Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

build(deps): bump uvicorn from 0.17.0 to 0.17.6 #158

Merged
merged 1 commit into from
May 11, 2022
Merged

build(deps): bump uvicorn from 0.17.0 to 0.17.6 #158

merged 1 commit into from
May 11, 2022

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 14, 2022
edited
Loading

Bumps uvicorn from 0.17.0 to 0.17.6.

Release notes

Sourced from uvicorn's releases.

Version 0.17.6

Changed

  • Change httptools range to >=0.4.0 (#1400) 11/03/22

Version 0.17.5

0.17.5 - 2022-02-16

Fixed

  • Fix case where url is fragmented in httptools protocol (#1263) 2/16/22
  • Fix WSGI middleware not to explode quadratically in the case of a larger body (#1329) 2/16/16

Changed

  • Send HTTP 400 response for invalid request (#1352) 2/11/22

Full Changelog: encode/uvicorn@0.17.4...0.17.5

Version 0.17.4

Fixed

  • Replace create_server by create_unix_server (#1362) 04/02/22

Version 0.17.3

Fixed

  • Drop wsproto version checking. (#1359) 03/02/22

Version 0.17.2

Fixed

  • Revert #1332. While trying to solve the memory leak, it introduced an issue (#1345) when the server receives big chunks of data using the httptools implementation. (#1354) 03/02/22
  • Revert stream interface changes. This was introduced on 0.14.0, and caused an issue (#1226), which caused a memory leak when sending TCP pings. (#1355) 03/02/22
  • Fix wsproto version check expression (#1342) 28/01/22

Version 0.17.1

Fixed

  • Move all data handling logic to protocol and ensure connection is closed. (#1332) 28/01/22
  • Change spec_version field from "2.1" to "2.3", as Uvicorn is compliant with that version of the ASGI specifications. (#1337) 25/01/22

Version 0.17.0.post1

Fixed

  • Add the python_requires version specifier (#1328) 17/01/22
Changelog

Sourced from uvicorn's changelog.

0.17.6 - 2022-03-11

Changed

  • Change httptools range to >=0.4.0 (#1400) 11/03/22

0.17.5 - 2022-02-16

Fixed

  • Fix case where url is fragmented in httptools protocol (#1263) 2/16/22
  • Fix WSGI middleware not to explode quadratically in the case of a larger body (#1329) 2/16/16

Changed

  • Send HTTP 400 response for invalid request (#1352) 2/11/22

0.17.4 - 2022-02-04

Fixed

  • Replace create_server by create_unix_server (#1362) 04/02/22

0.17.3 - 2022-02-03

Fixed

  • Drop wsproto version checking. (#1359) 03/02/22

0.17.2 - 2022-02-03

Fixed

  • Revert #1332. While trying to solve the memory leak, it introduced an issue (#1345) when the server receives big chunks of data using the httptools implementation. (#1354) 03/02/22
  • Revert stream interface changes. This was introduced on 0.14.0, and caused an issue (#1226), which caused a memory leak when sending TCP pings. (#1355) 03/02/22
  • Fix wsproto version check expression (#1342) 28/01/22

0.17.1 - 2022-01-28

Fixed

  • Move all data handling logic to protocol and ensure connection is closed. (#1332) 28/01/22
  • Change spec_version field from "2.1" to "2.3", as Uvicorn is compliant with that version of the ASGI specifications. (#1337) 25/01/22

0.17.0.post1 - 2022-01-24

Fixed

  • Add the python_requires version specifier (#1328) 17/01/22
Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot will merge this PR once it's up-to-date and CI passes on it, as requested by @lowitea.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot bot mentioned this pull request Mar 14, 2022
Closed
@sonarqubecloud
Copy link

Kudos, SonarCloud Quality Gate passed!    Quality Gate passed

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 0 Code Smells

No Coverage information No Coverage information
No Duplication information No Duplication information

@codecov
Copy link

codecov bot commented Mar 14, 2022
edited
Loading

Codecov Report

Merging #158 (a4280bf) into develop (4b2cdb4) will not change coverage.
The diff coverage is n/a.

@@           Coverage Diff            @@
##           develop     #158   +/-   ##
========================================
  Coverage    99.03%   99.03%           
========================================
  Files            9        9           
  Lines          311      311           
  Branches        44       44           
========================================
  Hits           308      308           
  Misses           2        2           
  Partials         1        1

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 4b2cdb4...a4280bf. Read the comment docs.

@lowitea
Copy link
Contributor

lowitea commented May 11, 2022

@dependabot merge

@dependabot
build(deps): bump uvicorn from 0.17.0 to 0.17.6
a4280bf 
Bumps [uvicorn](https://github.com/encode/uvicorn) from 0.17.0 to 0.17.6.
- [Release notes](https://github.com/encode/uvicorn/releases)
- [Changelog](https://github.com/encode/uvicorn/blob/master/CHANGELOG.md)
- [Commits](encode/uvicorn@0.17.0...0.17.6)

---
updated-dependencies:
- dependency-name: uvicorn
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/pip/uvicorn-0.17.6 branch from e74148e to a4280bf Compare May 11, 2022 22:01
@sonarqubecloud
Copy link

Kudos, SonarCloud Quality Gate passed!    Quality Gate passed

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 0 Code Smells

No Coverage information No Coverage information
No Duplication information No Duplication information

@lowitea lowitea added this to the 2.1.0 milestone May 11, 2022
@dependabot dependabot bot merged commit a9d2a5b into develop May 11, 2022
@dependabot dependabot bot deleted the dependabot/pip/uvicorn-0.17.6 branch May 11, 2022 22:08
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@lowitea lowitea lowitea approved these changes

Assignees

@lowitea lowitea

Labels
dependencies
Projects
None yet
Milestone
2.1.0
Development

Successfully merging this pull request may close these issues.
1 participant
@lowitea