Bump requests[security] from 2.25.0 to 2.27.1

[dependabot]

Bumps requests[security] from 2.25.0 to 2.27.1.

Release notes

Sourced from requests[security]'s releases.

v2.27.1

2.27.1 (2022-01-05)

Bugfixes

• Fixed parsing issue that resulted in the auth component being dropped from proxy URLs. (#6028)

Full Changelog: https://github.com/psf/requests/blob/v2.27.1/HISTORY.md#2271-2022-01-05

v2.27.0

2.27.0 (2022-01-03)

Improvements

• Officially added support for Python 3.10. (#5928)

• Added a requests.exceptions.JSONDecodeError to unify JSON exceptions between Python 2 and 3. This gets raised in the response.json() method, and is backwards compatible as it inherits from previously thrown exceptions. Can be caught from requests.exceptions.RequestException as well. (#5856)

• Improved error text for misnamed InvalidSchema and MissingSchema exceptions. This is a temporary fix until exceptions can be renamed (Schema->Scheme). (#6017)

• Improved proxy parsing for proxy URLs missing a scheme. This will address recent changes to urlparse in Python 3.9+. (#5917)

Bugfixes

• Fixed defect in extract_zipped_paths which could result in an infinite loop for some paths. (#5851)

• Fixed handling for AttributeError when calculating length of files obtained by Tarfile.extractfile(). (#5239)

• Fixed urllib3 exception leak, wrapping urllib3.exceptions.InvalidHeader with requests.exceptions.InvalidHeader. (#5914)

• Fixed bug where two Host headers were sent for chunked requests. (#5391)

• Fixed regression in Requests 2.26.0 where Proxy-Authorization was incorrectly stripped from all requests sent with Session.send. (#5924)

• Fixed performance regression in 2.26.0 for hosts with a large number of proxies available in the environment. (#5924)

... (truncated)

Changelog

Sourced from requests[security]'s changelog.

2.27.1 (2022-01-05)

Bugfixes

• Fixed parsing issue that resulted in the auth component being dropped from proxy URLs. (#6028)

2.27.0 (2022-01-03)

Improvements

• Officially added support for Python 3.10. (#5928)

• Added a requests.exceptions.JSONDecodeError to unify JSON exceptions between Python 2 and 3. This gets raised in the response.json() method, and is backwards compatible as it inherits from previously thrown exceptions. Can be caught from requests.exceptions.RequestException as well. (#5856)

• Improved error text for misnamed InvalidSchema and MissingSchema exceptions. This is a temporary fix until exceptions can be renamed (Schema->Scheme). (#6017)

• Improved proxy parsing for proxy URLs missing a scheme. This will address recent changes to urlparse in Python 3.9+. (#5917)

Bugfixes

• Fixed defect in extract_zipped_paths which could result in an infinite loop for some paths. (#5851)

• Fixed handling for AttributeError when calculating length of files obtained by Tarfile.extractfile(). (#5239)

• Fixed urllib3 exception leak, wrapping urllib3.exceptions.InvalidHeader with requests.exceptions.InvalidHeader. (#5914)

• Fixed bug where two Host headers were sent for chunked requests. (#5391)

• Fixed regression in Requests 2.26.0 where Proxy-Authorization was incorrectly stripped from all requests sent with Session.send. (#5924)

• Fixed performance regression in 2.26.0 for hosts with a large number of proxies available in the environment. (#5924)

• Fixed idna exception leak, wrapping UnicodeError with requests.exceptions.InvalidURL for URLs with a leading dot (.) in the domain. (#5414)

... (truncated)

Commits

• 31a89d9 v2.27.1
• 8fa9724 Merge pull request #6028 from nateprewitt/prox_auth_fix
• 38f3f8e Fix auth parsing for proxies
• 0192aac v2.27.0
• e50dc12 Fix doc link
• 17e6e27 General cleanup for 2.27.0
• ab38e2c Make the data vs json parameters more clear (#5382)
• 77d1e9a Merge pull request #5894 from dbaxa/do-not-re-build-proxies-when-proxies-have...
• b0829a8 Merge pull request #6020 from nateprewitt/pypy_37
• 28d537d Merge pull request #5917 from nateprewitt/proxy_scheme_unknown_fix
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Superseded by #308.