omnic icon indicating copy to clipboard operation
omnic copied to clipboard

Published 20 hours ago verified publisher icon michaelpb

Bump sanic from 0.5.4 to 20.12.7 in /test

Open dependabot[bot] opened this issue 2 years ago • 0 comments

Bumps sanic from 0.5.4 to 20.12.7.

Release notes

Sourced from sanic's releases.

Version 20.12.7

Resolves #2477 and #2478 See also #2495 and https://github.com/sanic-org/sanic/security/advisories/GHSA-8cw9-5hmv-77w6

Full Changelog: https://github.com/sanic-org/sanic/compare/v20.12.6...v20.12.7

Version 20.12.6

What's Changed

Full Changelog: https://github.com/sanic-org/sanic/compare/v20.12.5...v20.12.6

Version 20.12.5

#2366 Upgrade websockets version - SECURITY UPDATE

Version 20.12.4

Version 20.12.3

Bugfixes

  • #2021 Remove prefix from websocket handler name

Version 20.12.2

Dependencies

  • #2026 Fix uvloop to 0.14 because 0.15 drops Python 3.6 support
  • #2029 Remove old chardet requirement, add in hard multidict requirement

Version 20.12.1

Features

  • #1993 Add disable app registry

Version 20.12.0

Features

  • [#1945][] Static route more verbose if file not found
  • [#1954][] Fix static routes registration on a blueprint
  • [#1961][] Add Python 3.9 support
  • [#1962][] Sanic CLI upgrade
  • [#1967][] Update aiofile version requirements
  • [#1969][] Update multidict version requirements
  • [#1970][] Add py.typed file
  • [#1972][] Speed optimization in request handler
  • [#1979][] Add app registry and Sanic class level app retrieval

Bugfixes

... (truncated)

Changelog

Sourced from sanic's changelog.

.. note::

CHANGELOG files are maintained in ./docs/sanic/releases. To view the full CHANGELOG, please visit https://sanic.readthedocs.io/en/stable/sanic/changelog.html.

Version 21.6.1

Bugfixes

  • [#2178](https://github.com/sanic-org/sanic/issues/2178) <https://github.com/sanic-org/sanic/pull/2178>_ Update sanic-routing to allow for better splitting of complex URI templates
  • [#2183](https://github.com/sanic-org/sanic/issues/2183) <https://github.com/sanic-org/sanic/pull/2183>_ Proper handling of chunked request bodies to resolve phantom 503 in logs
  • [#2181](https://github.com/sanic-org/sanic/issues/2181) <https://github.com/sanic-org/sanic/pull/2181>_ Resolve regression in exception logging
  • [#2201](https://github.com/sanic-org/sanic/issues/2201) <https://github.com/sanic-org/sanic/pull/2201>_ Cleanup request info in pipelined requests

Version 21.6.0

Features

  • [#2094](https://github.com/sanic-org/sanic/issues/2094) <https://github.com/sanic-org/sanic/pull/2094>_ Add response.eof() method for closing a stream in a handler

  • [#2097](https://github.com/sanic-org/sanic/issues/2097) <https://github.com/sanic-org/sanic/pull/2097>_ Allow case-insensitive HTTP Upgrade header

  • [#2104](https://github.com/sanic-org/sanic/issues/2104) <https://github.com/sanic-org/sanic/pull/2104>_ Explicit usage of CIMultiDict getters

  • [#2109](https://github.com/sanic-org/sanic/issues/2109) <https://github.com/sanic-org/sanic/pull/2109>_ Consistent use of error loggers

  • [#2114](https://github.com/sanic-org/sanic/issues/2114) <https://github.com/sanic-org/sanic/pull/2114>_ New client_ip access of connection info instance

  • [#2119](https://github.com/sanic-org/sanic/issues/2119) <https://github.com/sanic-org/sanic/pull/2119>_ Alternatate classes on instantiation for Config and Sanic.ctx

  • [#2133](https://github.com/sanic-org/sanic/issues/2133) <https://github.com/sanic-org/sanic/pull/2133>_ Implement new version of AST router

    • Proper differentiation between alpha and string param types
    • Adds a slug param type, example: <foo:slug>
    • Deprecates <foo:string> in favor of <foo:str>
    • Deprecates <foo:number> in favor of <foo:float>
    • Adds a route.uri accessor

  • [#2136](https://github.com/sanic-org/sanic/issues/2136) <https://github.com/sanic-org/sanic/pull/2136>_ CLI improvements with new optional params

  • [#2137](https://github.com/sanic-org/sanic/issues/2137) <https://github.com/sanic-org/sanic/pull/2137>_ Add version_prefix to URL builders

  • [#2140](https://github.com/sanic-org/sanic/issues/2140) <https://github.com/sanic-org/sanic/pull/2140>_ Event autoregistration with EVENT_AUTOREGISTER

... (truncated)

Commits
  • 05002d7 Path protection with pathlib
  • b4360d4 Path protection with pathlib
  • 3b85b3b Potential server crash if running Python 3.10 w/ Sanic 20.12 (#2400)
  • 6e55e73 fix: websocket dependency for websockets 9.1 security fix (#2366)
  • 89d9424 Merge branch 'pr2129' into 20.12LTS
  • 4d6205e Bump version
  • 1684b0b remove reference to yanked packages
  • 4f5faa4 unpin uvloop
  • cbb77b5 fix issue where request.args.pop removed parameters inconsistently (#2112)
  • 35c7625 Bump version 20.12.3 (#2062)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

dependabot[bot] avatar Aug 06 '22 05:08 dependabot[bot]