82000e84e4- Add revert-caching-default-sslcontext.patch upstream patch to avoid problems with certificate caching in sslcontext. bsc#1246104, gh#psf/requests#6767
devel
Daniel Garcia2025-07-14 09:35:54 +00:00
7f1a0ac2c7Accepting request 1284404 from devel:languages:pythonAna Guerrero2025-06-11 14:20:27 +00:00
b3957d941a- update to 2.32.4: * CVE-2024-47081 Fixed an issue where a maliciously crafted URL and trusted environment will retrieve credentials for the wrong hostname/machine from a netrc file * Numerous documentation improvements * Added support for pypy 3.11 for Linux and macOS. * Dropped support for pypy 3.9 following its end of support. - drop CVE-2024-47081.patch (merged upstream) - Switch to pyproject macros. - Remove Requires on python-py, it should have been removed earlier.Dirk Mueller2025-06-10 09:43:04 +00:00
c36468b791Accepting request 1282999 from devel:languages:pythonAna Guerrero2025-06-10 06:57:19 +00:00
ef25f38bb8Accepting request 1208547 from devel:languages:pythonAna Guerrero2024-10-18 13:52:52 +00:00
963e9791a9- Add patch inject-default-ca-bundles.patch: * Inject the default CA bundles if they are not specified. (bsc#1226321, bsc#1231500)Steve Kowalik2024-10-17 06:31:35 +00:00
574613ff8a- Remove Requires on python-py, it should have been removed earlier.Steve Kowalik2024-08-29 03:18:21 +00:00
d0c9d9cc6dAccepting request 1179087 from devel:languages:pythonAna Guerrero2024-06-07 13:01:52 +00:00
feb7f39f9a- update to 2.32.3: * Fixed bug breaking the ability to specify custom SSLContexts in sub-classes of HTTPAdapter. * Fixed issue where Requests started failing to run on Python versions compiled without the ssl module. * To provide a more stable migration for custom HTTPAdapters impacted by the CVE changes in 2.32.0, we've renamed _get_connection to a new public API, get_connection_with_tls_context. Existing custom HTTPAdapters will need to migrate their code to use this new API. get_connection is * Fixed an issue where setting verify=False on the first request from a Session will cause subsequent requests to the same origin to also ignore cert verification, * verify=True now reuses a global SSLContext which should improve request time * Requests now supports optional use of character detection (chardet or charset_normalizer) when repackaged or vendored. This enables pip and other projects to minimize theirDirk Mueller2024-06-06 19:38:51 +00:00
6f36943a32Accepting request 1175867 from devel:languages:pythonAna Guerrero2024-05-24 17:50:01 +00:00
a8abd1de39Accepting request 1175866 from home:mcalabkova:branches:devel:languages:pythonMarkéta Machová2024-05-22 14:11:59 +00:00
022a931264Accepting request 1175561 from home:mcalabkova:branches:devel:languages:python:pytestMarkéta Machová2024-05-21 12:50:09 +00:00
35db5c9f34Accepting request 1110368 from devel:languages:pythonAna Guerrero2023-09-12 19:02:19 +00:00
9799752179- switch from unmaintained brotlipy to Brotli (same as urllib3) - allow using newest version of charset-normalizer (3.0+) - Skip test_pyopenssl_redirect due to gh#psf/requests#5846 - add 5711.patch from upstream instead to remove idna<3 pin can install the new idna dropping python2 - refreshed requests-no-hardcoded-version.patch - Do not require full python, (implicit) python-base is sufficient. - Skip one more test that is flaky - -test subpackage must be empty * Only load the idna library when we’ve determined we need it. * Fixed an issue with JSON encoding detection, specifically detecting - Fixed requests-do-not-use-bundle.patch requests-do-not-use-bundle.patch - fix license (Apache-2.0 only) - Now has a "security" package extras set, - Bugfix for responses that attempt to redirect to themselves - Support for connect timeouts! Timeout now accepts a tuple (connect, read) which is used to set individual connect and - update to 1.2.0: + charade: LGPL-2.1+Dirk Mueller2023-09-11 20:42:01 +00:00
f1ac59bf1f- Security Update to 2.31.0 (bsc#1211674): Versions of Requests between v2.3.0 and v2.30.0 are vulnerable to potential forwarding of Proxy-Authorization headers to destination servers when following HTTPS redirects. When proxies are defined with user info (https://user:pass@proxy:8080), Requests will construct a Proxy-Authorization header that is attached to the request to authenticate with the proxy. In cases where Requests receives a redirect response, it previously reattached the Proxy-Authorization header incorrectly, resulting in the value being sent through the tunneled connection to the destination server. Users who rely on defining their proxy credentials in the URL are strongly encouraged to upgrade to Requests 2.31.0+ to prevent unintentional leakage and rotate their proxy credentials once the change has been fully deployed. Users who do not use a proxy or do not supply their proxy credentials through the user information portion of their proxy URL are not subject to this vulnerability. Full details can be read in our Github Security Advisory and CVE-2023-32681.Daniel Garcia2023-06-12 12:04:25 +00:00
1bad819eabAccepting request 1085066 from home:ojkastl_buildservice:Branch_devel_languages_pythonDirk Mueller2023-05-05 12:13:37 +00:00
9b183aa4ab- Update to 2.30.0: * Added support for urllib3 2.0.  * Defer chunked requests to the urllib3 implementation to improve standardization. * Relax header component requirements to support bytes/str subclasses.Steve Kowalik2023-05-04 01:49:16 +00:00
d539fb7377- Don't upper limit version of charset_normalized at runtime, too. * Added change to patch: requests-no-hardcoded-version.patchMatej Cepl2023-02-24 11:33:24 +00:00
ec95131598Accepting request 1067584 from devel:languages:pythonMatej Cepl2023-02-24 11:02:42 +00:00
855fe1ea2b- update to 2.28.2: - Requests now supports charset\_normalizer 3.x. - Updated MissingSchema exception to suggest https scheme rather than http. - drop requests-allow-charset-normalizer-3.patch (upstream)Dirk Mueller2023-01-21 10:02:15 +00:00
00512a584aAccepting request 944102 from home:stroeder:pythonMatej Cepl2022-01-05 20:06:25 +00:00
66136dfc9c- update to 2.27.0: * Officially added support for Python 3.10. (#5928) * Added a requests.exceptions.JSONDecodeError to unify JSON exceptions between Python 2 and 3. This gets raised in the response.json() method, and is backwards compatible as it inherits from previously thrown exceptions. Can be caught from requests.exceptions.RequestException as well. (#5856) * Improved error text for misnamed InvalidSchema and MissingSchema exceptions. This is a temporary fix until exceptions can be renamed (Schema->Scheme). (#6017) * Improved proxy parsing for proxy URLs missing a scheme. This will address recent changes to urlparse in Python 3.9+. (#5917) * Fixed defect in extract_zipped_paths which could result in an infinite loop for some paths. (#5851) * Fixed handling for AttributeError when calculating length of files obtained by Tarfile.extractfile(). (#5239) * Fixed urllib3 exception leak, wrapping urllib3.exceptions.InvalidHeader with requests.exceptions.InvalidHeader. (#5914) * Fixed bug where two Host headers were sent for chunked requests. (#5391) * Fixed regression in Requests 2.26.0 where Proxy-Authorization was incorrectly stripped from all requests sent with Session.send. (#5924) * Fixed performance regression in 2.26.0 for hosts with a large number of proxies available in the environment. (#5924) * Fixed idna exception leak, wrapping UnicodeError with requests.exceptions.InvalidURL for URLs with a leading dot (.) in the domain. (#5414) * Requests support for Python 2.7 and 3.6 will be ending in 2022. While we don't have exact dates, Requests 2.27.x is likely to be the last release series providing support.Dirk Mueller2022-01-04 16:22:38 +00:00
d746ba43cb- Correct {Build,}Requires for charset_normalizer. - Add trustme to BuildRequires for the test suite.Steve Kowalik2021-10-28 06:56:55 +00:00
6590e207df- update to 2.26.0: - Session.send now correctly resolves proxy configurations from both the Session and Request. Behavior now matches Session.request. (#5681) - Fixed a race condition in zip extraction when using Requests in parallel from zip archive. (#5707) - Instead of chardet, use the MIT-licensed charset_normalizer for Python3 to remove license ambiguity for projects bundling requests. - Requests now supports idna 3.x on Python 3. idna 2.x will continue to be used on Python 2 installations. (#5711) - The requests[security] extra has been converted to a no-op install. PyOpenSSL is no longer the recommended secure option for Requests. (#5867) - Requests has officially dropped support for Python 3.5. (#5867) - drop 5711.patch: upstreamDirk Mueller2021-10-26 21:10:00 +00:00
db029592a9- update to 2.25.1: - Requests now treats application/json as utf8 by default. Resolving inconsistencies between r.text and r.json output. (#5673)Dirk Mueller2020-12-19 09:57:29 +00:00
65ce8b1dec- update to 2.25.0: * Added support for NETRC environment variable. (#5643) * Requests now supports urllib3 v1.26. * Requests v2.25.x will be the last release series with support for Python 3.5. - refreshed requests-no-hardcoded-version.patchDirk Mueller2020-11-26 12:40:34 +00:00
7143771b59- Hardcode pytest 3.x series as upstream even in git does not work with newer versions (they pinned the release)
Tomáš Chvátal
2019-07-22 07:58:25 +00:00
29cefd379a- Update to 2.22.0: * Requests now supports urllib3 v1.25.2. (note: 1.25.0 and 1.25.1 are incompatible) - Rebase requests-no-hardcoded-version.patch
Tomáš Chvátal
2019-05-25 08:45:30 +00:00
6c2fb6b2eaAccepting request 697101 from devel:languages:pythonYuchen Lin2019-04-26 20:41:57 +00:00
1a4a56e41c- Do not hardcode version requirements in setup.py allowing us to update and verify functionality on our own: * requests-no-hardcoded-version.patch
Tomáš Chvátal
2019-04-23 10:46:50 +00:00
671ee91793- Skip one more test that is flaky
Tomáš Chvátal
2019-02-25 15:45:21 +00:00
7dbc844192- Update to 2.21.0: * Update various dependencies to match reality - Update the reqs based on upstream - Fix the multibuild to match other packages
Tomáš Chvátal
2019-02-15 11:41:38 +00:00
ac56201d52Accepting request 671885 from devel:languages:python
Stephan Kulow
2019-02-08 12:46:32 +00:00
05c79ceb31Accepting request 671881 from home:glaubitz:branches:devel:languages:pythonAntonio Larrosa2019-02-05 14:03:59 +00:00
2b5c82d4b2- Move name ahead of version in spec file to resolve build issues on older distributions - fdupe more thoroughly.Matej Cepl2018-12-31 11:25:50 +00:00
Ana Guerrero
Daniel Garcia
Dirk Mueller
Steve Kowalik
Dominique Leuenberger
Markéta Machová
Matej Cepl
Adrian Schröter
Fabian Vogt
OBS User buildservice-autocommit
Tomáš Chvátal
Ondřej Súkup
Yuchen Lin
Stephan Kulow
Antonio Larrosa
Todd R