Skip to content

Bump urllib3 from 1.26.12 to 1.26.13

Dariush Mohandes requested to merge dependabot/pip/urllib3-1.26.13 into master

Created by: dependabot[bot]

Bumps urllib3 from 1.26.12 to 1.26.13.

Release notes

Sourced from urllib3's releases.

1.26.13

  • Deprecated the HTTPResponse.getheaders() and HTTPResponse.getheader() methods.
  • Fixed an issue where parsing a URL with leading zeroes in the port would be rejected even when the port number after removing the zeroes was valid.
  • Fixed a deprecation warning when using cryptography v39.0.0.
  • Removed the <4 in the Requires-Python packaging metadata field.
Changelog

Sourced from urllib3's changelog.

1.26.13 (2022-11-23)

  • Deprecated the HTTPResponse.getheaders() and HTTPResponse.getheader() methods.
  • Fixed an issue where parsing a URL with leading zeroes in the port would be rejected even when the port number after removing the zeroes was valid.
  • Fixed a deprecation warning when using cryptography v39.0.0.
  • Removed the <4 in the Requires-Python packaging metadata field.
Commits
  • 64b7f79 Release 1.26.13
  • 977b843 Update publish workflow on 1.26.x to match main
  • 64a3767 Bump cryptography to fix docs build
  • 455960b Support cryptography 39
  • 955da4d [1.26] Strip leading zeros from ports
  • b8c5d45 [1.26] Deprecate HTTPResponse.getheaders() and .getheader() methods
  • 8b8e4b5 Temporary fix for SLSA generator
  • cc9b0dc [1.26] Fix logo URL in README
  • eb47444 [1.26] Fix CI by switching to macOS 11
  • 34d7348 Remove "<4" upper bound from python_requires
  • See full diff in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Merge request reports