jianweibo icon indicating copy to clipboard operation
jianweibo copied to clipboard

Published 20 hours ago verified publisher icon chenjiandongx

Bump httpie from 0.9.9 to 3.1.0

Open dependabot[bot] opened this issue 2 years ago • 0 comments

Bumps httpie from 0.9.9 to 3.1.0.

Release notes

Sourced from httpie's releases.

HTTPie 3.1.0

  • SECURITY Fixed the vulnerability that caused exposure of cookies on redirects to third party hosts. (#1312)
  • Fixed escaping of integer indexes with multiple backslashes in the nested JSON builder. (#1285)
  • Fixed displaying of status code without a status message on non-auto themes. (#1300)
  • Fixed redundant issuance of stdin detection warnings on some rare cases due to underlying implementation. (#1303)
  • Fixed double --quiet so that it will now suppress all python level warnings. (#1271)
  • Added support for specifying certificate private key passphrases through --cert-key-pass and prompts. (#946)
  • Added httpie cli export-args command for exposing the parser specification for the http/https commands. (#1293)
  • Improved regulation of top-level arrays. (#1292)
  • Improved UI layout for standalone invocations. (#1296)

HTTPie 1.0.2

  • Fixed tests for installation with pyOpenSSL.

HTTPie 1.0.1

  • Removed external URL calls from tests.

HTTPie 1.0.0

  • Added --style=auto which follows the terminal ANSI color styles.
  • Added support for selecting TLS 1.3 via --ssl=tls1.3 (available once implemented in upstream libraries).
  • Added true/false as valid values for --verify (in addition to yes/no) and the boolean value is case-insensitive.
  • Changed the default --style from solarized to auto (on Windows it stays fruity).
  • Fixed default headers being incorrectly case-sensitive.
  • Removed Python 2.6 support.
Changelog

Sourced from httpie's changelog.

3.1.0 (2022-03-08)

  • SECURITY Fixed the vulnerability that caused exposure of cookies on redirects to third party hosts. (#1312)
  • Fixed escaping of integer indexes with multiple backslashes in the nested JSON builder. (#1285)
  • Fixed displaying of status code without a status message on non-auto themes. (#1300)
  • Fixed redundant issuance of stdin detection warnings on some rare cases due to underlying implementation. (#1303)
  • Fixed double --quiet so that it will now suppress all python level warnings. (#1271)
  • Added support for specifying certificate private key passphrases through --cert-key-pass and prompts. (#946)
  • Added httpie cli export-args command for exposing the parser specification for the http/https commands. (#1293)
  • Improved regulation of top-level arrays. (#1292)
  • Improved UI layout for standalone invocations. (#1296)

3.0.2 (2022-01-24)

What’s new in HTTPie for Terminal 3.0 →

  • Fixed usage of httpie when there is a presence of a config with default_options. (#1280)

3.0.1 (2022-01-23)

What’s new in HTTPie for Terminal 3.0 →

  • Changed the value shown as time elapsed from time-to-read-headers to total exchange time. (#1277)

3.0.0 (2022-01-21)

What’s new in HTTPie for Terminal 3.0 →

  • Dropped support for Python 3.6. (#1177)
  • Improved startup time by 40%. (#1211)
  • Added support for nested JSON syntax. (#1169)
  • Added httpie plugins interface for plugin management. (#566)
  • Added support for Bearer authentication via --auth-type=bearer (#1215).
  • Added support for quick conversions of pasted URLs into HTTPie calls by adding a space after the protocol name ($ https ://pie.devhttps://pie.dev). (#1195)
  • Added support for sending multiple HTTP header lines with the same name. (#130)
  • Added support for receiving multiple HTTP headers lines with the same name. (#1207)
  • Added support for basic JSON types on --form/--multipart when using JSON only operators (:=/:=@). (#1212)
  • Added support for automatically enabling --stream when Content-Type is text/event-stream. (#376)
  • Added support for displaying the total elapsed time through --meta/-vv or --print=m. (#243)
  • Added new pie-dark/pie-light (and pie) styles that match with HTTPie for Web and Desktop. (#1237)
  • Added support for better error handling on DNS failures. (#1248)
  • Added support for storing prompted passwords in the local sessions. (#1098)
  • Added warnings about the --ignore-stdin, when there is no incoming data from stdin. (#1255)
  • Fixed crashing due to broken plugins. (#1204)
  • Fixed auto addition of XML declaration to every formatted XML response. (#1156)
  • Fixed highlighting when Content-Type specifies charset. (#1242)
  • Fixed an unexpected crash when --raw is used with --chunked. (#1253)
  • Changed the default Windows theme from fruity to auto. (#1266)

2.6.0 (2021-10-14)

... (truncated)

Commits
  • 266c637 Release prep for 3.1.0 (#1313)
  • 77af4c7 Decouple parser definition from argparse (#1293)
  • 7509dd4 Fix documentation styling errors.
  • f08c1be Change error messages to use a better format.
  • 59d9e92 Tweak
  • 0a87317 Tweak SECURITY and add a Security policy section to docs
  • 614866e Polish sessions docs
  • 395914f Apply suggestions from the review
  • 65ab7d5 Implement new style cookies
  • b5623cc Fix the tests with the latest layout
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

dependabot[bot] avatar Mar 08 '22 21:03 dependabot[bot]