Update werkzeug to 0.14.1

[pyup-bot]

This PR updates Werkzeug from 0.11.11 to 0.14.1.

Changelog

0.14.1

--------------

Released on December 31st 2017

- Resolved a regression with status code handling in the integrated
development server.

0.14

------------

Released on December 31st 2017

- HTTP exceptions are now automatically caught by
``Request.application``.
- Added support for edge as browser.
- Added support for platforms that lack ``SpooledTemporaryFile``.
- Add support for etag handling through if-match
- Added support for the SameSite cookie attribute.
- Added ``werkzeug.wsgi.ProxyMiddleware``
- Implemented ``has`` for ``NullCache``
- ``get_multi`` on cache clients now returns lists all the time.
- Improved the watchdog observer shutdown for the reloader to not crash
on exit on older Python versions.
- Added support for ``filename*`` filename attributes according to
RFC 2231
- Resolved an issue where machine ID for the reloader PIN was not
read accurately on windows.
- Added a workaround for syntax errors in init files in the reloader.
- Added support for using the reloader with console scripts on windows.
- The built-in HTTP server will no longer close a connection in cases
where no HTTP body is expected (204, 204, HEAD requests etc.)
- The ``EnvironHeaders`` object now skips over empty content type and
lengths if they are set to falsy values.
- Werkzeug will no longer send the content-length header on 1xx or
204/304 responses.
- Cookie values are now also permitted to include slashes and equal
signs without quoting.
- Relaxed the regex for the routing converter arguments.
- If cookies are sent without values they are now assumed to have an
empty value and the parser accepts this.  Previously this could have
corrupted cookies that followed the value.
- The test ``Client`` and ``EnvironBuilder`` now support mimetypes like
the request object does.
- Added support for static weights in URL rules.
- Better handle some more complex reloader scenarios where sys.path
contained non directory paths.
- ``EnvironHeaders`` no longer raises weird errors if non string keys
are passed to it.

0.13

------------

Released on December 7th 2017

- **Deprecate support for Python 2.6 and 3.3.** CI tests will not run
for these versions, and support will be dropped completely in the next
version. (`pallets/meta24`_)
- Raise ``TypeError`` when port is not an integer. (`1088`_)
- Fully deprecate ``werkzeug.script``. Use `Click`_ instead. (`1090`_)
- ``response.age`` is parsed as a ``timedelta``. Previously, it was
incorrectly treated as a ``datetime``. The header value is an integer
number of seconds, not a date string. (`414`_)
- Fix a bug in ``TypeConversionDict`` where errors are not propagated
when using the converter. (`1102`_)
- ``Authorization.qop`` is a string instead of a set, to comply with
RFC 2617. (`984`_)
- An exception is raised when an encoded cookie is larger than, by
default, 4093 bytes. Browsers may silently ignore cookies larger than
this. ``BaseResponse`` has a new attribute ``max_cookie_size`` and
``dump_cookie`` has a new argument ``max_size`` to configure this.
(`780`_, `1109`_)
- Fix a TypeError in ``werkzeug.contrib.lint.GuardedIterator.close``.
(`1116`_)
- ``BaseResponse.calculate_content_length`` now correctly works for
Unicode responses on Python 3. It first encodes using
``iter_encoded``. (`705`_)
- Secure cookie contrib works with string secret key on Python 3.
(`1205`_)
- Shared data middleware accepts a list instead of a dict of static
locations to preserve lookup order. (`1197`_)
- HTTP header values without encoding can contain single quotes.
(`1208`_)
- The built-in dev server supports receiving requests with chunked
transfer encoding. (`1198`_)

.. _Click: https://www.palletsprojects.com/p/click/
.. _pallets/meta24: https://github.com/pallets/meta/issues/24
.. _414: https://github.com/pallets/werkzeug/pull/414
.. _705: https://github.com/pallets/werkzeug/pull/705
.. _780: https://github.com/pallets/werkzeug/pull/780
.. _984: https://github.com/pallets/werkzeug/pull/984
.. _1088: https://github.com/pallets/werkzeug/pull/1088
.. _1090: https://github.com/pallets/werkzeug/pull/1090
.. _1102: https://github.com/pallets/werkzeug/pull/1102
.. _1109: https://github.com/pallets/werkzeug/pull/1109
.. _1116: https://github.com/pallets/werkzeug/pull/1116
.. _1197: https://github.com/pallets/werkzeug/pull/1197
.. _1198: https://github.com/pallets/werkzeug/pull/1198
.. _1205: https://github.com/pallets/werkzeug/pull/1205
.. _1208: https://github.com/pallets/werkzeug/pull/1208

0.12.2

--------------

Released on May 16 2017

- Fix regression: Pull request ``892`` prevented Werkzeug from correctly
logging the IP of a remote client behind a reverse proxy, even when using
`ProxyFix`.
- Fix a bug in `safe_join` on Windows.

0.12.1

--------------

Released on March 15th 2017

- Fix crash of reloader (used on debug mode) on Windows.
(`OSError: [WinError 10038]`). See pull request ``1081``
- Partially revert change to class hierarchy of `Headers`. See ``1084``.

0.12

------------

Released on March 10th 2017

- Spit out big deprecation warnings for werkzeug.script
- Use `inspect.getfullargspec` internally when available as
`inspect.getargspec` is gone in 3.6
- Added support for status code 451 and 423
- Improved the build error suggestions.  In particular only if
someone stringifies the error will the suggestions be calculated.
- Added support for uWSGI's caching backend.
- Fix a bug where iterating over a `FileStorage` would result in an infinite
loop.
- Datastructures now inherit from the relevant baseclasses from the
`collections` module in the stdlib. See 794.
- Add support for recognizing NetBSD, OpenBSD, FreeBSD, DragonFlyBSD platforms
in the user agent string.
- Recognize SeaMonkey browser name and version correctly
- Recognize Baiduspider, and bingbot user agents
- If `LocalProxy`'s wrapped object is a function, refer to it with __wrapped__
attribute.
- The defaults of ``generate_password_hash`` have been changed to more secure
ones, see pull request ``753``.
- Add support for encoding in options header parsing, see pull request
``933``.
- ``test.Client`` now properly handles Location headers with relative URLs, see
pull request ``879``.
- When `HTTPException` is raised, it now prints the description, for easier
debugging.
- Werkzeug's dict-like datastructures now have ``view``-methods under Python 2,
see pull request ``968``.
- Fix a bug in ``MultiPartParser`` when no ``stream_factory`` was provided
during initialization, see pull request ``973``.
- Disable autocorrect and spellchecker in the debugger middleware's Python
prompt, see pull request ``994``.
- Don't redirect to slash route when method doesn't match, see pull request
``907``.
- Fix a bug when using ``SharedDataMiddleware`` with frozen packages, see pull
request ``959``.
- `Range` header parsing function fixed for invalid values ``974``.
- Add support for byte Range Requests, see pull request ``978``.
- Use modern cryptographic defaults in the dev servers ``1004``.
- the post() method of the test client now accept file object through the data
parameter.
- Color run_simple's terminal output based on HTTP codes ``1013``.
- Fix self-XSS in debugger console, see ``1031``.
- Fix IPython 5.x shell support, see ``1033``.
- Change Accept datastructure to sort by specificity first, allowing for more
accurate results when using ``best_match`` for mime types (for example in
``requests.accept_mimetypes.best_match``)

0.11.16

---------------

- werkzeug.serving: set CONTENT_TYPE / CONTENT_LENGTH if only they're provided by the client
- werkzeug.serving: Fix crash of reloader when using `python -m werkzeug.serving`.

0.11.15

---------------

Released on December 30th 2016.

- Bugfix for the bugfix in the previous release.

0.11.14

---------------

Released on December 30th 2016.

- Check if platform can fork before importing ``ForkingMixIn``, raise exception
when creating ``ForkingWSGIServer`` on such a platform, see PR ``999``.

0.11.13

---------------

Released on December 26th 2016.

- Correct fix for the reloader issuer on certain Windows installations.

0.11.12

---------------

Released on December 26th 2016.

- Fix more bugs in multidicts regarding empty lists. See ``1000``.
- Add some docstrings to some `EnvironBuilder` properties that were previously
unintentionally missing.
- Added a workaround for the reloader on windows.

Links

• PyPI: https://pypi.org/project/werkzeug
• Changelog: https://pyup.io/changelogs/werkzeug/
• Homepage: https://www.palletsprojects.org/p/werkzeug/