Bump werkzeug from 0.11.11 to 2.2.1 #148

dependabot · 2022-07-28T10:09:47Z

Bumps werkzeug from 0.11.11 to 2.2.1.

Release notes

2.2.1

This is a fix release for the 2.2.0 feature release.

Changes: https://werkzeug.palletsprojects.com/en/2.2.x/changes/#version-2-2-1

Milestone: https://github.com/pallets/werkzeug/milestone/24?closed=1

2.2.0

This is a feature release, which includes new features and removes previously deprecated features. The 2.2.x branch is now the supported bugfix branch, the 2.1.x branch will become a tag marking the end of support for that branch. We encourage everyone to upgrade, and to use a tool such as pip-tools to pin all dependencies and control upgrades.

Changes: https://werkzeug.palletsprojects.com/en/2.2.x/changes/#version-2-2-0

Milestone: https://github.com/pallets/werkzeug/milestone/20?closed=1

2.1.2

This is a fix release for the 2.1.0 feature release.

Changes: https://werkzeug.palletsprojects.com/en/2.1.x/changes/#version-2-1-2

Milestone: https://github.com/pallets/werkzeug/milestone/22?closed=1

2.1.1

This is a fix release for the 2.1.0 feature release.

Changes: https://werkzeug.palletsprojects.com/en/2.1.x/changes/#version-2-1-1

Milestone: https://github.com/pallets/werkzeug/milestone/19?closed=1

2.1.0

This is a feature release, which includes new features and removes previously deprecated features. The 2.1.x branch is now the supported bugfix branch, the 2.0.x branch will become a tag marking the end of support for that branch. We encourage everyone to upgrade, and to use a tool such as pip-tools to pin all dependencies and control upgrades.

Changes: https://werkzeug.palletsprojects.com/en/2.1.x/changes/#version-2-1-0

Milestone: https://github.com/pallets/werkzeug/milestone/16?closed=1

2.0.3

Changes: https://werkzeug.palletsprojects.com/en/2.0.x/changes/#version-2-0-3

Milestone: https://github.com/pallets/werkzeug/milestone/18?closed=1

2.0.2

Changes: https://werkzeug.palletsprojects.com/en/2.0.x/changes/#version-2-0-2

2.0.1

Changes: https://werkzeug.palletsprojects.com/en/2.0.x/changes/#version-2-0-1

2.0.0

New major versions of all the core Pallets libraries, including Werkzeug 2.0, have been released! 🎉

Read the announcement on our blog: https://palletsprojects.com/blog/flask-2-0-released/

Read the full list of changes: https://werkzeug.palletsprojects.com/changes/#version-2-0-0

Retweet the announcement on Twitter: https://twitter.com/PalletsTeam/status/1392266507296514048

Follow our blog, Twitter, or GitHub to see future announcements.

This represents a significant amount of work, and there are quite a few changes. Be sure to carefully read the changelog, and use tools such as pip-compile and Dependabot to pin your dependencies and control your updates.

... (truncated)

Changelog

Sourced from werkzeug's changelog.

Version 2.2.1

Released 2022-07-27

Fix router so that /path/ will match a rule /path if strict slashes mode is disabled for the rule. :issue:2467

Fix router so that partial part matches are not allowed i.e. /2df does not match /<int>. :pr:2470

Fix router static part weighting, so that simpler routes are matched before more complex ones. :issue:2471

Restore ValidationError to be importable from werkzeug.routing. :issue:2465

Version 2.2.0

Released 2022-07-23

Deprecated get_script_name, get_query_string, peek_path_info, pop_path_info, and extract_path_info. :pr:2461

Remove previously deprecated code. :pr:2461

Add MarkupSafe as a dependency and use it to escape values when rendering HTML. :issue:2419

Added the werkzeug.debug.preserve_context mechanism for restoring context-local data for a request when running code in the debug console. :pr:2439

Fix compatibility with Python 3.11 by ensuring that end_lineno and end_col_offset are present on AST nodes. :issue:2425

Add a new faster matching router based on a state machine. :pr:2433

Names within options headers are always converted to lowercase. This matches :rfc:6266 that the case is not relevant. :issue:2442

AnyConverter validates the value passed for it when building URLs. :issue:2388

The debugger shows enhanced error locations in tracebacks in Python 3.11. :issue:2407

Added Sans-IO is_resource_modified and parse_cookie functions based on WSGI versions. :issue:2408

Added Sans-IO get_content_length function. :pr:2415

Don't assume a mimetype for test responses. :issue:2450

Type checking FileStorage accepts os.PathLike. :pr:2418

Version 2.1.2

Released 2022-04-28

... (truncated)

Commits

410c878 release version 2.2.1
cdee5ce Merge pull request #2472 from pgjones/2.2.x
56a24f7 Bugfix the calculation of weighting based on static parts
5c85706 Merge pull request #2470 from pgjones/2.2.x
b59eb67 Switch $\Z to \Z in matching regex
3a408ed Bugfix ensure that the entire part is matched
76ccf1f Merge pull request #2468 from pgjones/2.2.x
364d9c2 Restore ValidationError as part of the werkzeug.routing API
fa76cbe Ensure that rules without strict slashes match paths with slashes
7ae6bc1 Merge branch '2.1.x' into 2.2.x
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [werkzeug](https://github.com/pallets/werkzeug) from 0.11.11 to 2.2.1. - [Release notes](https://github.com/pallets/werkzeug/releases) - [Changelog](https://github.com/pallets/werkzeug/blob/main/CHANGES.rst) - [Commits](pallets/werkzeug@0.11.11...2.2.1) --- updated-dependencies: - dependency-name: werkzeug dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot · 2022-08-09T10:09:42Z

Superseded by #151.

dependabot bot added the dependencies Pull requests that update a dependency file label Jul 28, 2022

dependabot bot mentioned this pull request Jul 28, 2022

Bump werkzeug from 0.11.11 to 2.2.0 #147

Closed

dependabot bot closed this Aug 9, 2022

dependabot bot deleted the dependabot/pip/werkzeug-2.2.1 branch August 9, 2022 10:09

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump werkzeug from 0.11.11 to 2.2.1 #148

Bump werkzeug from 0.11.11 to 2.2.1 #148

dependabot bot commented on behalf of github Jul 28, 2022

dependabot bot commented on behalf of github Aug 9, 2022

Bump werkzeug from 0.11.11 to 2.2.1 #148

Bump werkzeug from 0.11.11 to 2.2.1 #148

Conversation

dependabot bot commented on behalf of github Jul 28, 2022

2.2.1

2.2.0

2.1.2

2.1.1

2.1.0

2.0.3

2.0.2

2.0.1

2.0.0

Version 2.2.1

Version 2.2.0

Version 2.1.2

dependabot bot commented on behalf of github Aug 9, 2022