• 939a28f 2022.09.14
• aca828a 2022.06.15.2
• de0eae1 Only use importlib.resources's new files() / Traversable API on Python ≥3.11 ...
• b8eb5e9 2022.06.15.1
• 47fb7ab Fix deprecation warning on Python 3.11 (#199)
• b0b48e0 fixes #198 -- update link in license
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

• b8eb5e9 2022.06.15.1
• 47fb7ab Fix deprecation warning on Python 3.11 (#199)
• b0b48e0 fixes #198 -- update link in license
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from flask's releases.

2.2.0

This is a feature release, which includes new features and removes previously deprecated code. The 2.2.x branch is now the supported bug fix branch, the 2.1.x branch will become a tag marking the end of support for that branch. We encourage everyone to upgrade, and to use a tool such as pip-tools to pin all dependencies and control upgrades.

• Changes: https://flask.palletsprojects.com/en/2.2.0/changes/#version-2-2-0
• Milestone: https://github.com/pallets/flask/milestone/19?closed=1

Sourced from flask's changelog.

Version 2.2.0

Released 2022-08-01

• Remove previously deprecated code. :pr:4337

  • Old names for some send_file parameters have been removed. download_name replaces attachment_filename, max_age replaces cache_timeout, and etag replaces add_etags. Additionally, path replaces filename in send_from_directory.
  • The RequestContext.g property returning AppContext.g is removed.

• Update Werkzeug dependency to >= 2.2.

• The app and request contexts are managed using Python context vars directly rather than Werkzeug's LocalStack. This should result in better performance and memory use. :pr:4682

  • Extension maintainers, be aware that _app_ctx_stack.top and _request_ctx_stack.top are deprecated. Store data on g instead using a unique prefix, like g._extension_name_attr.

• The FLASK_ENV environment variable and app.env attribute are deprecated, removing the distinction between development and debug mode. Debug mode should be controlled directly using the --debug option or app.run(debug=True). :issue:4714

• Some attributes that proxied config keys on app are deprecated: session_cookie_name, send_file_max_age_default, use_x_sendfile, propagate_exceptions, and templates_auto_reload. Use the relevant config keys instead. :issue:4716

• Add new customization points to the Flask app object for many previously global behaviors.

  • flask.url_for will call app.url_for. :issue:4568
  • flask.abort will call app.aborter. Flask.aborter_class and Flask.make_aborter can be used to customize this aborter. :issue:4567
  • flask.redirect will call app.redirect. :issue:4569
  • flask.json is an instance of JSONProvider. A different provider can be set to use a different JSON library. flask.jsonify will call app.json.response, other functions in flask.json will call corresponding functions in app.json. :pr:4688

• JSON configuration is moved to attributes on the default app.json provider. JSON_AS_ASCII, JSON_SORT_KEYS,

... (truncated)

• b17bb9e Merge pull request #4710 from pallets/release-2.2.0
• 292c7e5 release version 2.2.0
• f3bb9b2 Merge branch '2.1.x'
• ac1bb97 Merge pull request #4721 from pallets/pre-commit-ci-update-config
• cfd5783 Merge pull request #4722 from pallets/deprecate-config-attrs
• bfdd371 deprecate config attributes
• 6f9ef11 [pre-commit.ci] pre-commit autoupdate
• 98ca00d Merge pull request #4720 from pallets/deprecate-env
• 30427a2 remove FLASK_ENV from docs
• ef95998 deprecate FLASK_ENV
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from werkzeug's releases.

2.2.0

This is a feature release, which includes new features and removes previously deprecated features. The 2.2.x branch is now the supported bugfix branch, the 2.1.x branch will become a tag marking the end of support for that branch. We encourage everyone to upgrade, and to use a tool such as pip-tools to pin all dependencies and control upgrades.

• Changes: https://werkzeug.palletsprojects.com/en/2.2.x/changes/#version-2-2-0
• Milestone: https://github.com/pallets/werkzeug/milestone/20?closed=1

Sourced from werkzeug's changelog.

Version 2.2.0

Released 2022-07-23

• Deprecated get_script_name, get_query_string, peek_path_info, pop_path_info, and extract_path_info. :pr:2461
• Remove previously deprecated code. :pr:2461
• Add MarkupSafe as a dependency and use it to escape values when rendering HTML. :issue:2419
• Added the werkzeug.debug.preserve_context mechanism for restoring context-local data for a request when running code in the debug console. :pr:2439
• Fix compatibility with Python 3.11 by ensuring that end_lineno and end_col_offset are present on AST nodes. :issue:2425
• Add a new faster matching router based on a state machine. :pr:2433
• Names within options headers are always converted to lowercase. This matches :rfc:6266 that the case is not relevant. :issue:2442
• AnyConverter validates the value passed for it when building URLs. :issue:2388
• The debugger shows enhanced error locations in tracebacks in Python 3.11. :issue:2407
• Added Sans-IO is_resource_modified and parse_cookie functions based on WSGI versions. :issue:2408
• Added Sans-IO get_content_length function. :pr:2415
• Don't assume a mimetype for test responses. :issue:2450
• Type checking FileStorage accepts os.PathLike. :pr:2418

• 4c7d990 release version 2.2.0
• 7e626b8 Remove deprecated multiple option
• 14f31db Deprecate wsgi functions
• c074f91 Cleanup b42d1a4b57b8aba5c38fb8a030848db71004e2c5 and 81d2ed03ecf27d640b3a6fe8...
• b00ecce Don't set a default mimetype for Test Responses
• e1bfc33 Merge pull request #2458 from pgjones/test
• cf1d82e Add a test to demonstrate leaf rules don't consume branches
• ffb15ea Merge remote-tracking branch 'origin/2.1.x'
• dfdc7c6 Ignore false positive B023 errors
• c7f10f4 Correct the CHANGES format for the unreleased 2.1.3
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

• 75cc94d 2022.05.18.1
• 04b7480 Add support for Python 3.10 and drop EOL 3.5 (#167)
• e713282 2022.05.18
• 51c3f2a Automatically lock github issues after they've been closed for 90 days (#189)
• 1c2dd6f Remove universal wheel, python 2 is unsupported (#187)
• ff23c47 Merge pull request #180 from jdufresne/mypy
• 5f09ea8 Add type annotations to package
• 1c8485c Added Required Python Version (#152)
• b99a23f Fix homepage link (#145)
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from click's releases.

8.1.1

This is a fix release for the 8.1.0 feature release.

• Changes: https://click.palletsprojects.com/en/8.1.x/changes/#version-8-1-1
• Milestone: https://github.com/pallets/click/milestone/14?closed=1

Sourced from click's changelog.

Version 8.1.1

Released 2022-03-30

• Fix an issue with decorator typing that caused type checking to report that a command was not callable. :issue:2227

• a41e349 Merge pull request #2234 from pallets/release-8.1.1
• 3c301eb release version 8.1.1
• d5741a2 Merge pull request #2233 from henryiii/henryiii/fix/commandtype
• e234cf9 fix(types): decorator typing fails
• fb7c6db start version 8.1.1
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from flask's releases.

2.1.0

This is a feature release, which includes new features and removes previously deprecated features. The 2.1.x branch is now the supported bugfix branch, the 2.0.x branch will become a tag marking the end of support for that branch. We encourage everyone to upgrade, and to use a tool such as pip-tools to pin all dependencies and control upgrades.

• Changes: https://flask.palletsprojects.com/en/2.1.x/changes/#version-2-1-0
• Milestone: https://github.com/pallets/flask/milestone/13?closed=1

We also encourage upgrading to the latest versions of the other Pallets projects as well.

• Werkzeug 2.1 changes: https://werkzeug.palletsprojects.com/en/2.1.x/changes/#version-2-1-0
• Jinja 3.1 changes: https://jinja.palletsprojects.com/en/3.1.x/changes/#version-3-1-1
• Click 8.1 changes: https://click.palletsprojects.com/en/8.1.x/changes/#version-8-1-0
• MarkupSafe 2.1 changes: https://markupsafe.palletsprojects.com/en/2.1.x/changes/#version-2-1-1
• ItsDangerous 2.1 changes: https://itsdangerous.palletsprojects.com/en/2.1.x/changes/#version-2-1-2

Sourced from flask's changelog.

Version 2.1.0

Released 2022-03-28

• Drop support for Python 3.6. :pr:4335

• Update Click dependency to >= 8.0. :pr:4008

• Remove previously deprecated code. :pr:4337

  • The CLI does not pass script_info to app factory functions.
  • config.from_json is replaced by config.from_file(name, load=json.load).
  • json functions no longer take an encoding parameter.
  • safe_join is removed, use werkzeug.utils.safe_join instead.
  • total_seconds is removed, use timedelta.total_seconds instead.
  • The same blueprint cannot be registered with the same name. Use name= when registering to specify a unique name.
  • The test client's as_tuple parameter is removed. Use response.request.environ instead. :pr:4417

• Some parameters in send_file and send_from_directory were renamed in 2.0. The deprecation period for the old names is extended to 2.2. Be sure to test with deprecation warnings visible.

  • attachment_filename is renamed to download_name.
  • cache_timeout is renamed to max_age.
  • add_etags is renamed to etag.
  • filename is renamed to path.

• The RequestContext.g property is deprecated. Use g directly or AppContext.g instead. :issue:3898

• copy_current_request_context can decorate async functions. :pr:4303

• The CLI uses importlib.metadata instead of setuptools to load command entry points. :issue:4419

• Overriding FlaskClient.open will not cause an error on redirect. :issue:3396

• Add an --exclude-patterns option to the flask run CLI command to specify patterns that will be ignored by the reloader. :issue:4188

• When using lazy loading (the default with the debugger), the Click context from the flask run command remains available in the loader thread. :issue:4460

• Deleting the session cookie uses the httponly flag. :issue:4485

• Relax typing for errorhandler to allow the user to use more precise types and decorate the same function multiple times. :issue:4095, 4295, 4297

... (truncated)

• 65b0eef Merge pull request #4500 from pallets/release-2.1.0
• 7d264d7 release version 2.1.0
• f5ed54b ignore examples tests
• cd4ab00 fix typing
• 41aaaf7 clean up unused function from prefixed_env pr
• 2f5a2ab Merge pull request #4479 from pgjones/env_config
• e75d575 windows env vars are uppercase
• 4eb5e94 more from_prefixed_env features
• 08a283a Allow loading of environment variables into the config
• 425a626 Merge pull request #4496 from pallets/werkzeug-relative-redirect
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from werkzeug's releases.

2.1.0

This is a feature release, which includes new features and removes previously deprecated features. The 2.1.x branch is now the supported bugfix branch, the 2.0.x branch will become a tag marking the end of support for that branch. We encourage everyone to upgrade, and to use a tool such as pip-tools to pin all dependencies and control upgrades.

• Changes: https://werkzeug.palletsprojects.com/en/2.1.x/changes/#version-2-1-0
• Milestone: https://github.com/pallets/werkzeug/milestone/16?closed=1

Sourced from werkzeug's changelog.

Version 2.1.0

Released 2022-03-28

• Drop support for Python 3.6. :pr:2277

• Using gevent or eventlet requires greenlet>=1.0 or PyPy>=7.3.7. werkzeug.locals and contextvars will not work correctly with older versions. :pr:2278

• Remove previously deprecated code. :pr:2276

  • Remove the non-standard shutdown function from the WSGI environ when running the development server. See the docs for alternatives.
  • Request and response mixins have all been merged into the Request and Response classes.
  • The user agent parser and the useragents module is removed. The user_agent module provides an interface that can be subclassed to add a parser, such as ua-parser. By default it only stores the whole string.
  • The test client returns TestResponse instances and can no longer be treated as a tuple. All data is available as properties on the response.
  • Remove locals.get_ident and related thread-local code from locals, it no longer makes sense when moving to a contextvars-based implementation.
  • Remove the python -m werkzeug.serving CLI.
  • The has_key method on some mapping datastructures; use key in data instead.
  • Request.disable_data_descriptor is removed, pass shallow=True instead.
  • Remove the no_etag parameter from Response.freeze().
  • Remove the HTTPException.wrap class method.
  • Remove the cookie_date function. Use http_date instead.
  • Remove the pbkdf2_hex, pbkdf2_bin, and safe_str_cmp functions. Use equivalents in hashlib and hmac modules instead.
  • Remove the Href class.
  • Remove the HTMLBuilder class.
  • Remove the invalidate_cached_property function. Use del obj.attr instead.
  • Remove bind_arguments and validate_arguments. Use :meth:Signature.bind and :func:inspect.signature instead.
  • Remove detect_utf_encoding, it's built-in to json.loads.
  • Remove format_string, use :class:string.Template instead.
  • Remove escape and unescape. Use MarkupSafe instead.

• The multiple parameter of parse_options_header is deprecated. :pr:2357

• Rely on :pep:538 and :pep:540 to handle decoding file names

... (truncated)

• 294de75 Merge pull request #2358 from pallets/release-2.1.0
• 67b108c release version 2.1.0
• dae7e0d Merge pull request #2357 from pallets/parse_options_header-multiple
• 2ffa7c1 deprecate parse_options_header multiple parameter
• 560dd5f Merge pull request #2356 from spaceone/fix-typos-in-docstrings
• ce1d844 [style]: fix various typos in docstrings and comments
• 6f7e1e5 Merge pull request #2355 from pallets/json-content-type
• bf4ede2 400 error on bad json content type
• 76de1b8 Merge pull request #2354 from pallets/redirect-modern
• dfb5d5c add back fail-on-warning for tests
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from jinja2's releases.

3.1.0

This is a feature release, which includes new features and removes previously deprecated features. The 3.1.x branch is now the supported bugfix branch, the 3.0.x branch has become a tag marking the end of support for that branch. We encourage everyone to upgrade, and to use a tool such as pip-tools to pin all dependencies and control upgrades. We also encourage upgrading to MarkupSafe 2.1.1, the latest version at this time.

• Changes: https://jinja.palletsprojects.com/en/3.1.x/changes/#version-3-1-0
• Milestone: https://github.com/pallets/jinja/milestone/8?closed=1
• MarkupSafe changes: https://markupsafe.palletsprojects.com/en/2.1.x/changes/#version-2-1-1

Sourced from jinja2's changelog.

Version 3.1.0

Released 2022-03-24

• Drop support for Python 3.6. :pr:1534

• Remove previously deprecated code. :pr:1544

  • WithExtension and AutoEscapeExtension are built-in now.
  • contextfilter and contextfunction are replaced by pass_context. evalcontextfilter and evalcontextfunction are replaced by pass_eval_context. environmentfilter and environmentfunction are replaced by pass_environment.
  • Markup and escape should be imported from MarkupSafe.
  • Compiled templates from very old Jinja versions may need to be recompiled.
  • Legacy resolve mode for Context subclasses is no longer supported. Override resolve_or_missing instead of resolve.
  • unicode_urlencode is renamed to url_quote.

• Add support for native types in macros. :issue:1510

• The {% trans %} tag can use pgettext and npgettext by passing a context string as the first token in the tag, like {% trans "title" %}. :issue:1430

• Update valid identifier characters from Python 3.6 to 3.7. :pr:1571

• Filters and tests decorated with @async_variant are pickleable. :pr:1612

• Add items filter. :issue:1561

• Subscriptions ([0], etc.) can be used after filters, tests, and calls when the environment is in async mode. :issue:1573

• The groupby filter is case-insensitive by default, matching other comparison filters. Added the case_sensitive parameter to control this. :issue:1463

• Windows drive-relative path segments in template names will not result in FileSystemLoader and PackageLoader loading from drive-relative paths. :pr:1621

• 84c0e2c Merge pull request #1625 from pallets/release-3.1.0
• 7b0c47f release version 3.1.0
• ede0f98 Merge pull request #1621 from pallets/template-safe-path
• 040088a use posixpath.join when loading template names
• a292075 Merge pull request #1620 from janfilips/patch-1
• 6e4df02 Fix formatting in tricks.rst
• 3a050b1 Merge pull request #1617 from pallets/docs-prose
• 4b63cd8 rewrite include statement section
• a98d482 clean up faq, move technical discussions
• 9de99f8 clean up engine comparisons
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from itsdangerous's releases.

2.1.1

• Changes: https://itsdangerous.palletsprojects.com/en/2.1.x/changes/#version-2-1-1
• Milestone: https://github.com/pallets/itsdangerous/milestone/6?closed=1

2.1.0

• Changes: https://itsdangerous.palletsprojects.com/en/2.1.x/changes/#version-2-1-0
• Milestone: https://github.com/pallets/itsdangerous/milestone/4

Sourced from itsdangerous's changelog.

Version 2.1.1

Released 2022-03-09

• Handle date overflow in timed unsign. :pr:296

Version 2.1.0

Released 2022-02-17

• Drop support for Python 3.6. :pr:272

• Remove previously deprecated code. :pr:273

  • JWS functionality: Use a dedicated library such as Authlib instead.
  • import itsdangerous.json: Import json from the standard library instead.

• 38e9d8a Merge pull request #298 from pallets/release-2.1.1
• ff13147 release version 2.1.1
• 25494a8 Merge pull request #296 from alanhamlett/main
• 177196d catch OSError on Windows
• 37f0997 catching year overflow ValueError
• 85b1e3b failing test for year overflow
• 3b76264 start version 2.1.1
• 733783b updates go to 2.1.x
• bfafa65 Merge pull request #288 from pallets/release-2.1.0
• 5b7c2d6 release version 2.1.0
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)