Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump gunicorn from 19.4.5 to 19.5.0 in /requirements #23

Merged
merged 1 commit into from
Feb 10, 2021
Merged

Bump gunicorn from 19.4.5 to 19.5.0 in /requirements #23

merged 1 commit into from
Feb 10, 2021

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 27, 2021

Bumps gunicorn from 19.4.5 to 19.5.0.

Release notes

Sourced from gunicorn's releases.

19.5.0

== 19.5.0 ==

=== Core ===

  • fix: Ensure response to HEAD request won't have message body
  • fix: lock domain socket and remove on last arbiter exit (#1220)
  • improvement: use EnvironmentError instead of socket.error (#939)
  • add: new $FORWARDDED_ALLOW_IPS environment variable (#1205)
  • fix: infinite recursion when destroying sockets (#1219)
  • fix: close sockets on shutdown (#922)
  • fix: clean up sys.exc_info calls to drop circular refs (#1228)
  • fix: do post_worker_init after load_wsgi (#1248)

=== Workers ===

  • fix access logging in gaiohttp worker (#1193)
  • eventlet: handle QUIT in a new coroutine (#1217)
  • gevent: remove obsolete exception clauses in run (#1218)
  • tornado: fix extra "Server" response header (#1246)
  • fix: unblock the wait loop under python 3.5 in sync worker (#1256)

=== Logging ===

  • fix: log message for listener reloading (#1181)
  • Let logging module handle traceback printing (#1201)
  • improvement: Allow configuring logger_class with statsd_host (#1188)
  • fix: traceback formatting (#1235)
  • fix: print error logs on stderr and access logs on stdout (#1184)

=== Documentation ===

  • Simplify installation instructions in gunicorn.org (#1072)
  • Fix URL and default worker type in example_config (#1209)
  • update django doc url to 1.8 lts (#1213)
  • fix: miscellaneous wording corrections (#1216)
  • Add PSF License Agreement of selectors.py to NOTICE (:issue: #1226)
  • document LOGGING overriding (#1051)
  • put a note that error logs are only errors from Gunicorn (#1124)
  • add a note about the requirements of the threads workers under python 2.x (#1200)
  • add access_log_format to config example (#1251)

=== Tests ===

  • Use more pytest.raises() in test_http.py
Commits
  • 7d61a60 add changelog
  • 58f190d Merge pull request #1257 from benoitc/fix/1256
  • b0c0333 unblock the wait loop under python 3.5
  • 9d158be Add access_log_format to config example (#1251)
  • ded610e add a note about the requirements of the threads workers under python 2.x
  • 6f9ae5e put a note that error logs are only errors from Gunicorn.
  • 65db610 print error logs on stderr and access logs on stdout
  • 5fa32a6 document LOGGING overriding
  • e005c9d reverse change in example_config.py
  • 66546d6 fix #1246
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump gunicorn from 19.4.5 to 19.5.0 in /requirements
4e1963a 
Bumps [gunicorn](https://github.com/benoitc/gunicorn) from 19.4.5 to 19.5.0.
- [Release notes](https://github.com/benoitc/gunicorn/releases)
- [Commits](benoitc/gunicorn@19.4.5...19.5.0)

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Jan 27, 2021
@ramiroluz ramiroluz merged commit ef9d4b1 into master Feb 10, 2021
@dependabot dependabot bot deleted the dependabot/pip/requirements/gunicorn-19.5.0 branch February 10, 2021 11:48
@ojonathacardoso
Copy link
Collaborator

@ramiroluz, esses bumps não podem causar algum problema na instalação ou funcionamento do SAAP?
Fiquei receoso em fazer o merge e acabar dando algum problema.

@ramiroluz
Copy link
Contributor

ramiroluz commented Feb 10, 2021 via email

@ojonathacardoso
Copy link
Collaborator

É... Esse do gunicorn nem acho que possa ser problema, pois mostra uma compatibilidade de 88%. Minha dúvida é quanto ao pyyaml, que é só de 43%...
Na verdade, um dos problemas a serem resolvidos no SAAP é a questão das dependências. No meu repositório, que tem o dependabot ativado, fala também do django, mas já tive problemas em atualizá-lo e dar erro em outros pacotes.

Vou fazer um teste na instalação para confirmar se há algum problema.

@ramiroluz
Copy link
Contributor

ramiroluz commented Feb 10, 2021 via email

@ojonathacardoso
Copy link
Collaborator

@ramiroluz, testei a instalação e está tudo funcionando. As atualizações no pyyaml e no gunicorn não afetaram nada.

@ramiroluz
Copy link
Contributor

ramiroluz commented Feb 11, 2021 via email

@ojonathacardoso ojonathacardoso linked an issue Feb 22, 2021 that may be closed by this pull request
Revisar dependências #42
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Revisar dependências
2 participants
@ojonathacardoso @ramiroluz