Developer centric, performant and extensible Python ASGI framework

• 9e9e840 2022.12.07
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

Sourced from httpx's releases.

Version 0.23.0

0.23.0 (23rd May, 2022)

Changed

• Drop support for Python 3.6. (#2097)
• Use utf-8 as the default character set, instead of falling back to charset-normalizer for auto-detection. To enable automatic character set detection, see the documentation. (#2165)

Fixed

• Fix URL.copy_with for some oddly formed URL cases. (#2185)
• Digest authentication should use case-insensitive comparison for determining which algorithm is being used. (#2204)
• Fix console markup escaping in command line client. (#1866)
• When files are used in multipart upload, ensure we always seek to the start of the file. (#2065)
• Ensure that iter_bytes never yields zero-length chunks. (#2068)
• Preserve Authorization header for redirects that are to the same origin, but are an http-to-https upgrade. (#2074)
• When responses have binary output, don't print the output to the console in the command line client. Use output like <16086 bytes of binary data> instead. (#2076)
• Fix display of --proxies argument in the command line client help. (#2125)
• Close responses when task cancellations occur during stream reading. (#2156)
• Fix type error on accessing .request on HTTPError exceptions. (#2158)

Version 0.22.0

0.22.0 (26th January, 2022)

Added

• Support for the SOCKS5 proxy protocol via the socksio package. (#2034)
• Support for custom headers in multipart/form-data requests (#1936)

Fixed

• Don't perform unreliable close/warning on __del__ with unclosed clients. (#2026)
• Fix Headers.update(...) to correctly handle repeated headers (#2038)

Version 0.21.3

0.21.3 (6th January, 2022)

Fixed

• Fix streaming uploads using SyncByteStream or AsyncByteStream. Regression in 0.21.2. (#2016)

Version 0.21.2

0.21.2 (5th January, 2022)

Fixed

• HTTP/2 support for tunnelled proxy cases. (#2009)
• Improved the speed of large file uploads. (#1948)

Version 0.21.1

... (truncated)

Sourced from httpx's changelog.

0.23.0 (23rd May, 2022)

Changed

• Drop support for Python 3.6. (#2097)
• Use utf-8 as the default character set, instead of falling back to charset-normalizer for auto-detection. To enable automatic character set detection, see the documentation. (#2165)

Fixed

• Fix URL.copy_with for some oddly formed URL cases. (#2185)
• Digest authentication should use case-insensitive comparison for determining which algorithm is being used. (#2204)
• Fix console markup escaping in command line client. (#1866)
• When files are used in multipart upload, ensure we always seek to the start of the file. (#2065)
• Ensure that iter_bytes never yields zero-length chunks. (#2068)
• Preserve Authorization header for redirects that are to the same origin, but are an http-to-https upgrade. (#2074)
• When responses have binary output, don't print the output to the console in the command line client. Use output like <16086 bytes of binary data> instead. (#2076)
• Fix display of --proxies argument in the command line client help. (#2125)
• Close responses when task cancellations occur during stream reading. (#2156)
• Fix type error on accessing .request on HTTPError exceptions. (#2158)

0.22.0 (26th January, 2022)

Added

• Support for the SOCKS5 proxy protocol via the socksio package. (#2034)
• Support for custom headers in multipart/form-data requests (#1936)

Fixed

• Don't perform unreliable close/warning on __del__ with unclosed clients. (#2026)
• Fix Headers.update(...) to correctly handle repeated headers (#2038)

0.21.3 (6th January, 2022)

Fixed

• Fix streaming uploads using SyncByteStream or AsyncByteStream. Regression in 0.21.2. (#2016)

0.21.2 (5th January, 2022)

Fixed

• HTTP/2 support for tunnelled proxy cases. (#2009)
• Improved the speed of large file uploads. (#1948)

0.21.1 (16th November, 2021)

Fixed

• The response.url property is now correctly annotated as URL, instead of Optional[URL]. (#1940)

... (truncated)

• 89cdd90 Version 0.23.0 (#2214)
• 1c33a28 Make charset auto-detection optional. (#2165)
• 940d61b Removed curio from async.md (#2240)
• 14a1704 Switch to explicit typing.Optional throughout (#2096)
• 9673a35 Drop async_generator requirement (#2228)
• 5eba32a Remove RequestBodyUnavailable from module docstring (#2226)
• 6f31bc4 Bump mkdocs-material from 8.1.4 to 8.2.14 (#2218)
• c5eb4b8 Bump cryptography from 36.0.2 to 37.0.2 (#2217)
• 1a526cf Bump actions/checkout from 2 to 3 (#2216)
• 7a53543 Bump actions/setup-python from 1 to 3 (#2215)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

Sourced from setuptools's changelog.

v65.5.1

Misc ^^^^

• #3638: Drop a test dependency on the mock package, always use :external+python:py:mod:unittest.mock -- by :user:hroncok
• #3659: Fixed REDoS vector in package_index.

v65.5.0

Changes ^^^^^^^

• #3624: Fixed editable install for multi-module/no-package src-layout projects.
• #3626: Minor refactorings to support distutils using stdlib logging module.

Documentation changes ^^^^^^^^^^^^^^^^^^^^^

• #3419: Updated the example version numbers to be compliant with PEP-440 on the "Specifying Your Project’s Version" page of the user guide.

Misc ^^^^

• #3569: Improved information about conflicting entries in the current working directory and editable install (in documentation and as an informational warning).
• #3576: Updated version of validate_pyproject.

• a462cb5 Bump version: 65.5.0 → 65.5.1
• de35d8b Merge pull request #3656 from bmorris3/typos
• 58e23de Update changelog. Ref #3659.
• 43a9c9b Limit the amount of whitespace to search/backtrack. Fixes #3659.
• 5791343 Add test capturing failed expectation. Ref #3659.
• 1f97905 ⚫ Fade to black.
• 6254567 Remove workaround for emacs.
• 729b180 ⚫ Fade to black.
• c068081 Typo corrections
• f777a40 Suppress deprecation warning in --rsyncdir. Workaround for #3655.
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.