mirror of https://github.com/WikiTeam/wikiteam
Bump oauthlib from 3.2.0 to 3.2.2 (#122)
Bumps [oauthlib](https://github.com/oauthlib/oauthlib) from 3.2.0 to 3.2.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/oauthlib/oauthlib/releases">oauthlib's releases</a>.</em></p> <blockquote> <h2>3.2.2</h2> <h2>OAuth2.0 Provider:</h2> <ul> <li>CVE-2022-36087</li> </ul> <h2>3.2.1</h2> <h2>In short</h2> <p>OAuth2.0 Provider:</p> <ul> <li><a href="https://github-redirect.dependabot.com/oauthlib/oauthlib/issues/803">#803</a> : Metadata endpoint support of non-HTTPS</li> </ul> <p>OAuth1.0:</p> <ul> <li><a href="https://github-redirect.dependabot.com/oauthlib/oauthlib/issues/818">#818</a> : Allow IPv6 being parsed by signature</li> </ul> <p>General:</p> <ul> <li>Improved and fixed documentation warnings.</li> <li>Cosmetic changes based on isort</li> </ul> <h2>What's Changed</h2> <ul> <li>add missing slots to TokenBase by <a href="https://github.com/ariebovenberg"><code>@ariebovenberg</code></a> in <a href="https://github-redirect.dependabot.com/oauthlib/oauthlib/pull/804">oauthlib/oauthlib#804</a></li> <li>Add CORS support for Refresh Token Grant. by <a href="https://github.com/luhn"><code>@luhn</code></a> in <a href="https://github-redirect.dependabot.com/oauthlib/oauthlib/pull/806">oauthlib/oauthlib#806</a></li> <li>GitHub Action to lint Python code by <a href="https://github.com/cclauss"><code>@cclauss</code></a> in <a href="https://github-redirect.dependabot.com/oauthlib/oauthlib/pull/797">oauthlib/oauthlib#797</a></li> <li>Docs: fix Sphinx warnings for better ReadTheDocs generation by <a href="https://github.com/JonathanHuot"><code>@JonathanHuot</code></a> in <a href="https://github-redirect.dependabot.com/oauthlib/oauthlib/pull/807">oauthlib/oauthlib#807</a></li> <li>Allow non-HTTPS issuer when OAUTHLIB_INSECURE_TRANSPORT. by <a href="https://github.com/luhn"><code>@luhn</code></a> in <a href="https://github-redirect.dependabot.com/oauthlib/oauthlib/pull/803">oauthlib/oauthlib#803</a></li> <li>chore: fix typo in test by <a href="https://github.com/tamanobi"><code>@tamanobi</code></a> in <a href="https://github-redirect.dependabot.com/oauthlib/oauthlib/pull/816">oauthlib/oauthlib#816</a></li> <li>Fix typo in server.rst by <a href="https://github.com/NemanjaT"><code>@NemanjaT</code></a> in <a href="https://github-redirect.dependabot.com/oauthlib/oauthlib/pull/819">oauthlib/oauthlib#819</a></li> <li>Fixed isort imports by <a href="https://github.com/dasm"><code>@dasm</code></a> in <a href="https://github-redirect.dependabot.com/oauthlib/oauthlib/pull/820">oauthlib/oauthlib#820</a></li> <li>docs: Fix a few typos by <a href="https://github.com/timgates42"><code>@timgates42</code></a> in <a href="https://github-redirect.dependabot.com/oauthlib/oauthlib/pull/822">oauthlib/oauthlib#822</a></li> <li>docs: fix typos by <a href="https://github.com/kianmeng"><code>@kianmeng</code></a> in <a href="https://github-redirect.dependabot.com/oauthlib/oauthlib/pull/823">oauthlib/oauthlib#823</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/ariebovenberg"><code>@ariebovenberg</code></a> made their first contribution in <a href="https://github-redirect.dependabot.com/oauthlib/oauthlib/pull/804">oauthlib/oauthlib#804</a></li> <li><a href="https://github.com/tamanobi"><code>@tamanobi</code></a> made their first contribution in <a href="https://github-redirect.dependabot.com/oauthlib/oauthlib/pull/816">oauthlib/oauthlib#816</a></li> <li><a href="https://github.com/NemanjaT"><code>@NemanjaT</code></a> made their first contribution in <a href="https://github-redirect.dependabot.com/oauthlib/oauthlib/pull/819">oauthlib/oauthlib#819</a></li> <li><a href="https://github.com/kianmeng"><code>@kianmeng</code></a> made their first contribution in <a href="https://github-redirect.dependabot.com/oauthlib/oauthlib/pull/823">oauthlib/oauthlib#823</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/oauthlib/oauthlib/compare/v3.2.0...v3.2.1">https://github.com/oauthlib/oauthlib/compare/v3.2.0...v3.2.1</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/oauthlib/oauthlib/blob/master/CHANGELOG.rst">oauthlib's changelog</a>.</em></p> <blockquote> <h2>3.2.2 (2022-10-17)</h2> <p>OAuth2.0 Provider:</p> <ul> <li>CVE-2022-36087</li> </ul> <h2>3.2.1 (2022-09-09)</h2> <p>OAuth2.0 Provider:</p> <ul> <li><a href="https://github-redirect.dependabot.com/oauthlib/oauthlib/issues/803">#803</a>: Metadata endpoint support of non-HTTPS</li> </ul> <p>OAuth1.0:</p> <ul> <li><a href="https://github-redirect.dependabot.com/oauthlib/oauthlib/issues/818">#818</a>: Allow IPv6 being parsed by signature</li> </ul> <p>General:</p> <ul> <li>Improved and fixed documentation warnings.</li> <li>Cosmetic changes based on isort</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="pull/475/heade6c33e41a8
"><code>e6c33e4</code></a> Add 3.2.2 version</li> <li><a href="4a4d65f8ee
"><code>4a4d65f</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/oauthlib/oauthlib/issues/832">#832</a> from oauthlib/3.2.1</li> <li><a href="88bb156293
"><code>88bb156</code></a> Updated date and authors</li> <li><a href="2e40b412c8
"><code>2e40b41</code></a> Merge pull request from GHSA-3pgj-pg6c-r5p7</li> <li><a href="1a45d97905
"><code>1a45d97</code></a> Prepare 3.2.1 release</li> <li><a href="b4bdd09c56
"><code>b4bdd09</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/oauthlib/oauthlib/issues/818">#818</a> from dasm/master</li> <li><a href="5d85c61998
"><code>5d85c61</code></a> Fix IPV6 regex used to check redirect_uri</li> <li><a href="e514826eea
"><code>e514826</code></a> Add check of performance of ipv6 check</li> <li><a href="0adbbe10ed
"><code>0adbbe1</code></a> docs: fix typos</li> <li><a href="6569ec3c06
"><code>6569ec3</code></a> docs: Fix a few typos</li> <li>Additional commits viewable in <a href="https://github.com/oauthlib/oauthlib/compare/v3.2.0...v3.2.2">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=oauthlib&package-manager=pip&previous-version=3.2.0&new-version=3.2.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/mediawiki-client-tools/mediawiki-scraper/network/alerts). </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
parent
d989663b64
commit
70f52c9731
Loading…
Reference in New Issue