Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Upgrade: Bump the dependencies group in /cdn with 3 updates #46

Closed
wants to merge 1 commit into from
Closed

Upgrade: Bump the dependencies group in /cdn with 3 updates #46

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 27, 2024
edited
Loading

Bumps the dependencies group in /cdn with 3 updates: boto3, botocore and urllib3.

Updates boto3 from 1.34.12 to 1.34.29

Changelog

Sourced from boto3's changelog.

1.34.29

  • api-change:connect: [botocore] Update list and string length limits for predefined attributes.
  • api-change:inspector2: [botocore] This release adds ECR container image scanning based on their lastRecordedPullTime.
  • api-change:sagemaker: [botocore] Amazon SageMaker Automatic Model Tuning now provides an API to programmatically delete tuning jobs.

1.34.28

  • api-change:acm-pca: [botocore] AWS Private CA now supports an option to omit the CDP extension from issued certificates, when CRL revocation is enabled.
  • api-change:lightsail: [botocore] This release adds support for IPv6-only instance plans.

1.34.27

  • api-change:ec2: [botocore] Introduced a new clientToken request parameter on CreateNetworkAcl and CreateRouteTable APIs. The clientToken parameter allows idempotent operations on the APIs.
  • api-change:ecs: [botocore] Documentation updates for Amazon ECS.
  • api-change:outposts: [botocore] DeviceSerialNumber parameter is now optional in StartConnection API
  • api-change:rds: [botocore] This release adds support for Aurora Limitless Database.
  • api-change:storagegateway: [botocore] Add DeprecationDate and SoftwareVersion to response of ListGateways.

1.34.26

  • api-change:inspector2: [botocore] This release adds support for CIS scans on EC2 instances.

1.34.25

  • enhancement:documentation: [botocore] Updates the GitHub issue creation link in our README

1.34.24

  • api-change:appconfigdata: [botocore] Fix FIPS Endpoints in aws-us-gov.
  • api-change:cloud9: [botocore] Doc-only update around removing AL1 from list of available AMIs for Cloud9
  • api-change:cloudfront-keyvaluestore: [botocore] This release improves upon the DescribeKeyValueStore API by returning two additional fields, Status of the KeyValueStore and the FailureReason in case of failures during creation of KeyValueStore.
  • api-change:connectcases: [botocore] This release adds the ability to view audit history on a case and introduces a new parameter, performedBy, for CreateCase and UpdateCase API's.
  • api-change:ec2: [botocore] Documentation updates for Amazon EC2.
  • api-change:ecs: [botocore] This release adds support for Transport Layer Security (TLS) and Configurable Timeout to ECS Service Connect. TLS facilitates privacy and data security for inter-service communications, while Configurable Timeout allows customized per-request timeout and idle timeout for Service Connect services.
  • api-change:finspace: [botocore] Allow customer to set zip default through command line arguments.
  • api-change:organizations: [botocore] Doc only update for quota increase change
  • api-change:rds: [botocore] Introduced support for the InsufficientDBInstanceCapacityFault error in the RDS CreateDBCluster API method. This provides enhanced error handling, ensuring a more robust experience when creating database clusters with insufficient instance capacity.
  • api-change:endpoint-rules: [botocore] Update endpoint-rules client to latest version

... (truncated)

Commits
  • 45be5e9 Merge branch 'release-1.34.29'
  • 40e58d4 Bumping version to 1.34.29
  • c0f6375 Add changelog entries from botocore
  • 8ef5c71 Minor GitHub workflow changes (#3998)
  • 4ab369a Merge branch 'release-1.34.28'
  • 038a03f Merge branch 'release-1.34.28' into develop
  • 0053833 Bumping version to 1.34.28
  • 8177fb0 Add changelog entries from botocore
  • f869e7a Merge branch 'release-1.34.27'
  • 819c0c8 Merge branch 'release-1.34.27' into develop
  • Additional commits viewable in compare view

Updates botocore from 1.34.12 to 1.34.29

Changelog

Sourced from botocore's changelog.

1.34.29

  • api-change:connect: Update list and string length limits for predefined attributes.
  • api-change:inspector2: This release adds ECR container image scanning based on their lastRecordedPullTime.
  • api-change:sagemaker: Amazon SageMaker Automatic Model Tuning now provides an API to programmatically delete tuning jobs.

1.34.28

  • api-change:acm-pca: AWS Private CA now supports an option to omit the CDP extension from issued certificates, when CRL revocation is enabled.
  • api-change:lightsail: This release adds support for IPv6-only instance plans.

1.34.27

  • api-change:ec2: Introduced a new clientToken request parameter on CreateNetworkAcl and CreateRouteTable APIs. The clientToken parameter allows idempotent operations on the APIs.
  • api-change:ecs: Documentation updates for Amazon ECS.
  • api-change:outposts: DeviceSerialNumber parameter is now optional in StartConnection API
  • api-change:rds: This release adds support for Aurora Limitless Database.
  • api-change:storagegateway: Add DeprecationDate and SoftwareVersion to response of ListGateways.

1.34.26

  • api-change:inspector2: This release adds support for CIS scans on EC2 instances.

1.34.25

  • enhancement:documentation: Updates the GitHub issue creation link in our README

1.34.24

  • api-change:appconfigdata: Fix FIPS Endpoints in aws-us-gov.
  • api-change:cloud9: Doc-only update around removing AL1 from list of available AMIs for Cloud9
  • api-change:cloudfront-keyvaluestore: This release improves upon the DescribeKeyValueStore API by returning two additional fields, Status of the KeyValueStore and the FailureReason in case of failures during creation of KeyValueStore.
  • api-change:connectcases: This release adds the ability to view audit history on a case and introduces a new parameter, performedBy, for CreateCase and UpdateCase API's.
  • api-change:ec2: Documentation updates for Amazon EC2.
  • api-change:ecs: This release adds support for Transport Layer Security (TLS) and Configurable Timeout to ECS Service Connect. TLS facilitates privacy and data security for inter-service communications, while Configurable Timeout allows customized per-request timeout and idle timeout for Service Connect services.
  • api-change:finspace: Allow customer to set zip default through command line arguments.
  • api-change:organizations: Doc only update for quota increase change
  • api-change:rds: Introduced support for the InsufficientDBInstanceCapacityFault error in the RDS CreateDBCluster API method. This provides enhanced error handling, ensuring a more robust experience when creating database clusters with insufficient instance capacity.
  • api-change:endpoint-rules: Update endpoint-rules client to latest version

... (truncated)

Commits
  • 535ecc3 Merge branch 'release-1.34.29'
  • 56fd757 Bumping version to 1.34.29
  • cd526a7 Update to latest models
  • bd1d85b Minor GitHub workflow changes (#3104)
  • 27b2aaa Merge branch 'release-1.34.28'
  • 573510f Merge branch 'release-1.34.28' into develop
  • d24a5cc Bumping version to 1.34.28
  • 0d0f0e0 Update to latest models
  • cadb988 Merge branch 'release-1.34.27'
  • e7c5b6a Merge branch 'release-1.34.27' into develop
  • Additional commits viewable in compare view

Updates urllib3 from 1.26.18 to 2.1.0

Release notes

Sourced from urllib3's releases.

2.1.0

Read the v2 migration guide for help upgrading to the latest version of urllib3.

Removals

  • Removed support for the deprecated urllib3[secure] extra. (#2680)
  • Removed support for the deprecated SecureTransport TLS implementation. (#2681)
  • Removed support for the end-of-life Python 3.7. (#3143)

Bugfixes

  • Allowed loading CA certificates from memory for proxies. (#3065)
  • Fixed decoding Gzip-encoded responses which specified x-gzip content-encoding. (#3174)

2.0.7

  • Made body stripped from HTTP requests changing the request method to GET after HTTP 303 "See Other" redirect responses. (GHSA-g4mx-q9vg-27p4)

2.0.6

  • Added the Cookie header to the list of headers to strip from requests when redirecting to a different host. As before, different headers can be set via Retry.remove_headers_on_redirect. (GHSA-v845-jxx5-vc9f)

2.0.5

  • Allowed pyOpenSSL third-party module without any deprecation warning. #3126
  • Fixed default blocksize of HTTPConnection classes to match high-level classes. Previously was 8KiB, now 16KiB. #3066

2.0.4

  • Added support for union operators to HTTPHeaderDict (#2254)
  • Added BaseHTTPResponse to urllib3.__all__ (#3078)
  • Fixed urllib3.connection.HTTPConnection to raise the http.client.connect audit event to have the same behavior as the standard library HTTP client (#2757)
  • Relied on the standard library for checking hostnames in supported PyPy releases (#3087)

2.0.3

  • Allowed alternative SSL libraries such as LibreSSL, while still issuing a warning as we cannot help users facing issues with implementations other than OpenSSL. #3020
  • Deprecated URLs which don't have an explicit scheme #2950
  • Fixed response decoding with Zstandard when compressed data is made of several frames. #3008
  • Fixed assert_hostname=False to correctly skip hostname check. #3051

2.0.2

  • Fixed HTTPResponse.stream() to continue yielding bytes if buffered decompressed data was still available to be read even if the underlying socket is closed. This prevents a compressed response from being truncated. (urllib3/urllib3#3009)

2.0.1

  • Fixed a socket leak when fingerprint or hostname verifications fail. (#2991)
  • Fixed an error when HTTPResponse.read(0) was the first read call or when the internal response body buffer was otherwise empty. (#2998)

2.0.0

Read the v2.0 migration guide for help upgrading to the latest version of urllib3.

Removed

  • Removed support for Python 2.7, 3.5, and 3.6 (#883, #2336).

... (truncated)

Changelog

Sourced from urllib3's changelog.

2.1.0 (2023-11-13)

Read the v2 migration guide <https://urllib3.readthedocs.io/en/latest/v2-migration-guide.html>__ for help upgrading to the latest version of urllib3.

Removals

  • Removed support for the deprecated urllib3[secure] extra. ([#2680](https://github.com/urllib3/urllib3/issues/2680) <https://github.com/urllib3/urllib3/issues/2680>__)
  • Removed support for the deprecated SecureTransport TLS implementation. ([#2681](https://github.com/urllib3/urllib3/issues/2681) <https://github.com/urllib3/urllib3/issues/2681>__)
  • Removed support for the end-of-life Python 3.7. ([#3143](https://github.com/urllib3/urllib3/issues/3143) <https://github.com/urllib3/urllib3/issues/3143>__)

Bugfixes

  • Allowed loading CA certificates from memory for proxies. ([#3065](https://github.com/urllib3/urllib3/issues/3065) <https://github.com/urllib3/urllib3/issues/3065>__)
  • Fixed decoding Gzip-encoded responses which specified x-gzip content-encoding. ([#3174](https://github.com/urllib3/urllib3/issues/3174) <https://github.com/urllib3/urllib3/issues/3174>__)

2.0.7 (2023-10-17)

  • Made body stripped from HTTP requests changing the request method to GET after HTTP 303 "See Other" redirect responses.

2.0.6 (2023-10-02)

  • Added the Cookie header to the list of headers to strip from requests when redirecting to a different host. As before, different headers can be set via Retry.remove_headers_on_redirect.

2.0.5 (2023-09-20)

  • Allowed pyOpenSSL third-party module without any deprecation warning. ([#3126](https://github.com/urllib3/urllib3/issues/3126) <https://github.com/urllib3/urllib3/issues/3126>__)
  • Fixed default blocksize of HTTPConnection classes to match high-level classes. Previously was 8KiB, now 16KiB. ([#3066](https://github.com/urllib3/urllib3/issues/3066) <https://github.com/urllib3/urllib3/issues/3066>__)

2.0.4 (2023-07-19)

  • Added support for union operators to HTTPHeaderDict ([#2254](https://github.com/urllib3/urllib3/issues/2254) <https://github.com/urllib3/urllib3/issues/2254>__)
  • Added BaseHTTPResponse to urllib3.__all__ ([#3078](https://github.com/urllib3/urllib3/issues/3078) <https://github.com/urllib3/urllib3/issues/3078>__)
  • Fixed urllib3.connection.HTTPConnection to raise the http.client.connect audit event to have the same behavior as the standard library HTTP client ([#2757](https://github.com/urllib3/urllib3/issues/2757) <https://github.com/urllib3/urllib3/issues/2757>__)
  • Relied on the standard library for checking hostnames in supported PyPy releases ([#3087](https://github.com/urllib3/urllib3/issues/3087) <https://github.com/urllib3/urllib3/issues/3087>__)

2.0.3 (2023-06-07)

  • Allowed alternative SSL libraries such as LibreSSL, while still issuing a warning as we cannot help users facing issues with implementations other than OpenSSL. ([#3020](https://github.com/urllib3/urllib3/issues/3020) <https://github.com/urllib3/urllib3/issues/3020>__)

... (truncated)

Commits
  • 69be299 Release 2.1.0
  • 77f71d3 Mention myself in README
  • e601a0e Check _has_route within the test function (#3187)
  • f7cd7f3 Stop naming urllib3/requests tests "integration" (#3182)
  • 6fc4260 Use more precise type checks
  • 5fa8ea6 Fix lint on Python 3.12
  • 8727683 Remove Sphinx version pin
  • 5fc48e7 Treat x-gzip content encoding as gzip
  • ff764a0 Allow loading CA certificates from memory for proxies (#3150)
  • b99cc39 Replace deprecated set-output in GitHub Actions
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Upgrade: Bump the dependencies group in /cdn with 3 updates
1844c96 
Bumps the dependencies group in /cdn with 3 updates: [boto3](https://github.com/boto/boto3), [botocore](https://github.com/boto/botocore) and [urllib3](https://github.com/urllib3/urllib3).


Updates `boto3` from 1.34.12 to 1.34.29
- [Release notes](https://github.com/boto/boto3/releases)
- [Changelog](https://github.com/boto/boto3/blob/develop/CHANGELOG.rst)
- [Commits](boto/boto3@1.34.12...1.34.29)

Updates `botocore` from 1.34.12 to 1.34.29
- [Changelog](https://github.com/boto/botocore/blob/develop/CHANGELOG.rst)
- [Commits](boto/botocore@1.34.12...1.34.29)

Updates `urllib3` from 1.26.18 to 2.1.0
- [Release notes](https://github.com/urllib3/urllib3/releases)
- [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst)
- [Commits](urllib3/urllib3@1.26.18...2.1.0)

---
updated-dependencies:
- dependency-name: boto3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: botocore
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: urllib3
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Jan 27, 2024
@TrueBrain
Copy link
Member

@dependabot ignore urllib3 major version

@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Jan 27, 2024

OK, I won't notify you about version 2.x.x of urllib3 again, unless you unignore it.

@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Jan 27, 2024

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Jan 27, 2024
@dependabot dependabot bot deleted the dependabot/pip/cdn/dependencies-bcc6b84cb7 branch January 27, 2024 13:26
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file python Pull requests that update Python code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@TrueBrain