- update to 2.8.1:
- Update certificate bundle to match ``certifi`` 2015.9.6.2's weak certificate
bundle.
- Fix a bug in 2.8.0 where requests would raise ``ConnectTimeout`` instead of
``ConnectionError``
- When using the PreparedRequest flow, requests will now correctly respect the
``json`` parameter. Broken in 2.8.0.
- When using the PreparedRequest flow, requests will now correctly handle a
Unicode-string method name on Python 2. Broken in 2.8.0.
- remove requests-do-not-use-bundle.patch (bsc#947357)
- fix requires
OBS-URL: https://build.opensuse.org/request/show/340326
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/python-requests?expand=0&rev=29
- update to 2.8.1:
- Update certificate bundle to match ``certifi`` 2015.9.6.2's weak certificate
bundle.
- Fix a bug in 2.8.0 where requests would raise ``ConnectTimeout`` instead of
``ConnectionError``
- When using the PreparedRequest flow, requests will now correctly respect the
``json`` parameter. Broken in 2.8.0.
- When using the PreparedRequest flow, requests will now correctly handle a
Unicode-string method name on Python 2. Broken in 2.8.0.
- remove requests-do-not-use-bundle.patch (bsc#947357)
- fix requires
OBS-URL: https://build.opensuse.org/request/show/340326
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/python-requests?expand=0&rev=29
- Update certificate bundle to match ``certifi`` 2015.9.6.2's weak certificate
bundle.
- Fix a bug in 2.8.0 where requests would raise ``ConnectTimeout`` instead of
``ConnectionError``
- When using the PreparedRequest flow, requests will now correctly respect the
``json`` parameter. Broken in 2.8.0.
- When using the PreparedRequest flow, requests will now correctly handle a
Unicode-string method name on Python 2. Broken in 2.8.0.
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-requests?expand=0&rev=81
- Update to 2.6.0:
- Fix handling of cookies on redirect. Previously a cookie without a host
value set would use the hostname for the redirected URL exposing requests
users to session fixation attacks and potentially cookie stealing. This was
disclosed privately by Matthew Daley of `BugFuzz <https://bugfuzz.com>`_.
An CVE identifier has not yet been assigned for this. This affects all
versions of requests from v2.1.0 to v2.5.3 (inclusive on both ends).
- Fix error when requests is an ``install_requires`` dependency and ``python
setup.py test`` is run. (#2462)
- Fix error when urllib3 is unbundled and requests continues to use the
vendored import location.
- Include fixes to ``urllib3``'s header handling.
- Requests' handling of unvendored dependencies is now more restrictive.
- Support bytearrays when passed as parameters in the ``files`` argument.
(#2468)
- Avoid data duplication when creating a request with ``str``, ``bytes``, or
``bytearray`` input to the ``files`` argument.
- Revert changes to our vendored certificate bundle. For more context see
(#2455, #2456, and http://bugs.python.org/issue23476)
OBS-URL: https://build.opensuse.org/request/show/298170
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-requests?expand=0&rev=55
- Update tarball to the one upstream is publishing.
- Update to version 2.3.0
+ New ``Response`` property ``is_redirect``, which is true when the
library could have processed this response as a redirection (whether
or not it actually did).
+ The ``timeout`` parameter now affects requests with both ``stream=True``
and ``stream=False`` equally.
+ The change in v2.0.0 to mandate explicit proxy schemes has been reverted.
Proxy schemes now default to ``http://``.
+ The ``CaseInsensitiveDict`` used for HTTP headers now behaves like a normal
dictionary when references as string or viewd in the interpreter.
+ No longer expose Authorization or Proxy-Authorization headers on redirect.
Fix CVE-2014-1829 and CVE-2014-1830 respectively.
+ Authorization is re-evaluated each redirect.
+ On redirect, pass url as native strings.
+ Fall-back to autodetected encoding for JSON when Unicode detection fails.
+ Headers set to ``None`` on the ``Session`` are now correctly not sent.
+ Correctly honor ``decode_unicode`` even if it wasn't used earlier in the
same response.
+ Stop advertising ``compress`` as a supported Content-Encoding.
+ The ``Response.history`` parameter is now always a list.
+ Many, many ``urllib3`` bugfixes.- Fixes incorrect parsing of proxy
credentials that contain a literal or encoded '#' character.
+ Assorted urllib3 fixes.
+ New exception: ``ContentDecodingError``. Raised instead of ``urllib3``
``DecodeError`` exceptions.
+ Avoid many many exceptions from the buggy implementation of
``proxy_bypass`` on OS X in Python 2.6.
+ Avoid crashing when attempting to get authentication credentials
OBS-URL: https://build.opensuse.org/request/show/237323
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/python-requests?expand=0&rev=18
- Update tarball to the one upstream is publishing.
- Update to version 2.3.0
+ New ``Response`` property ``is_redirect``, which is true when the
library could have processed this response as a redirection (whether
or not it actually did).
+ The ``timeout`` parameter now affects requests with both ``stream=True``
and ``stream=False`` equally.
+ The change in v2.0.0 to mandate explicit proxy schemes has been reverted.
Proxy schemes now default to ``http://``.
+ The ``CaseInsensitiveDict`` used for HTTP headers now behaves like a normal
dictionary when references as string or viewd in the interpreter.
+ No longer expose Authorization or Proxy-Authorization headers on redirect.
Fix CVE-2014-1829 and CVE-2014-1830 respectively.
+ Authorization is re-evaluated each redirect.
+ On redirect, pass url as native strings.
+ Fall-back to autodetected encoding for JSON when Unicode detection fails.
+ Headers set to ``None`` on the ``Session`` are now correctly not sent.
+ Correctly honor ``decode_unicode`` even if it wasn't used earlier in the
same response.
+ Stop advertising ``compress`` as a supported Content-Encoding.
+ The ``Response.history`` parameter is now always a list.
+ Many, many ``urllib3`` bugfixes.- Fixes incorrect parsing of proxy
credentials that contain a literal or encoded '#' character.
+ Assorted urllib3 fixes.
+ New exception: ``ContentDecodingError``. Raised instead of ``urllib3``
``DecodeError`` exceptions.
+ Avoid many many exceptions from the buggy implementation of
``proxy_bypass`` on OS X in Python 2.6.
+ Avoid crashing when attempting to get authentication credentials
OBS-URL: https://build.opensuse.org/request/show/237323
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/python-requests?expand=0&rev=18
