mozilla
/
experimenter
зеркало из https://github.com/mozilla/experimenter.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность

chore(deps): Bump flask from 3.0.3 to 3.1.0 in /experimenter/tests (#11794) 

Bumps [flask](https://github.com/pallets/flask) from 3.0.3 to 3.1.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/pallets/flask/releases">flask's
releases</a>.</em></p>
<blockquote>
<h2>3.1.0</h2>
<p>This is the Flask 3.1.0 feature release. A feature release may
include new features, remove previously deprecated code, add new
deprecations, or introduce potentially breaking changes. We encourage
everyone to upgrade, and to use a tool such as <a
href="https://pypi.org/project/pip-tools/">pip-tools</a> to pin all
dependencies and control upgrades. Test with warnings treated as errors
to be able to adapt to deprecation warnings early.</p>
<p>PyPI: <a
href="https://pypi.org/project/Flask/3.1.0/">https://pypi.org/project/Flask/3.1.0/</a>
Changes: <a
href="https://flask.palletsprojects.com/en/stable/changes/#version-3-1-0">https://flask.palletsprojects.com/en/stable/changes/#version-3-1-0</a>
Milestone: <a
href="https://github.com/pallets/flask/milestone/33?closed=1">https://github.com/pallets/flask/milestone/33?closed=1</a></p>
<ul>
<li>Drop support for Python 3.8. <a
href="https://redirect.github.com/pallets/flask/issues/5623">#5623</a></li>
<li>Update minimum dependency versions to latest feature releases.
Werkzeug &gt;= 3.1, ItsDangerous &gt;= 2.2, Blinker &gt;= 1.9. <a
href="https://redirect.github.com/pallets/flask/issues/5624">#5624</a>,
<a
href="https://redirect.github.com/pallets/flask/issues/5633">#5633</a></li>
<li>Provide a configuration option to control automatic option
responses. <a
href="https://redirect.github.com/pallets/flask/issues/5496">#5496</a></li>

<li><code>Flask.open_resource</code>/<code>open_instance_resource</code>
and <code>Blueprint.open_resource</code> take an <code>encoding</code>
parameter to use when opening in text mode. It defaults to
<code>utf-8</code>. <a
href="https://redirect.github.com/pallets/flask/issues/5504">#5504</a></li>
<li><code>Request.max_content_length</code> can be customized
per-request instead of only through the <code>MAX_CONTENT_LENGTH</code>
config. Added <code>MAX_FORM_MEMORY_SIZE</code> and
<code>MAX_FORM_PARTS</code> config. Added documentation about resource
limits to the security page. <a
href="https://redirect.github.com/pallets/flask/issues/5625">#5625</a></li>
<li>Add support for the <code>Partitioned</code> cookie attribute
(CHIPS), with the <code>SESSION_COOKIE_PARTITIONED</code> config. <a
href="https://redirect.github.com/pallets/flask/issues/5472">#5472</a></li>
<li><code>-e path</code> takes precedence over default <code>.env</code>
and <code>.flaskenv</code> files. <code>load_dotenv</code> loads default
files in addition to a path unless <code>load_defaults=False</code> is
passed. <a
href="https://redirect.github.com/pallets/flask/issues/5628">#5628</a></li>
<li>Support key rotation with the <code>SECRET_KEY_FALLBACKS</code>
config, a list of old secret keys that can still be used for unsigning.
Extensions will need to add support. <a
href="https://redirect.github.com/pallets/flask/issues/5621">#5621</a></li>
<li>Fix how setting <code>host_matching=True</code> or
<code>subdomain_matching=False</code> interacts with
<code>SERVER_NAME</code>. Setting <code>SERVER_NAME</code> no longer
restricts requests to only that domain. <a
href="https://redirect.github.com/pallets/flask/issues/5553">#5553</a></li>
<li><code>Request.trusted_hosts</code> is checked during routing, and
can be set through the <code>TRUSTED_HOSTS</code> config. <a
href="https://redirect.github.com/pallets/flask/issues/5636">#5636</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/pallets/flask/blob/main/CHANGES.rst">flask's
changelog</a>.</em></p>
<blockquote>
<h2>Version 3.1.0</h2>
<p>Released 2024-11-13</p>
<ul>
<li>Drop support for Python 3.8. :pr:<code>5623</code></li>
<li>Update minimum dependency versions to latest feature releases.
Werkzeug &gt;= 3.1, ItsDangerous &gt;= 2.2, Blinker &gt;= 1.9.
:pr:<code>5624,5633</code></li>
<li>Provide a configuration option to control automatic option
responses. :pr:<code>5496</code></li>

<li><code>Flask.open_resource</code>/<code>open_instance_resource</code>
and
<code>Blueprint.open_resource</code> take an <code>encoding</code>
parameter to use when
opening in text mode. It defaults to <code>utf-8</code>.
:issue:<code>5504</code></li>
<li><code>Request.max_content_length</code> can be customized
per-request instead of only
through the <code>MAX_CONTENT_LENGTH</code> config. Added
<code>MAX_FORM_MEMORY_SIZE</code> and <code>MAX_FORM_PARTS</code>
config. Added documentation
about resource limits to the security page.
:issue:<code>5625</code></li>
<li>Add support for the <code>Partitioned</code> cookie attribute
(CHIPS), with the
<code>SESSION_COOKIE_PARTITIONED</code> config.
:issue:<code>5472</code></li>
<li><code>-e path</code> takes precedence over default <code>.env</code>
and <code>.flaskenv</code> files.
<code>load_dotenv</code> loads default files in addition to a path
unless
<code>load_defaults=False</code> is passed.
:issue:<code>5628</code></li>
<li>Support key rotation with the <code>SECRET_KEY_FALLBACKS</code>
config, a list of old
secret keys that can still be used for unsigning. Extensions will need
to
add support. :issue:<code>5621</code></li>
<li>Fix how setting <code>host_matching=True</code> or
<code>subdomain_matching=False</code>
interacts with <code>SERVER_NAME</code>. Setting
<code>SERVER_NAME</code> no longer restricts
requests to only that domain. :issue:<code>5553</code></li>
<li><code>Request.trusted_hosts</code> is checked during routing, and
can be set through
the <code>TRUSTED_HOSTS</code> config. :issue:<code>5636</code></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="ab81496641"><code>ab81496</code></a>
release version 3.1.0</li>
<li><a
href="70602a196a"><code>70602a1</code></a>
remove test pypi</li>
<li><a
href="6748a09341"><code>6748a09</code></a>
update dev dependencies</li>
<li><a
href="22c48a738b"><code>22c48a7</code></a>
Merge remote-tracking branch 'origin/stable'</li>
<li><a
href="2eab96a32a"><code>2eab96a</code></a>
use generic bases for session (<a
href="https://redirect.github.com/pallets/flask/issues/5638">#5638</a>)</li>
<li><a
href="f49dbfd3e4"><code>f49dbfd</code></a>
use generic bases for session</li>
<li><a
href="7b21d43d4c"><code>7b21d43</code></a>
configure and check <code>request.trusted_hosts</code> (<a
href="https://redirect.github.com/pallets/flask/issues/5637">#5637</a>)</li>
<li><a
href="4f7156f2c3"><code>4f7156f</code></a>
configure and check trusted_hosts</li>
<li><a
href="10bdf61a0f"><code>10bdf61</code></a>
setting <code>SERVER_NAME</code> does not restrict routing for both
<code>subdomain_matching</code>...</li>
<li><a
href="4995a775df"><code>4995a77</code></a>
fix subdomain_matching=False behavior</li>
<li>Additional commits viewable in <a
href="https://github.com/pallets/flask/compare/3.0.3...3.1.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=flask&package-manager=pip&previous-version=3.0.3&new-version=3.1.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
This commit is contained in:
dependabot[bot] 2024-11-18 15:59:22 -05:00 коммит произвёл GitHub
Родитель 9973df4421
Коммит 7152b63b67
Не найден ключ, соответствующий данной подписи
Идентификатор ключа GPG: B5690EEEBB952194
2 изменённых файлов: 17 добавлений и 17 удалений
Показать статистику Скачать Patch файл Скачать Diff файл Показать все файлы Свернуть все файлы

32
experimenter/tests/poetry.lock сгенерированный
Просмотреть файл

@ -43,13 +43,13 @@ files = [
[[package]]
name = "blinker"
version = "1.8.2"
version = "1.9.0"
description = "Fast, simple object-to-object and broadcast signaling"
optional = false
python-versions = ">=3.8"
python-versions = ">=3.9"
files = [
{file = "blinker-1.8.2-py3-none-any.whl", hash = "sha256:1779309f71bf239144b9399d06ae925637cf6634cf6bd131104184531bf67c01"},
{file = "blinker-1.8.2.tar.gz", hash = "sha256:8f77b09d3bf7c795e969e9486f39c2c5e9c39d4ee07424be2bc594ece9642d83"},
{file = "blinker-1.9.0-py3-none-any.whl", hash = "sha256:ba0efaa9080b619ff2f3459d1d500c57bddea4a6b424b60a91141db6fd2f08bc"},
{file = "blinker-1.9.0.tar.gz", hash = "sha256:b4ce2265a7abece45e7cc896e98dbebe6cead56bcf805a3d23136d145f5445bf"},
]
[[package]]
@ -322,21 +322,21 @@ testing = ["hatch", "pre-commit", "pytest", "tox"]
[[package]]
name = "flask"
version = "3.0.3"
version = "3.1.0"
description = "A simple framework for building complex web applications."
optional = false
python-versions = ">=3.8"
python-versions = ">=3.9"
files = [
{file = "flask-3.0.3-py3-none-any.whl", hash = "sha256:34e815dfaa43340d1d15a5c3a02b8476004037eb4840b34910c6e21679d288f3"},
{file = "flask-3.0.3.tar.gz", hash = "sha256:ceb27b0af3823ea2737928a4d99d125a06175b8512c445cbd9a9ce200ef76842"},
{file = "flask-3.1.0-py3-none-any.whl", hash = "sha256:d667207822eb83f1c4b50949b1623c8fc8d51f2341d65f72e1a1815397551136"},
{file = "flask-3.1.0.tar.gz", hash = "sha256:5f873c5184c897c8d9d1b05df1e3d01b14910ce69607a117bd3277098a5836ac"},
]
[package.dependencies]
blinker = ">=1.6.2"
blinker = ">=1.9"
click = ">=8.1.3"
itsdangerous = ">=2.1.2"
itsdangerous = ">=2.2"
Jinja2 = ">=3.1.2"
Werkzeug = ">=3.0.0"
Werkzeug = ">=3.1"
[package.extras]
async = ["asgiref (>=3.2)"]
@ -1369,13 +1369,13 @@ test = ["websockets"]
[[package]]
name = "werkzeug"
version = "3.0.6"
version = "3.1.3"
description = "The comprehensive WSGI web application library."
optional = false
python-versions = ">=3.8"
python-versions = ">=3.9"
files = [
{file = "werkzeug-3.0.6-py3-none-any.whl", hash = "sha256:1bc0c2310d2fbb07b1dd1105eba2f7af72f322e1e455f2f93c993bee8c8a5f17"},
{file = "werkzeug-3.0.6.tar.gz", hash = "sha256:a8dd59d4de28ca70471a34cba79bed5f7ef2e036a76b3ab0835474246eb41f8d"},
{file = "werkzeug-3.1.3-py3-none-any.whl", hash = "sha256:54b78bf3716d19a65be4fceccc0d1d7b89e608834989dfae50ea87564639213e"},
{file = "werkzeug-3.1.3.tar.gz", hash = "sha256:60723ce945c19328679790e3282cc758aa4a6040e4bb330f53d30fa546d44746"},
]
[package.dependencies]
@ -1738,4 +1738,4 @@ test = ["zope.security", "zope.testrunner"]
[metadata]
lock-version = "2.0"
python-versions = "^3.10"
content-hash = "eb3e40d714254d4c4c15bbc21fd147eb2a59da4db3ea8b879132cfbf9397c091"
content-hash = "98a9000e6da1726a29f183abafea90339e88e300cb717888e322fce6693c1508"

2
experimenter/tests/pyproject.toml
Просмотреть файл

@ -61,7 +61,7 @@ wrapt = "^1.16.0"
pytest-rerunfailures = "^14.0"
setuptools = "^70.3.0"
dataclasses-json = "^0.6.7"
flask = "^3.0.3"
flask = "^3.1.0"
[build-system]