Sourced from google-auth's releases.

v2.40.3

2.40.3 (2025-06-04)

Bug Fixes

• Auth fetch token from default endpoint (#1779) (88891cc)
• Remove unnecessary call to mds service (#1769) (7c61c7d)
• Retry 504 errors (#1767) (554f967)

v2.40.2

2.40.2 (2025-05-21)

Bug Fixes

• Remove sync response logs in AuthorizedSession (97ed1c8)
• Update test to consider new error message from cryptography (#1765) (44e38b6)

v2.40.1

2.40.1 (2025-05-06)

Bug Fixes

• Disable logging response body for async logs (#1756) (2f0ddfe)

v2.40.0

2.40.0 (2025-04-29)

Features

• Add request response logging to auth (#1678) (77ad53e)

Bug Fixes

• Correct webauthn JSON parsing to be compliant with standard. (#1658) (0c5ef36)

v2.39.0

2.39.0 (2025-04-14)

Features

• Adds GA support for X.509 workload identity federation (#1695) (7495960)

Bug Fixes

... (truncated)

Sourced from google-auth's changelog.

2.40.3 (2025-06-04)

Bug Fixes

• Auth fetch token from default endpoint (#1779) (88891cc)
• Remove unnecessary call to mds service (#1769) (7c61c7d)
• Retry 504 errors (#1767) (554f967)

2.40.2 (2025-05-21)

Bug Fixes

• Remove sync response logs in AuthorizedSession (97ed1c8)
• Update test to consider new error message from cryptography (#1765) (44e38b6)

2.40.1 (2025-05-06)

Bug Fixes

• Disable logging response body for async logs (#1756) (2f0ddfe)

2.40.0 (2025-04-29)

Features

• Add request response logging to auth (#1678) (77ad53e)

Bug Fixes

• Correct webauthn JSON parsing to be compliant with standard. (#1658) (0c5ef36)

2.39.0 (2025-04-14)

Features

• Adds GA support for X.509 workload identity federation (#1695) (7495960)

Bug Fixes

• Add impersonated SA via local ADC support for fetch_id_token (#1740) (f249764)
• Add missing packaging dependency for feature requiring urllib3 (#1732) (221f4a8)
• Add request timeout for MDS requests (#1699) (9f7d3fa)
• Explicitly declare support for Python 3.13 (#1741) (6fd04d5)

... (truncated)

• ca94ead chore(main): release 2.40.3 (#1768)
• 88891cc fix: auth fetch token from default endpoint (#1779)
• 0be91e2 Revert "fix: remove unnecessary call to mds service (#1769)" (#1777)
• 25660bc chore: update secret (#1774)
• 7c61c7d fix: remove unnecessary call to mds service (#1769)
• 554f967 fix: retry 504 errors (#1767)
• 6845065 chore(main): release 2.40.2 (#1766)
• 44e38b6 fix: Update test to consider new error message from cryptography (#1765)
• 97ed1c8 chore: remove sync response logs in AuthorizedSession (#1761)
• 13a897e chore: update secret (#1764)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)