Initial Update

[pyup-bot]

This is my first visit to this fine repo so I have bundled all updates in a single pull request to make things easier for you to merge.

Close this pull request and delete the branch if you want me to start with single pull requests right away

Here's the executive summary:

Updates

Here's a list of all the updates bundled in this pull request. I've added some links to make it easier for you to find all the information you need.

bleach	1.4.3	»	2.1.1	PyPI | Changelog | Repo | Docs
django	1.11	»	1.11.5	PyPI | Changelog | Homepage
django-bulk-update	1.1.10	»	2.2.0	PyPI | Changelog | Repo
django-crispy-forms	1.6.0	»	1.6.1	PyPI | Changelog | Repo
django-extensions	1.7.8	»	1.9.1	PyPI | Changelog | Repo | Docs
django-filter	1.0.2	»	1.0.4	PyPI | Changelog | Repo
django-pipeline	1.6.9	»	1.6.13	PyPI | Changelog | Repo
django-storages	1.5.1	»	1.6.5	PyPI | Changelog | Repo
django-tables2	1.6.0	»	1.11.0	PyPI | Changelog | Repo
django-vanilla-views	1.0.3	»	1.0.4	PyPI | Homepage
mammoth	0.3.11	»	1.4.2	PyPI | Changelog | Repo
raven	6.1.0	»	6.2.1	PyPI | Changelog | Repo
requests	2.6.0	»	2.18.4	PyPI | Changelog | Homepage
whitenoise	3.3.0	»	3.3.1	PyPI | Changelog | Homepage
django-debug-toolbar	1.7	»	1.8	PyPI | Changelog | Repo
importanize	0.4.1	»	0.5.3	PyPI | Changelog | Repo
sphinx	1.3.1	»	1.6.4	PyPI | Changelog | Homepage
django-webtest	1.9.1	»	1.9.2	PyPI | Changelog | Repo
tblib	1.3.0	»	1.3.2	PyPI | Changelog | Repo
webtest	2.0.27	»	2.0.28	PyPI | Changelog | Homepage

Changelogs

bleach 1.4.3 -> 2.1.1

2.1.1

---

Security fixes

None

Backwards incompatible changes

None

Features

None

Bug fixes

• Fix setup.py opening files when LANG=. (324)

2.1

---

Security fixes

• Convert control characters (backspace particularly) to "?" preventing
  malicious copy-and-paste situations. (298)

See <https://github.com/mozilla/bleach/issues/298>_ for more details.

This affects all previous versions of Bleach. Check the comments on that
issue for ways to alleviate the issue if you can't upgrade to Bleach 2.1.

Backwards incompatible changes

• Redid versioning. bleach.VERSION is no longer available. Use the string
  version at bleach.__version__ and parse it with
  pkg_resources.parse_version. (307)

• clean, linkify: linkify and clean should only accept text types; thank you,
  Janusz! (292)

• clean, linkify: accept only unicode or utf-8-encoded str (176)

Features

Bug fixes

• bleach.clean() no longer unescapes entities including ones that are missing
  a ; at the end which can happen in urls and other places. (143)

• linkify: fix http links inside of mailto links; thank you, sedrubal! (300)

• clarify security policy in docs (303)

• fix dependency specification for html5lib 1.0b8, 1.0b9, and 1.0b10; thank you,
  Zoltán! (268)

• add Bleach vs. html5lib comparison to README; thank you, Stu Cox! (278)

• fix KeyError exceptions on tags without href attr; thank you, Alex Defsen!
  (273)

• add test website and scripts to test bleach.clean() output in browser;
  thank you, Greg Guthe!

2.0

---

Security fixes

• None

Backwards incompatible changes

• Removed support for Python 2.6. 206

• Removed support for Python 3.2. 224

• Bleach no longer supports html5lib < 0.99999999 (8 9s).

This version is a rewrite to use the new sanitizing API since the old
one was dropped in html5lib 0.99999999 (8 9s).

If you're using 0.9999999 (7 9s) upgrade to 0.99999999 (8 9s) or higher.

If you're using 1.0b8 (equivalent to 0.9999999 (7 9s)), upgrade to 1.0b9
(equivalent to 0.99999999 (8 9s)) or higher.

• bleach.clean and friends were rewritten

clean was reimplemented as an html5lib filter and happens at a different
step in the HTML parsing -> traversing -> serializing process. Because of
that, there are some differences in clean's output as compared with previous
versions.

Amongst other things, this version will add end tags even if the tag in
question is to be escaped.

• bleach.clean and friends attribute callables now take three arguments:
  tag, attribute name and attribute value. Previously they only took attribute
  name and attribute value.

All attribute callables will need to be updated.

• bleach.linkify was rewritten

linkify was reimplemented as an html5lib Filter. As such, it no longer
accepts a tokenizer argument.

The callback functions for adjusting link attributes now takes a namespaced
attribute.

Previously you'd do something like this::

 def check_protocol(attrs, is_new):
     if not attrs.get('href', '').startswith('http:', 'https:')):
         return None
     return attrs

Now it's more like this::

 def check_protocol(attrs, is_new):
     if not attrs.get((None, u'href'), u'').startswith(('http:', 'https:')):
                     ^^^^^^^^^^^^^^^
         return None
     return attrs

Further, you need to make sure you're always using unicode values. If you
don't then html5lib will raise an assertion error that the value is not
unicode.

All linkify filters will need to be updated.

• bleach.linkify and friends had a skip_pre argument--that's been
  replaced with a more general skip_tags argument.

Before, you might do::

 bleach.linkify(some_text, skip_pre=True)

The equivalent with Bleach 2.0 is::

 bleach.linkify(some_text, skip_tags=['pre'])

You can skip other tags, too, like style or script or other places
where you don't want linkification happening.

All uses of linkify that use skip_pre will need to be updated.

Changes

• Supports Python 3.6.

• Supports html5lib >= 0.99999999 (8 9s).

• There's a bleach.sanitizer.Cleaner class that you can instantiate with your
  favorite clean settings for easy reuse.

• There's a bleach.linkifier.Linker class that you can instantiate with your
  favorite linkify settings for easy reuse.

• There's a bleach.linkifier.LinkifyFilter which is an htm5lib filter that
  you can pass as a filter to bleach.sanitizer.Cleaner allowing you to clean
  and linkify in one pass.

• bleach.clean and friends can now take a callable as an attributes arg value.

• Tons of bug fixes.

• Cleaned up tests.

• Documentation fixes.

1.5

---

Security fixes

• None

Backwards incompatible changes

• clean: The list of ALLOWED_PROTOCOLS now defaults to http, https and
  mailto.

Previously it was a long list of protocols something like ed2k, ftp, http,
https, irc, mailto, news, gopher, nntp, telnet, webcal, xmpp, callto, feed,
urn, aim, rsync, tag, ssh, sftp, rtsp, afs, data. 149

Changes

• clean: Added protocols to arguments list to let you override the list of
  allowed protocols. Thank you, Andreas Malecki! 149

• linkify: Fix a bug involving periods at the end of an email address. Thank you,
  Lorenz Schori! 219

• linkify: Fix linkification of non-ascii ports. Thank you Alexandre, Macabies!
  207

• linkify: Fix linkify inappropriately removing node tails when dropping nodes.
  132

• Fixed a test that failed periodically. 161

• Switched from nose to py.test. 204

• Add test matrix for all supported Python and html5lib versions. 230

• Limit to html5lib >=0.999,!=0.9999,!=0.99999,<0.99999999 because 0.9999
  and 0.99999 are busted.

• Add support for python setup.py test. 97

django 1.11 -> 1.11.5

1.11.5

===========================

September 5, 2017

Django 1.11.5 fixes a security issue and several bugs in 1.11.4.

CVE-2017-12794: Possible XSS in traceback section of technical 500 debug page

In older versions, HTML autoescaping was disabled in a portion of the template
for the technical 500 debug page. Given the right circumstances, this allowed
a cross-site scripting attack. This vulnerability shouldn't affect most
production sites since you shouldn't run with DEBUG = True (which makes
this page accessible) in your production settings.

Bugfixes

• Fixed GEOS version parsing if the version has a commit hash at the end (new
  in GEOS 3.6.2) (:ticket:28441).

• Added compatibility for cx_Oracle 6 (:ticket:28498).

• Fixed select widget rendering when option values are tuples (:ticket:28502).

• Django 1.11 inadvertently changed the sequence and trigger naming scheme on
  Oracle. This causes errors on INSERTs for some tables if
  'use_returning_into': False is in the OPTIONS part of DATABASES.
  The pre-1.11 naming scheme is now restored. Unfortunately, it necessarily
  requires an update to Oracle tables created with Django 1.11.[1-4]. Use the
  upgrade script in 🎫28451 comment 8 to update sequence and trigger
  names to use the pre-1.11 naming scheme.

• Added POST request support to LogoutView, for equivalence with the
  function-based logout() view (:ticket:28513).

• Omitted pages_per_range from BrinIndex.deconstruct() if it's None
  (:ticket:25809).

• Fixed a regression where SelectDateWidget localized the years in the
  select box (:ticket:28530).

• Fixed a regression in 1.11.4 where runserver crashed with non-Unicode
  system encodings on Python 2 + Windows (:ticket:28487).

• Fixed a regression in Django 1.10 where changes to a ManyToManyField
  weren't logged in the admin change history (:ticket:27998) and prevented
  ManyToManyField initial data in model forms from being affected by
  subsequent model changes (:ticket:28543).

• Fixed non-deterministic results or an AssertionError crash in some
  queries with multiple joins (:ticket:26522).

• Fixed a regression in contrib.auth's login() and logout() views
  where they ignored positional arguments (:ticket:28550).

===========================

1.11.4

===========================

August 1, 2017

Django 1.11.4 fixes several bugs in 1.11.3.

Bugfixes

• Fixed a regression in 1.11.3 on Python 2 where non-ASCII format values
  for date/time widgets results in an empty value in the widget's HTML
  (:ticket:28355).

• Fixed QuerySet.union() and difference() when combining with
  a queryset raising EmptyResultSet (:ticket:28378).

• Fixed a regression in pickling of LazyObject on Python 2 when the wrapped
  object doesn't have __reduce__() (:ticket:28389).

• Fixed crash in runserver's autoreload with Python 2 on Windows with
  non-str environment variables (:ticket:28174).

• Corrected Field.has_changed() to return False for disabled form
  fields: BooleanField, MultipleChoiceField, MultiValueField,
  FileField, ModelChoiceField, and ModelMultipleChoiceField.

• Fixed QuerySet.count() for union(), difference(), and
  intersection() queries. (:ticket:28399).

• Fixed ClearableFileInput rendering as a subwidget of MultiWidget
  (:ticket:28414). Custom clearable_file_input.html widget templates
  will need to adapt for the fact that context values
  checkbox_name, checkbox_id, is_initial, input_text,
  initial_text, and clear_checkbox_label are now attributes of
  widget rather than appearing in the top-level context.

• Fixed queryset crash when using a GenericRelation to a proxy model
  (:ticket:28418).

===========================

1.11.3

===========================

July 1, 2017

Django 1.11.3 fixes several bugs in 1.11.2.

Bugfixes

• Removed an incorrect deprecation warning about a missing renderer
  argument if a Widget.render() method accepts **kwargs
  (:ticket:28265).

• Fixed a regression causing Model.__init__() to crash if a field has an
  instance only descriptor (:ticket:28269).

• Fixed an incorrect DisallowedModelAdminLookup exception when using
  a nested reverse relation in list_filter (:ticket:28262).

• Fixed admin's FieldListFilter.get_queryset() crash on invalid input
  (:ticket:28202).

• Fixed invalid HTML for a required AdminFileWidget (:ticket:28278).

• Fixed model initialization to set the name of class-based model indexes
  for models that only inherit models.Model (:ticket:28282).

• Fixed crash in admin's inlines when a model has an inherited non-editable
  primary key (:ticket:27967).

• Fixed QuerySet.union(), intersection(), and difference() when
  combining with an EmptyQuerySet (:ticket:28293).

• Prevented Paginator’s unordered object list warning from evaluating a
  QuerySet (:ticket:28284).

• Fixed the value of redirect_field_name in LoginView’s template
  context. It's now an empty string (as it is for the original function-based
  login() view) if the corresponding parameter isn't sent in a request (in
  particular, when the login page is accessed directly) (:ticket:28229).

• Prevented attribute values in the django/forms/widgets/attrs.html
  template from being localized so that numeric attributes (e.g. max and
  min) of NumberInput work correctly (:ticket:28303).

• Removed casting of the option value to a string in the template context of
  the CheckboxSelectMultiple, NullBooleanSelect, RadioSelect,
  SelectMultiple, and Select widgets (:ticket:28176). In Django
  1.11.1, casting was added in Python to avoid localization of numeric values
  in Django templates, but this made some use cases more difficult. Casting is
  now done in the template using the |stringformat:'s' filter.

• Prevented a primary key alteration from adding a foreign key constraint if
  db_constraint=False (:ticket:28298).

• Fixed UnboundLocalError crash in RenameField with nonexistent field
  (:ticket:28350).

• Fixed a regression preventing a model field's limit_choices_to from being
  evaluated when a ModelForm is instantiated (:ticket:28345).

===========================

1.11.2

===========================

June 1, 2017

Django 1.11.2 adds a minor feature and fixes several bugs in 1.11.1. Also, the
latest string translations from Transifex are incorporated.

Minor feature

The new LiveServerTestCase.port attribute reallows the use case of binding
to a specific port following the :ref:bind to port zero <liveservertestcase-port-zero-change> change in Django 1.11.

Bugfixes

• Added detection for GDAL 2.1 and 2.0, and removed detection for unsupported
  versions 1.7 and 1.8 (:ticket:28181).

• Changed contrib.gis to raise ImproperlyConfigured rather than
  GDALException if gdal isn't installed, to allow third-party apps to
  catch that exception (:ticket:28178).

• Fixed django.utils.http.is_safe_url() crash on invalid IPv6 URLs
  (:ticket:28142).

• Fixed regression causing pickling of model fields to crash (:ticket:28188).

• Fixed django.contrib.auth.authenticate() when multiple authentication
  backends don't accept a positional request argument (:ticket:28207).

• Fixed introspection of index field ordering on PostgreSQL (:ticket:28197).

• Fixed a regression where Model._state.adding wasn't set correctly on
  multi-table inheritance parent models after saving a child model
  (:ticket:28210).

• Allowed DjangoJSONEncoder to serialize
  django.utils.deprecation.CallableBool (:ticket:28230).

• Relaxed the validation added in Django 1.11 of the fields in the defaults
  argument of QuerySet.get_or_create() and update_or_create() to
  reallow settable model properties (:ticket:28222).

• Fixed MultipleObjectMixin.paginate_queryset() crash on Python 2 if the
  InvalidPage message contains non-ASCII (:ticket:28204).

• Prevented Subquery from adding an unnecessary CAST which resulted in
  invalid SQL (:ticket:28199).

• Corrected detection of GDAL 2.1 on Windows (:ticket:28181).

• Made date-based generic views return a 404 rather than crash when given an
  out of range date (:ticket:28209).

• Fixed a regression where file_move_safe() crashed when moving files to a
  CIFS mount (:ticket:28170).

• Moved the ImageField file extension validation added in Django 1.11 from
  the model field to the form field to reallow the use case of storing images
  without an extension (:ticket:28242).

===========================

1.11.1

===========================

May 6, 2017

Django 1.11.1 adds a minor feature and fixes several bugs in 1.11.

Allowed disabling server-side cursors on PostgreSQL

The change in Django 1.11 to make :meth:.QuerySet.iterator() use server-side
cursors on PostgreSQL prevents running Django with pgBouncer in transaction
pooling mode. To reallow that, use the :setting:DISABLE_SERVER_SIDE_CURSORS <DATABASE-DISABLE_SERVER_SIDE_CURSORS> setting in :setting:DATABASES.

See :ref:transaction-pooling-server-side-cursors for more discussion.

Bugfixes

• Made migrations respect Index’s name argument. If you created a
  named index with Django 1.11, makemigrations will create a migration to
  recreate the index with the correct name (:ticket:28051).

• Fixed a crash when using a __icontains lookup on a ArrayField
  (:ticket:28038).

• Fixed a crash when using a two-tuple in EmailMessage’s attachments
  argument (:ticket:28042).

• Fixed QuerySet.filter() crash when it references the name of a
  OneToOneField primary key (:ticket:28047).

• Fixed empty POST data table appearing instead of "No POST data" in HTML debug
  page (:ticket:28079).

• Restored BoundField\s without any choices evaluating to True
  (:ticket:28058).

• Prevented SessionBase.cycle_key() from losing session data if
  _session_cache isn't populated (:ticket:28066).

• Fixed layout of ReadOnlyPasswordHashWidget (used in the admin's user
  change page) (:ticket:28097).

• Allowed prefetch calls on managers with custom ModelIterable subclasses
  (:ticket:28096).

• Fixed change password link in the contrib.auth admin for el,
  es_MX, and pt translations (:ticket:28100).

• Restored the output of the class attribute in the <ul> of widgets
  that use the multiple_input.html template. This fixes
  ModelAdmin.radio_fields with admin.HORIZONTAL (:ticket:28059).

• Fixed crash in BaseGeometryWidget.subwidgets() (:ticket:28039).

• Fixed exception reraising in ORM query execution when cursor.execute()
  fails and the subsequent cursor.close() also fails (:ticket:28091).

• Fixed a regression where CheckboxSelectMultiple, NullBooleanSelect,
  RadioSelect, SelectMultiple, and Select localized option values
  (:ticket:28075).

• Corrected the stack level of unordered queryset pagination warnings
  (:ticket:28109).

• Fixed a regression causing incorrect queries for __in subquery lookups
  when models use ForeignKey.to_field (:ticket:28101).

• Fixed crash when overriding the template of
  django.views.static.directory_index() (:ticket:28122).

• Fixed a regression in formset min_num validation with unchanged forms
  that have initial data (:ticket:28130).

• Prepared for cx_Oracle 6.0 support (:ticket:28138).

• Updated the contrib.postgres SplitArrayWidget to use template-based
  widget rendering (:ticket:28040).

• Fixed crash in BaseGeometryWidget.get_context() when overriding existing
  attrs (:ticket:28105).

• Prevented AddIndex and RemoveIndex from mutating model state
  (:ticket:28043).

• Prevented migrations from dropping database indexes from Meta.indexes
  when changing Field.db_index to False (:ticket:28052).

• Fixed a regression in choice ordering in form fields with grouped and
  non-grouped options (:ticket:28157).

• Fixed crash in BaseInlineFormSet._construct_form() when using
  save_as_new (:ticket:28159).

• Fixed a regression where Model._state.db wasn't set correctly on
  multi-table inheritance parent models after saving a child model
  (:ticket:28166).

• Corrected the return type of ArrayField(CITextField()) values retrieved
  from the database (:ticket:28161).

• Fixed QuerySet.prefetch_related() crash when fetching relations in nested
  Prefetch objects (:ticket:27554).

• Prevented hiding GDAL errors if it's not installed when using contrib.gis
  (:ticket:28160). (It's a required dependency as of Django 1.11.)

• Fixed a regression causing __in lookups on a foreign key to fail when
  using the foreign key's parent model as the lookup value (:ticket:28175).

=========================

django-bulk-update 1.1.10 -> 2.2.0

2.2.0

• Make bulk_update work with postgresql's ArrayField
• Fix that makes the manager work for write db correctly

2.1.0

• Allow to pass update_fields and exclude_fields arguments as tuples.
• If update_fields is not specified, update not-deferred fields only.

2.0.0

• Rename package from bulk_update to django_bulk_update.
• Drop support for django<1.8.
• Allow to use django expressions like F expression or Func expression.
• Make bulk_update work for models whose pk is an UUID or a ForeignKey.

django-crispy-forms 1.6.0 -> 1.6.1

1.6.1

• Updates compatibility for Django 1.10
• A number of small Bootstrap 4 fixes.

See 1.6.1 Milestone
for full issue list.

django-extensions 1.7.8 -> 1.9.1

1.9.1

---

Changes:

• Fix: graph_models, fix json option
• Fix: runserver_plus, avoid duplicate messages logged to console
• Fix: mail_debug, python3 fix
• Improvement: sqldiff, basic support for array types in postgresql
• Improvement: runscript, handle import errors better
• Docs: updated documentation for model extensions

1.9.0

---

The change to --no-startup/--use-pythonrc in shell_plus changes the
default behaviour to automatically load PYTHONSTARTUP and ~/.pythonrc.py
unless --no-startup is set.

Changes:

• Fix: pipchecker, fix up-to-date check for Github sha commits
• Fix: JSONField, fix handling to_python() for strings with tests
• Fix: print_settings, fix print_settings to receive positional args
• Improvement: shell_plus, update PYTHONSTARTUP / pythonrc handling to match Django
• Improvement: shell_plus, added new 1.11 features from django.db.models to shell_plus import list
• Improvement: runserver_plus, startup message now accounts for https
• Docs: jobs, improve documentation about jobs scheduling
• Docs: admin, add documentation for ForeignKeyAutocompleteStackedInline and ForeignKeyAutocompleteTabularInline
• Docs: fix typos

1.8.1

---

Changes:

• Build: use tox's 'TOXENV' environment variable
• Fix: resetdb, fix problem that 'utf8_support' option is ignored
• Improvement: export_emails, moved custom csv UnicodeWriter (for py2) into compat.py
• Translations: pt, removed since it was causing issues with the builds
  if anybody wants to update and fix it that would be
  much appreciated !

1.8.0

---

UUIDField has been removed after being deprecated.

Deprecation schedule for JSONField has been removed after requests from the
community.

Changes:

• Fix: runserver_plus, fixed Python 3 print syntax
• Fix: sqldiff, Use 'display_size', not 'precision' to identify MySQL bool field
• Fix: export_emails, fix and refactor the command and all its output options
• Improvement: tests, added Python 3.6 and PyPy3.5-5.8.0
• Improvement: clear_cache, add --cache option to support multiple caches
• Improvement: runserver_plus, limit printing SQL queries to avoid flooding the terminal
• Improvement: shell_plus, limit printing SQL queries to avoid flooding the terminal
• Docs: graph_models, document including/excluding specific models
• Docs: shell_plus, added PTPython

1.7.9

---

Changes:

• Fix: AutoSlugField, foreignkey relationships
• Fix: shell_plus, supported backends 'postgresql' for set_application_name
• Improvement: various commands, Add syntax highlighting when printing SQL
• Improvement: pipchecker, treat rc versions as unstable
• Improvement: shell_plus, allow to subclass and overwrite import_objects
• Improvement: shell_plus, fix SHELL_PLUS_PRE_IMPORTS example
• Improvement: setup.py, fix and unify running tests
• Improvement: runserver_plus, add RUNSERVERPLUS_POLLER_RELOADER_TYPE setting
• Improvement: generate_secret_key, use algoritme from django
• Docs: fix grammer and spelling mistakes

django-filter 1.0.2 -> 1.0.4

1.0.4

---

Quick fix for verbose_field_name issue from 1.0.3 (722)

1.0.3

---

Improves compatibility with Django REST Framework schema generation.

See the 1.0.3 Milestone__ for full details.

__ https://github.com/carltongibson/django-filter/milestone/13?closed=1

django-pipeline 1.6.9 -> 1.6.13

1.6.13

======

• Fix forward-slashed paths on Windows. Thanks to etiago
• Fix CSS URL detector to match quotes correctly. Thanks to vskh
• Add a compiler_options dict to compile, to allow passing options to custom
  compilers. Thanks to sassanh
• Verify support for Django 1.11. Thanks to jwhitlock

1.6.12

======

• Supports Django 1.11
• Fix a bug with os.rename on windows. Thanks to wismill
• Fix to view compile error if happens. Thanks to brawaga
• Add support for Pipeline CSS/JS packages in forms and widgets. Thanks to chipx86

1.6.11

======

• Fix performance regression. Thanks to Christian Hammond.

1.6.10

======

• Added Django 1.10 compatiblity issues. Thanks to Austin Pua and Silvan Spross.
• Documentation improvements. Thanks to Chris Streeter.

django-storages 1.5.1 -> 1.6.5

1.6.5

---

• Fix Django 1.11 regression with gzipped content being saved twice
  resulting in empty files (367, 371, 373_)
• Fix the mtime when gzipping content on S3Boto3Storage (374_)

.. _367: jschneier/django-storages#367
.. _371: jschneier/django-storages#371
.. _373: jschneier/django-storages#373
.. _374: jschneier/django-storages#374

1.6.4

---

• Files uploaded with GoogleCloudStorage will now set their appropriate mimetype (320_)
• Fix DropBoxStorage.url to work. (357_)
• Fix S3Boto3Storage when AWS_PRELOAD_METADATA = True (366_)
• Fix S3Boto3Storage uploading file-like objects without names (195, 368)
• S3Boto3Storage is now threadsafe - a separate session is created on a
  per-thread basis (268, 358)

.. _320: jschneier/django-storages#320
.. _357: jschneier/django-storages#357
.. _366: jschneier/django-storages#366
.. _195: jschneier/django-storages#195
.. _368: jschneier/django-storages#368
.. _268: jschneier/django-storages#268
.. _358: jschneier/django-storages#358

1.6.3

---

• Revert default AWS_S3_SIGNATURE_VERSION to V2 to restore backwards
  compatability in S3Boto3. It's recommended that all new projects set
  this to be 's3v4'. (344_)

.. _344: jschneier/django-storages#344

1.6.2

---

• Fix regression in safe_join() to handle a trailing slash in an
  intermediate path. (341_)
• Fix regression in gs.GSBotoStorage getting an unexpected kwarg.
  (342_)

.. _341: jschneier/django-storages#341
.. _342: jschneier/django-storages#342

1.6.1

---

• Drop support for Django 1.9 (e89db45_)
• Fix regression in safe_join() to allow joining a base path with an empty
  string. (336_)

.. _e89db45: jschneier/django-storages@e89db45
.. _336: jschneier/django-storages#336

1.6

---

• Breaking: Remove backends deprecated in v1.5.1 (280_)
• Breaking: DropBoxStorage has been upgrade to support v2 of the API, v1 will be shut off at the
  end of the month - upgrading is recommended (273_)
• Breaking: The SFTPStorage backend now checks for the existence of the fallback ~/.ssh/known_hosts
  before attempting to load it. If you had previously been passing in a path to a non-existent file it will no longer
  attempt to load the fallback. (118, 325)
• Breaking: The default version value for AWS_S3_SIGNATURE_VERSION is now 's3v4'. No changes should
  be required (335_)
• Deprecation: The undocumented gs.GSBotoStorage backend. See the new gcloud.GoogleCloudStorage
  or apache_libcloud.LibCloudStorage backends instead. (236_)
• Add a new backend, gcloud.GoogleCloudStorage based on the google-cloud bindings. (236_)
• Pass in the location constraint when auto creating a bucket in S3Boto3Storage (257, 258)
• Add support for reading AWS_SESSION_TOKEN and AWS_SECURITY_TOKEN from the environment
  to S3Boto3Storage and S3BotoStorage. (283_)
• Fix Boto3 non-ascii filenames on Python 2.7 (216, 217)
• Fix collectstatic timezone handling in and add get_modified_time to S3BotoStorage (290_)
• Add support for Django 1.11 (295_)
• Add project keyword support to GCS in LibCloudStorage backend (269_)
• Files that have a guessable encoding (e.g. gzip or compress) will be uploaded with that Content-Encoding in
  the s3boto3 backend (263, 264)
• The Dropbox backend now properly translates backslashes in Windows paths into forward slashes (e52a127_)
• The S3 backends now permit colons in the keys (248, 322)

.. _217: jschneier/django-storages#217
.. _273: jschneier/django-storages#273
.. _216: jschneier/django-storages#216
.. _283: jschneier/django-storages#283
.. _280: jschneier/django-storages#280
.. _257: jschneier/django-storages#257
.. _258: jschneier/django-storages#258
.. _290: jschneier/django-storages#290
.. _295: jschneier/django-storages#295
.. _269: jschneier/django-storages#269
.. _263: jschneier/django-storages#263
.. _264: jschneier/django-storages#264
.. _e52a127: jschneier/django-storages@e52a127
.. _236: jschneier/django-storages#236
.. _118: jschneier/django-storages#118
.. _325: jschneier/django-storages#325
.. _248: jschneier/django-storages#248
.. _322: jschneier/django-storages#322
.. _335: jschneier/django-storages#335

1.5.2

---

• Actually use SFTP_STORAGE_HOST in SFTPStorage backend (204_)
• Fix S3Boto3Storage to avoid race conditions in a multi-threaded WSGI environment (238_)
• Fix trying to localize a naive datetime when settings.USE_TZ is False in S3Boto3Storage.modified_time.
  (235, 234)
• Fix automatic bucket creation in S3Boto3Storage when AWS_AUTO_CREATE_BUCKET is True (196_)
• Improve the documentation for the S3 backends

.. _204: jschneier/django-storages#204
.. _238: jschneier/django-storages#238
.. _234: jschneier/django-storages#234
.. _235: jschneier/django-storages#235
.. _196: jschneier/django-storages#196

django-tables2 1.6.0 -> 1.11.0

1.11.0

• Added Hungarian translation 471 by hmikihth.
• Added TemplateColumn.value() and enhanced export docs (fixes 470)
• Fixed display of pinned rows if table has no data. 477 by khirstinova

1.10.0

• Added ManyToManyColumn automatically added for ManyToManyFields.

1.9.1

• Allow customizing the value used in Table.as_values() (when using a render_<name> method) using a value_<name> method. (fixes 458)
• Allow excluding columns from the Table.as_values() output. (fixes 459)
• Fixed unicode handling for columhn headers in Table.as_values()

1.9.0

• Allow computable attrs for <td>-tags from Table.attrs (457, fixes 451)

1.8.0

• Feature: Added an ExportMixin to export table data in various export formats (CSV, XLS, etc.) using tablib.
• Defer expanding Meta.sequence to Table.__init__, to make sequence work in combination with extra_columns (fixes 450)
• Fixed a crash when MultiTableMixin.get_tables() returned an empty array (454 by pypetey

1.7.1

• Call before_render when rendering with the render_table template tag (fixes 447)

1.7.0

• Make title() lazy (443 by ygwain, fixes 438)
• Fix __all__ by populating them with the names of the items to export instead of the items themself.
• Allow adding extra columns to an instance using the extra_columns argument. Fixes 403, 70
• Added a hook before_render to allow last-minute changes to the table before rendering.
• Added BoundColumns.show() and BoundColumns.hide() to show/hide columns on an instance of a Table.
• Use <listlike>.verbose_name/.verbose_name_plural if it exists to name the items in the list. (fixes 166)

1.6.1

• Add missing pagination to the responsive bootstrap template (440 by tobiasmcnulty)

mammoth 0.3.11 -> 1.4.2

1.4.2

• Read children of v:group elements.

1.4.1

• Read w:noBreakHyphen elements as non-breaking hyphen characters.

1.4.0

• Add anchor on hyperlinks as fragment if present.

• Convert target frames on hyperlinks to targets on anchors.

• Detect header rows in tables and convert to thead > tr > th.

• Read w:noBreakHyphen elements as non-breaking hyphen characters.

• Read children of v:group elements.

1.3.6

• Handle complex fields that do not have a "separate" fldChar.

1.3.5

• Add transforms.run.

1.3.4

• Read children of w:object elements.

1.3.3

• Handle hyperlinks created with complex fields.

1.3.2

• Handle absolute paths within zip files. This should fix an issue where some
  images within a document couldn't be found.

1.3.1

• Read children of w:object elements.

• Handle complex fields that do not have a "separate" fldChar.

1.3.0

• Use alt text title as alt text for images when the alt text description is
  blank or missing.

• Ignore v:imagedata elements without relationship ID with warning.

• Ignore bold, italic, underline and strikethrough elements that have a value of
  false or 0.

• Handle absolute paths within zip files. This should fix an issue where some
  images within a document couldn't be found.

• Allow style names to be mapped by prefix. For instance:

r[style-name^='Code '] => code

• Add default style mappings for Heading 5 and Heading 6.

• Allow escape sequences in style IDs, style names and CSS class names.

• Allow a separator to be specified when HTML elements are collapsed.

• Read embedded style maps.

• Add disableEmbeddedStyleMap() to allow embedded style maps to be disabled.

• Include embedded styles when explicit style map is passed.

• Handle hyperlinks created with complex fields.

• Support custom image converters.

1.2.5

• Ignore bold, italic, underline and strikethrough elements that have a value of
  false or 0.

1.2.4

• Ignore v:imagedata elements without relationship ID with warning.

1.2.3

• Expect end token when parsing style mappings. This causes warnings to be
  emitted instead of silenting ignoring unparsed tokens.

1.2.2

• Ignore blank lines in style map.

1.2.1

• Use alt text title as alt text for images when the alt text description is
  missing entirely.

1.2.0

• Throw more informative error when word/document.xml cannot be found.

• Generate messages of type "error" instead of "warning" when image conversion
  throws an exception.

• Use alt text title as alt text for images when the alt text description is
  blank.

1.1.1

• Handle comments without author initials.

• Change numbering of comments to be global rather than per-user to match the
  behaviour of Word.

1.1.0

• Add support for comments.

1.0.4

• Add support for w:sdt elements. This allows the bodies of content controls,
  such as bibliographies, to be converted.

• Avoid stack overflows when elements have many children.

1.0.3

• Actually add support for table cells spanning multiple rows.

1.0.2

• Add support for table cells spanning multiple rows.

1.0.1

• Add support for table cells spanning multiple columns.

1.0.0

• Remove deprecated convertUnderline option.

• Officially support ID prefixes.

• Generated IDs no longer insert a hyphen after the ID prefix.

• The default ID prefix is now the empty string rather than a random number
  followed by a hyphen.

• Rename mammoth.images.inline to mammoth.images.imgElement to better reflect
  its behaviour.

0.3.33

• Improve collapsing of elements when there are empty elements.

0.3.32

• Allow bold and italic style mappings to be configured.

0.3.31

• Handle references to missing styles when reading documents.

0.3.30

• Improve support for lists made in LibreOffice. Specifically, this changes the
  default style mapping for paragraphs with a style of "Normal" to have the
  lowest precedence.

• Replace nomnom with argparse for CLI argument parsing. Usage should be the
  same, but unknown arguments will now cause an exit with failure rather than
  being ignored.

0.3.29

• Always use mc:Fallback when reading mc:AlternateContent elements.

0.3.28

• Avoid inserting newlines around inline elements when pretty-printing HTML.

• CLI: print warnings to stderr.

• Read v:imagedata with r:id attribute.

• Read children of v:roundrect.

• Ignore office-word:wrap, v:shadow and v:shapetype.

0.3.27

• Fix recursive collapsing of elements.

0.3.26

• Keep HTML elements open correctly when the HTML path contains no fresh
  element.

• Collapse similar non-fresh HTML elements together.

• Don't escape double quotes outside of attributes.

0.3.25

• When the styleMap option is passed as a string, ignore lines beginning with .

• Generate warnings for not-understood style mappings and continue, rather than
  stopping with an error.

• Add support for embedded style maps.

• Add support for linked images.

0.3.24

• Ignore w:numPr elements without w:numId or w:ilvl children.

0.3.23

• Support links and images in footnotes and endnotes.

0.3.22

• Add support for underlines in style map.

• Add support for strikethrough.

0.3.21

• Add basic support for text boxes. The contents of the text box are treated as
  a separate paragraph that appears after the paragraph containing the text box.

0.3.20

• Support styles defined without a name

0.3.19

• Add ignoreEmptyParagraphs option, which defaults to true.

0.3.18

• Make style names case-insensitive in style mappings. This should make style
  mappings easier to write, especially since Microsoft Word sometimes represents
  style names in the UI differently from in the style definition. For instance,
  the style displayed in Word as "Heading 1" has a style name of "heading 1".
  This hopefully shouldn't cause an issue for anyone, but if you were relying
  on case-sensitivity, please do get in touch.

0.3.17

• Add support for hyperlinks to bookmarks in the same document.

0.3.16

• Add basic support for Markdown. Not all features are currently supported.

0.3.15

• Add default style mappings for builtin footnote and endnote styles in
  Microsoft Word and LibreOffice.

• Allow style mappings with a zero-element HTML path.

• Emit warnings when image types are unlikely to be supported by web browsers.

• Update jszip to 2.4.0.

0.3.14

• Add support for endnotes.

0.3.13

• Update license-sniffer to fix license comments in mammoth.browser.js.

0.3.12

• Update bluebird dependency to fix operation in web workers.

raven 6.1.0 -> 6.2.1

6.2.0

---

• [Core] get_frame_locals properly using max_var_size
• [Core] Fixed raven initialization when logging._srcfile is None
• [Core] Fixed import locking to avoid recursion
• [Django] Fixed several issues for Django 1.11 and Django 2.0
• [Django/DRF] Fixed issue with unavailable request data
• [Flask] Added app.logger instrumentation
• [Flask] Added signal on setup_logging
• [ZConfig] Added standalone ZConfig support
• [Celery] Fixed several issues related to Celery

requests 2.6.0 -> 2.18.4

2.18.4

+++++++++++++++++++

Improvements

• Error messages for invalid headers now include the header name for easier debugging

Dependencies

• We now support idna v2.6.

2.18.3

+++++++++++++++++++

Improvements

• Running $ python -m requests.help now includes the installed version of idna.

Bugfixes

• Fixed issue where Requests would raise ConnectionError instead of
  SSLError when encountering SSL problems when using urllib3 v1.22.

2.18.2

+++++++++++++++++++

Bugfixes

• requests.help no longer fails on Python 2.6 due to the absence of
  ssl.OPENSSL_VERSION_NUMBER.

Dependencies

• We now support urllib3 v1.22.

2.18.1

+++++++++++++++++++

Bugfixes

• Fix an error in the packaging whereby the *.whl contained incorrect data that
  regressed the fix in v2.17.3.

2.18.0

+++++++++++++++++++

Improvements

• Response is now a context manager, so can be used directly in a with statement
  without first having to be wrapped by contextlib.closing().

Bugfixes

• Resolve installation failure if multiprocessing is not available
• Resolve tests crash if multiprocessing is not able to determine the number of CPU cores
• Resolve error swallowing in utils set_environ generator

2.17.3

+++++++++++++++++++

Improvements

• Improved packages namespace identity support, for monkeypatching libraries.

2.17.2

+++++++++++++++++++

Improvements

• Improved packages namespace identity support, for monkeypatching libraries.

2.17.1

+++++++++++++++++++

Improvements

• Improved packages namespace identity support, for monkeypatching libraries.

2.17.0

+++++++++++++++++++

Improvements

• Removal of the 301 redirect cache. This improves thread-safety.

2.16.5

+++++++++++++++++++

• Improvements to $ python -m requests.help.

2.16.4

+++++++++++++++++++

• Introduction of the $ python -m requests.help command, for debugging with maintainers!

2.16.3

+++++++++++++++++++

• Further restored the requests.packages namespace for compatibility reasons.

2.16.2

+++++++++++++++++++

• Further restored the requests.packages namespace for compatibility reasons.

No code modification (noted below) should be neccessary any longer.

2.16.1

+++++++++++++++++++

• Restored the requests.packages namespace for compatibility reasons.
• Bugfix for urllib3 version parsing.

Note: code that was written to import against the requests.packages
namespace previously will have to import code that rests at this module-level
now.

For example::

from requests.packages.urllib3.poolmanager import PoolManager

Will need to be re-written to be::

from requests.packages import urllib3
urllib3.poolmanager.PoolManager

Or, even better::

from urllib3.poolmanager import PoolManager

2.16.0

+++++++++++++++++++

• Unvendor ALL the things!

2.15.1

+++++++++++++++++++

• Everyone makes mistakes.

2.15.0

+++++++++++++++++++

Improvements

• Introduction of the Response.next property, for getting the next
  PreparedResponse from a redirect chain (when allow_redirects=False).
• Internal refactoring of __version__ module.

Bugfixes

• Restored once-optional parameter for requests.utils.get_environ_proxies().

2.14.2

+++++++++++++++++++

Bugfixes

• Changed a less-than to an equal-to and an or in the dependency markers to
  widen compatibility with older setuptools releases.

2.14.1

+++++++++++++++++++

Bugfixes

• Changed the dependency markers to widen compatibility with older pip
  releases.

2.14.0

+++++++++++++++++++

Improvements

• It is now possible to pass no_proxy as a key to the proxies
  dictionary to provide handling similar to the NO_PROXY environment
  variable.
• When users provide invalid paths to certificate bundle files or directories
  Requests now raises IOError, rather than failing at the time of the HTTPS
  request with a fairly inscrutable certificate validation error.
• The behavior of SessionRedirectMixin was slightly altered.
  resolve_redirects will now detect a redirect by calling
  get_redirect_target(response) instead of directly
  querying Response.is_redirect and Response.headers['location'].
  Advanced users will be able to process malformed redirects more easily.
• Changed the internal calculation of elapsed request time to have higher
  resolution on Windows.
• Added win_inet_pton as conditional dependency for the [socks] extra
  on Windows with Python 2.7.
• Changed the proxy bypass implementation on Windows: the proxy bypass
  check doesn't use forward and reverse DNS requests anymore
• URLs with schemes that begin with http but are not http or https
  no longer have their host parts forced to lowercase.

Bugfixes

• Much improved handling of non-ASCII Location header values in redirects.
  Fewer UnicodeDecodeErrors are encountered on Python 2, and Python 3 now
  correctly understands that Latin-1 is unlikely to be the correct encoding.
• If an attempt to seek file to find out its length fails, we now
  appropriately handle that by aborting our content-length calculations.
• Restricted HTTPDigestAuth to only respond to auth challenges made on 4XX
  responses, rather than to all auth challenges.
• Fixed some code that was firing DeprecationWarning on Python 3.6.
• The dismayed person emoticon (/o\\) no longer has a big head. I'm sure
  this is what you were all worrying about most.

Miscellaneous

• Updated bundled urllib3 to v1.21.1.
• Updated bundled chardet to v3.0.2.
• Updated bundled idna to v2.5.
• Updated bundled certifi to 2017.4.17.

2.13.0

+++++++++++++++++++

Features

• Only load the idna library when we've determined we need it. This will
  save some memory for users.

Miscellaneous

• Updated bundled urllib3 to 1.20.
• Updated bundled idna to 2.2.

2.12.5

+++++++++++++++++++

Bugfixes

• Fixed an issue with JSON encoding detection, specifically detecting
  big-endian UTF-32 with BOM.

2.12.4

+++++++++++++++++++

Bugfixes

• Fixed regression from 2.12.2 where non-string types were rejected in the
  basic auth parameters. While support for this behaviour has been readded,
  the behaviour is deprecated and will be removed in the future.

2.12.3

+++++++++++++++++++

Bugfixes

• Fixed regression from v2.12.1 for URLs with schemes that begin with "http".
  These URLs have historically been processed as though they were HTTP-schemed
  URLs, and so have had parameters added. This was removed in v2.12.2 in an
  overzealous attempt to resolve problems with IDNA-encoding those URLs. This
  change was reverted: the other fixes for IDNA-encoding have been judged to
  be sufficient to return to the behaviour Requests had before v2.12.0.

2.12.2

+++++++++++++++++++

Bugfixes

• Fixed several issues with IDNA-encoding URLs that are technically invalid but
  which are widely accepted. Requests will now attempt to IDNA-encode a URL if
  it can but, if it fails, and the host contains only ASCII characters, it will
  be passed through optimistically. This will allow users to opt-in to using
  IDNA2003 themselves if they want to, and will also allow technically invalid
  but still common hostnames.
• Fixed an issue where URLs with leading whitespace would raise
  InvalidSchema errors.
• Fixed an issue where some URLs without the HTTP or HTTPS schemes would still
  have HTTP URL preparation applied to them.
• Fixed an issue where Unicode strings could not be used in basic auth.
• Fixed an issue encountered by some Requests plugins where constructing a
  Response object would cause Response.content to raise an
  AttributeError.

2.12.1

+++++++++++++++++++

Bugfixes

• Updated setuptools 'security' extra for the new PyOpenSSL backend in urllib3.

Miscellaneous

• Updated bundled urllib3 to 1.19.1.

2.12.0

+++++++++++++++++++

Improvements

• Updated support for internationalized domain names from IDNA2003 to IDNA2008.
  This updated support is required for several forms of IDNs and is mandatory
  for .de domains.
• Much improved heuristics for guessing content lengths: Requests will no
  longer read an entire StringIO into memory.
• Much improved logic for recalculating Content-Length headers for
  PreparedRequest objects.
• Improved tolerance for file-like objects that have no tell method but
  do have a seek method.
• Anything that is a subclass of Mapping is now treated like a dictionary
  by the data= keyword argument.
• Requests now tolerates empty passwords in proxy credentials, rather than
  stripping the credentials.
• If a request is made with a file-like object as the body and that request is
  redirected with a 307 or 308 status code, Requests will now attempt to
  rewind the body object so it can be replayed.

Bugfixes

• When calling response.close, the call to close will be propagated
  through to non-urllib3 backends.
• Fixed issue where the ALL_PROXY environment variable would be preferred
  over scheme-specific variables like HTTP_PROXY.
• Fixed issue where non-UTF8 reason phrases got severely mangled by falling
  back to decoding using ISO 8859-1 instead.
• Fixed a bug where Requests would not correctly correlate cookies set when
  using custom Host headers if those Host headers did not use the native
  string type for the platform.

Miscellaneous

• Updated bundled urllib3 to 1.19.
• Updated bundled certifi certs to 2016.09.26.

2.11.1

+++++++++++++++++++

Bugfixes

• Fixed a bug when using iter_content with decode_unicode=True for
  streamed bodies would raise AttributeError. This bug was introduced in
  2.11.
• Strip Content-Type and Transfer-Encoding headers from the header block when
  following a redirect that transforms the verb from POST/PUT to GET.

2.11.0

+++++++++++++++++++

Improvements

• Added support for the ALL_PROXY environment variable.
• Reject header values that contain leading whitespace or newline characters to
  reduce risk of header smuggling.

Bugfixes

• Fixed occasional TypeError when attempting to decode a JSON response that
  occurred in an error case. Now correctly returns a ValueError.
• Requests would incorrectly ignore a non-CIDR IP address in the NO_PROXY
  environment variables: Requests now treats it as a specific IP.
• Fixed a bug when sending JSON data that could cause us to encounter obscure
  OpenSSL errors in certain network conditions (yes, really).
• Added type checks to ensure that iter_content only accepts integers and
  None for chunk sizes.
• Fixed issue where responses whose body had not been fully consumed would have
  the underlying connection closed but not returned to the connection pool,
  which could cause Requests to hang in situations where the HTTPAdapter
  had been configured to use a blocking connection pool.

Miscellaneous

• Updated bundled urllib3 to 1.16.
• Some previous releases accidentally accepted non-strings as acceptable header values. This release does not.

2.10.0

+++++++++++++++++++

New Features

• SOCKS Proxy Support! (requires PySocks; $ pip install requests[socks])

Miscellaneous

• Updated bundled urllib3 to 1.15.1.

2.9.2

++++++++++++++++++

Improvements

• Change built-in CaseInsensitiveDict (used for headers) to use OrderedDict
  as its underlying datastore.

Bugfixes

• Don't use redirect_cache if allow_redirects=False
• When passed objects that throw exceptions from tell(), send them via
  chunked transfer encoding instead of failing.
• Raise a ProxyError for proxy related connection issues.

2.9.1

++++++++++++++++++

Bugfixes

• Resolve regression introduced in 2.9.0 that made it impossible to send binary
  strings as bodies in Python 3.
• Fixed errors when calculating cookie expiration dates in certain locales.

Miscellaneous

• Updated bundled urllib3 to 1.13.1.

2.9.0

++++++++++++++++++

Minor Improvements (Backwards compatible)

• The verify keyword argument now supports being passed a path to a
  directory of CA certificates, not just a single-file bundle.
• Warnings are now emitted when sending files opened in text mode.
• Added the 511 Network Authentication Required status code to the status code
  registry.

Bugfixes

• For file-like objects that are not seeked to the very beginning, we now
  send the content length for the number of bytes we will actually read, rather
  than the total size of the file, allowing partial file uploads.
• When uploading file-like objects, if they are empty or have no obvious
  content length we set Transfer-Encoding: chunked rather than
  Content-Length: 0.
• We correctly receive the response in buffered mode when uploading chunked
  bodies.
• We now handle being passed a query string as a bytestring on Python 3, by
  decoding it as UTF-8.
• Sessions are now closed in all cases (exceptional and not) when using the
  functional API rather than leaking and waiting for the garbage collector to
  clean them up.
• Correctly handle digest auth headers with a malformed qop directive that
  contains no token, by treating it the same as if no qop directive was
  provided at all.
• Minor performance improvements when removing specific cookies by name.

Miscellaneous

• Updated urllib3 to 1.13.

2.8.1

++++++++++++++++++

Bugfixes

• Update certificate bundle to match certifi 2015.9.6.2's weak certificate
  bundle.
• Fix a bug in 2.8.0 where requests would raise ConnectTimeout instead of
  ConnectionError
• When using the PreparedRequest flow, requests will now correctly respect the
  json parameter. Broken in 2.8.0.
• When using the PreparedRequest flow, requests will now correctly handle a
  Unicode-string method name on Python 2. Broken in 2.8.0.

2.8.0

++++++++++++++++++

Minor Improvements (Backwards Compatible)

• Requests now supports per-host proxies. This allows the proxies
  dictionary to have entries of the form
  {'<scheme>://<hostname>': '<proxy>'}. Host-specific proxies will be used
  in preference to the previously-supported scheme-specific ones, but the
  previous syntax will continue to work.
• Response.raise_for_status now prints the URL that failed as part of the
  exception message.
• requests.utils.get_netrc_auth now takes an raise_errors kwarg,
  defaulting to False. When True, errors parsing .netrc files cause
  exceptions to be thrown.
• Change to bundled projects import logic to make it easier to unbundle
  requests downstream.
• Changed the default User-Agent string to avoid leaking data on Linux: now
  contains only the requests version.

Bugfixes

• The json parameter to post() and friends will now only be used if
  neither data nor files are present, consistent with the
  documentation.
• We now ignore empty fields in the ``NO_PR

[coveralls]

Coverage remained the same at 86.572% when pulling 7efbdba on pyup-initial-update into af428bb on master.