Version 3.6.6

3.6.6 (2024-05-27)

Fixed

• ReasonFlag not properly translated to readable text when peer or intermediate certificate is revoked.

Version 3.6.5

3.6.5 (2024-05-22)

Fixed

• Support localhost as a valid domain for cookies. The standard library does not allow this special
  domain. Researches showed that a valid domain should have at least two dots (e.g. abc.com. and xyz.tld. but not com.).
  Public suffixes cannot be used as a cookie domain for security reasons, but as localhost isn't one we are explicitly
  allowing it. Reported in httpie/cli#602
  RequestsCookieJar set a default policy that circumvent that limitation, if you specified a custom cookie policy then this
  fix won't be applied.

Changed

• Lazy load the OCSP extension in order to improve the import performance.

Removed

• Class variable disable_thread in AsyncSession that is no longer relevant since the native asyncio implementation. (PR #122)

Version 3.6.4

3.6.4 (2024-05-16)

Changed

• Avoid parsing X509 peer certificate in the certificate revocation check process over and over again.
• Avoid iterating over header items redundantly or needlessly.

Version 3.6.3

3.6.3 (2024-05-06)

Fixed

• Fixed encoding data with None values and other objects. This was a regression introduced in our v3. #119

Changed

• Various minor performance improvements.

version 3.6.2

3.6.2 (2024-05-02)

Fixed

• "Help" program python -m niquests.help that depended on h2 while not required anymore.
• Minor performance regression in async while checking OCSP when certificate isn't eligible (e.g. no OCSP url provided).

Changed

• urllib3.future lower bound constraint has been raised to version 2.7.905 to ensure inclusion of jh2 instead of h2.

Version 3.6.1

3.6.1 (2024-04-22)

Fixed

• Handling broken environments with a graceful exception using a detailed error message.

Version 3.6.0

3.6.0 (2024-04-20)

Added

• Support for qh3 version 1.0.0
  This qh3 release enable a greater flexibility by dropping cryptography. We had to adapt the OCSP code as we
  relied on cryptography. HTTP/3 experience is greatly improved.

Changed

• urllib3.future lower bound constraint has been raised to version 2.7.904 to ensure support for the last qh3 release.

Fixed

• Improved compatibility with third party mocking tool that are bound to requests.
• OCSP check did not warn if the HTTP server responded with a non 2xx response in strict mode.

Version 3.5.5

3.5.5 (2024-03-25)

Added

• Support for Happy Eyeballs. This feature is disabled by default, you must pass happy_eyeballs=True within your session
  constructor or http adapter in order to leverage this.

Fixed

• Missed close implementation in AsyncSession causing the underlying poolmanager to remain open.
• Additional OCSP requests (following a redirect) did not use specified custom DNS resolver.

Changed

• urllib3.future lower bound constraint has been raised to version 2.7.900 for the newly added happy eyeballs feature.

Version 3.5.4

3.5.4 (2024-03-17)

Added

• Support to verify the peer certificate fingerprint using verify=... by passing a string using the following format:
  verify="sha256_748c76348778cb4a536e7ec12bc9aa559c12770bd1419c7ffe516006e1dea0ec". Doing so disable the certificate
  usual verification and only checks for its fingerprint match.

Fixed

• Multiplexed request in async did not support awaitable in hooks.
• Setting verify=... and cert=... then change it for the same host did not apply to the underlying (existing) connection pool.

Misc

• Overall performance improvements in both async and sync requests.
• Update pre-commit dependencies (ruff, pyupgrade, and mypy).
• Fixed SessionRedirect in tests that produced an incomplete Response instance that wasn't suitable for tests.

Version 3.5.3

3.5.3 (2024-03-07)

Fixed

• A rare error that occurs on PyPy, especially on Windows, complaining about a missing release call.

Misc

• Allow latest dependencies version for httpbin, Flask and werkzeug in tests.
• Remove wheel from test dependencies.