Bump the pip group across 25 directories with 9 updates

Open

Number: #2
Type: Pull Request
State: Open

Author:

dependabot[bot]
Association: Contributor
Comments: 272

Created: June 10, 2025 at 04:24 AM UTC
(12 months ago)

Updated: June 10, 2025 at 06:27 AM UTC
(12 months ago)

Labels:
dependencies python

Description:

Bumps the pip group with 1 update in the /agent_chat directory: h11.
Bumps the pip group with 2 updates in the /agent_tool directory: h11 and requests.
Bumps the pip group with 1 update in the /audio_transcript directory: h11.
Bumps the pip group with 2 updates in the /community/bostondynamics_spot directory: requests and setuptools.
Bumps the pip group with 3 updates in the /community/custom_llm_gemini directory: h11, requests and flask-cors.
Bumps the pip group with 3 updates in the /community/defense_quickstart_audio_transcription_translation directory: h11, requests and tornado.
Bumps the pip group with 3 updates in the /community/defense_quickstart_denoise directory: h11, requests and tornado.
Bumps the pip group with 3 updates in the /community/defense_quickstart_news_scraper_summarizer directory: h11, requests and tornado.
Bumps the pip group with 1 update in the /community/e2b directory: h11.
Bumps the pip group with 1 update in the /community/elevenlabs directory: requests.
Bumps the pip group with 1 update in the /community/fastapi_gemini_feedback directory: requests.
Bumps the pip group with 5 updates in the /community/fastapi_togetherai_llama directory:

Package	From	To
h11	`0.14.0`	`0.16.0`
requests	`2.32.3`	`2.32.4`
llama-index	`0.12.4`	`0.12.28`
llama-index-cli	`0.3.1`	`0.4.1`
transformers	`4.48.1`	`4.50.0`

Bumps the pip group with 2 updates in the /community/flask_gemini directory: requests and flask-cors.
Bumps the pip group with 6 updates in the /community/flask_togetherai_llamaindex directory:

Package	From	To
h11	`0.14.0`	`0.16.0`
requests	`2.32.3`	`2.32.4`
flask-cors	`5.0.0`	`6.0.0`
llama-index	`0.12.4`	`0.12.28`
llama-index-cli	`0.3.1`	`0.4.1`
transformers	`4.48.1`	`4.50.0`

Bumps the pip group with 1 update in the /community/gemini directory: requests.
Bumps the pip group with 6 updates in the /community/llama_quickstart directory:

Package	From	To
h11	`0.14.0`	`0.16.0`
requests	`2.32.3`	`2.32.4`
tornado	`6.4.2`	`6.5.1`
llama-index	`0.12.4`	`0.12.28`
llama-index-cli	`0.3.1`	`0.4.1`
transformers	`4.48.1`	`4.50.0`

Bumps the pip group with 2 updates in the /community/streamlit directory: requests and tornado.
Bumps the pip group with 6 updates in the /community/streamlit_fastapi_togetherai_llama directory:

Package	From	To
h11	`0.14.0`	`0.16.0`
requests	`2.32.3`	`2.32.4`
tornado	`6.4.2`	`6.5.1`
llama-index	`0.12.4`	`0.12.28`
llama-index-cli	`0.3.1`	`0.4.1`
transformers	`4.48.1`	`4.50.0`

Bumps the pip group with 2 updates in the /community/stripe_ai directory: h11 and requests.
Bumps the pip group with 3 updates in the /community/weaviate_search directory: h11, requests and setuptools.
Bumps the pip group with 1 update in the /email_sender directory: h11.
Bumps the pip group with 1 update in the /openai_greet directory: h11.
Bumps the pip group with 4 updates in the /pdf_ocr directory: h11, requests, setuptools and torch.
Bumps the pip group with 1 update in the /production_demo directory: h11.
Bumps the pip group with 1 update in the /re_act directory: h11.

Updates h11 from 0.14.0 to 0.16.0

Commits

1c5b075 this time for surer
d9c3699 this time for sure...
d91b9dd blacken
5a4683c Soothe mypy
9c9567f Bump version to 0.16.0
114803a Merge commit from fork
9462006 Bump version to 0.15.0
70a96be Merge pull request #181 from Julien00859/Julien00859/get_int_max_str_digits
60782ad Reject Content-Length longer 1 billion TB
dff7cc3 Validate Chunked-Encoding chunk footer
Additional commits viewable in compare view

Updates h11 from 0.14.0 to 0.16.0

Commits

1c5b075 this time for surer
d9c3699 this time for sure...
d91b9dd blacken
5a4683c Soothe mypy
9c9567f Bump version to 0.16.0
114803a Merge commit from fork
9462006 Bump version to 0.15.0
70a96be Merge pull request #181 from Julien00859/Julien00859/get_int_max_str_digits
60782ad Reject Content-Length longer 1 billion TB
dff7cc3 Validate Chunked-Encoding chunk footer
Additional commits viewable in compare view

Updates requests from 2.32.3 to 2.32.4

Release notes

Sourced from requests's releases.

v2.32.4

2.32.4 (2025-06-10)

Security

CVE-2024-47081 Fixed an issue where a maliciously crafted URL and trusted environment will retrieve credentials for the wrong hostname/machine from a netrc file. (#6965)

Improvements

Numerous documentation improvements

Deprecations

Added support for pypy 3.11 for Linux and macOS. (#6926)

Dropped support for pypy 3.9 following its end of support. (#6926)

Changelog

Sourced from requests's changelog.

2.32.4 (2025-06-10)

Security

CVE-2024-47081 Fixed an issue where a maliciously crafted URL and trusted environment will retrieve credentials for the wrong hostname/machine from a netrc file.

Improvements

Numerous documentation improvements

Deprecations

Added support for pypy 3.11 for Linux and macOS.

Dropped support for pypy 3.9 following its end of support.

Commits

021dc72 Polish up release tooling for last manual release
821770e Bump version and add release notes for v2.32.4
59f8aa2 Add netrc file search information to authentication documentation (#6876)
5b4b64c Add more tests to prevent regression of CVE 2024 47081
7bc4587 Add new test to check netrc auth leak (#6962)
96ba401 Only use hostname to do netrc lookup instead of netloc
7341690 Merge pull request #6951 from tswast/patch-1
6716d7c remove links
a7e1c74 Update docs/conf.py
c799b81 docs: fix dead links to kenreitz.org
Additional commits viewable in compare view

Updates h11 from 0.14.0 to 0.16.0

Commits

1c5b075 this time for surer
d9c3699 this time for sure...
d91b9dd blacken
5a4683c Soothe mypy
9c9567f Bump version to 0.16.0
114803a Merge commit from fork
9462006 Bump version to 0.15.0
70a96be Merge pull request #181 from Julien00859/Julien00859/get_int_max_str_digits
60782ad Reject Content-Length longer 1 billion TB
dff7cc3 Validate Chunked-Encoding chunk footer
Additional commits viewable in compare view

Updates requests from 2.32.3 to 2.32.4

Release notes

Sourced from requests's releases.

v2.32.4

2.32.4 (2025-06-10)

Security

CVE-2024-47081 Fixed an issue where a maliciously crafted URL and trusted environment will retrieve credentials for the wrong hostname/machine from a netrc file. (#6965)

Improvements

Numerous documentation improvements

Deprecations

Added support for pypy 3.11 for Linux and macOS. (#6926)

Dropped support for pypy 3.9 following its end of support. (#6926)

Changelog

Sourced from requests's changelog.

2.32.4 (2025-06-10)

Security

CVE-2024-47081 Fixed an issue where a maliciously crafted URL and trusted environment will retrieve credentials for the wrong hostname/machine from a netrc file.

Improvements

Numerous documentation improvements

Deprecations

Added support for pypy 3.11 for Linux and macOS.

Dropped support for pypy 3.9 following its end of support.

Commits

021dc72 Polish up release tooling for last manual release
821770e Bump version and add release notes for v2.32.4
59f8aa2 Add netrc file search information to authentication documentation (#6876)
5b4b64c Add more tests to prevent regression of CVE 2024 47081
7bc4587 Add new test to check netrc auth leak (#6962)
96ba401 Only use hostname to do netrc lookup instead of netloc
7341690 Merge pull request #6951 from tswast/patch-1
6716d7c remove links
a7e1c74 Update docs/conf.py
c799b81 docs: fix dead links to kenreitz.org
Additional commits viewable in compare view

Updates setuptools from 75.6.0 to 78.1.1

Changelog

Sourced from setuptools's changelog.

v78.1.1

Bugfixes

More fully sanitized the filename in PackageIndex._download. (#4946)

v78.1.0

Features

Restore access to _get_vc_env with a warning. (#4874)

v78.0.2

Bugfixes

Postponed removals of deprecated dash-separated and uppercase fields in setup.cfg. All packages with deprecated configurations are advised to move before 2026. (#4911)

v78.0.1

Misc

#4909

v78.0.0

Bugfixes

Reverted distutils changes that broke the monkey patching of command classes. (#4902)

Deprecations and Removals

Setuptools no longer accepts options containing uppercase or dash characters in setup.cfg.

... (truncated)

Commits

8e4868a Bump version: 78.1.0 → 78.1.1
100e9a6 Merge pull request #4951
8faf1d7 Add news fragment.
2ca4a9f Rely on re.sub to perform the decision in one expression.
e409e80 Extract _sanitize method for sanitizing the filename.
250a6d1 Add a check to ensure the name resolves relative to the tmpdir.
d8390fe Extract _resolve_download_filename with test.
4e1e893 Merge https://github.com/jaraco/skeleton
3a3144f Fix typo: pyproject.license -> project.license (#4931)
d751068 Fix typo: pyproject.license -> project.license
Additional commits viewable in compare view

Updates h11 from 0.14.0 to 0.16.0

Commits

1c5b075 this time for surer
d9c3699 this time for sure...
d91b9dd blacken
5a4683c Soothe mypy
9c9567f Bump version to 0.16.0
114803a Merge commit from fork
9462006 Bump version to 0.15.0
70a96be Merge pull request #181 from Julien00859/Julien00859/get_int_max_str_digits
60782ad Reject Content-Length longer 1 billion TB
dff7cc3 Validate Chunked-Encoding chunk footer
Additional commits viewable in compare view

Updates requests from 2.32.3 to 2.32.4

Release notes

Sourced from requests's releases.

v2.32.4

2.32.4 (2025-06-10)

Security

CVE-2024-47081 Fixed an issue where a maliciously crafted URL and trusted environment will retrieve credentials for the wrong hostname/machine from a netrc file. (#6965)

Improvements

Numerous documentation improvements

Deprecations

Added support for pypy 3.11 for Linux and macOS. (#6926)

Dropped support for pypy 3.9 following its end of support. (#6926)

Changelog

Sourced from requests's changelog.

2.32.4 (2025-06-10)

Security

CVE-2024-47081 Fixed an issue where a maliciously crafted URL and trusted environment will retrieve credentials for the wrong hostname/machine from a netrc file.

Improvements

Numerous documentation improvements

Deprecations

Added support for pypy 3.11 for Linux and macOS.

Dropped support for pypy 3.9 following its end of support.

Commits

021dc72 Polish up release tooling for last manual release
821770e Bump version and add release notes for v2.32.4
59f8aa2 Add netrc file search information to authentication documentation (#6876)
5b4b64c Add more tests to prevent regression of CVE 2024 47081
7bc4587 Add new test to check netrc auth leak (#6962)
96ba401 Only use hostname to do netrc lookup instead of netloc
7341690 Merge pull request #6951 from tswast/patch-1
6716d7c remove links
a7e1c74 Update docs/conf.py
c799b81 docs: fix dead links to kenreitz.org
Additional commits viewable in compare view

Updates flask-cors from 5.0.0 to 6.0.0

Release notes

Sourced from flask-cors's releases.

6.0.0

Breaking

Path specificity ordering has changed to improve specificity. This may break users who expected the previous incorrect ordering.

[CVE-2024-6839] Sort Paths by Regex Specificity by @adrianosela in corydolphin/flask-cors#391

[CVE-2024-6844] Replace use of (urllib) unquote_plus with unquote by @adrianosela in corydolphin/flask-cors#389

What's Changed

[CVE-2024-6866] Case Sensitive Request Path Matching by @adrianosela in corydolphin/flask-cors#390

Full Changelog: https://github.com/corydolphin/flask-cors/compare/5.0.1...6.0.0

5.0.1

What's Changed

This primarily changes packaging to use uv and a new release pipeline, along with some small documentation improvements

[Docs] Fix links to documentation by @coren-frankel in corydolphin/flask-cors#369

Fix minor typos by @kkirsche in corydolphin/flask-cors#371

Migrate packaging and environment management to use uv by @corydolphin in corydolphin/flask-cors#377

Fix release pipeline by @corydolphin in corydolphin/flask-cors#378

Always use trusted publishing by @corydolphin in corydolphin/flask-cors#379

Workaround license publishing issue by @corydolphin in corydolphin/flask-cors#380

Fix packaging: missing source files by @corydolphin in corydolphin/flask-cors#381

New Contributors

@coren-frankel made their first contribution in corydolphin/flask-cors#369

@kkirsche made their first contribution in corydolphin/flask-cors#371

Full Changelog: https://github.com/corydolphin/flask-cors/compare/5.0.0...5.0.01

Commits

35d8753 [CVE-2024-6844] Replace use of (urllib) unquote_plus with unquote for paths (...
e970988 [CVE-2024-6839] Sort Paths by Regex Specificity (#391)
eb39516 [CVE-2024-6866] Case Sensitive Request Path Matching (#390)
5da9be4 Fix packaging: missing source files (#381)
65a5132 Workaround license publishing issue (#380)
7127e7e Always use trusted publishing (#379)
01e2e68 Fix release pipeline (#378)
ade65a1 Major Packaging Refactor: migrate to uv (#377)
eb44bff fix: typos (#371)
1225e78 replace documentation links in README (#369)
See full diff in compare view

Updates h11 from 0.14.0 to 0.16.0

Commits

1c5b075 this time for surer
d9c3699 this time for sure...
d91b9dd blacken
5a4683c Soothe mypy
9c9567f Bump version to 0.16.0
114803a Merge commit from fork
9462006 Bump version to 0.15.0
70a96be Merge pull request #181 from Julien00859/Julien00859/get_int_max_str_digits
60782ad Reject Content-Length longer 1 billion TB
dff7cc3 Validate Chunked-Encoding chunk footer
Additional commits viewable in compare view

Updates requests from 2.32.3 to 2.32.4

Release notes

Sourced from requests's releases.

v2.32.4

2.32.4 (2025-06-10)

Security

CVE-2024-47081 Fixed an issue where a maliciously crafted URL and trusted environment will retrieve credentials for the wrong hostname/machine from a netrc file. (#6965)

Improvements

Numerous documentation improvements

Deprecations

Added support for pypy 3.11 for Linux and macOS. (#6926)

Dropped support for pypy 3.9 following its end of support. (#6926)

Changelog

Sourced from requests's changelog.

2.32.4 (2025-06-10)

Security

CVE-2024-47081 Fixed an issue where a maliciously crafted URL and trusted environment will retrieve credentials for the wrong hostname/machine from a netrc file.

Improvements

Numerous documentation improvements

Deprecations

Added support for pypy 3.11 for Linux and macOS.

Dropped support for pypy 3.9 following its end of support.

Commits

021dc72 Polish up release tooling for last manual release
821770e Bump version and add release notes for v2.32.4
59f8aa2 Add netrc file search information to authentication documentation (#6876)
5b4b64c Add more tests to prevent regression of CVE 2024 47081
7bc4587 Add new test to check netrc auth leak (#6962)
96ba401 Only use hostname to do netrc lookup instead of netloc
7341690 Merge pull request #6951 from tswast/patch-1
6716d7c remove links
a7e1c74 Update docs/conf.py
c799b81 docs: fix dead links to kenreitz.org
Additional commits viewable in compare view

Updates tornado from 6.4.2 to 6.5.1

Changelog

Sourced from tornado's changelog.

Release notes

.. toctree:: :maxdepth: 2

releases/v6.5.1 releases/v6.5.0 releases/v6.4.2 releases/v6.4.1 releases/v6.4.0 releases/v6.3.3 releases/v6.3.2 releases/v6.3.1 releases/v6.3.0 releases/v6.2.0 releases/v6.1.0 releases/v6.0.4 releases/v6.0.3 releases/v6.0.2 releases/v6.0.1 releases/v6.0.0 releases/v5.1.1 releases/v5.1.0 releases/v5.0.2 releases/v5.0.1 releases/v5.0.0 releases/v4.5.3 releases/v4.5.2 releases/v4.5.1 releases/v4.5.0 releases/v4.4.3 releases/v4.4.2 releases/v4.4.1 releases/v4.4.0 releases/v4.3.0 releases/v4.2.1 releases/v4.2.0 releases/v4.1.0 releases/v4.0.2 releases/v4.0.1 releases/v4.0.0 releases/v3.2.2 releases/v3.2.1 releases/v3.2.0 releases/v3.1.1 releases/v3.1.0 releases/v3.0.2 releases/v3.0.1 releases/v3.0.0

... (truncated)

Commits

b5586f3 Merge pull request #3503 from bdarnell/multipart-utf8
62c2764 Release notes for v6.5.1
170a58a httputil: Fix support for non-latin1 filenames in multipart uploads
ab5f354 Merge pull request #3498 from bdarnell/final-6.5
3623024 Final release notes for 6.5.0
b39b892 Merge pull request #3497 from bdarnell/multipart-log-spam
cc61050 httputil: Raise errors instead of logging in multipart/form-data parsing
ae4a4e4 asyncio: Preserve contextvars across SelectorThread on Windows (#3479)
197ff13 Merge pull request #3496 from bdarnell/undeprecate-set-event-loop
c3d906c requirements: Upgrade tox to 4.26.0
Additional commits viewable in compare view

Updates h11 from 0.14.0 to 0.16.0

Commits

1c5b075 this time for surer
d9c3699 this time for sure...
d91b9dd blacken
5a4683c Soothe mypy
9c9567f Bump version to 0.16.0
114803a Merge commit from fork
9462006 Bump version to 0.15.0
70a96be Merge pull request #181 from Julien00859/Julien00859/get_int_max_str_digits
60782ad Reject Content-Length longer 1 billion TB
dff7cc3 Validate Chunked-Encoding chunk footer
Additional commits viewable in compare view

Updates requests from 2.32.3 to 2.32.4

Release notes

Sourced from requests's releases.

v2.32.4

2.32.4 (2025-06-10)

Security

CVE-2024-47081 Fixed an issue where a maliciously crafted URL and trusted environment will retrieve credentials for the wrong hostname/machine from a netrc file. (#6965)

Improvements

Numerous documentation improvements

Deprecations

Added support for pypy 3.11 for Linux and macOS. (#6926)

Dropped support for pypy 3.9 following its end of support. (#6926)

Changelog

Sourced from requests's changelog.

2.32.4 (2025-06-10)

Security

CVE-2024-47081 Fixed an issue where a maliciously crafted URL and trusted environment will retrieve credentials for the wrong hostname/machine from a netrc file.

Improvements

Numerous documentation improvements

Deprecations

Added support for pypy 3.11 for Linux and macOS.

Dropped support for pypy 3.9 following its end of support.

Commits

021dc72 Polish up release tooling for last manual release
821770e Bump version and add release notes for v2.32.4
59f8aa2 Add netrc file search information to authentication documentation (#6876)
5b4b64c Add more tests to prevent regression of CVE 2024 47081
7bc4587 Add new test to check netrc auth leak (#6962)
96ba401 Only use hostname to do netrc lookup instead of netloc
7341690 Merge pull request #6951 from tswast/patch-1
6716d7c remove links
a7e1c74 Update docs/conf.py
c799b81 docs: fix dead links to kenreitz.org
Additional commits viewable in compare view

Updates tornado from 6.4.2 to 6.5.1

Changelog

Sourced from tornado's changelog.

Release notes

.. toctree:: :maxdepth: 2

releases/v6.5.1 releases/v6.5.0 releases/v6.4.2 releases/v6.4.1 releases/v6.4.0 releases/v6.3.3 releases/v6.3.2 releases/v6.3.1 releases/v6.3.0 releases/v6.2.0 releases/v6.1.0 releases/v6.0.4 releases/v6.0.3 releases/v6.0.2 releases/v6.0.1 releases/v6.0.0 releases/v5.1.1 releases/v5.1.0 releases/v5.0.2 releases/v5.0.1 releases/v5.0.0 releases/v4.5.3 releases/v4.5.2 releases/v4.5.1 releases/v4.5.0 releases/v4.4.3 releases/v4.4.2 releases/v4.4.1 releases/v4.4.0 releases/v4.3.0 releases/v4.2.1 releases/v4.2.0 releases/v4.1.0 releases/v4.0.2 releases/v4.0.1 releases/v4.0.0 releases/v3.2.2 releases/v3.2.1 releases/v3.2.0 releases/v3.1.1 releases/v3.1.0 releases/v3.0.2 releases/v3.0.1 releases/v3.0.0

... (truncated)

Commits

b5586f3 Merge pull request #3503 from bdarnell/multipart-utf8
62c2764 Release notes for v6.5.1
170a58a httputil: Fix support for non-latin1 filenames in multipart uploads
ab5f354 Merge pull request #3498 from bdarnell/final-6.5
3623024 Final release notes for 6.5.0
b39b892 Merge pull request #3497 from bdarnell/multipart-log-spam
cc61050 httputil: Raise errors instead of logging in multipart/form-data parsing
ae4a4e4 asyncio: Preserve contextvars across SelectorThread on Windows (#3479)
197ff13 Merge pull request #3496 from bdarnell/undeprecate-set-event-loop
c3d906c requirements: Upgrade tox to 4.26.0
Additional commits viewable in compare view

Updates h11 from 0.14.0 to 0.16.0

Commits

1c5b075 this time for surer
d9c3699 this time for sure...
d91b9dd blacken
5a4683c Soothe mypy
9c9567f Bump version to 0.16.0
114803a Merge commit from fork
9462006 Bump version to 0.15.0
70a96be Merge pull request #181 from Julien00859/Julien00859/get_int_max_str_digits
60782ad Reject Content-Length longer 1 billion TB
dff7cc3 Validate Chunked-Encoding chunk footer
Additional commits viewable in compare view

Updates requests from 2.32.3 to 2.32.4

Release notes

Sourced from requests's releases.

v2.32.4

2.32.4 (2025-06-10)

Security

CVE-2024-47081 Fixed an issue where a maliciously crafted URL and trusted environment will retrieve credentials for the wrong hostname/machine from a netrc file. (#6965)

Improvements

Numerous documentation improvements

Deprecations

Added support for pypy 3.11 for Linux and macOS. (#6926)

Dropped support for pypy 3.9 following its end of support. (#6926)

Changelog

Sourced from requests's changelog.

2.32.4 (2025-06-10)

Security

CVE-2024-47081 Fixed an issue where a maliciously crafted URL and trusted environment will retrieve credentials for the wrong hostname/machine from a netrc file.

Improvements

Numerous documentation improvements

Deprecations

Added support for pypy 3.11 for Linux and macOS.

Dropped support for pypy 3.9 following its end of support.

Commits

021dc72 Polish up release tooling for last manual release
821770e Bump version and add release notes for v2.32.4
59f8aa2 Add netrc file search information to authentication documentation (#6876)
5b4b64c Add more tests to prevent regression of CVE 2024 47081
7bc4587 Add new test to check netrc auth leak (#6962)
96ba401 Only use hostname to do netrc lookup instead of netloc
7341690 Merge pull request #6951 from tswast/patch-1
6716d7c remove links
a7e1c74 Update docs/conf.py
c799b81 docs: fix dead links to kenreitz.org
Additional commits viewable in compare view

Updates tornado from 6.4.2 to 6.5.1

Changelog

Sourced from tornado's changelog.

Release notes

.. toctree:: :maxdepth: 2

releases/v6.5.1 releases/v6.5.0 releases/v6.4.2 releases/v6.4.1 releases/v6.4.0 releases/v6.3.3 releases/v6.3.2 releases/v6.3.1 releases/v6.3.0 releases/v6.2.0 releases/v6.1.0 releases/v6.0.4 releases/v6.0.3 releases/v6.0.2 releases/v6.0.1 releases/v6.0.0 releases/v5.1.1 releases/v5.1.0 releases/v5.0.2 releases/v5.0.1 releases/v5.0.0 releases/v4.5.3 releases/v4.5.2 releases/v4.5.1 releases/v4.5.0 releases/v4.4.3 releases/v4.4.2 releases/v4.4.1 releases/v4.4.0 releases/v4.3.0 releases/v4.2.1 releases/v4.2.0 releases/v4.1.0 releases/v4.0.2 releases/v4.0.1 releases/v4.0.0 releases/v3.2.2 releases/v3.2.1 releases/v3.2.0 releases/v3.1.1 releases/v3.1.0 releases/v3.0.2 releases/v3.0.1 releases/v3.0.0

... (truncated)

Commits

b5586f3 Merge pull request #3503 from bdarnell/multipart-utf8
62c2764 Release notes for v6.5.1
170a58a httputil: Fix support for non-latin1 filenames in multipart uploads
ab5f354 Merge pull request #3498 from bdarnell/final-6.5
3623024 Final release notes for 6.5.0
b39b892 Merge pull request #3497 from bdarnell/multipart-log-spam
cc61050 httputil: Raise errors instead of logging in multipart/form-data parsing
ae4a4e4 asyncio: Preserve contextvars across SelectorThread on Windows (#3479)
197ff13 Merge pull request #3496 from bdarnell/undeprecate-set-event-loop
c3d906c requirements: Upgrade tox to 4.26.0
Additional commits viewable in compare view

Updates h11 from 0.14.0 to 0.16.0

Commits

1c5b075 this time for surer
d9c3699 this time for sure...
d91b9dd blacken
5a4683c Soothe mypy
9c9567f Bump version to 0.16.0
114803a Merge commit from fork
9462006 Bump version to 0.15.0
70a96be Merge pull request #181 from Julien00859/Julien00859/get_int_max_str_digits
60782ad Reject Content-Length longer 1 billion TB
dff7cc3 Validate Chunked-Encoding chunk footer
Additional commits viewable in compare view

Updates requests from 2.32.3 to 2.32.4

Release notes

Sourced from requests's releases.

v2.32.4

2.32.4 (2025-06-10)

Security

CVE-2024-47081 Fixed an issue where a maliciously crafted URL and trusted environment will retrieve credentials for the wrong hostname/machine from a netrc file. (#6965)

Improvements

Numerous documentation improvements

Deprecations

Added support for pypy 3.11 for Linux and macOS. (#6926)

Dropped support for pypy 3.9 following its end of support. (#6926)

Changelog

Sourced from requests's changelog.

2.32.4 (2025-06-10)

Security

CVE-2024-47081 Fixed an issue where a maliciously crafted URL and trusted environment will retrieve credentials for the wrong hostname/machine from a netrc file.

Improvements

Numerous documentation improvements

Deprecations

Added support for pypy 3.11 for Linux and macOS.

Dropped support for pypy 3.9 following its end of support.

Commits

021dc72 Polish up release tooling for last manual release
821770eDescription has been truncated

Pull Request Statistics

Package Dependencies

Package:
h11

Ecosystem:
pip

Version Change:
0.14.0 → 0.16.0

Update Type:
Minor

Package:
transformers

Ecosystem:
pip

Version Change:
4.48.1 → 4.50.0

Update Type:
Minor

Package:
requests

Ecosystem:
pip

Version Change:
2.32.3 → 2.32.4

Update Type:
Patch

Package:
llama-index

Ecosystem:
pip

Version Change:
0.12.4 → 0.12.28

Update Type:
Patch

Package:
llama-index-cli

Ecosystem:
pip

Version Change:
0.3.1 → 0.4.1

Update Type:
Minor

Security Advisories

Technical Details

ID:	`1404882`
UUID:	`3132097632`
Node ID:	`PR_kwDONzzqas6Zx9zm`
Host:	GitHub
Repository:	canstralian/example_python

Bump the pip group across 25 directories with 9 updates

v2.32.4

2.32.4 (2025-06-10)

2.32.4 (2025-06-10)

v2.32.4

2.32.4 (2025-06-10)

2.32.4 (2025-06-10)

v78.1.1

Bugfixes

v78.1.0

Features

v78.0.2

Bugfixes

v78.0.1

Misc

v78.0.0

Bugfixes

Deprecations and Removals

v2.32.4

2.32.4 (2025-06-10)

2.32.4 (2025-06-10)

6.0.0

Breaking

What's Changed

5.0.1

What's Changed

New Contributors

v2.32.4

2.32.4 (2025-06-10)

2.32.4 (2025-06-10)

Release notes

v2.32.4

2.32.4 (2025-06-10)

2.32.4 (2025-06-10)

Release notes

v2.32.4

2.32.4 (2025-06-10)

2.32.4 (2025-06-10)

Release notes

v2.32.4

2.32.4 (2025-06-10)

2.32.4 (2025-06-10)

Pull Request Statistics

Package Dependencies

Security Advisories

Flask-CORS allows for inconsistent CORS matching

Requests vulnerable to .netrc credentials leak via malicious URLs

Flask-CORS vulnerable to Improper Handling of Case Sensitivity

Flask-CORS improper regex path matching vulnerability

Actions

Technical Details