.14.1
  dependency-type: direct:production
  dependency-group: pip
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python Pull requests that update python code labels Jun 17, 2026
@greptile-apps

greptile-apps Bot commented Jun 17, 2026

Copy link
Copy Markdown

Greptile Summary

This is a routine Dependabot patch bump of aiohttp from 3.14.0 to 3.14.1 in client-python/requirements.txt.

  • Bug fixes included: 3.14.1 fixes zstd decompression for chunked streams (switching to backports.zstd for Python <3.14), corrects Content-Type header parsing to return application/octet-stream on invalid syntax per RFC 9110, and resolves a Python 3.14 build issue when compiled without zstd support. No breaking changes or new deprecations are introduced.
  • No security advisories: The CVEs patched in 3.14.0 are carried forward; 3.14.1 adds no new CVE fixes and removes no existing protections.

Confidence Score: 5/5

Safe to merge — a single-line version pin change with no breaking changes.

The change is a single-line patch bump in requirements.txt. The 3.14.1 release contains only bug fixes (zstd stream handling, Content-Type parsing, and a build fix for Python 3.14), with no API changes or deprecations. No new security advisories are introduced.

No files require special attention.

Important Files Changed

Filename Overview
client-python/requirements.txt Bumps aiohttp from 3.14.0 to 3.14.1 — a patch release containing only bug fixes (zstd decompression fix for chunked streams, Content-Type parsing fix, and Python 3.14 build fix)

Flowchart

%%{init: {'theme': 'neutral'}}%%
flowchart TD
    A[requirements.txt] --> B{aiohttp version}
    B -->|before| C[3.14.0]
    B -->|after| D[3.14.1]
    D --> E[Bug Fix: zstd chunked stream decompression]
    D --> F[Bug Fix: Content-Type parsing on invalid syntax]
    D --> G[Bug Fix: Python 3.14 build without zstd]
Loading
%%{init: {'theme': 'base', 'themeVariables': {"darkMode": true, "background": "#0d1117", "primaryColor": "#21262d", "primaryTextColor": "#e6edf3", "primaryBorderColor": "#8b949e", "lineColor": "#8b949e", "textColor": "#e6edf3", "edgeLabelBackground": "#161b22", "actorBkg": "#21262d", "actorBorder": "#8b949e", "actorTextColor": "#e6edf3", "actorLineColor": "#8b949e", "signalColor": "#8b949e", "signalTextColor": "#e6edf3", "noteBkgColor": "#373320", "noteBorderColor": "#d4a72c", "noteTextColor": "#f0e6c0", "labelBoxBkgColor": "#21262d", "labelBoxBorderColor": "#8b949e", "labelTextColor": "#e6edf3", "loopTextColor": "#e6edf3", "activationBkgColor": "#30363d", "activationBorderColor": "#8b949e"}}}%%
flowchart TD
    A[requirements.txt] --> B{aiohttp version}
    B -->|before| C[3.14.0]
    B -->|after| D[3.14.1]
    D --> E[Bug Fix: zstd chunked stream decompression]
    D --> F[Bug Fix: Content-Type parsing on invalid syntax]
    D --> G[Bug Fix: Python 3.14 build without zstd]
Loading

Reviews (1): Last reviewed commit: "chore(deps): bump aiohttp" | Re-trigger Greptile

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file python Pull requests that update python code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants