Skip to content

Update requests requirement from ~=2.33.0 to ~=2.33.1#294

Merged
DefinetlyNotAI merged 1 commit intomainfrom
dependabot/pip/requests-approx-eq-2.33.1
Mar 31, 2026
Merged

Update requests requirement from ~=2.33.0 to ~=2.33.1#294
DefinetlyNotAI merged 1 commit intomainfrom
dependabot/pip/requests-approx-eq-2.33.1

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Mar 31, 2026

Updates the requirements on requests to permit the latest version.

Release notes

Sourced from requests's releases.

v2.33.1

2.33.1 (2026-03-30)

Bugfixes

  • Fixed test cleanup for CVE-2026-25645 to avoid leaving unnecessary files in the tmp directory. (#7305)
  • Fixed Content-Type header parsing for malformed values. (#7309)
  • Improved error consistency for malformed header values. (#7308)

New Contributors

Full Changelog: https://github.com/psf/requests/blob/main/HISTORY.md#2331-2026-03-30

Changelog

Sourced from requests's changelog.

2.33.1 (2026-03-30)

Bugfixes

  • Fixed test cleanup for CVE-2026-25645 to avoid leaving unnecessary files in the tmp directory. (#7305)
  • Fixed Content-Type header parsing for malformed values. (#7309)
  • Improved error consistency for malformed header values. (#7308)

2.33.0 (2026-03-25)

Announcements

  • 📣 Requests is adding inline types. If you have a typed code base that uses Requests, please take a look at #7271. Give it a try, and report any gaps or feedback you may have in the issue. 📣

Security

  • CVE-2026-25645 requests.utils.extract_zipped_paths now extracts contents to a non-deterministic location to prevent malicious file replacement. This does not affect default usage of Requests, only applications calling the utility function directly.

Improvements

  • Migrated to a PEP 517 build system using setuptools. (#7012)

Bugfixes

  • Fixed an issue where an empty netrc entry could cause malformed authentication to be applied to Requests on Python 3.11+. (#7205)

Deprecations

  • Dropped support for Python 3.9 following its end of support. (#7196)

Documentation

  • Various typo fixes and doc improvements.

2.32.5 (2025-08-18)

Bugfixes

  • The SSLContext caching feature originally introduced in 2.32.0 has created a new class of issues in Requests that have had negative impact across a number of use cases. The Requests team has decided to revert this feature as long term maintenance of it is proving to be unsustainable in its current iteration.

Deprecations

  • Added support for Python 3.14.

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Update requests requirement from ~=2.33.0 to ~=2.33.1
304fd2d 
Updates the requirements on [requests](https://github.com/psf/requests) to permit the latest version.
- [Release notes](https://github.com/psf/requests/releases)
- [Changelog](https://github.com/psf/requests/blob/main/HISTORY.md)
- [Commits](psf/requests@v2.33.0...v2.33.1)

---
updated-dependencies:
- dependency-name: requests
  dependency-version: 2.33.1
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the type/Dependencies Pull requests that update a dependency file label Mar 31, 2026
@dependabot dependabot bot requested a review from DefinetlyNotAI as a code owner March 31, 2026 05:17
@dependabot dependabot bot added the type/Dependencies Pull requests that update a dependency file label Mar 31, 2026
@pull-request-size pull-request-size bot added the size/XS Extra Small size pr label Mar 31, 2026
@github-actions
Copy link
Copy Markdown

github-actions bot commented Mar 31, 2026

Hi! Thanks for contributing for the first time to Logicytics 🤗 We hope it goes as smoothly as possible and appreciate your valuable contribution.

@DefinetlyNotAI DefinetlyNotAI self-assigned this Mar 31, 2026
@github-project-automation github-project-automation bot moved this from Todo to Waiting on Review in Issue Board Mar 31, 2026
@DefinetlyNotAI DefinetlyNotAI merged commit 71910de into main Mar 31, 2026
9 checks passed
@github-project-automation github-project-automation bot moved this from Waiting on Review to Done in Issue Board Mar 31, 2026
@DefinetlyNotAI DefinetlyNotAI deleted the dependabot/pip/requests-approx-eq-2.33.1 branch March 31, 2026 08:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@DefinetlyNotAI DefinetlyNotAI DefinetlyNotAI approved these changes

Assignees

@DefinetlyNotAI DefinetlyNotAI

Labels

size/XS Extra Small size pr type/Dependencies Pull requests that update a dependency file

Projects

Issue Board
Status: Done

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@DefinetlyNotAI