Revisions of python-requests
buildservice-autocommit
accepted
request 1175867
from
Markéta Machová (mcalabkova)
(revision 184)
baserev update by copy to link target
Markéta Machová (mcalabkova)
accepted
request 1175866
from
Markéta Machová (mcalabkova)
(revision 183)
- Update to 2.32.2 * To provide a more stable migration for custom HTTPAdapters impacted by the CVE changes in 2.32.0, we've renamed _get_connection to a new public API, get_connection_with_tls_context. Existing custom HTTPAdapters will need to migrate their code to use this new API. get_connection is considered deprecated in all versions of Requests>=2.32.0.
Markéta Machová (mcalabkova)
accepted
request 1175561
from
Markéta Machová (mcalabkova)
(revision 182)
- Update to 2.32.1 * Fixed an issue where setting verify=False on the first request from a Session will cause subsequent requests to the same origin to also ignore cert verification, regardless of the value of verify. (bsc#1224788, CVE-2024-35195) * verify=True now reuses a global SSLContext which should improve request time variance between first and subsequent requests. * Requests now supports optional use of character detection (chardet or charset_normalizer) when repackaged or vendored. This enables pip and other projects to minimize their vendoring surface area. * Requests has officially added support for CPython 3.12 and dropped support for CPython 3.7. * Starting in Requests 2.33.0, Requests will migrate to a PEP 517 build system using hatchling.
buildservice-autocommit
accepted
request 1110368
from
Dirk Mueller (dirkmueller)
(revision 181)
baserev update by copy to link target
Dirk Mueller (dirkmueller)
committed
(revision 180)
- switch from unmaintained brotlipy to Brotli (same as urllib3) - allow using newest version of charset-normalizer (3.0+) - Skip test_pyopenssl_redirect due to gh#psf/requests#5846 - add 5711.patch from upstream instead to remove idna<3 pin can install the new idna dropping python2 - refreshed requests-no-hardcoded-version.patch - Do not require full python, (implicit) python-base is sufficient. - Skip one more test that is flaky - -test subpackage must be empty * Only load the idna library when we’ve determined we need it. * Fixed an issue with JSON encoding detection, specifically detecting - Fixed requests-do-not-use-bundle.patch requests-do-not-use-bundle.patch - fix license (Apache-2.0 only) - Now has a "security" package extras set, - Bugfix for responses that attempt to redirect to themselves - Support for connect timeouts! Timeout now accepts a tuple (connect, read) which is used to set individual connect and - update to 1.2.0: + charade: LGPL-2.1+
buildservice-autocommit
accepted
request 1092607
from
Daniel Garcia (dgarcia)
(revision 179)
baserev update by copy to link target
Daniel Garcia (dgarcia)
committed
(revision 178)
- Delete requests-no-hardcoded-version.patch
Daniel Garcia (dgarcia)
committed
(revision 177)
- Security Update to 2.31.0 (bsc#1211674): Versions of Requests between v2.3.0 and v2.30.0 are vulnerable to potential forwarding of Proxy-Authorization headers to destination servers when following HTTPS redirects. When proxies are defined with user info (https://user:pass@proxy:8080), Requests will construct a Proxy-Authorization header that is attached to the request to authenticate with the proxy. In cases where Requests receives a redirect response, it previously reattached the Proxy-Authorization header incorrectly, resulting in the value being sent through the tunneled connection to the destination server. Users who rely on defining their proxy credentials in the URL are strongly encouraged to upgrade to Requests 2.31.0+ to prevent unintentional leakage and rotate their proxy credentials once the change has been fully deployed. Users who do not use a proxy or do not supply their proxy credentials through the user information portion of their proxy URL are not subject to this vulnerability. Full details can be read in our Github Security Advisory and CVE-2023-32681.
buildservice-autocommit
accepted
request 1085070
from
Dirk Mueller (dirkmueller)
(revision 176)
baserev update by copy to link target
Dirk Mueller (dirkmueller)
accepted
request 1085066
from
Johannes Kastl (ojkastl_buildservice)
(revision 175)
add sle15_python_module_pythons
Steve Kowalik (StevenK)
committed
(revision 174)
- Update to 2.30.0: * Added support for urllib3 2.0.  * Defer chunked requests to the urllib3 implementation to improve standardization. * Relax header component requirements to support bytes/str subclasses.
buildservice-autocommit
accepted
request 1069145
from
Factory Maintainer (factory-maintainer)
(revision 173)
baserev update by copy to link target
Matej Cepl (mcepl)
committed
(revision 172)
- Don't upper limit version of charset_normalized at runtime, too. * Added change to patch: requests-no-hardcoded-version.patch
Matej Cepl (mcepl)
accepted
request 1065612
from
Matej Cepl (mcepl)
(revision 169)
- Don't upper limit version of charset_normalizer required.
Adrian Schröter (adrianSuSE)
committed
(revision 168)
osc copypac from project:devel:languages:python package:python-requests revision:9e7fe40dca32bed061468bcb1662f429
Adrian Schröter (adrianSuSE)
accepted
request 1062583
from
Adrian Schröter (adrianSuSE)
(revision 167)
update
buildservice-autocommit
accepted
request 1060118
from
Dirk Mueller (dirkmueller)
(revision 166)
baserev update by copy to link target
Dirk Mueller (dirkmueller)
committed
(revision 165)
- update to 2.28.2: - Requests now supports charset\_normalizer 3.x. - Updated MissingSchema exception to suggest https scheme rather than http. - drop requests-allow-charset-normalizer-3.patch (upstream)
Displaying revisions 1 - 20 of 184