Skip to content

chore(deps): bump the requests group across 1 directory with 3 updates#9043

Open
dependabot[bot] wants to merge 2 commits into
developfrom
dependabot/pip/develop/requests-5bb68b7e0e
Open

chore(deps): bump the requests group across 1 directory with 3 updates#9043
dependabot[bot] wants to merge 2 commits into
developfrom
dependabot/pip/develop/requests-5bb68b7e0e

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github May 22, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

Bumps the requests group with 3 updates in the / directory: requests, certifi and idna.

Updates requests from 2.34.1 to 2.34.2

Release notes

Sourced from requests's releases.

v2.34.2

2.34.2 (2026-05-14)

  • Moved headers input type back to Mapping to avoid invariance issues with MutableMapping and inferred dict types. Users calling Request.headers.update() may need to narrow typing in their code. (#7441)

Full Changelog: https://github.com/psf/requests/blob/main/HISTORY.md#2342-2026-05-14

Changelog

Sourced from requests's changelog.

2.34.2 (2026-05-14)

  • Moved headers input type back to Mapping to avoid invariance issues with MutableMapping and inferred dict types. Users calling Request.headers.update() may need to narrow typing in their code. (#7441)
Commits

Updates certifi from 2026.4.22 to 2026.5.20

Commits

Updates idna from 3.15 to 3.18

Changelog

Sourced from idna's changelog.

3.18 (2026-06-02)

  • When decoding a domain, add a display argument that will pass through invalid labels rather than raising an exception.

3.17 (2026-05-28)

  • Substantial 75% reduction in memory usage through new data structures and some optimization in processing speed.
  • Added a general 1024-character input length cap to the public validation, conversion, and codec entry points. This is well above any legitimate domain or label and guards against pathological inputs.

3.16 (2026-05-22)

  • Add a command-line interface (python -m idna, also available as the idna script). Encodes or decodes one or more domains supplied as arguments or on standard input, with options to select A-label or U-label output and control error handling.
  • Raise the minimum supported Python version to 3.9
  • Various code quality improvements
Commits
  • f39ea90 Release 3.18
  • 40f4e40 Pre-release 3.18rc0
  • 1a5bf80 Merge pull request #253 from kjd/lenient-decode
  • 5bbb26f Merge branch 'master' into lenient-decode
  • c532bae Rename decode() lenient= option to display= (issue #248)
  • 0b1758b Merge pull request #252 from kjd/release-3.17
  • f48619c Release 3.17
  • 7421ba8 Pre-release 3.17rc0
  • 22ebb73 Merge pull request #251 from kjd/structure-optimizations
  • 2a7ac0a Drop redundant parallel-arrays comment from uts46data
  • Additional commits viewable in compare view

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels May 22, 2026
@dependabot dependabot Bot requested a review from a team as a code owner May 22, 2026 08:21
@dependabot dependabot Bot force-pushed the dependabot/pip/develop/requests-5bb68b7e0e branch 3 times, most recently from 6d83a0d to 3d6f978 Compare June 2, 2026 01:06
@dependabot dependabot Bot force-pushed the dependabot/pip/develop/requests-5bb68b7e0e branch from 3d6f978 to 121809f Compare June 8, 2026 08:10
@dependabot
chore(deps): bump the requests group across 1 directory with 3 updates
936b16f 
Bumps the requests group with 3 updates in the / directory: [requests](https://github.com/psf/requests), [certifi](https://github.com/certifi/python-certifi) and [idna](https://github.com/kjd/idna).


Updates `requests` from 2.34.1 to 2.34.2
- [Release notes](https://github.com/psf/requests/releases)
- [Changelog](https://github.com/psf/requests/blob/main/HISTORY.md)
- [Commits](psf/requests@v2.34.1...v2.34.2)

Updates `certifi` from 2026.4.22 to 2026.5.20
- [Commits](certifi/python-certifi@2026.04.22...2026.05.20)

Updates `idna` from 3.15 to 3.18
- [Release notes](https://github.com/kjd/idna/releases)
- [Changelog](https://github.com/kjd/idna/blob/master/HISTORY.md)
- [Commits](kjd/idna@v3.15...v3.18)

---
updated-dependencies:
- dependency-name: certifi
  dependency-version: 2026.5.20
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: requests
- dependency-name: idna
  dependency-version: '3.16'
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: requests
- dependency-name: requests
  dependency-version: 2.34.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: requests
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/pip/develop/requests-5bb68b7e0e branch from 121809f to 936b16f Compare June 9, 2026 08:07
@valerena valerena added this pull request to the merge queue Jun 23, 2026
@github-merge-queue github-merge-queue Bot removed this pull request from the merge queue due to failed status checks Jun 23, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@valerena valerena valerena approved these changes

@seshubaws seshubaws seshubaws approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file pr/internal python Pull requests that update Python code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@valerena @seshubaws @reedham-aws