Francis/mitmproxy 10.1.5 #5
Open
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
* [requires.io] dependency update * Update tox.ini Co-authored-by: requires.io <[email protected]>
Add QUIC support.
Add Autofix.ci
Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 2 to 3. - [Release notes](https://github.com/actions/download-artifact/releases) - [Commits](actions/download-artifact@v2...v3) --- updated-dependencies: - dependency-name: actions/download-artifact dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [install-pinned/yesqa](https://github.com/install-pinned/yesqa) from b752c9eed899985c6df094e35d7a5a5bd1b94acb to b7b1c5e133f5f516905ae35645a082f751ffa216. - [Release notes](https://github.com/install-pinned/yesqa/releases) - [Commits](install-pinned/yesqa@b752c9e...b7b1c5e) --- updated-dependencies: - dependency-name: install-pinned/yesqa dependency-type: direct:production ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [install-pinned/black](https://github.com/install-pinned/black) from 81e6dbf82145462d413a6662dd703fa382edeb11 to dde5aed720bc458e86d99144d4d0c1f6c8e08844. - [Release notes](https://github.com/install-pinned/black/releases) - [Commits](install-pinned/black@81e6dbf...dde5aed) --- updated-dependencies: - dependency-name: install-pinned/black dependency-type: direct:production ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [install-pinned/autoflake](https://github.com/install-pinned/autoflake) from fa3c1715169ac36d903ee9d492d64beb5cad331f to 32877f5112ce1c5b8b30cf57d70593a53d5fca87. - [Release notes](https://github.com/install-pinned/autoflake/releases) - [Commits](install-pinned/autoflake@fa3c171...32877f5) --- updated-dependencies: - dependency-name: install-pinned/autoflake dependency-type: direct:production ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action) from 1.2.0 to 2.1.0. - [Release notes](https://github.com/docker/setup-qemu-action/releases) - [Commits](docker/setup-qemu-action@27d0a4f...e81a89b) --- updated-dependencies: - dependency-name: docker/setup-qemu-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [install-pinned/yesqa](https://github.com/install-pinned/yesqa) from b7b1c5e133f5f516905ae35645a082f751ffa216 to cf847492077eea907797bac45e68f87801d4de31. - [Release notes](https://github.com/install-pinned/yesqa/releases) - [Commits](install-pinned/yesqa@b7b1c5e...cf84749) --- updated-dependencies: - dependency-name: install-pinned/yesqa dependency-type: direct:production ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [install-pinned/reorder_python_imports](https://github.com/install-pinned/reorder_python_imports) from 97c3e89c53ae5513cc41716e876e26daff8bbdd6 to 7365755886d8ef6679e1b77457975a8698842af6. - [Release notes](https://github.com/install-pinned/reorder_python_imports/releases) - [Commits](install-pinned/reorder_python_imports@97c3e89...7365755) --- updated-dependencies: - dependency-name: install-pinned/reorder_python_imports dependency-type: direct:production ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [TrueBrain/actions-flake8](https://github.com/TrueBrain/actions-flake8) from 2.1 to 2.2. - [Release notes](https://github.com/TrueBrain/actions-flake8/releases) - [Commits](TrueBrain/actions-flake8@c2deca2...c120815) --- updated-dependencies: - dependency-name: TrueBrain/actions-flake8 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [install-pinned/black](https://github.com/install-pinned/black) from dde5aed720bc458e86d99144d4d0c1f6c8e08844 to 70a27391ba5875c09596f067be1e331d0e81947b. - [Release notes](https://github.com/install-pinned/black/releases) - [Commits](install-pinned/black@dde5aed...70a2739) --- updated-dependencies: - dependency-name: install-pinned/black dependency-type: direct:production ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [install-pinned/autoflake](https://github.com/install-pinned/autoflake) from 32877f5112ce1c5b8b30cf57d70593a53d5fca87 to 95c53f821b204037c1be14d45d810032e8ddfdcb. - [Release notes](https://github.com/install-pinned/autoflake/releases) - [Commits](install-pinned/autoflake@32877f5...95c53f8) --- updated-dependencies: - dependency-name: install-pinned/autoflake dependency-type: direct:production ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Add loop as a parameter in DumpMaster * [autofix.ci] apply automated fixes Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
Use `.get` when retrieving "path" from the `attrs` cookie dict. This avoids the occasional `KeyError`.
Handle "path" KeyError in the savehar addon
#### Description * Update savehar addon to fix creating corrupt har files caused by empty response content #### Checklist - [x] I have updated tests where applicable. - [x] I have added an entry to the CHANGELOG. --------- Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
…server replay (mitmproxy#6465) #### Description Designed to satisfy the requirements of mitmproxy#3489 Add `server_replay_404_extra` which behaves similarly to the kill flag, but returns 404 responses rather than killing #### Checklist - [x] I have updated tests where applicable. - [x] I have added an entry to the CHANGELOG. --------- Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
#### Description
It's hard to debug errors raised in addon scripts during startup as only
a generic message is output on the console. Using logger.format() to
format errors that occurred during startup instead of only displaying
the LogRecord.msg improves the output if an exception is present by
showing the stack trace. An additional newline was added for better
readability.
Comparison with the load_error.py test script, before:
$ mitmproxy -s test/mitmproxy/data/addonscripts/load_error.py
Error logged during startup: Addon error:
After:
$ mitmproxy -s test/mitmproxy/data/addonscripts/load_error.py
Error logged during startup:
Addon error:
Traceback (most recent call last):
File "test/mitmproxy/data/addonscripts/load_error.py", line 2, in load
raise ValueError()
ValueError
Relates to issue mitmproxy#5935 and PR mitmproxy#6020
#### Checklist
- [ ] I have updated tests where applicable.
- I think the value of extending `test_errorcheck.py` for this behavior
is low and tightly couples the test to `logger.format()`
- [ ] I have added an entry to the CHANGELOG.
- mitmproxy#6020 didn't introduce a changelog entry, so I figured this won't need
one either
Bumps the github-actions group with 1 update: [install-pinned/ruff](https://github.com/install-pinned/ruff). Updates `install-pinned/ruff` from 8876fcad1732d3dc660068908bbf5cdeeaa9d264 to 0e35bc58bd73769469284df9e1f8898daeea8768 <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/install-pinned/ruff/commit/0e35bc58bd73769469284df9e1f8898daeea8768"><code>0e35bc5</code></a> update README.md (ruff 0.1.6)</li> <li><a href="https://github.com/install-pinned/ruff/commit/a946f13f9a8770ef04ab5d0ca8a4975386d838ca"><code>a946f13</code></a> update pins (ruff 0.1.6)</li> <li><a href="https://github.com/install-pinned/ruff/commit/c88e04630ef48f254a2ed6a6dd62ff914e549d85"><code>c88e046</code></a> update README.md (ruff 0.1.5)</li> <li><a href="https://github.com/install-pinned/ruff/commit/de1480b2cf90599f56b0c2516784743df6bb40b7"><code>de1480b</code></a> update pins (ruff 0.1.5)</li> <li><a href="https://github.com/install-pinned/ruff/commit/f0a15f921e1352c879f6b0ba9591bbf495cda3ec"><code>f0a15f9</code></a> update repository from template</li> <li><a href="https://github.com/install-pinned/ruff/commit/01e545204f1664214c841102ae63419c27e4df0b"><code>01e5452</code></a> update README.md (ruff 0.1.5)</li> <li><a href="https://github.com/install-pinned/ruff/commit/fc3d26194309bb5695d8ba7926889a2e94651fa1"><code>fc3d261</code></a> update pins (ruff 0.1.5)</li> <li><a href="https://github.com/install-pinned/ruff/commit/d788a4d9627c20fa5e4738fcacc1aa6397e8a1d5"><code>d788a4d</code></a> update README.md (ruff 0.1.4)</li> <li><a href="https://github.com/install-pinned/ruff/commit/cd4c82bc1ea5e9e5c5dbf65ea2497fd696d7cedb"><code>cd4c82b</code></a> update pins (ruff 0.1.4)</li> <li>See full diff in <a href="https://github.com/install-pinned/ruff/compare/8876fcad1732d3dc660068908bbf5cdeeaa9d264...0e35bc58bd73769469284df9e1f8898daeea8768">compare view</a></li> </ul> </details> <br /> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore <dependency name> major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore <dependency name> minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore <dependency name>` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore <dependency name>` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore <dependency name> <ignore condition>` will remove the ignore condition of the specified dependency and ignore conditions </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…tmproxy#6517) Updates the requirements on [pytest-xdist](https://github.com/pytest-dev/pytest-xdist) to permit the latest version. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/pytest-dev/pytest-xdist/blob/master/CHANGELOG.rst">pytest-xdist's changelog</a>.</em></p> <blockquote> <h1>pytest-xdist 3.5.0 (2023-11-21)</h1> <h2>Features</h2> <ul> <li><code>[mitmproxy#632](pytest-dev/pytest-xdist#632) <https://github.com/pytest-dev/pytest-xdist/issues/632></code>_: <code>--dist=loadscope</code> now sorts scopes by number of tests to assign largest scopes early -- in many cases this should improve overall test session running time, as there is less chance of a large scope being left to be processed near the end of the session, leaving other workers idle.</li> </ul> <h1>pytest-xdist 3.4.0 (2023-11-11)</h1> <h2>Features</h2> <ul> <li> <p><code>[mitmproxy#963](pytest-dev/pytest-xdist#963) <https://github.com/pytest-dev/pytest-xdist/issues/963></code>_: Wait for workers to finish reporting when test run stops early.</p> <p>This makes sure that the results of in-progress tests are displayed. Previously these reports were being discarded, losing information about the test run.</p> </li> <li> <p><code>[mitmproxy#965](pytest-dev/pytest-xdist#965) <https://github.com/pytest-dev/pytest-xdist/issues/965></code>_: Added support for Python 3.12.</p> </li> </ul> <h1>pytest-xdist 3.3.1 (2023-05-19)</h1> <h2>Bug Fixes</h2> <ul> <li> <p><code>[mitmproxy#907](pytest-dev/pytest-xdist#907) <https://github.com/pytest-dev/pytest-xdist/issues/907></code>_: Avoid remote calls during startup as <code>execnet</code> by default does not ensure remote affinity with the main thread and might accidentally schedule the pytest worker into a non-main thread, which breaks numerous frameworks, for example <code>asyncio</code>, <code>anyio</code>, <code>PyQt/PySide</code>, etc.</p> <p>A more safe correction will require thread affinity in <code>execnet</code> (<code>pytest-dev/execnet#96 <https://github.com/pytest-dev/execnet/issues/96></code>__).</p> </li> </ul> <h1>pytest-xdist 3.3.0 (2023-05-12)</h1> <h2>Features</h2> <ul> <li><code>[mitmproxy#555](pytest-dev/pytest-xdist#555) <https://github.com/pytest-dev/pytest-xdist/issues/555></code>_: Improved progress output when collecting nodes to be less verbose.</li> </ul> <h1>pytest-xdist 3.2.1 (2023-03-12)</h1> <p>Bug Fixes</p> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/pytest-dev/pytest-xdist/commit/95b309e980796a261045d770f69c016ca741473d"><code>95b309e</code></a> Release 3.5.0</li> <li><a href="https://github.com/pytest-dev/pytest-xdist/commit/3fe877bc6d7211f31e55d2d561803f76ea95b935"><code>3fe877b</code></a> LoadScope scheduler: Sort scopes by number of tests to assign biggest scopes ...</li> <li><a href="https://github.com/pytest-dev/pytest-xdist/commit/f36ea25cb53cb960037f4a8510816b81fa313035"><code>f36ea25</code></a> Create GitHub release after deploy (<a href="https://redirect.github.com/pytest-dev/pytest-xdist/issues/973">#973</a>)</li> <li><a href="https://github.com/pytest-dev/pytest-xdist/commit/d81f57508d064915fc16ace5dea4d43406db2ba0"><code>d81f575</code></a> Merge pull request <a href="https://redirect.github.com/pytest-dev/pytest-xdist/issues/969">#969</a> from pytest-dev/pre-commit-ci-update-config</li> <li><a href="https://github.com/pytest-dev/pytest-xdist/commit/1d2616418c046d0e6f059b8f76e35a0627409616"><code>1d26164</code></a> [pre-commit.ci] pre-commit autoupdate</li> <li><a href="https://github.com/pytest-dev/pytest-xdist/commit/5f43575b42d6d4c0078de807880b8b0791b75823"><code>5f43575</code></a> Merge pull request <a href="https://redirect.github.com/pytest-dev/pytest-xdist/issues/966">#966</a> from pytest-dev/release-3.4.0</li> <li><a href="https://github.com/pytest-dev/pytest-xdist/commit/a6b56112f9b686aed7a354e0d50ecc26ad2d9dfe"><code>a6b5611</code></a> Update CHANGELOG</li> <li><a href="https://github.com/pytest-dev/pytest-xdist/commit/64f9388f4164e9f64d98a7580933e958ea4a09d5"><code>64f9388</code></a> Add support for Python 3.12</li> <li><a href="https://github.com/pytest-dev/pytest-xdist/commit/230ba6ad1057574c9f3d42a97f890788cd9ec6c3"><code>230ba6a</code></a> Properly wait for workers when test run terminates early (<a href="https://redirect.github.com/pytest-dev/pytest-xdist/issues/963">#963</a>)</li> <li><a href="https://github.com/pytest-dev/pytest-xdist/commit/93ca202b400eecc62919bcd9b0bab001e3f3f7ef"><code>93ca202</code></a> fix typo index -> instead</li> <li>Additional commits viewable in <a href="https://github.com/pytest-dev/pytest-xdist/compare/v2.1.0...v3.5.0">compare view</a></li> </ul> </details> <br /> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…roxy#6518) Updates the requirements on [wheel](https://github.com/pypa/wheel) to permit the latest version. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/pypa/wheel/releases">wheel's releases</a>.</em></p> <blockquote> <h2>0.42.0</h2> <ul> <li>Allowed removing build tag with <code>wheel tags --build ""</code></li> <li>Fixed <code>wheel pack</code> and <code>wheel tags</code> writing updated <code>WHEEL</code> fields after a blank line, causing other tools to ignore them</li> <li>Fixed <code>wheel pack</code> and <code>wheel tags</code> writing <code>WHEEL</code> with CRLF line endings or a mix of CRLF and LF</li> <li>Fixed <code>wheel pack --build-number ""</code> not removing build tag from <code>WHEEL</code> (above changes by Benjamin Gilbert)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/pypa/wheel/blob/main/docs/news.rst">wheel's changelog</a>.</em></p> <blockquote> <h1>Release Notes</h1> <p><strong>0.42.0 (2023-11-26)</strong></p> <ul> <li>Allowed removing build tag with <code>wheel tags --build ""</code></li> <li>Fixed <code>wheel pack</code> and <code>wheel tags</code> writing updated <code>WHEEL</code> fields after a blank line, causing other tools to ignore them</li> <li>Fixed <code>wheel pack</code> and <code>wheel tags</code> writing <code>WHEEL</code> with CRLF line endings or a mix of CRLF and LF</li> <li>Fixed <code>wheel pack --build-number ""</code> not removing build tag from <code>WHEEL</code> (above changes by Benjamin Gilbert)</li> </ul> <p><strong>0.41.3 (2023-10-30)</strong></p> <ul> <li>Updated vendored <code>packaging</code> to 23.2</li> <li>Fixed ABI tag generation for CPython 3.13a1 on Windows (PR by Sam Gross)</li> </ul> <p><strong>0.41.2 (2023-08-22)</strong></p> <ul> <li>Fixed platform tag detection for GraalPy and 32-bit python running on an aarch64 kernel (PR by Matthieu Darbois)</li> <li>Fixed <code>wheel tags</code> to not list directories in <code>RECORD</code> files (PR by Mike Taves)</li> <li>Fixed ABI tag generation for GraalPy (PR by Michael Simacek)</li> </ul> <p><strong>0.41.1 (2023-08-05)</strong></p> <ul> <li>Fixed naming of the <code>data_dir</code> directory in the presence of local version segment given via <code>egg_info.tag_build</code> (PR by Anderson Bravalheri)</li> <li>Fixed version specifiers in <code>Requires-Dist</code> being wrapped in parentheses</li> </ul> <p><strong>0.41.0 (2023-07-22)</strong></p> <ul> <li>Added full support of the build tag syntax to <code>wheel tags</code> (you can now set a build tag like <code>123mytag</code>)</li> <li>Fixed warning on Python 3.12 about <code>onerror</code> deprecation. (PR by Henry Schreiner)</li> <li>Support testing on Python 3.12 betas (PR by Ewout ter Hoeven)</li> </ul> <p><strong>0.40.0 (2023-03-14)</strong></p> <ul> <li>Added a <code>wheel tags</code> command to modify tags on an existing wheel (PR by Henry Schreiner)</li> <li>Updated vendored <code>packaging</code> to 23.0</li> <li><code>wheel unpack</code> now preserves the executable attribute of extracted files</li> <li>Fixed spaces in platform names not being converted to underscores (PR by David Tucker)</li> <li>Fixed <code>RECORD</code> files in generated wheels missing the regular file attribute</li> <li>Fixed <code>DeprecationWarning</code> about the use of the deprecated <code>pkg_resources</code> API (PR by Thomas Grainger)</li> <li>Wheel now uses flit-core as a build backend (PR by Henry Schreiner)</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/pypa/wheel/commit/63a09bb3d92630c1d35f4fcc6f79250256aeeb5c"><code>63a09bb</code></a> Created a new release</li> <li><a href="https://github.com/pypa/wheel/commit/f4b8e488dfe3da3ced0bc36aa7dcf21631e7489d"><code>f4b8e48</code></a> Several fixes to <code>WHEEL</code> metadata handling (<a href="https://redirect.github.com/pypa/wheel/issues/588">#588</a>)</li> <li><a href="https://github.com/pypa/wheel/commit/11e573283181493f7aec55146ab2862bccd4dc4d"><code>11e5732</code></a> [pre-commit.ci] pre-commit autoupdate (<a href="https://redirect.github.com/pypa/wheel/issues/586">#586</a>)</li> <li><a href="https://github.com/pypa/wheel/commit/fe6bb8268d5f9e98ceec83c67d03b06c1c8862db"><code>fe6bb82</code></a> [pre-commit.ci] pre-commit autoupdate (<a href="https://redirect.github.com/pypa/wheel/issues/584">#584</a>)</li> <li><a href="https://github.com/pypa/wheel/commit/b90a4bc408ce621818b3e92bb55955431a7fa22a"><code>b90a4bc</code></a> [pre-commit.ci] pre-commit autoupdate (<a href="https://redirect.github.com/pypa/wheel/issues/581">#581</a>)</li> <li><a href="https://github.com/pypa/wheel/commit/56de2ebd4bffa706a60ee0f7785a33c62be737f3"><code>56de2eb</code></a> Added a link to the GitHub repository to pyproject.toml (<a href="https://redirect.github.com/pypa/wheel/issues/563">#563</a>)</li> <li><a href="https://github.com/pypa/wheel/commit/a899f1c69ffddf564b904a5de974457c213dc36a"><code>a899f1c</code></a> Fixed parameter for release-notes</li> <li><a href="https://github.com/pypa/wheel/commit/254ba4658aa0bf1c5be536ccc02ed44e051468fd"><code>254ba46</code></a> Created a new release</li> <li><a href="https://github.com/pypa/wheel/commit/6f33736b6f252506df8e574deced5d5667d05bf6"><code>6f33736</code></a> Updated actions and added GitHub release automation</li> <li><a href="https://github.com/pypa/wheel/commit/83b77e591e6f593470f8daddf3bcfd6ca64e81bc"><code>83b77e5</code></a> Replaced <code>black</code> with <code>ruff-format</code></li> <li>Additional commits viewable in <a href="https://github.com/pypa/wheel/compare/0.36.2...0.42.0">compare view</a></li> </ul> </details> <br /> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [pyinstaller](https://github.com/pyinstaller/pyinstaller) from 6.1.0 to 6.2.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/pyinstaller/pyinstaller/releases">pyinstaller's releases</a>.</em></p> <blockquote> <h2>v6.2.0</h2> <p>Please see the <a href="https://pyinstaller.org/en/v6.2.0/CHANGES.html#id1">v6.2.0 section of the changelog</a> for a list of the changes since v6.1.0.</p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/pyinstaller/pyinstaller/blob/develop/doc/CHANGES.rst">pyinstaller's changelog</a>.</em></p> <blockquote> <h2>6.2.0 (2023-11-11)</h2> <p>Features</p> <pre><code> * (macOS) At the end of analysis, verify the macOS SDK version reported by binaries to be collected, and warn when the version is either invalid (0.0.0) or too low (< 10.9.0). Such binaries will likely cause issues with code-signing and hardened runtime. (:issue:`8043`) * If the ``argcomplete`` Python module is installed, PyInstaller will use it enable tab completion for its CLI tools. PyInstaller CLIs can still be used without this optional dependency. To install ``argcomplete`` with PyInstaller, you can put ``pyinstaller[completion]`` in your dependencies. See also `the argcomplete documentation <https://kislyuk.github.io/argcomplete/>`_. (:issue:`8008`) <p>Bugfix</p> <pre><code> * (macOS) Fix the bug in binary processing and caching that would update the binary cache index before performing macOS-specific processing (architecture validation, path rewriting). If, for example, architecture validation failed during a build, subsequent build attempts with enabled binary cache (i.e., without the :option:`--clean` option) would pick up the partially-processed binary file from the cache, bypassing the architecture validation. NOTE: the existing binary caches need to be purged manually (using :option:`--clean` option once) for the fix to take effect! (:issue:`8068`) * (macOS) Prevent collection of ``.DS_Store`` files, which might be present in build environment's package directories after user navigated them using the Finder app. (:issue:`8042`) * (Windows) Fix marshal error at the start of binary dependency analysis, caused by inferred DLL search path ending up an instance of :class:`pathlib.Path` instead of :class:`str`. (:issue:`8081`) * Bump the required ``packaging`` version to 22.0, which is required for proper handling of metadata that contains markers with ``extra``\ s. (:issue:`8061`) * Fix erroneous DLL parent path preservation when :data:`sys.base_prefix` itself is a symbolic link. In such case, we need to exclude both resolved and unresolved path variant for ``sys.base_prefix``, in order to prevent either from ending up in the list of directories for which DLL parent paths are preserved. Failing to do so, for example, caused ``_ctypes`` failing to load in an application build on Windows with Python installed via ``scoop``, due to ``libffi-8.dll`` having spuriously preserved the parent directory path instead of being collected to top-level application directory. (:issue:`8023`) * Fix matching of pre-release versions in :func:`PyInstaller.utils.hooks.check_requirement` and &lt;/tr&gt;&lt;/table&gt; </code></pre> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="pyinstaller/pyinstaller@90c9ac4231640bb90be6a87514c77e2bf55b39b0"><code>90c9ac4</code></a> Release v6.2.0. [skip ci]</li> <li><a href="pyinstaller/pyinstaller@ae525ceffe09ca7d1c8d7e47850e71edab3e219a"><code>ae525ce</code></a> hookutils: fix pre-release matching in check_requirement / is_module_satisfies</li> <li><a href="pyinstaller/pyinstaller@13de1077d51cb71c78fcc5a5d9b3d7678a5374fb"><code>13de107</code></a> building: fix marshal error during DLL search path extension</li> <li><a href="pyinstaller/pyinstaller@04db9fdaeab2bb321a6ffd00eb5949ed7aea07ae"><code>04db9fd</code></a> rth_utils: add is_macos_app_bundle flag</li> <li><a href="pyinstaller/pyinstaller@1e0e551ea955ae19403424394cdb24e8d4506c2c"><code>1e0e551</code></a> rth_utils: remove relative import work-around</li> <li><a href="pyinstaller/pyinstaller@ecc218ceb5974590723c748f0c9ef6fb9a639476"><code>ecc218c</code></a> analysis: fix module exclusion for relative imports from submodules</li> <li><a href="pyinstaller/pyinstaller@03627c2b2b760832f23249cb8a89fdd13af42505"><code>03627c2</code></a> tests: add test for exclusion of relatively-imported modules</li> <li><a href="pyinstaller/pyinstaller@e157bb6c16311053d8b9dbeaa383fc76b137793c"><code>e157bb6</code></a> hooks: add a hook for our _pyi_rth_utils fake package</li> <li><a href="pyinstaller/pyinstaller@574a96191729ba49f4235184c0418c1ffc5e544c"><code>574a961</code></a> rth_utils: move secure_mkdtemp() implementation to a submodule</li> <li><a href="pyinstaller/pyinstaller@983bd59dc6201fff839506d5344b3c0efb5ec6bc"><code>983bd59</code></a> rthooks: pkg_resources: normalize path using os.path.normpath</li> <li>Additional commits viewable in <a href="pyinstaller/pyinstaller@v6.1.0...v6.2.0">compare view</a></li> </ul> </details> <br /> </code></pre> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
#### Description
Currently when an empty cookie attribute (`Secure`, `HttpOnly` ...) is
encountered while parsing a `Set-Cookie` header it will create a
`CookieAttrs` object containing a (key, value) pair with an empty string
for the attribute value ie:
```python
CookieAttrs[('Secure', ''), ('HttpOnly', ''), ('Path', '/')]
```
Resulting in an updated `Set-Cookie` header for the `Response` object
with invalid values for those empty attributes ie:
```python
(b'SetCookie', b'value=XYZ; Secure=; HttpOnly=; Path=/')
```
My browser (Firefox 95.0.1) does not pickup these attributes so the
cookie looses them.
______
This fix replaces the empty string attribute for empty cookie attributes
by the value `None` ie:
```python
CookieAttrs[('Secure', None), ('HttpOnly', None), ('Path', '/')]
```
So that they can be told apart from attributes with intentional empty
string values when setting the updated header, which results in a
properly formatted header:
```python
(b'SetCookie', b'value=XYZ; Secure; HttpOnly; Path=/')
```
#### Checklist
- [x] I have updated tests where applicable.
- [x] I have added an entry to the CHANGELOG.
Co-authored-by: Lucas FICHEUX <[email protected]>
Co-authored-by: Lucas FICHEUX <[email protected]> Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com> Co-authored-by: Maximilian Hils <[email protected]>
|
Hi! I'm the It looks like you correctly set up a CI job that uses the autofix.ci GitHub Action, but the autofix.ci GitHub App has not been installed for this repository. This means that autofix.ci unfortunately does not have the permissions to fix this pull request. If you are the repository owner, please install the app and then restart the CI workflow! 😃 |
autofix.ci
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Description
Upgraded mitmproxy from upstream.
Checklist