Commit Graph

81 Commits

Author SHA1 Message Date
Gaurav Jain 317f5b9dce
Support all query types in DNS mode (#6975)
* Use mitmproxy_rust's getaddrinfo to resolve domain names

* Use mitmproxy.DnsResolver for A/AAAA queries and forward other queries to dns server

* [autofix.ci] apply automated fixes

* Add suggested changes

* [autofix.ci] apply automated fixes

* nits

* lazy-load resolver

* fix lookup of non A/AAAA records

* bump required mitmproxy_rs version

* [autofix.ci] apply automated fixes

* Add tests

* Update CHANGELOG

* [autofix.ci] apply automated fixes

* Fix tests

* [autofix.ci] apply automated fixes

* Fixup

* Fixup

* [autofix.ci] apply automated fixes

---------

Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
Co-authored-by: Maximilian Hils <git@maximilianhils.com>
2024-07-16 17:31:11 +02:00
Maximilian Hils 252a07e24a
Improve intercept specs with new syntax from mitmproxy_rs (#6980)
improve intercept specs with new syntax from mitmproxy_rs
2024-07-03 15:52:38 +00:00
dependabot[bot] 5496045e0b
Update ruff requirement from <=0.4.7,>=0.4.1 to <=0.5.0,>=0.5.0 (#6990)
* Update ruff requirement from <=0.4.7,>=0.4.1 to <=0.5.0,>=0.5.0

Updates the requirements on [ruff](https://github.com/astral-sh/ruff) to permit the latest version.
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](https://github.com/astral-sh/ruff/compare/v0.4.1...0.5.0)

---
updated-dependencies:
- dependency-name: ruff
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

* fixup

* fixup

* fixuppppps

* fixups

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Maximilian Hils <github@maximilianhils.com>
2024-07-02 12:07:47 +02:00
dependabot[bot] 20187c3449
Bump the pytest group across 1 directory with 2 updates (#6982)
Updates the requirements on [hypothesis](https://github.com/HypothesisWorks/hypothesis) and [pytest](https://github.com/pytest-dev/pytest) to permit the latest version.

Updates `hypothesis` to 6.104.2
- [Release notes](https://github.com/HypothesisWorks/hypothesis/releases)
- [Commits](https://github.com/HypothesisWorks/hypothesis/compare/hypothesis-python-6.102.4...hypothesis-python-6.104.2)

Updates `pytest` to 8.2.2
- [Release notes](https://github.com/pytest-dev/pytest/releases)
- [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst)
- [Commits](https://github.com/pytest-dev/pytest/compare/8.1.1...8.2.2)

---
updated-dependencies:
- dependency-name: hypothesis
  dependency-type: direct:production
  dependency-group: pytest
- dependency-name: pytest
  dependency-type: direct:production
  dependency-group: pytest
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-07-02 05:27:40 +00:00
dependabot[bot] 7f9c818f6e
Update tox requirement from <=4.15.0,>=3.5 to <=4.15.1,>=4.15.1 (#6986)
Updates the requirements on [tox](https://github.com/tox-dev/tox) to permit the latest version.
- [Release notes](https://github.com/tox-dev/tox/releases)
- [Changelog](https://github.com/tox-dev/tox/blob/main/docs/changelog.rst)
- [Commits](https://github.com/tox-dev/tox/compare/3.5.0...4.15.1)

---
updated-dependencies:
- dependency-name: tox
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-07-02 07:21:34 +02:00
dependabot[bot] 94b321cf5f
Update pdoc requirement from <=14.5.0,>=4.0.0 to <=14.5.1,>=14.5.1 (#6987)
Updates the requirements on [pdoc](https://github.com/mitmproxy/pdoc) to permit the latest version.
- [Changelog](https://github.com/mitmproxy/pdoc/blob/main/CHANGELOG.md)
- [Commits](https://github.com/mitmproxy/pdoc/compare/v4.0.0...v14.5.1)

---
updated-dependencies:
- dependency-name: pdoc
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-07-02 07:21:09 +02:00
dependabot[bot] 6222192a39
Update protobuf requirement from <=5.27.0,>=3.14 to <=5.27.2,>=5.27.2 (#6989)
Updates the requirements on [protobuf](https://github.com/protocolbuffers/protobuf) to permit the latest version.
- [Release notes](https://github.com/protocolbuffers/protobuf/releases)
- [Changelog](https://github.com/protocolbuffers/protobuf/blob/main/protobuf_release.bzl)
- [Commits](https://github.com/protocolbuffers/protobuf/compare/v3.14.0...v5.27.2)

---
updated-dependencies:
- dependency-name: protobuf
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-07-02 07:20:42 +02:00
dependabot[bot] 1c5dc80472
Update tornado requirement from <=6.4,>=6.2 to <=6.4.1,>=6.4.1 (#6988)
Updates the requirements on [tornado](https://github.com/tornadoweb/tornado) to permit the latest version.
- [Changelog](https://github.com/tornadoweb/tornado/blob/master/docs/releases.rst)
- [Commits](https://github.com/tornadoweb/tornado/compare/v6.2.0...v6.4.1)

---
updated-dependencies:
- dependency-name: tornado
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-07-02 07:20:28 +02:00
dependabot[bot] 5e572da32f
Update pyperclip requirement from <=1.8.2,>=1.6.0 to <=1.9.0,>=1.9.0 (#6985)
---
updated-dependencies:
- dependency-name: pyperclip
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-07-02 07:20:05 +02:00
dependabot[bot] 7fa0c406f6
Update aioquic requirement from <=1.0.0,>=1.0.0 to <=1.1.0,>=1.1.0 (#6984)
Updates the requirements on [aioquic](https://github.com/aiortc/aioquic) to permit the latest version.
- [Changelog](https://github.com/aiortc/aioquic/blob/main/docs/changelog.rst)
- [Commits](https://github.com/aiortc/aioquic/compare/1.0.0...1.1.0)

---
updated-dependencies:
- dependency-name: aioquic
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-07-02 06:44:07 +02:00
dependabot[bot] c4eaddedfd
Bump the mypy group with 2 updates (#6983)
---
updated-dependencies:
- dependency-name: mypy
  dependency-type: direct:production
  dependency-group: mypy
- dependency-name: types-requests
  dependency-type: direct:production
  dependency-group: mypy
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-07-02 06:43:38 +02:00
dependabot[bot] 311e2d2cbb
Bump pyinstaller from 6.7.0 to 6.8.0 in the pyinstaller group (#6981)
Bumps the pyinstaller group with 1 update: [pyinstaller](https://github.com/pyinstaller/pyinstaller).


Updates `pyinstaller` from 6.7.0 to 6.8.0
- [Release notes](https://github.com/pyinstaller/pyinstaller/releases)
- [Changelog](https://github.com/pyinstaller/pyinstaller/blob/develop/doc/CHANGES.rst)
- [Commits](https://github.com/pyinstaller/pyinstaller/compare/v6.7.0...v6.8.0)

---
updated-dependencies:
- dependency-name: pyinstaller
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: pyinstaller
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-07-02 06:43:06 +02:00
Gaurav Jain 7f7cb28d32
Add support for DNS over TCP (#6935)
* Parse DNS over TCP messages

* [autofix.ci] apply automated fixes

* Update _next_layer to detect DNS over TCP messages

* [autofix.ci] apply automated fixes

* Fixup

* allow query pipelining

* [autofix.ci] apply automated fixes

* Restructure pack/unpack mechanism and update tests

* Add tests

* [autofix.ci] apply automated fixes

* [autofix.ci] apply automated fixes (attempt 2/3)

* [autofix.ci] apply automated fixes

* [autofix.ci] apply automated fixes

* Update next_layer test

* Add suggested changes

* [autofix.ci] apply automated fixes

* bump minimum hypothesis version

* bump hypothesis for good

* Update CHANGELOG.md

---------

Co-authored-by: autofix-ci[bot] <114827586+autofix-ci[bot]@users.noreply.github.com>
Co-authored-by: Maximilian Hils <git@maximilianhils.com>
2024-06-24 10:50:25 +00:00
Maximilian Hils c46af057de
Use upstream urwid again (#6929)
use upstream urwid again
2024-06-14 17:43:21 +00:00
dependabot[bot] 9642c1a73e
Update types-requests requirement from <=2.32.0.20240521,>=2.31.0.10 to >=2.31.0.10,<=2.32.0.20240523 in the mypy group (#6892)
Update types-requests requirement in the mypy group

---
updated-dependencies:
- dependency-name: types-requests
  dependency-type: direct:production
  dependency-group: mypy
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-06-02 07:43:59 -05:00
dependabot[bot] 556caafdd1
Update requests requirement from <=2.32.2,>=2.9.1 to >=2.9.1,<=2.32.3 (#6893)
Updates the requirements on [requests](https://github.com/psf/requests) to permit the latest version.
- [Release notes](https://github.com/psf/requests/releases)
- [Changelog](https://github.com/psf/requests/blob/main/HISTORY.md)
- [Commits](https://github.com/psf/requests/compare/v2.9.1...v2.32.3)

---
updated-dependencies:
- dependency-name: requests
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-06-02 07:43:46 -05:00
dependabot[bot] 8ec2815fa5
Update ruff requirement from <=0.4.4,>=0.4.1 to >=0.4.1,<=0.4.7 (#6894)
Updates the requirements on [ruff](https://github.com/astral-sh/ruff) to permit the latest version.
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](https://github.com/astral-sh/ruff/compare/v0.4.1...v0.4.7)

---
updated-dependencies:
- dependency-name: ruff
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-06-02 07:43:31 -05:00
dependabot[bot] 310bac7315
Update protobuf requirement from <=5.26.1,>=3.14 to >=3.14,<=5.27.0 (#6895)
Updates the requirements on [protobuf](https://github.com/protocolbuffers/protobuf) to permit the latest version.
- [Release notes](https://github.com/protocolbuffers/protobuf/releases)
- [Changelog](https://github.com/protocolbuffers/protobuf/blob/main/protobuf_release.bzl)
- [Commits](https://github.com/protocolbuffers/protobuf/compare/v3.14.0...v5.27.0)

---
updated-dependencies:
- dependency-name: protobuf
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-06-02 07:43:16 -05:00
dependabot[bot] 552c320fad
Update requests requirement from <=2.32.1,>=2.9.1 to >=2.9.1,<=2.32.2 (#6865)
---
updated-dependencies:
- dependency-name: requests
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-05-22 00:36:10 +00:00
dependabot[bot] ae56c9e488
Update pyinstaller requirement from <=6.6.0,>=6.6.0 to >=6.6.0,<=6.7.0 in the pyinstaller group (#6864)
* ---
updated-dependencies:
- dependency-name: pyinstaller
  dependency-type: direct:production
  dependency-group: pyinstaller
...

Signed-off-by: dependabot[bot] <support@github.com>

* pin pyinstaller

we'd had enough fun with this over the years

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Maximilian Hils <git@maximilianhils.com>
2024-05-22 00:19:19 +00:00
Maximilian Hils 59faf5a69b
pick more conservative upper version bounds for dependencies (#6862)
* enforce strict upper bounds for dependencies

going forward, we rely on dependabot to widen version ranges.

* update GHA actions (#22)

updated-dependencies:
- dependency-name: install-pinned/ruff
  dependency-type: direct:production
  dependency-group: github-actions
- dependency-name: apple-actions/import-codesign-certs
  dependency-type: direct:production
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* restrict pytest

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-05-22 00:09:16 +00:00
Alex Gaynor 6c6c7425dc
Temporarily prohibit pytest 8.2.1 in order to fix CI (#6858)
See https://github.com/pytest-dev/pytest/issues/12263
2024-05-20 13:20:58 +02:00
dependabot[bot] 025b9d40ce
Bump pyinstaller from 6.5.0 to 6.6.0 (#6826)
Bumps [pyinstaller](https://github.com/pyinstaller/pyinstaller) from 6.5.0 to 6.6.0.
- [Release notes](https://github.com/pyinstaller/pyinstaller/releases)
- [Changelog](https://github.com/pyinstaller/pyinstaller/blob/develop/doc/CHANGES.rst)
- [Commits](https://github.com/pyinstaller/pyinstaller/compare/v6.5.0...v6.6.0)

---
updated-dependencies:
- dependency-name: pyinstaller
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-05-02 10:00:00 +02:00
Alex Gaynor 30562344b4
temporarily prohibit pytest 8.2.0 in order to fix CI (#6823)
See https://github.com/pytest-dev/pytest/issues/12263
2024-04-29 13:28:51 +02:00
Maximilian Hils b2298d7e99
fix CI (#6816) 2024-04-21 23:04:20 +00:00
Maximilian Hils aedbde938a
tests: speedups, lowest-version, ... (#6812) 2024-04-21 23:44:09 +02:00
dependabot[bot] 174253b79b
Update pytest-cov requirement from <4.2,>=2.7.1 to >=2.7.1,<5.1 (#6777)
Updates the requirements on [pytest-cov](https://github.com/pytest-dev/pytest-cov) to permit the latest version.
- [Changelog](https://github.com/pytest-dev/pytest-cov/blob/master/CHANGELOG.rst)
- [Commits](https://github.com/pytest-dev/pytest-cov/compare/v2.7.1...v5.0.0)

---
updated-dependencies:
- dependency-name: pytest-cov
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-04-01 23:08:58 +00:00
dependabot[bot] 043f8544a3
Bump pyinstaller from 6.4.0 to 6.5.0 (#6775)
Bumps [pyinstaller](https://github.com/pyinstaller/pyinstaller) from 6.4.0 to 6.5.0.
- [Release notes](https://github.com/pyinstaller/pyinstaller/releases)
- [Changelog](https://github.com/pyinstaller/pyinstaller/blob/develop/doc/CHANGES.rst)
- [Commits](https://github.com/pyinstaller/pyinstaller/compare/v6.4.0...v6.5.0)

---
updated-dependencies:
- dependency-name: pyinstaller
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-04-01 23:01:45 +00:00
dependabot[bot] a4b3600bfd
Update protobuf requirement from <5,>=3.14 to >=3.14,<6 (#6774)
Updates the requirements on [protobuf](https://github.com/protocolbuffers/protobuf) to permit the latest version.
- [Release notes](https://github.com/protocolbuffers/protobuf/releases)
- [Changelog](https://github.com/protocolbuffers/protobuf/blob/main/protobuf_release.bzl)
- [Commits](https://github.com/protocolbuffers/protobuf/compare/v3.14.0...v5.26.1)

---
updated-dependencies:
- dependency-name: protobuf
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-04-01 22:59:21 +00:00
dependabot[bot] 2cc04d84a4
Update asgiref requirement from <3.8,>=3.2.10 to >=3.2.10,<3.9 (#6776)
Updates the requirements on [asgiref](https://github.com/django/asgiref) to permit the latest version.
- [Changelog](https://github.com/django/asgiref/blob/main/CHANGELOG.txt)
- [Commits](https://github.com/django/asgiref/compare/3.2.10...3.8.1)

---
updated-dependencies:
- dependency-name: asgiref
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-04-01 22:57:41 +00:00
dependabot[bot] 70e1c723dc
Update pytest-timeout requirement from <2.3,>=1.3.3 to >=1.3.3,<2.4 (#6772)
Updates the requirements on [pytest-timeout](https://github.com/pytest-dev/pytest-timeout) to permit the latest version.
- [Commits](https://github.com/pytest-dev/pytest-timeout/compare/1.3.3...2.3.1)

---
updated-dependencies:
- dependency-name: pytest-timeout
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-04-01 22:52:20 +00:00
dependabot[bot] f4eff7e09e
Update wheel requirement from <0.43,>=0.36.2 to >=0.36.2,<0.44 (#6773)
Updates the requirements on [wheel](https://github.com/pypa/wheel) to permit the latest version.
- [Release notes](https://github.com/pypa/wheel/releases)
- [Changelog](https://github.com/pypa/wheel/blob/main/docs/news.rst)
- [Commits](https://github.com/pypa/wheel/compare/0.36.2...0.43.0)

---
updated-dependencies:
- dependency-name: wheel
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-04-01 22:52:14 +00:00
dependabot[bot] 6ecec4b893
Update pyopenssl requirement from <24.1,>=22.1 to >=22.1,<24.2 (#6771)
Updates the requirements on [pyopenssl](https://github.com/pyca/pyopenssl) to permit the latest version.
- [Changelog](https://github.com/pyca/pyopenssl/blob/main/CHANGELOG.rst)
- [Commits](https://github.com/pyca/pyopenssl/compare/22.1.0...24.1.0)

---
updated-dependencies:
- dependency-name: pyopenssl
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-04-02 00:52:07 +02:00
Jeremy Lainé 0d68e193b1
Update aioquic dependency to >= 1.0.0, < 2.0.0 (fixes: #6746) (#6747)
#### Description

This fixes some specification compliance issues as well as a potential
DoS vulnerability.

Start with version 1.0.0, aioquic follows semantic versioning, so no
breaking changes will occur before version 2.0.0.

#### Checklist

 - [x] I have updated tests where applicable.
 - [x] I have added an entry to the CHANGELOG.
2024-03-20 21:31:03 +01:00
Maximilian Hils 9acf06427a
Use `_utc` APIs from cryptography, fix #6717 (#6718) 2024-03-07 17:00:51 +01:00
dependabot[bot] 3b58bae455
Bump pyinstaller from 6.3.0 to 6.4.0 (#6702)
Bumps [pyinstaller](https://github.com/pyinstaller/pyinstaller) from
6.3.0 to 6.4.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/pyinstaller/pyinstaller/releases">pyinstaller's
releases</a>.</em></p>
<blockquote>
<h2>v6.4.0</h2>
<p>Please see the <a
href="https://pyinstaller.org/en/v6.4.0/CHANGES.html#id1">v6.4.0 section
of the changelog</a> for a list of the changes since v6.3.0.</p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/pyinstaller/pyinstaller/blob/develop/doc/CHANGES.rst">pyinstaller's
changelog</a>.</em></p>
<blockquote>
<h2>6.4.0 (2024-02-10)</h2>
<p>Features</p>
<pre><code>
* (Linux) Collect ``.hmac`` files accompanying shared libraries, if such
files
are available. This allows frozen application to run on FIPS-enabled Red
Hat
Enterprise systems, where HMAC is required by self-check implemented by
the
  OpenSSL crypto library. Furthermore, ensure that shared libraries with
accompanying ``.hmac`` files are exempted from any additional processing
(for
example, when building with :option:`--strip` option) to avoid
invalidating
  the HMAC. (:issue:`8273`)
* (Windows) Make bootloader codepaths involved in creation of temporary
directories for ``onefile`` builds AppContainer-aware. If the process
runs
inside an AppContainer, the temporary directory's DACL needs to
explicitly
include the AppContainerSID, otherwise the directory becomes
inaccessible to
  the process. (:issue:`8291`)
* (Windows) Make Windows implementation of PyInstaller's
  ``_pyi_rth_utils.tempdir.secure_mkdir`` (used by ``matplotlib`` and
  ``win32com`` run-time hooks to create temporary directories)
AppContainer-aware. If the process runs inside an AppContainer, the
temporary
directory's DACL needs to explicitly include the AppContainerSID,
otherwise
  the directory becomes inaccessible to the process. (:issue:`8290`)
* Implement strict Qt dependency validation for collection of Qt plugins
and QML
components/plugins. We now perform preliminary binary dependency
analysis of
the plugins, and automatically exclude plugins that have at least one
missing
Qt dependency. This prevents collection of plugins that cannot be used
anyway
because of a missing Qt shared library (that is, for example, omitted
from a
PyPI wheel). Furthermore, we disallow Qt dependencies of a plugin to be
resolved outside of the primary location of Qt shared libraries, in
order to
prevent missing dependencies from pulling in Qt libraries from
alternative
locations that happen to be in the search path (for example, when using
``PyQt5`` PyPI wheels while also having a system-installed Qt5 on Linux,
a
Homebrew-installed Qt5 on macOS, or a custom Windows Qt5 build that
happens to
  be in ``PATH``). (:issue:`8226`)
<p>Bugfix</p>
<pre><code>
* (Linux) Prevent collection of ``libcuda.so.1``, which is part of
NVIDIA
  driver and must match the rest of the driver's components. Collecting
  a copy might lead to issues when build and target system use different
  versions of NVIDIA driver. (:issue:`8278`)
* (macOS) When validating the macOS SDK version of collected binaries,
  handle errors raised by ``osxutils.get_macos_sdk_version``; log a
  warning about failed version query, and add the offending binary to
  the list of potentially problematic binaries to warn the user about.
  (:issue:`8220`)
&amp;lt;/tr&amp;gt;&amp;lt;/table&amp;gt; 
&lt;/code&gt;&lt;/pre&gt;
&lt;/blockquote&gt;
&lt;p&gt;... (truncated)&lt;/p&gt;
&lt;/details&gt;
&lt;details&gt;
&lt;summary&gt;Commits&lt;/summary&gt;

&lt;ul&gt;
&lt;li&gt;&lt;a
href=&quot;90256f93ed&quot;&gt;&lt;code&gt;90256f9&lt;/code&gt;&lt;/a&gt;
Release v6.4.0. [skip ci]&lt;/li&gt;
&lt;li&gt;&lt;a
href=&quot;4aabd10778&quot;&gt;&lt;code&gt;4aabd10&lt;/code&gt;&lt;/a&gt;
bootloader: update bundled zlib to 1.3.1&lt;/li&gt;
&lt;li&gt;&lt;a
href=&quot;1516019dd1&quot;&gt;&lt;code&gt;1516019&lt;/code&gt;&lt;/a&gt;
bootloader: make creation of temporary directories
AppContainer-aware&lt;/li&gt;
&lt;li&gt;&lt;a
href=&quot;14a68ab536&quot;&gt;&lt;code&gt;14a68ab&lt;/code&gt;&lt;/a&gt;
bootloader: refactor pyi_win32_mkdir&lt;/li&gt;
&lt;li&gt;&lt;a
href=&quot;08e2ee5bcc&quot;&gt;&lt;code&gt;08e2ee5&lt;/code&gt;&lt;/a&gt;
building: process_collected_binary: warn on strip/upx
failures&lt;/li&gt;
&lt;li&gt;&lt;a
href=&quot;890460069b&quot;&gt;&lt;code&gt;8904600&lt;/code&gt;&lt;/a&gt;
building: avoid applying upx/strip to linux binaries with .hmac
files&lt;/li&gt;
&lt;li&gt;&lt;a
href=&quot;473abda771&quot;&gt;&lt;code&gt;473abda&lt;/code&gt;&lt;/a&gt;
building: refactor process_collected_binary&lt;/li&gt;
&lt;li&gt;&lt;a
href=&quot;4f7ec5b849&quot;&gt;&lt;code&gt;4f7ec5b&lt;/code&gt;&lt;/a&gt;
building: process_collected_binaries: remove check for .manifest
file&lt;/li&gt;
&lt;li&gt;&lt;a
href=&quot;3a6c742a35&quot;&gt;&lt;code&gt;3a6c742&lt;/code&gt;&lt;/a&gt;
building: utils: switch bincache hashes from md5 to sha1&lt;/li&gt;
&lt;li&gt;&lt;a
href=&quot;7caa3adbd2&quot;&gt;&lt;code&gt;7caa3ad&lt;/code&gt;&lt;/a&gt;
building: collect .hmac files for linux shared libraries&lt;/li&gt;
&lt;li&gt;Additional commits viewable in &lt;a
href=&quot;https://github.com/pyinstaller/pyinstaller/compare/v6.3.0...v6.4.0&quot;&gt;compare
view&lt;/a&gt;&lt;/li&gt;
&lt;/ul&gt;
&lt;/details&gt;

&lt;br /&gt;
</code></pre>


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pyinstaller&package-manager=pip&previous-version=6.3.0&new-version=6.4.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-03-05 14:52:35 +01:00
Herman Ho 2a82674fdc
Fix error message in OpenSSL >=3.2.0 (#6658)
Fix the test cases for OpenSSL v3

Ref:

81b741f689
4030869d24
2024-02-13 16:28:00 +01:00
dependabot[bot] e6dc1a9abe
Update cryptography requirement from <41.1,>=39.0 to >=39.0,<42.1 (#6636)
Updates the requirements on
[cryptography](https://github.com/pyca/cryptography) to permit the
latest version.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst">cryptography's
changelog</a>.</em></p>
<blockquote>
<p>42.0.2 - 2024-01-30</p>
<pre><code>
* Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL
3.2.1.
* Fixed an issue that prevented the use of Python buffer protocol
objects in
  ``sign`` and ``verify`` methods on asymmetric keys.
* Fixed an issue with incorrect keyword-argument naming with
``EllipticCurvePrivateKey``

:meth:`~cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePrivateKey.exchange`,
  ``X25519PrivateKey``

:meth:`~cryptography.hazmat.primitives.asymmetric.x25519.X25519PrivateKey.exchange`,
  ``X448PrivateKey``

:meth:`~cryptography.hazmat.primitives.asymmetric.x448.X448PrivateKey.exchange`,
  and ``DHPrivateKey``

:meth:`~cryptography.hazmat.primitives.asymmetric.dh.DHPrivateKey.exchange`.
<p>.. _v42-0-1:</p>
<p>42.0.1 - 2024-01-24
</code></pre></p>
<ul>
<li>Fixed an issue with incorrect keyword-argument naming with
<code>EllipticCurvePrivateKey</code>

:meth:<code>~cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePrivateKey.sign</code>.</li>
<li>Resolved compatibility issue with loading certain RSA public keys in

:func:<code>~cryptography.hazmat.primitives.serialization.load_pem_public_key</code>.</li>
</ul>
<p>.. _v42-0-0:</p>
<p>42.0.0 - 2024-01-22</p>
<pre><code>
* **BACKWARDS INCOMPATIBLE:** Dropped support for LibreSSL &lt; 3.7.
* **BACKWARDS INCOMPATIBLE:** Loading a PKCS7 with no content field
using

:func:`~cryptography.hazmat.primitives.serialization.pkcs7.load_pem_pkcs7_certificates`
  or

:func:`~cryptography.hazmat.primitives.serialization.pkcs7.load_der_pkcs7_certificates`
  will now raise a ``ValueError`` rather than return an empty list.
* Parsing SSH certificates no longer permits malformed critical options
with
  values, as documented in the 41.0.2 release notes.
* Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL
3.2.0.
* Updated the minimum supported Rust version (MSRV) to 1.63.0, from
1.56.0.
* We now publish both ``py37`` and ``py39`` ``abi3`` wheels. This should
resolve some errors relating to initializing a module multiple times per
  process.
* Support
:class:`~cryptography.hazmat.primitives.asymmetric.padding.PSS` for
X.509 certificate signing requests and certificate revocation lists with
the
  keyword-only argument ``rsa_padding`` on the ``sign`` methods for
  :class:`~cryptography.x509.CertificateSigningRequestBuilder` and
  :class:`~cryptography.x509.CertificateRevocationListBuilder`.
* Added support for obtaining X.509 certificate signing request
signature
  algorithm parameters (including PSS) via
&lt;/tr&gt;&lt;/table&gt; 
</code></pre>
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="2202123b50"><code>2202123</code></a>
changelog and version bump 42.0.2 (<a
href="https://redirect.github.com/pyca/cryptography/issues/10268">#10268</a>)</li>
<li><a
href="f7032bdd40"><code>f7032bd</code></a>
bump openssl in CI (<a
href="https://redirect.github.com/pyca/cryptography/issues/10298">#10298</a>)
(<a
href="https://redirect.github.com/pyca/cryptography/issues/10299">#10299</a>)</li>
<li><a
href="002e886f16"><code>002e886</code></a>
Fixes <a
href="https://redirect.github.com/pyca/cryptography/issues/10294">#10294</a>
-- correct accidental change to exchange kwarg (<a
href="https://redirect.github.com/pyca/cryptography/issues/10295">#10295</a>)
(<a
href="https://redirect.github.com/pyca/cryptography/issues/10296">#10296</a>)</li>
<li><a
href="92fa9f2f60"><code>92fa9f2</code></a>
support bytes-like consistently across our asym sign/verify APIs (<a
href="https://redirect.github.com/pyca/cryptography/issues/10260">#10260</a>)
(<a
href="https://redirect.github.com/pyca/cryptography/issues/1">#1</a>...</li>
<li><a
href="6478f7e28b"><code>6478f7e</code></a>
explicitly support bytes-like for signature/data in RSA sign/verify (<a
href="https://redirect.github.com/pyca/cryptography/issues/10259">#10259</a>)
...</li>
<li><a
href="4bb8596ae0"><code>4bb8596</code></a>
fix the release script (<a
href="https://redirect.github.com/pyca/cryptography/issues/10233">#10233</a>)
(<a
href="https://redirect.github.com/pyca/cryptography/issues/10254">#10254</a>)</li>
<li><a
href="337437dc2e"><code>337437d</code></a>
42.0.1 bump (<a
href="https://redirect.github.com/pyca/cryptography/issues/10252">#10252</a>)</li>
<li><a
href="56255de6b2"><code>56255de</code></a>
allow SPKI RSA keys to be parsed even if they have an incorrect
delimiter (<a
href="https://redirect.github.com/pyca/cryptography/issues/1">#1</a>...</li>
<li><a
href="12f038b38a"><code>12f038b</code></a>
fixes <a
href="https://redirect.github.com/pyca/cryptography/issues/10237">#10237</a>
-- correct EC sign parameter name (<a
href="https://redirect.github.com/pyca/cryptography/issues/10239">#10239</a>)
(<a
href="https://redirect.github.com/pyca/cryptography/issues/10240">#10240</a>)</li>
<li><a
href="4e64baf360"><code>4e64baf</code></a>
42.0.0 version bump (<a
href="https://redirect.github.com/pyca/cryptography/issues/10232">#10232</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/pyca/cryptography/compare/39.0.0...42.0.2">compare
view</a></li>
</ul>
</details>
<br />


Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-02-01 23:22:24 +01:00
dependabot[bot] 8ad77e8e8c
Update pytest requirement from <8,>=6.1.0 to >=6.1.0,<9 (#6637)
Updates the requirements on
[pytest](https://github.com/pytest-dev/pytest) to permit the latest
version.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/pytest-dev/pytest/releases">pytest's
releases</a>.</em></p>
<blockquote>
<h2>pytest 8.0.0 (2024-01-27)</h2>
<p>See <a
href="https://github.com/pytest-dev/pytest/releases/tag/8.0.0rc1">8.0.0rc1</a>
and <a
href="https://github.com/pytest-dev/pytest/releases/tag/8.0.0rc2">8.0.0rc2</a>
for the full changes since pytest 7.4!</p>
<h2>Bug Fixes</h2>
<ul>
<li><a
href="https://redirect.github.com/pytest-dev/pytest/issues/11842">#11842</a>:
Properly escape the <code>reason</code> of a <code>skip
&lt;pytest.mark.skip ref&gt;</code>{.interpreted-text
role=&quot;ref&quot;} mark when writing JUnit XML files.</li>
<li><a
href="https://redirect.github.com/pytest-dev/pytest/issues/11861">#11861</a>:
Avoid microsecond exceeds <code>1_000_000</code> when using
<code>log-date-format</code> with <code>%f</code> specifier, which might
cause the test suite to crash.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="478f8233bc"><code>478f823</code></a>
Prepare release version 8.0.0</li>
<li><a
href="608590097a"><code>6085900</code></a>
[8.0.x] fix: avoid rounding microsecond to <code>1_000_000</code> (<a
href="https://redirect.github.com/pytest-dev/pytest/issues/11863">#11863</a>)</li>
<li><a
href="3b41c65c81"><code>3b41c65</code></a>
[8.0.x] Escape skip reason in junitxml (<a
href="https://redirect.github.com/pytest-dev/pytest/issues/11845">#11845</a>)</li>
<li><a
href="747072ad26"><code>747072a</code></a>
[8.0.x] Update docstring of scripts/generate-gh-release-notes.py (<a
href="https://redirect.github.com/pytest-dev/pytest/issues/11768">#11768</a>)</li>
<li><a
href="011a475baf"><code>011a475</code></a>
Properly attach packages to the GH release notes (<a
href="https://redirect.github.com/pytest-dev/pytest/issues/11839">#11839</a>)
(<a
href="https://redirect.github.com/pytest-dev/pytest/issues/11840">#11840</a>)</li>
<li><a
href="97960bdd14"><code>97960bd</code></a>
Merge pull request <a
href="https://redirect.github.com/pytest-dev/pytest/issues/11835">#11835</a>
from pytest-dev/release-8.0.0rc2</li>
<li><a
href="6be0a3cbf7"><code>6be0a3c</code></a>
Prepare release version 8.0.0rc2</li>
<li><a
href="44ffe07165"><code>44ffe07</code></a>
Merge pull request <a
href="https://redirect.github.com/pytest-dev/pytest/issues/11837">#11837</a>
from pytest-dev/backport-11836-to-8.0.x</li>
<li><a
href="14ecb04973"><code>14ecb04</code></a>
[8.0.x] testing: temporarily disable test due to hypothesis issue</li>
<li><a
href="41c8dabee3"><code>41c8dab</code></a>
Merge pull request <a
href="https://redirect.github.com/pytest-dev/pytest/issues/11831">#11831</a>
from bluetech/backport-11825-to-8.0.x</li>
<li>Additional commits viewable in <a
href="https://github.com/pytest-dev/pytest/compare/6.1.0...8.0.0">compare
view</a></li>
</ul>
</details>
<br />


Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-02-01 23:21:58 +01:00
Maximilian Hils 6e38a56f4c
implement UDP streams (#6557)
based on https://github.com/mitmproxy/mitmproxy_rs/pull/127
2024-01-04 10:53:13 +01:00
dependabot[bot] ed532e9279
Update pytest-asyncio requirement from <0.22,>=0.17 to >=0.17,<0.24 (#6574)
Updates the requirements on
[pytest-asyncio](https://github.com/pytest-dev/pytest-asyncio) to permit
the latest version.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/pytest-dev/pytest-asyncio/releases">pytest-asyncio's
releases</a>.</em></p>
<blockquote>
<h2>pytest-asyncio 0.23.3</h2>
<h1>0.23.3 (2024-01-01)</h1>
<ul>
<li>Fixes a bug that caused event loops to be closed prematurely when
using async generator fixtures with class scope or wider in a
function-scoped test <a
href="https://redirect.github.com/pytest-dev/pytest-asyncio/issues/706">#706</a></li>
<li>Fixes various bugs that caused an internal pytest error during test
collection <a
href="https://redirect.github.com/pytest-dev/pytest-asyncio/issues/711">#711</a>
<a
href="https://redirect.github.com/pytest-dev/pytest-asyncio/issues/713">#713</a>
<a
href="https://redirect.github.com/pytest-dev/pytest-asyncio/issues/719">#719</a></li>
</ul>
<h2>Known issues</h2>
<p>As of v0.23, pytest-asyncio attaches an asyncio event loop to each
item of the test suite (i.e. session, packages, modules, classes,
functions) and allows tests to be run in those loops when marked
accordingly. Pytest-asyncio currently assumes that async fixture scope
is correlated with the new event loop scope. This prevents fixtures from
being evaluated independently from the event loop scope and breaks some
existing test suites (see <a
href="https://redirect.github.com/pytest-dev/pytest-asyncio/issues/706">#706</a>).
For example, a test suite may require all fixtures and tests to run in
the same event loop, but have async fixtures that are set up and torn
down for each module. If you're affected by this issue, please continue
using the v0.21 release, until it is resolved.</p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="260b79185b"><code>260b791</code></a>
[docs] Prepare release of v0.23.3.</li>
<li><a
href="6a253e20fb"><code>6a253e2</code></a>
[docs] Shorten changelog by combining multiple issues.</li>
<li><a
href="e2cbb906c5"><code>e2cbb90</code></a>
[docs] Mention correct issue in changelog.</li>
<li><a
href="0c522bff15"><code>0c522bf</code></a>
[fix] Fixes a bug that caused an internal pytest error when using
ImportWarni...</li>
<li><a
href="31c7e6f9ac"><code>31c7e6f</code></a>
Build(deps): Bump coverage from 7.3.3 to 7.3.4 in
/dependencies/default</li>
<li><a
href="38d5c7eed0"><code>38d5c7e</code></a>
Build(deps): Bump sphinx-rtd-theme in /dependencies/docs</li>
<li><a
href="650ec5875d"><code>650ec58</code></a>
Build(deps): Bump babel from 2.13.1 to 2.14.0 in /dependencies/docs</li>
<li><a
href="0166a7e55f"><code>0166a7e</code></a>
Build(deps): Bump typing-extensions in /dependencies/default</li>
<li><a
href="3a15f3039c"><code>3a15f30</code></a>
Build(deps): Bump coverage from 7.3.2 to 7.3.3 in
/dependencies/default</li>
<li><a
href="28e91f00cd"><code>28e91f0</code></a>
Build(deps): Bump hypothesis in /dependencies/default</li>
<li>Additional commits viewable in <a
href="https://github.com/pytest-dev/pytest-asyncio/compare/v0.17.0...v0.23.3">compare
view</a></li>
</ul>
</details>
<br />


Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-02 05:44:17 +00:00
dependabot[bot] 0aee9914c1
Bump pyinstaller from 6.2.0 to 6.3.0 (#6576)
Bumps [pyinstaller](https://github.com/pyinstaller/pyinstaller) from
6.2.0 to 6.3.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/pyinstaller/pyinstaller/releases">pyinstaller's
releases</a>.</em></p>
<blockquote>
<h2>v6.3.0</h2>
<p>Please see the <a
href="https://pyinstaller.org/en/v6.3.0/CHANGES.html#id1">v6.3.0 section
of the changelog</a> for a list of the changes since v6.2.0.</p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/pyinstaller/pyinstaller/blob/develop/doc/CHANGES.rst">pyinstaller's
changelog</a>.</em></p>
<blockquote>
<h2>6.3.0 (2023-12-10)</h2>
<p>Bugfix</p>
<pre><code>
* (Linux) Optimize the automatic binary-vs-data classification by
avoiding
  ``objdump`` based check on files that do not have ELF signature. This
mitigates noticeably longer analysis times for projects with large
number of
  (data) files. (:issue:`8148`)
* (Windows) Add Windows error code 110 (``ERROR_OPEN_FAILED``) to the
list of
error codes eligible for the retry mechanism that attempts to mitigate
build
  failures due to anti-virus program interference. (:issue:`8138`)
* (Windows) Fix issue with non-functional :func:`time.sleep()` when
building
  program with Python &lt;= 3.8.6 or Python 3.9.0. (:issue:`8104`)
* (Windows) Fix issue with splash screen in ``onefile`` mode failing to
extract
``VCRUNTIME140.dll`` from the archive due to character-case mismatch. We
now
  perform case-insensitive comparison between the name listed in splash
  dependency list and the names in archive TOC. (:issue:`8103`)
* Fix PEP 597 EncodingWarnings when :envvar:`PYTHONWARNDEFAULTENCODING`
is set
  to true. (:issue:`8117`)
* Fix pre-safe-import hooks for ``six.moves``,
``urllib3.packages.six.moves``,
and ``setuptools.extern.six.moves`` to gracefully handle cases when the
corresponding ``six`` package is unavailable, as the hook may end up
being
  executed even in that case. (:issue:`8145`)
* Fix symbolic link tracking in ``MERGE`` processing, so that distinct
symbolic
links with same relative target (e.g. ``Current -&gt; A`` symbolic links
in Qt
.framework bundles collected on macOS) are properly processed, and kept
in the
  original TOC upon their first occurrence. (:issue:`8124`)
<p>Hooks</p>
<pre><code>
* Add hook for ``gi.repository.DBus``. (:issue:`8149`)
* Add hooks for ``gi.repository.AppIndicator3`` and
  ``gi.repository.AyatanaAppIndicator3``. (:issue:`8149`)


Bootloader
&lt;/code&gt;&lt;/pre&gt;
&lt;ul&gt;
&lt;li&gt;When setting up embedded Python interpreter configuration, set
&lt;code&gt;PyConfig.install_signal_handlers=1&lt;/code&gt; to install
signal handlers.
This matches the behavior of PyInstaller 5.x bootloaders, where
interpreter
was initialized via &lt;code&gt;Py_Initialize()&lt;/code&gt;, which in
turn calls
&lt;code&gt;Py_InitializeEx(1)&lt;/code&gt;, i.e., with
&lt;code&gt;install_sigs=1&lt;/code&gt;.
(:issue:&lt;code&gt;8105&lt;/code&gt;)&lt;/li&gt;
&lt;/ul&gt;
&lt;/blockquote&gt;
&lt;/details&gt;
&lt;details&gt;
&lt;summary&gt;Commits&lt;/summary&gt;

&lt;ul&gt;
&lt;li&gt;&lt;a
href=&quot;f563dce1e8&quot;&gt;&lt;code&gt;f563dce&lt;/code&gt;&lt;/a&gt;
Release v6.3.0. [skip ci]&lt;/li&gt;
&lt;li&gt;&lt;a
href=&quot;79aa828e13&quot;&gt;&lt;code&gt;79aa828&lt;/code&gt;&lt;/a&gt;
hooks: gi: add hook for gi.repository.DBus&lt;/li&gt;
&lt;li&gt;&lt;a
href=&quot;3f42b9574f&quot;&gt;&lt;code&gt;3f42b95&lt;/code&gt;&lt;/a&gt;
hooks: gi: add hooks for AppIndicator3 and
AyatanaAppIndicator3&lt;/li&gt;
&lt;li&gt;&lt;a
href=&quot;b262373f68&quot;&gt;&lt;code&gt;b262373&lt;/code&gt;&lt;/a&gt;
Tests: Requirements: Scheduled weekly dependency update for week 50
(&lt;a
href=&quot;https://redirect.github.com/pyinstaller/pyinstaller/issues/8157&quot;&gt;#8157&lt;/a&gt;)&lt;/li&gt;
&lt;li&gt;&lt;a
href=&quot;0f51fca360&quot;&gt;&lt;code&gt;0f51fca&lt;/code&gt;&lt;/a&gt;
bindepend: optimize binary-vs-data classification on linux&lt;/li&gt;
&lt;li&gt;&lt;a
href=&quot;14af1e7143&quot;&gt;&lt;code&gt;14af1e7&lt;/code&gt;&lt;/a&gt;
building: add an INFO message at start of binary-vs-data
reclassification&lt;/li&gt;
&lt;li&gt;&lt;a
href=&quot;8c4d099e5f&quot;&gt;&lt;code&gt;8c4d099&lt;/code&gt;&lt;/a&gt;
pre-safe-import-hooks: create six.move runtime package only if six is
available&lt;/li&gt;
&lt;li&gt;&lt;a
href=&quot;ac91826b1f&quot;&gt;&lt;code&gt;ac91826&lt;/code&gt;&lt;/a&gt;
pre-safe-import-hooks: gracefully handle cases when six is
unavailable&lt;/li&gt;
&lt;li&gt;&lt;a
href=&quot;bb1b306cca&quot;&gt;&lt;code&gt;bb1b306&lt;/code&gt;&lt;/a&gt;
Tests: Requirements: Scheduled weekly dependency update for week 49
(&lt;a
href=&quot;https://redirect.github.com/pyinstaller/pyinstaller/issues/8142&quot;&gt;#8142&lt;/a&gt;)&lt;/li&gt;
&lt;li&gt;&lt;a
href=&quot;ac7f6835c2&quot;&gt;&lt;code&gt;ac7f683&lt;/code&gt;&lt;/a&gt;
building: retry mechanism: enable retry on winerror 110&lt;/li&gt;
&lt;li&gt;Additional commits viewable in &lt;a
href=&quot;https://github.com/pyinstaller/pyinstaller/compare/v6.2.0...v6.3.0&quot;&gt;compare
view&lt;/a&gt;&lt;/li&gt;
&lt;/ul&gt;
&lt;/details&gt;

&lt;br /&gt;
</code></pre>


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pyinstaller&package-manager=pip&previous-version=6.2.0&new-version=6.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-02 06:38:17 +01:00
Maximilian Hils 95c5bf9d5d
switch to stock aioquic (#6573) 2024-01-01 14:03:06 +01:00
Bakugo c0f81a8542
Update cryptography requirement to >=39.0 (#6555)
0b5e310881
uses `load_pem_x509_certificates` which was introduced in cryptography
39.0 but the requirement wasn't updated.
2023-12-17 07:34:53 +01:00
Maximilian Hils 0a3e016d39
fix a bug where connections would not be fully closed (#6543) 2023-12-12 18:15:19 +00:00
dependabot[bot] 0f370213d1
Bump pyinstaller from 6.1.0 to 6.2.0 (#6519)
Bumps [pyinstaller](https://github.com/pyinstaller/pyinstaller) from
6.1.0 to 6.2.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/pyinstaller/pyinstaller/releases">pyinstaller's
releases</a>.</em></p>
<blockquote>
<h2>v6.2.0</h2>
<p>Please see the <a
href="https://pyinstaller.org/en/v6.2.0/CHANGES.html#id1">v6.2.0 section
of the changelog</a> for a list of the changes since v6.1.0.</p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/pyinstaller/pyinstaller/blob/develop/doc/CHANGES.rst">pyinstaller's
changelog</a>.</em></p>
<blockquote>
<h2>6.2.0 (2023-11-11)</h2>
<p>Features</p>
<pre><code>
* (macOS) At the end of analysis, verify the macOS SDK version reported
by binaries to be collected, and warn when the version is either invalid
(0.0.0) or too low (&lt; 10.9.0). Such binaries will likely cause issues
  with code-signing and hardened runtime. (:issue:`8043`)
* If the ``argcomplete`` Python module is installed, PyInstaller will
use it
enable tab completion for its CLI tools. PyInstaller CLIs can still be
used
  without this optional dependency. To install ``argcomplete`` with
PyInstaller, you can put ``pyinstaller[completion]`` in your
dependencies.
  See also `the argcomplete documentation
  &lt;https://kislyuk.github.io/argcomplete/&gt;`_. (:issue:`8008`)
<p>Bugfix</p>
<pre><code>
* (macOS) Fix the bug in binary processing and caching that would update
  the binary cache index before performing macOS-specific processing
(architecture validation, path rewriting). If, for example, architecture
  validation failed during a build, subsequent build attempts with
enabled binary cache (i.e., without the :option:`--clean` option) would
pick up the partially-processed binary file from the cache, bypassing
the
  architecture validation. NOTE: the existing binary caches need to be
purged manually (using :option:`--clean` option once) for the fix to
take
  effect! (:issue:`8068`)
* (macOS) Prevent collection of ``.DS_Store`` files, which might be
present
in build environment's package directories after user navigated them
using
  the Finder app. (:issue:`8042`)
* (Windows) Fix marshal error at the start of binary dependency
analysis,
  caused by inferred DLL search path ending up an instance of
  :class:`pathlib.Path` instead of :class:`str`. (:issue:`8081`)
* Bump the required ``packaging`` version to 22.0, which is required for
  proper handling of metadata that contains markers with ``extra``\ s.
  (:issue:`8061`)
* Fix erroneous DLL parent path preservation when
:data:`sys.base_prefix`
  itself is a symbolic link. In such case, we need to exclude both
resolved and unresolved path variant for ``sys.base_prefix``, in order
to
  prevent either from ending up in the list of directories for which DLL
  parent paths are preserved. Failing to do so, for example, caused
  ``_ctypes`` failing to load in an application build on Windows with
Python installed via ``scoop``, due to ``libffi-8.dll`` having
spuriously
preserved the parent directory path instead of being collected to
top-level
  application directory. (:issue:`8023`)
* Fix matching of pre-release versions in
  :func:`PyInstaller.utils.hooks.check_requirement` and
&amp;lt;/tr&amp;gt;&amp;lt;/table&amp;gt; 
&lt;/code&gt;&lt;/pre&gt;
&lt;/blockquote&gt;
&lt;p&gt;... (truncated)&lt;/p&gt;
&lt;/details&gt;
&lt;details&gt;
&lt;summary&gt;Commits&lt;/summary&gt;

&lt;ul&gt;
&lt;li&gt;&lt;a
href=&quot;90c9ac4231&quot;&gt;&lt;code&gt;90c9ac4&lt;/code&gt;&lt;/a&gt;
Release v6.2.0. [skip ci]&lt;/li&gt;
&lt;li&gt;&lt;a
href=&quot;ae525ceffe&quot;&gt;&lt;code&gt;ae525ce&lt;/code&gt;&lt;/a&gt;
hookutils: fix pre-release matching in check_requirement /
is_module_satisfies&lt;/li&gt;
&lt;li&gt;&lt;a
href=&quot;13de1077d5&quot;&gt;&lt;code&gt;13de107&lt;/code&gt;&lt;/a&gt;
building: fix marshal error during DLL search path extension&lt;/li&gt;
&lt;li&gt;&lt;a
href=&quot;04db9fdaea&quot;&gt;&lt;code&gt;04db9fd&lt;/code&gt;&lt;/a&gt;
rth_utils: add is_macos_app_bundle flag&lt;/li&gt;
&lt;li&gt;&lt;a
href=&quot;1e0e551ea9&quot;&gt;&lt;code&gt;1e0e551&lt;/code&gt;&lt;/a&gt;
rth_utils: remove relative import work-around&lt;/li&gt;
&lt;li&gt;&lt;a
href=&quot;ecc218ceb5&quot;&gt;&lt;code&gt;ecc218c&lt;/code&gt;&lt;/a&gt;
analysis: fix module exclusion for relative imports from
submodules&lt;/li&gt;
&lt;li&gt;&lt;a
href=&quot;03627c2b2b&quot;&gt;&lt;code&gt;03627c2&lt;/code&gt;&lt;/a&gt;
tests: add test for exclusion of relatively-imported modules&lt;/li&gt;
&lt;li&gt;&lt;a
href=&quot;e157bb6c16&quot;&gt;&lt;code&gt;e157bb6&lt;/code&gt;&lt;/a&gt;
hooks: add a hook for our _pyi_rth_utils fake package&lt;/li&gt;
&lt;li&gt;&lt;a
href=&quot;574a961917&quot;&gt;&lt;code&gt;574a961&lt;/code&gt;&lt;/a&gt;
rth_utils: move secure_mkdtemp() implementation to a
submodule&lt;/li&gt;
&lt;li&gt;&lt;a
href=&quot;983bd59dc6&quot;&gt;&lt;code&gt;983bd59&lt;/code&gt;&lt;/a&gt;
rthooks: pkg_resources: normalize path using os.path.normpath&lt;/li&gt;
&lt;li&gt;Additional commits viewable in &lt;a
href=&quot;https://github.com/pyinstaller/pyinstaller/compare/v6.1.0...v6.2.0&quot;&gt;compare
view&lt;/a&gt;&lt;/li&gt;
&lt;/ul&gt;
&lt;/details&gt;

&lt;br /&gt;
</code></pre>


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pyinstaller&package-manager=pip&previous-version=6.1.0&new-version=6.2.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-02 07:06:11 +07:00
dependabot[bot] 4fd7184bd6
Update wheel requirement from <0.42,>=0.36.2 to >=0.36.2,<0.43 (#6518)
Updates the requirements on [wheel](https://github.com/pypa/wheel) to
permit the latest version.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/pypa/wheel/releases">wheel's
releases</a>.</em></p>
<blockquote>
<h2>0.42.0</h2>
<ul>
<li>Allowed removing build tag with <code>wheel tags --build
&quot;&quot;</code></li>
<li>Fixed <code>wheel pack</code> and <code>wheel tags</code> writing
updated <code>WHEEL</code> fields after a blank line, causing other
tools to ignore them</li>
<li>Fixed <code>wheel pack</code> and <code>wheel tags</code> writing
<code>WHEEL</code> with CRLF line endings or a mix of CRLF and LF</li>
<li>Fixed <code>wheel pack --build-number &quot;&quot;</code> not
removing build tag from <code>WHEEL</code> (above changes by Benjamin
Gilbert)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/pypa/wheel/blob/main/docs/news.rst">wheel's
changelog</a>.</em></p>
<blockquote>
<h1>Release Notes</h1>
<p><strong>0.42.0 (2023-11-26)</strong></p>
<ul>
<li>Allowed removing build tag with <code>wheel tags --build
&quot;&quot;</code></li>
<li>Fixed <code>wheel pack</code> and <code>wheel tags</code> writing
updated <code>WHEEL</code> fields after a
blank line, causing other tools to ignore them</li>
<li>Fixed <code>wheel pack</code> and <code>wheel tags</code> writing
<code>WHEEL</code> with CRLF line endings or
a mix of CRLF and LF</li>
<li>Fixed <code>wheel pack --build-number &quot;&quot;</code> not
removing build tag from <code>WHEEL</code>
(above changes by Benjamin Gilbert)</li>
</ul>
<p><strong>0.41.3 (2023-10-30)</strong></p>
<ul>
<li>Updated vendored <code>packaging</code> to 23.2</li>
<li>Fixed ABI tag generation for CPython 3.13a1 on Windows (PR by Sam
Gross)</li>
</ul>
<p><strong>0.41.2 (2023-08-22)</strong></p>
<ul>
<li>Fixed platform tag detection for GraalPy and 32-bit python running
on an aarch64
kernel (PR by Matthieu Darbois)</li>
<li>Fixed <code>wheel tags</code> to not list directories in
<code>RECORD</code> files
(PR by Mike Taves)</li>
<li>Fixed ABI tag generation for GraalPy (PR by Michael Simacek)</li>
</ul>
<p><strong>0.41.1 (2023-08-05)</strong></p>
<ul>
<li>Fixed naming of the <code>data_dir</code> directory in the presence
of local version segment
given via <code>egg_info.tag_build</code> (PR by Anderson
Bravalheri)</li>
<li>Fixed version specifiers in <code>Requires-Dist</code> being wrapped
in parentheses</li>
</ul>
<p><strong>0.41.0 (2023-07-22)</strong></p>
<ul>
<li>Added full support of the build tag syntax to <code>wheel
tags</code> (you can now set a build
tag like <code>123mytag</code>)</li>
<li>Fixed warning on Python 3.12 about <code>onerror</code> deprecation.
(PR by Henry Schreiner)</li>
<li>Support testing on Python 3.12 betas (PR by Ewout ter Hoeven)</li>
</ul>
<p><strong>0.40.0 (2023-03-14)</strong></p>
<ul>
<li>Added a <code>wheel tags</code> command to modify tags on an
existing wheel
(PR by Henry Schreiner)</li>
<li>Updated vendored <code>packaging</code> to 23.0</li>
<li><code>wheel unpack</code> now preserves the executable attribute of
extracted files</li>
<li>Fixed spaces in platform names not being converted to underscores
(PR by David Tucker)</li>
<li>Fixed <code>RECORD</code> files in generated wheels missing the
regular file attribute</li>
<li>Fixed <code>DeprecationWarning</code> about the use of the
deprecated <code>pkg_resources</code> API
(PR by Thomas Grainger)</li>
<li>Wheel now uses flit-core as a build backend (PR by Henry
Schreiner)</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="63a09bb3d9"><code>63a09bb</code></a>
Created a new release</li>
<li><a
href="f4b8e488df"><code>f4b8e48</code></a>
Several fixes to <code>WHEEL</code> metadata handling (<a
href="https://redirect.github.com/pypa/wheel/issues/588">#588</a>)</li>
<li><a
href="11e5732831"><code>11e5732</code></a>
[pre-commit.ci] pre-commit autoupdate (<a
href="https://redirect.github.com/pypa/wheel/issues/586">#586</a>)</li>
<li><a
href="fe6bb8268d"><code>fe6bb82</code></a>
[pre-commit.ci] pre-commit autoupdate (<a
href="https://redirect.github.com/pypa/wheel/issues/584">#584</a>)</li>
<li><a
href="b90a4bc408"><code>b90a4bc</code></a>
[pre-commit.ci] pre-commit autoupdate (<a
href="https://redirect.github.com/pypa/wheel/issues/581">#581</a>)</li>
<li><a
href="56de2ebd4b"><code>56de2eb</code></a>
Added a link to the GitHub repository to pyproject.toml (<a
href="https://redirect.github.com/pypa/wheel/issues/563">#563</a>)</li>
<li><a
href="a899f1c69f"><code>a899f1c</code></a>
Fixed parameter for release-notes</li>
<li><a
href="254ba4658a"><code>254ba46</code></a>
Created a new release</li>
<li><a
href="6f33736b6f"><code>6f33736</code></a>
Updated actions and added GitHub release automation</li>
<li><a
href="83b77e591e"><code>83b77e5</code></a>
Replaced <code>black</code> with <code>ruff-format</code></li>
<li>Additional commits viewable in <a
href="https://github.com/pypa/wheel/compare/0.36.2...0.42.0">compare
view</a></li>
</ul>
</details>
<br />


Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-02 07:02:54 +07:00
dependabot[bot] 97acb55832
Update pytest-xdist requirement from <3.4,>=2.1.0 to >=2.1.0,<3.6 (#6517)
Updates the requirements on
[pytest-xdist](https://github.com/pytest-dev/pytest-xdist) to permit the
latest version.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/pytest-dev/pytest-xdist/blob/master/CHANGELOG.rst">pytest-xdist's
changelog</a>.</em></p>
<blockquote>
<h1>pytest-xdist 3.5.0 (2023-11-21)</h1>
<h2>Features</h2>
<ul>
<li><code>[#632](https://github.com/pytest-dev/pytest-xdist/issues/632)
&lt;https://github.com/pytest-dev/pytest-xdist/issues/632&gt;</code>_:
<code>--dist=loadscope</code> now sorts scopes by number of tests to
assign largest scopes early -- in many cases this should improve overall
test session running time, as there is less chance of a large scope
being left to be processed near the end of the session, leaving other
workers idle.</li>
</ul>
<h1>pytest-xdist 3.4.0 (2023-11-11)</h1>
<h2>Features</h2>
<ul>
<li>
<p><code>[#963](https://github.com/pytest-dev/pytest-xdist/issues/963)
&lt;https://github.com/pytest-dev/pytest-xdist/issues/963&gt;</code>_:
Wait for workers to finish reporting when test run stops early.</p>
<p>This makes sure that the results of in-progress tests are displayed.
Previously these reports were being discarded, losing information about
the
test run.</p>
</li>
<li>
<p><code>[#965](https://github.com/pytest-dev/pytest-xdist/issues/965)
&lt;https://github.com/pytest-dev/pytest-xdist/issues/965&gt;</code>_:
Added support for Python 3.12.</p>
</li>
</ul>
<h1>pytest-xdist 3.3.1 (2023-05-19)</h1>
<h2>Bug Fixes</h2>
<ul>
<li>
<p><code>[#907](https://github.com/pytest-dev/pytest-xdist/issues/907)
&lt;https://github.com/pytest-dev/pytest-xdist/issues/907&gt;</code>_:
Avoid remote calls during startup as <code>execnet</code> by default
does not ensure remote affinity with the
main thread and might accidentally schedule the pytest worker into a
non-main thread, which breaks numerous frameworks,
for example <code>asyncio</code>, <code>anyio</code>,
<code>PyQt/PySide</code>, etc.</p>
<p>A more safe correction will require thread affinity in
<code>execnet</code> (<code>pytest-dev/execnet#96
&lt;https://github.com/pytest-dev/execnet/issues/96&gt;</code>__).</p>
</li>
</ul>
<h1>pytest-xdist 3.3.0 (2023-05-12)</h1>
<h2>Features</h2>
<ul>
<li><code>[#555](https://github.com/pytest-dev/pytest-xdist/issues/555)
&lt;https://github.com/pytest-dev/pytest-xdist/issues/555&gt;</code>_:
Improved progress output when collecting nodes to be less verbose.</li>
</ul>
<h1>pytest-xdist 3.2.1 (2023-03-12)</h1>
<p>Bug Fixes</p>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="95b309e980"><code>95b309e</code></a>
Release 3.5.0</li>
<li><a
href="3fe877bc6d"><code>3fe877b</code></a>
LoadScope scheduler: Sort scopes by number of tests to assign biggest
scopes ...</li>
<li><a
href="f36ea25cb5"><code>f36ea25</code></a>
Create GitHub release after deploy (<a
href="https://redirect.github.com/pytest-dev/pytest-xdist/issues/973">#973</a>)</li>
<li><a
href="d81f57508d"><code>d81f575</code></a>
Merge pull request <a
href="https://redirect.github.com/pytest-dev/pytest-xdist/issues/969">#969</a>
from pytest-dev/pre-commit-ci-update-config</li>
<li><a
href="1d2616418c"><code>1d26164</code></a>
[pre-commit.ci] pre-commit autoupdate</li>
<li><a
href="5f43575b42"><code>5f43575</code></a>
Merge pull request <a
href="https://redirect.github.com/pytest-dev/pytest-xdist/issues/966">#966</a>
from pytest-dev/release-3.4.0</li>
<li><a
href="a6b56112f9"><code>a6b5611</code></a>
Update CHANGELOG</li>
<li><a
href="64f9388f41"><code>64f9388</code></a>
Add support for Python 3.12</li>
<li><a
href="230ba6ad10"><code>230ba6a</code></a>
Properly wait for workers when test run terminates early (<a
href="https://redirect.github.com/pytest-dev/pytest-xdist/issues/963">#963</a>)</li>
<li><a
href="93ca202b40"><code>93ca202</code></a>
fix typo index -&gt; instead</li>
<li>Additional commits viewable in <a
href="https://github.com/pytest-dev/pytest-xdist/compare/v2.1.0...v3.5.0">compare
view</a></li>
</ul>
</details>
<br />


Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-02 07:02:36 +07:00
Maximilian Hils 4f361e4263
Rename: osproxy -> local redirector (#6453)
refs #6332
2023-11-04 10:52:18 +00:00
dependabot[bot] 3b585c155b
Update zstandard requirement from <0.22,>=0.11 to >=0.11,<0.23 (#6437)
Updates the requirements on [zstandard](https://github.com/indygreg/python-zstandard) to permit the latest version.
- [Release notes](https://github.com/indygreg/python-zstandard/releases)
- [Changelog](https://github.com/indygreg/python-zstandard/blob/main/docs/news.rst)
- [Commits](https://github.com/indygreg/python-zstandard/compare/0.11.0...0.22.0)

---
updated-dependencies:
- dependency-name: zstandard
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-11-02 10:52:45 +01:00