Bump flask from 2.0.3 to 2.1.1 #8

dependabot · 2022-03-31T13:43:05Z

Bumps flask from 2.0.3 to 2.1.1.

Release notes

2.1.1

This is a fix release for the 2.1.0 feature release.

Changes: https://flask.palletsprojects.com/en/2.1.x/changes/#version-2-1-1

Milestone: https://github.com/pallets/flask/milestone/18?closed=1

2.1.0

This is a feature release, which includes new features and removes previously deprecated features. The 2.1.x branch is now the supported bugfix branch, the 2.0.x branch will become a tag marking the end of support for that branch. We encourage everyone to upgrade, and to use a tool such as pip-tools to pin all dependencies and control upgrades.

Changes: https://flask.palletsprojects.com/en/2.1.x/changes/#version-2-1-0

Milestone: https://github.com/pallets/flask/milestone/13?closed=1

We also encourage upgrading to the latest versions of the other Pallets projects as well.

Werkzeug 2.1 changes: https://werkzeug.palletsprojects.com/en/2.1.x/changes/#version-2-1-0

Jinja 3.1 changes: https://jinja.palletsprojects.com/en/3.1.x/changes/#version-3-1-1

Click 8.1 changes: https://click.palletsprojects.com/en/8.1.x/changes/#version-8-1-0

MarkupSafe 2.1 changes: https://markupsafe.palletsprojects.com/en/2.1.x/changes/#version-2-1-1

ItsDangerous 2.1 changes: https://itsdangerous.palletsprojects.com/en/2.1.x/changes/#version-2-1-2

Changelog

Sourced from flask's changelog.

Version 2.1.1

Released on 2022-03-30

Set the minimum required version of importlib_metadata to 3.6.0, which is required on Python < 3.10. :issue:4502

Version 2.1.0

Released 2022-03-28

Drop support for Python 3.6. :pr:4335

Update Click dependency to >= 8.0. :pr:4008

Remove previously deprecated code. :pr:4337

The CLI does not pass script_info to app factory functions.

config.from_json is replaced by config.from_file(name, load=json.load).

json functions no longer take an encoding parameter.

safe_join is removed, use werkzeug.utils.safe_join instead.

total_seconds is removed, use timedelta.total_seconds instead.

The same blueprint cannot be registered with the same name. Use name= when registering to specify a unique name.

The test client's as_tuple parameter is removed. Use response.request.environ instead. :pr:4417

Some parameters in send_file and send_from_directory were renamed in 2.0. The deprecation period for the old names is extended to 2.2. Be sure to test with deprecation warnings visible.

attachment_filename is renamed to download_name.

cache_timeout is renamed to max_age.

add_etags is renamed to etag.

filename is renamed to path.

The RequestContext.g property is deprecated. Use g directly or AppContext.g instead. :issue:3898

copy_current_request_context can decorate async functions. :pr:4303

The CLI uses importlib.metadata instead of setuptools to load command entry points. :issue:4419

Overriding FlaskClient.open will not cause an error on redirect. :issue:3396

Add an --exclude-patterns option to the flask run CLI command to specify patterns that will be ignored by the reloader.

... (truncated)

Commits

188bd17 Merge pull request #4511 from pallets/release-2.1.1
c6f2977 release version 2.1.1
a8f4ee1 Merge pull request #4510 from pallets/release-2.1.1
c419931 release version 2.1.1
c3d0880 Merge pull request #4509 from pallets/importlib_metadata-min-version
d023d94 set importlib_metadata minimum version
5589915 start version 2.1.1
65b0eef Merge pull request #4500 from pallets/release-2.1.0
7d264d7 release version 2.1.0
f5ed54b ignore examples tests
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [flask](https://github.com/pallets/flask) from 2.0.3 to 2.1.1. - [Release notes](https://github.com/pallets/flask/releases) - [Changelog](https://github.com/pallets/flask/blob/main/CHANGES.rst) - [Commits](pallets/flask@2.0.3...2.1.1) --- updated-dependencies: - dependency-name: flask dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added the dependencies Pull requests that update a dependency file label Mar 31, 2022

dependabot bot mentioned this pull request Mar 31, 2022

Bump flask from 2.0.3 to 2.1.0 #5

Closed

asepscareer merged commit 7103257 into master Mar 31, 2022

dependabot bot deleted the dependabot/pip/flask-2.1.1 branch March 31, 2022 13:44

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump flask from 2.0.3 to 2.1.1 #8

Bump flask from 2.0.3 to 2.1.1 #8

dependabot bot commented on behalf of github Mar 31, 2022

Bump flask from 2.0.3 to 2.1.1 #8

Bump flask from 2.0.3 to 2.1.1 #8

Conversation

dependabot bot commented on behalf of github Mar 31, 2022

2.1.1

2.1.0

Version 2.1.1

Version 2.1.0