github-starred/open-webui
2
0
Fork 0
mirror of https://github.com/open-webui/open-webui.git synced 2026-03-25 04:24:30 -05:00
Code Issues 308 Packages Projects Releases 100 Wiki Activity

[PR #18229] [CLOSED] build(deps): bump the pip group across 2 directories with 2 updates #11513

New Issue
Closed
opened 2025-11-11 19:33:42 -06:00 by GiteaMirror · 0 comments
GiteaMirror commented 2025-11-11 19:33:42 -06:00
Owner
Copy Link

📋 Pull Request Information

Original PR: https://github.com/open-webui/open-webui/pull/18229
Author: @dependabot[bot]
Created: 10/10/2025
Status: Closed

Base: mainHead: dependabot/pip/pip-4642fea713

📝 Commits (1)

  • af485e8 build(deps): bump the pip group across 2 directories with 2 updates

📊 Changes

2 files changed (+4 additions, -4 deletions)

View changed files

📝 backend/requirements.txt (+2 -2)
📝 pyproject.toml (+2 -2)

📄 Description

Bumps the pip group with 2 updates in the / directory: python-socketio and authlib.
Bumps the pip group with 2 updates in the /backend directory: python-socketio and authlib.

Updates python-socketio from 5.13.0 to 5.14.0

Release notes

Sourced from python-socketio's releases.

Release 5.14.0

See CHANGES.md for release notes.

Changelog

Sourced from python-socketio's changelog.

python-socketio change log

Release 5.14.1 - 2025-10-02

  • Restore support for rediss:// URLs, and add support for valkeys:// as well (commit)
  • Add support for Redis connections using unix sockets #1503 (commit) (thanks Darren Chang!)

Release 5.14.0 - 2025-09-30

  • Replace pickle with json in message queue communications #1502 (commit)
  • Add support for Valkey in the Redis client managers #1488 (commit) (thanks phi-friday!)
  • Keep track of which namespaces failed to connect #1496 (commit)
  • Fixed transport property of the simple clients to be a string as documented #1499 (commit)
  • SimpleClient.call does not raise TimeoutError on timeout #1501 (commit) (thanks James Thistlewood!)
  • Wait for client to end background tasks on disconnect #1500 (commit)
  • Better error logging for the Redis managers #1479 (commit) (thanks Eugnee!)
  • Channel was not properly initialized in several pubsub client managers #1476 (commit) (thanks Eugnee!)
  • Add message queue deployment recommendations for security (commit)
  • Add missing async on session examples for the async server #1465 (commit) (thanks Func!)
  • Add SPDX license identifier #1453 (commit) (thanks Marc Mueller!)

Release 5.13.0 - 2025-04-12

  • Eliminate race conditions on disconnect #1441 (commit)
  • Preserve exception context in Client.connect and AsyncClient.connect #1450 (commit) (thanks Tim Van Baak!)
  • Allow custom client subclasses to be used in SimpleClient and AsyncSimpleClient #1432 (commit)
  • Add support for Redis Sentinel URLs in RedisManager and AsyncRedisManager #1448 (commit)
  • Remove incorrect reference to an asyncio installation extra in documentation #1449 (commit)

Release 5.12.1 - 2024-12-29

  • Fix admin instrumentation support of disconnect reasons #1423 (commit)
  • Stop using deprecated datetime functions (commit)
  • Enable admin instrumentation by default in WSGI and ASGI examples (commit)
  • Fixed broken gevent URL in documentation #1427 (commit) (thanks Carlos Guerrero!)

Release 5.12.0 - 2024-12-18

  • Added a reason argument to the disconnect handler #1422 (commit)
  • Prevented starting multiple tasks for reconnection #1369 (commit) (thanks humayunsr!)
  • Fixed AsyncClient::wait() unexpected return after success reconnect #1407 (commit) (thanks Arseny!)
  • Removed old constructs from old and unsupported Python versions (commit)
  • Removed dependency on unittest.TestCase base class in unit tests (commit)
  • Adopted pyenv-asyncio for async unit tests (commit)
  • Adopted unittest.mock.AsyncMock in async unit tests (commit)
  • Fix typo with AsyncClient.connect example #1403 (commit) (thanks Peter Bierma!)
  • Documentation typo #1421 (commit) (thanks Masen Furer!)
  • Renamed flask-socketio references to python-socketio in documentation #1377 (commit)
  • Added Python 3.13 CI builds (commit)

... (truncated)

Commits
  • 400200e Release 5.14.0
  • 53f6be0 Replace pickle with json (#1502)
  • a59c6f5 Fix: SimpleClient.call does not raise TimeoutError on timeout (#1501)
  • f61e0be wait for client to end background tasks on disconnect (#1500)
  • 23556fb Fixed transport property of the simple clients to be a string as documented (...
  • e59acf1 Address failures of test suite on Mac (#1497)
  • 36a8922 Add support for valkey in the Redis client managers (#1488)
  • 5dc2aea keep track of which namespaces failed to connect (#1496)
  • b3da354 Add message queue deployment recommendations
  • 3625fe8 Bump eventlet from 0.35.2 to 0.40.3 in /examples/server/wsgi (#1491) #nolog
  • Additional commits viewable in compare view

Updates authlib from 1.6.3 to 1.6.5

Release notes

Sourced from authlib's releases.

v1.6.4

What's Changed

New Contributors

Full Changelog: https://github.com/authlib/authlib/compare/v1.6.3...v1.6.4

Changelog

Sourced from authlib's changelog.

Version 1.6.5

Released on Oct 2, 2025

  • RFC7591 generate_client_info and generate_client_secret take a request parameter.
  • Add size limitation when decode JWS/JWE to prevent DoS.
  • Add size limitation for DEF JWE zip algorithm.

Version 1.6.4

Released on Sep 17, 2025

  • Fix InsecureTransportError error raising. :issue:795
  • Fix response_mode=form_post with Starlette client. :issue:793
  • Validate crit header value, reject unprotected header in crit header.
Commits
  • 9ec4256 chore: release 1.6.5
  • b62b5b2 Merge branch 'fix-GHSA-pq5p-34cr-23v9'
  • e0863d5 Merge pull request #830 from authlib/fix-GHSA-g7f3-828f-7h7m
  • 867e3f8 fix(jose): add size limitation to prevent DoS
  • 75ad6d4 Merge pull request #828 from authlib/dependabot/github_actions/dot-github/wor...
  • 68b9823 chore(deps): bump SonarSource/sonarqube-scan-action
  • 5bdfc4b Merge pull request #827 from lisongmin/support-list-params-in-prepare-grant-uri
  • 30ea3c5 feat: support list params in prepare_grant_uri
  • 4b5b570 fix(jose): add max size for JWE zip=DEF decompression
  • 6e35a02 Merge pull request #825 from azmeuk/request-params
  • Additional commits viewable in compare view

Updates python-socketio from 5.13.0 to 5.14.0

Release notes

Sourced from python-socketio's releases.

Release 5.14.0

See CHANGES.md for release notes.

Changelog

Sourced from python-socketio's changelog.

python-socketio change log

Release 5.14.1 - 2025-10-02

  • Restore support for rediss:// URLs, and add support for valkeys:// as well (commit)
  • Add support for Redis connections using unix sockets #1503 (commit) (thanks Darren Chang!)

Release 5.14.0 - 2025-09-30

  • Replace pickle with json in message queue communications #1502 (commit)
  • Add support for Valkey in the Redis client managers #1488 (commit) (thanks phi-friday!)
  • Keep track of which namespaces failed to connect #1496 (commit)
  • Fixed transport property of the simple clients to be a string as documented #1499 (commit)
  • SimpleClient.call does not raise TimeoutError on timeout #1501 (commit) (thanks James Thistlewood!)
  • Wait for client to end background tasks on disconnect #1500 (commit)
  • Better error logging for the Redis managers #1479 (commit) (thanks Eugnee!)
  • Channel was not properly initialized in several pubsub client managers #1476 (commit) (thanks Eugnee!)
  • Add message queue deployment recommendations for security (commit)
  • Add missing async on session examples for the async server #1465 (commit) (thanks Func!)
  • Add SPDX license identifier #1453 (commit) (thanks Marc Mueller!)

Release 5.13.0 - 2025-04-12

  • Eliminate race conditions on disconnect #1441 (commit)
  • Preserve exception context in Client.connect and AsyncClient.connect #1450 (commit) (thanks Tim Van Baak!)
  • Allow custom client subclasses to be used in SimpleClient and AsyncSimpleClient #1432 (commit)
  • Add support for Redis Sentinel URLs in RedisManager and AsyncRedisManager #1448 (commit)
  • Remove incorrect reference to an asyncio installation extra in documentation #1449 (commit)

Release 5.12.1 - 2024-12-29

  • Fix admin instrumentation support of disconnect reasons #1423 (commit)
  • Stop using deprecated datetime functions (commit)
  • Enable admin instrumentation by default in WSGI and ASGI examples (commit)
  • Fixed broken gevent URL in documentation #1427 (commit) (thanks Carlos Guerrero!)

Release 5.12.0 - 2024-12-18

  • Added a reason argument to the disconnect handler #1422 (commit)
  • Prevented starting multiple tasks for reconnection #1369 (commit) (thanks humayunsr!)
  • Fixed AsyncClient::wait() unexpected return after success reconnect #1407 (commit) (thanks Arseny!)
  • Removed old constructs from old and unsupported Python versions (commit)
  • Removed dependency on unittest.TestCase base class in unit tests (commit)
  • Adopted pyenv-asyncio for async unit tests (commit)
  • Adopted unittest.mock.AsyncMock in async unit tests (commit)
  • Fix typo with AsyncClient.connect example #1403 (commit) (thanks Peter Bierma!)
  • Documentation typo #1421 (commit) (thanks Masen Furer!)
  • Renamed flask-socketio references to python-socketio in documentation #1377 (commit)
  • Added Python 3.13 CI builds (commit)

... (truncated)

Commits
  • 400200e Release 5.14.0
  • 53f6be0 Replace pickle with json (#1502)
  • a59c6f5 Fix: SimpleClient.call does not raise TimeoutError on timeout (#1501)
  • f61e0be wait for client to end background tasks on disconnect (#1500)
  • 23556fb Fixed transport property of the simple clients to be a string as documented (...
  • e59acf1 Address failures of test suite on Mac (#1497)
  • 36a8922 Add support for valkey in the Redis client managers (#1488)
  • 5dc2aea keep track of which namespaces failed to connect (#1496)
  • b3da354 Add message queue deployment recommendations
  • 3625fe8 Bump eventlet from 0.35.2 to 0.40.3 in /examples/server/wsgi (#1491) #nolog
  • Additional commits viewable in compare view

Updates authlib from 1.6.3 to 1.6.5

Release notes

Sourced from authlib's releases.

v1.6.4

What's Changed

New Contributors

Full Changelog: https://github.com/authlib/authlib/compare/v1.6.3...v1.6.4

Changelog

Sourced from authlib's changelog.

Version 1.6.5

Released on Oct 2, 2025

  • RFC7591 generate_client_info and generate_client_secret take a request parameter.
  • Add size limitation when decode JWS/JWE to prevent DoS.
  • Add size limitation for DEF JWE zip algorithm.

Version 1.6.4

Released on Sep 17, 2025

  • Fix InsecureTransportError error raising. :issue:795
  • Fix response_mode=form_post with Starlette client. :issue:793
  • Validate crit header value, reject unprotected header in crit header.
Commits
  • 9ec4256 chore: release 1.6.5
  • b62b5b2 Merge branch 'fix-GHSA-pq5p-34cr-23v9'
  • e0863d5 Merge pull request #830 from authlib/fix-GHSA-g7f3-828f-7h7m
  • 867e3f8 fix(jose): add size limitation to prevent DoS
  • 75ad6d4 Merge pull request #828 from authlib/dependabot/github_actions/dot-github/wor...
  • 68b9823 chore(deps): bump SonarSource/sonarqube-scan-action
  • 5bdfc4b Merge pull request #827 from lisongmin/support-list-params-in-prepare-grant-uri
  • 30ea3c5 feat: support list params in prepare_grant_uri
  • 4b5b570 fix(jose): add max size for JWE zip=DEF decompression
  • 6e35a02 Merge pull request #825 from azmeuk/request-params
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
    You can disable automated security fix PRs for this repo from the Security Alerts page.

🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.

## 📋 Pull Request Information **Original PR:** https://github.com/open-webui/open-webui/pull/18229 **Author:** [@dependabot[bot]](https://github.com/apps/dependabot) **Created:** 10/10/2025 **Status:** ❌ Closed **Base:** `main` ← **Head:** `dependabot/pip/pip-4642fea713` --- ### 📝 Commits (1) - [`af485e8`](https://github.com/open-webui/open-webui/commit/af485e81cea976480b1325bd6c21b65e20a669aa) build(deps): bump the pip group across 2 directories with 2 updates ### 📊 Changes **2 files changed** (+4 additions, -4 deletions) <details> <summary>View changed files</summary> 📝 `backend/requirements.txt` (+2 -2) 📝 `pyproject.toml` (+2 -2) </details> ### 📄 Description Bumps the pip group with 2 updates in the / directory: [python-socketio](https://github.com/miguelgrinberg/python-socketio) and [authlib](https://github.com/authlib/authlib). Bumps the pip group with 2 updates in the /backend directory: [python-socketio](https://github.com/miguelgrinberg/python-socketio) and [authlib](https://github.com/authlib/authlib). Updates `python-socketio` from 5.13.0 to 5.14.0 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/miguelgrinberg/python-socketio/releases">python-socketio's releases</a>.</em></p> <blockquote> <h2>Release 5.14.0</h2> <p>See <a href="https://github.com/miguelgrinberg/python-socketio/blob/main/CHANGES.md">CHANGES.md</a> for release notes.</p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/miguelgrinberg/python-socketio/blob/main/CHANGES.md">python-socketio's changelog</a>.</em></p> <blockquote> <h1>python-socketio change log</h1> <p><strong>Release 5.14.1</strong> - 2025-10-02</p> <ul> <li>Restore support for <code>rediss://</code> URLs, and add support for <code>valkeys://</code> as well (<a href="https://github.com/miguelgrinberg/python-socketio/commit/6e2d0de12bb4e4a99fdfc30bed0706ded620822c">commit</a>)</li> <li>Add support for Redis connections using unix sockets <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1503">#1503</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/a8deb3a8f3ee51d75c124157efa7fc9289fd592b">commit</a>) (thanks <strong>Darren Chang</strong>!)</li> </ul> <p><strong>Release 5.14.0</strong> - 2025-09-30</p> <ul> <li>Replace pickle with json in message queue communications <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1502">#1502</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/53f6be094257ed81476b0e212c8cddd6d06ca39a">commit</a>)</li> <li>Add support for Valkey in the Redis client managers <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1488">#1488</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/36a89226a2fb18f876dcba48125a8c51904586ec">commit</a>) (thanks <strong>phi-friday</strong>!)</li> <li>Keep track of which namespaces failed to connect <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1496">#1496</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/5dc2aea077469ad318e47b28a84845c5efb6bdcf">commit</a>)</li> <li>Fixed transport property of the simple clients to be a string as documented <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1499">#1499</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/23556fb3dcb37074020494df40fb4495d47e7efe">commit</a>)</li> <li>SimpleClient.call does not raise <code>TimeoutError</code> on timeout <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1501">#1501</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/a59c6f520059eb095ab4472e5192ce3e486875d9">commit</a>) (thanks <strong>James Thistlewood</strong>!)</li> <li>Wait for client to end background tasks on disconnect <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1500">#1500</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/f61e0bec3750a83de619db9b779f9d93e449eade">commit</a>)</li> <li>Better error logging for the Redis managers <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1479">#1479</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/b01b197df1ea5914fdaa2e12758e916ebd60162a">commit</a>) (thanks <strong>Eugnee</strong>!)</li> <li>Channel was not properly initialized in several pubsub client managers <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1476">#1476</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/efd1247ed9ed61a61d6840dc2c8c92ab02031afb">commit</a>) (thanks <strong>Eugnee</strong>!)</li> <li>Add message queue deployment recommendations for security (<a href="https://github.com/miguelgrinberg/python-socketio/commit/b3da354ed9eb46c0fb847c628b379ccae475a970">commit</a>)</li> <li>Add missing <code>async</code> on session examples for the async server <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1465">#1465</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/5e04003dad0140fb1c6acff328e4215e62fbc58a">commit</a>) (thanks <strong>Func</strong>!)</li> <li>Add SPDX license identifier <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1453">#1453</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/81c80cddde06dd9561687c74e5769e25613282d7">commit</a>) (thanks <strong>Marc Mueller</strong>!)</li> </ul> <p><strong>Release 5.13.0</strong> - 2025-04-12</p> <ul> <li>Eliminate race conditions on disconnect <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1441">#1441</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/288ebb189d799a05bbc5979a834433034ea2939f">commit</a>)</li> <li>Preserve exception context in <code>Client.connect</code> and <code>AsyncClient.connect</code> <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1450">#1450</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/5c93c59648358862514f317838f61498a101ba54">commit</a>) (thanks <strong>Tim Van Baak</strong>!)</li> <li>Allow custom client subclasses to be used in SimpleClient and AsyncSimpleClient <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1432">#1432</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/7605630bb236b4baf98574ca2a8f0cdba2696ef4">commit</a>)</li> <li>Add support for Redis Sentinel URLs in <code>RedisManager</code> and <code>AsyncRedisManager</code> <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1448">#1448</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/6a52e8b50274a7524fadcd2633eb819811a63734">commit</a>)</li> <li>Remove incorrect reference to an <code>asyncio</code> installation extra in documentation <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1449">#1449</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/537630b983245cc137f609c3e6247d6d68ebdea5">commit</a>)</li> </ul> <p><strong>Release 5.12.1</strong> - 2024-12-29</p> <ul> <li>Fix admin instrumentation support of disconnect reasons <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1423">#1423</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/b75fd31625cfea0d8c67d776070e4f8de99c1e45">commit</a>)</li> <li>Stop using deprecated datetime functions (<a href="https://github.com/miguelgrinberg/python-socketio/commit/8fe012abbb350107b742ab2cf9aa44d328bc23e9">commit</a>)</li> <li>Enable admin instrumentation by default in WSGI and ASGI examples (<a href="https://github.com/miguelgrinberg/python-socketio/commit/269332da8041df115e3a1e2ca04808c3179a72e1">commit</a>)</li> <li>Fixed broken gevent URL in documentation <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1427">#1427</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/8964dab9d545333646fafad9aae0becd761a1045">commit</a>) (thanks <strong>Carlos Guerrero</strong>!)</li> </ul> <p><strong>Release 5.12.0</strong> - 2024-12-18</p> <ul> <li>Added a <code>reason</code> argument to the disconnect handler <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1422">#1422</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/bd8555da8523d1a73432685a00eb5acb4d2261f5">commit</a>)</li> <li>Prevented starting multiple tasks for reconnection <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1369">#1369</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/b6ee33e56cf2679664c1b894bf7e5d33a30976db">commit</a>) (thanks <strong>humayunsr</strong>!)</li> <li>Fixed <code>AsyncClient::wait()</code> unexpected return after success reconnect <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1407">#1407</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/78d1124c50cff149051fb89bf6f08000bf184da5">commit</a>) (thanks <strong>Arseny</strong>!)</li> <li>Removed old constructs from old and unsupported Python versions (<a href="https://github.com/miguelgrinberg/python-socketio/commit/db642bb2bd9794eeceddd54abc47665c69e85406">commit</a>)</li> <li>Removed dependency on unittest.TestCase base class in unit tests (<a href="https://github.com/miguelgrinberg/python-socketio/commit/abf336e108b01f44afb473eb86c1dece6360195c">commit</a>)</li> <li>Adopted pyenv-asyncio for async unit tests (<a href="https://github.com/miguelgrinberg/python-socketio/commit/0b5c4638e5e4bff06fcf46476d218ae5ad4ada14">commit</a>)</li> <li>Adopted unittest.mock.AsyncMock in async unit tests (<a href="https://github.com/miguelgrinberg/python-socketio/commit/8f0e66c1cd1cd63dcef703576cc9cb9c99104df7">commit</a>)</li> <li>Fix typo with <code>AsyncClient.connect</code> example <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1403">#1403</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/72d37ea79f4cf6076591782e4781fd4868a7e0d6">commit</a>) (thanks <strong>Peter Bierma</strong>!)</li> <li>Documentation typo <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1421">#1421</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/bf5a05ae9bf94b2fbd1367a04884ef5a39cd2671">commit</a>) (thanks <strong>Masen Furer</strong>!)</li> <li>Renamed flask-socketio references to python-socketio in documentation <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1377">#1377</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/5f83cd0f7b2911705eaf1a8cb9060afbee6eb456">commit</a>)</li> <li>Added Python 3.13 CI builds (<a href="https://github.com/miguelgrinberg/python-socketio/commit/42da5d2f5426e812fd37d4cabcb9277810cae9c1">commit</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/miguelgrinberg/python-socketio/commit/400200e00625a49796b84baa44a09cd711fabe50"><code>400200e</code></a> Release 5.14.0</li> <li><a href="https://github.com/miguelgrinberg/python-socketio/commit/53f6be094257ed81476b0e212c8cddd6d06ca39a"><code>53f6be0</code></a> Replace pickle with json (<a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1502">#1502</a>)</li> <li><a href="https://github.com/miguelgrinberg/python-socketio/commit/a59c6f520059eb095ab4472e5192ce3e486875d9"><code>a59c6f5</code></a> Fix: SimpleClient.call does not raise TimeoutError on timeout (<a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1501">#1501</a>)</li> <li><a href="https://github.com/miguelgrinberg/python-socketio/commit/f61e0bec3750a83de619db9b779f9d93e449eade"><code>f61e0be</code></a> wait for client to end background tasks on disconnect (<a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1500">#1500</a>)</li> <li><a href="https://github.com/miguelgrinberg/python-socketio/commit/23556fb3dcb37074020494df40fb4495d47e7efe"><code>23556fb</code></a> Fixed transport property of the simple clients to be a string as documented (...</li> <li><a href="https://github.com/miguelgrinberg/python-socketio/commit/e59acf146550d5c07f530a4766dfdfffda21e20c"><code>e59acf1</code></a> Address failures of test suite on Mac (<a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1497">#1497</a>)</li> <li><a href="https://github.com/miguelgrinberg/python-socketio/commit/36a89226a2fb18f876dcba48125a8c51904586ec"><code>36a8922</code></a> Add support for valkey in the Redis client managers (<a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1488">#1488</a>)</li> <li><a href="https://github.com/miguelgrinberg/python-socketio/commit/5dc2aea077469ad318e47b28a84845c5efb6bdcf"><code>5dc2aea</code></a> keep track of which namespaces failed to connect (<a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1496">#1496</a>)</li> <li><a href="https://github.com/miguelgrinberg/python-socketio/commit/b3da354ed9eb46c0fb847c628b379ccae475a970"><code>b3da354</code></a> Add message queue deployment recommendations</li> <li><a href="https://github.com/miguelgrinberg/python-socketio/commit/3625fe821debf33e5430bff6375ec85056a5d95f"><code>3625fe8</code></a> Bump eventlet from 0.35.2 to 0.40.3 in /examples/server/wsgi (<a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1491">#1491</a>) #nolog</li> <li>Additional commits viewable in <a href="https://github.com/miguelgrinberg/python-socketio/compare/v5.13.0...v5.14.0">compare view</a></li> </ul> </details> <br /> Updates `authlib` from 1.6.3 to 1.6.5 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/authlib/authlib/releases">authlib's releases</a>.</em></p> <blockquote> <h2>v1.6.4</h2> <h2>What's Changed</h2> <ul> <li>fix(jose): prevent public/unprotected header overwriting protected header by <a href="https://github.com/lepture"><code>@​lepture</code></a> in <a href="https://redirect.github.com/authlib/authlib/pull/809">authlib/authlib#809</a></li> <li>Fix <code>InsecureTransportError</code> raising by <a href="https://github.com/azmeuk"><code>@​azmeuk</code></a> in <a href="https://redirect.github.com/authlib/authlib/pull/810">authlib/authlib#810</a></li> <li>Add conventional-commits pre-commit hook by <a href="https://github.com/azmeuk"><code>@​azmeuk</code></a> in <a href="https://redirect.github.com/authlib/authlib/pull/811">authlib/authlib#811</a></li> <li>Fix response_mode=form_post with Starlette client by <a href="https://github.com/azmeuk"><code>@​azmeuk</code></a> in <a href="https://redirect.github.com/authlib/authlib/pull/812">authlib/authlib#812</a></li> <li>Specify README.md as project long description by <a href="https://github.com/EpicWink"><code>@​EpicWink</code></a> in <a href="https://redirect.github.com/authlib/authlib/pull/817">authlib/authlib#817</a></li> <li>Migrate tests to pytest paradigm by <a href="https://github.com/azmeuk"><code>@​azmeuk</code></a> in <a href="https://redirect.github.com/authlib/authlib/pull/813">authlib/authlib#813</a></li> <li>jose/jws: Reject unprotected ‘crit’ and enforce type; add tests by <a href="https://github.com/AL-Cybision"><code>@​AL-Cybision</code></a> in <a href="https://redirect.github.com/authlib/authlib/pull/823">authlib/authlib#823</a></li> <li>Use explicit *.test urls in unit tests by <a href="https://github.com/azmeuk"><code>@​azmeuk</code></a> in <a href="https://redirect.github.com/authlib/authlib/pull/824">authlib/authlib#824</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/EpicWink"><code>@​EpicWink</code></a> made their first contribution in <a href="https://redirect.github.com/authlib/authlib/pull/817">authlib/authlib#817</a></li> <li><a href="https://github.com/AL-Cybision"><code>@​AL-Cybision</code></a> made their first contribution in <a href="https://redirect.github.com/authlib/authlib/pull/823">authlib/authlib#823</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/authlib/authlib/compare/v1.6.3...v1.6.4">https://github.com/authlib/authlib/compare/v1.6.3...v1.6.4</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/authlib/authlib/blob/main/docs/changelog.rst">authlib's changelog</a>.</em></p> <blockquote> <h2>Version 1.6.5</h2> <p><strong>Released on Oct 2, 2025</strong></p> <ul> <li>RFC7591 <code>generate_client_info</code> and <code>generate_client_secret</code> take a <code>request</code> parameter.</li> <li>Add size limitation when decode JWS/JWE to prevent DoS.</li> <li>Add size limitation for <code>DEF</code> JWE zip algorithm.</li> </ul> <h2>Version 1.6.4</h2> <p><strong>Released on Sep 17, 2025</strong></p> <ul> <li>Fix <code>InsecureTransportError</code> error raising. :issue:<code>795</code></li> <li>Fix <code>response_mode=form_post</code> with Starlette client. :issue:<code>793</code></li> <li>Validate <code>crit</code> header value, reject unprotected header in <code>crit</code> header.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/authlib/authlib/commit/9ec42561cd1a81b518598d252f8adbcf446f7419"><code>9ec4256</code></a> chore: release 1.6.5</li> <li><a href="https://github.com/authlib/authlib/commit/b62b5b27577db038133f7453dacc534d6a3b06a5"><code>b62b5b2</code></a> Merge branch 'fix-GHSA-pq5p-34cr-23v9'</li> <li><a href="https://github.com/authlib/authlib/commit/e0863d5129316b1790eee5f14cece32a03b8184d"><code>e0863d5</code></a> Merge pull request <a href="https://redirect.github.com/authlib/authlib/issues/830">#830</a> from authlib/fix-GHSA-g7f3-828f-7h7m</li> <li><a href="https://github.com/authlib/authlib/commit/867e3f87b072347a1ae9cf6983cc8bbf88447e5e"><code>867e3f8</code></a> fix(jose): add size limitation to prevent DoS</li> <li><a href="https://github.com/authlib/authlib/commit/75ad6d4d625613d9d6cbbb91f5b559e071d8493b"><code>75ad6d4</code></a> Merge pull request <a href="https://redirect.github.com/authlib/authlib/issues/828">#828</a> from authlib/dependabot/github_actions/dot-github/wor...</li> <li><a href="https://github.com/authlib/authlib/commit/68b982352d9b20c3e859fc3af30308ca9855ef57"><code>68b9823</code></a> chore(deps): bump SonarSource/sonarqube-scan-action</li> <li><a href="https://github.com/authlib/authlib/commit/5bdfc4bfff8380620ed5ec55ba7a06d96cac3365"><code>5bdfc4b</code></a> Merge pull request <a href="https://redirect.github.com/authlib/authlib/issues/827">#827</a> from lisongmin/support-list-params-in-prepare-grant-uri</li> <li><a href="https://github.com/authlib/authlib/commit/30ea3c5f85a9640cd08562db2c6fd9d3e4a9bfef"><code>30ea3c5</code></a> feat: support list params in prepare_grant_uri</li> <li><a href="https://github.com/authlib/authlib/commit/4b5b5703394608124cd39e547cc7829feda05a13"><code>4b5b570</code></a> fix(jose): add max size for JWE zip=DEF decompression</li> <li><a href="https://github.com/authlib/authlib/commit/6e35a02ecf3c22d27249e6ed9fa07e544314ebe9"><code>6e35a02</code></a> Merge pull request <a href="https://redirect.github.com/authlib/authlib/issues/825">#825</a> from azmeuk/request-params</li> <li>Additional commits viewable in <a href="https://github.com/authlib/authlib/compare/v1.6.3...v1.6.5">compare view</a></li> </ul> </details> <br /> Updates `python-socketio` from 5.13.0 to 5.14.0 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/miguelgrinberg/python-socketio/releases">python-socketio's releases</a>.</em></p> <blockquote> <h2>Release 5.14.0</h2> <p>See <a href="https://github.com/miguelgrinberg/python-socketio/blob/main/CHANGES.md">CHANGES.md</a> for release notes.</p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/miguelgrinberg/python-socketio/blob/main/CHANGES.md">python-socketio's changelog</a>.</em></p> <blockquote> <h1>python-socketio change log</h1> <p><strong>Release 5.14.1</strong> - 2025-10-02</p> <ul> <li>Restore support for <code>rediss://</code> URLs, and add support for <code>valkeys://</code> as well (<a href="https://github.com/miguelgrinberg/python-socketio/commit/6e2d0de12bb4e4a99fdfc30bed0706ded620822c">commit</a>)</li> <li>Add support for Redis connections using unix sockets <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1503">#1503</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/a8deb3a8f3ee51d75c124157efa7fc9289fd592b">commit</a>) (thanks <strong>Darren Chang</strong>!)</li> </ul> <p><strong>Release 5.14.0</strong> - 2025-09-30</p> <ul> <li>Replace pickle with json in message queue communications <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1502">#1502</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/53f6be094257ed81476b0e212c8cddd6d06ca39a">commit</a>)</li> <li>Add support for Valkey in the Redis client managers <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1488">#1488</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/36a89226a2fb18f876dcba48125a8c51904586ec">commit</a>) (thanks <strong>phi-friday</strong>!)</li> <li>Keep track of which namespaces failed to connect <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1496">#1496</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/5dc2aea077469ad318e47b28a84845c5efb6bdcf">commit</a>)</li> <li>Fixed transport property of the simple clients to be a string as documented <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1499">#1499</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/23556fb3dcb37074020494df40fb4495d47e7efe">commit</a>)</li> <li>SimpleClient.call does not raise <code>TimeoutError</code> on timeout <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1501">#1501</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/a59c6f520059eb095ab4472e5192ce3e486875d9">commit</a>) (thanks <strong>James Thistlewood</strong>!)</li> <li>Wait for client to end background tasks on disconnect <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1500">#1500</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/f61e0bec3750a83de619db9b779f9d93e449eade">commit</a>)</li> <li>Better error logging for the Redis managers <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1479">#1479</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/b01b197df1ea5914fdaa2e12758e916ebd60162a">commit</a>) (thanks <strong>Eugnee</strong>!)</li> <li>Channel was not properly initialized in several pubsub client managers <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1476">#1476</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/efd1247ed9ed61a61d6840dc2c8c92ab02031afb">commit</a>) (thanks <strong>Eugnee</strong>!)</li> <li>Add message queue deployment recommendations for security (<a href="https://github.com/miguelgrinberg/python-socketio/commit/b3da354ed9eb46c0fb847c628b379ccae475a970">commit</a>)</li> <li>Add missing <code>async</code> on session examples for the async server <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1465">#1465</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/5e04003dad0140fb1c6acff328e4215e62fbc58a">commit</a>) (thanks <strong>Func</strong>!)</li> <li>Add SPDX license identifier <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1453">#1453</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/81c80cddde06dd9561687c74e5769e25613282d7">commit</a>) (thanks <strong>Marc Mueller</strong>!)</li> </ul> <p><strong>Release 5.13.0</strong> - 2025-04-12</p> <ul> <li>Eliminate race conditions on disconnect <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1441">#1441</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/288ebb189d799a05bbc5979a834433034ea2939f">commit</a>)</li> <li>Preserve exception context in <code>Client.connect</code> and <code>AsyncClient.connect</code> <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1450">#1450</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/5c93c59648358862514f317838f61498a101ba54">commit</a>) (thanks <strong>Tim Van Baak</strong>!)</li> <li>Allow custom client subclasses to be used in SimpleClient and AsyncSimpleClient <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1432">#1432</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/7605630bb236b4baf98574ca2a8f0cdba2696ef4">commit</a>)</li> <li>Add support for Redis Sentinel URLs in <code>RedisManager</code> and <code>AsyncRedisManager</code> <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1448">#1448</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/6a52e8b50274a7524fadcd2633eb819811a63734">commit</a>)</li> <li>Remove incorrect reference to an <code>asyncio</code> installation extra in documentation <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1449">#1449</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/537630b983245cc137f609c3e6247d6d68ebdea5">commit</a>)</li> </ul> <p><strong>Release 5.12.1</strong> - 2024-12-29</p> <ul> <li>Fix admin instrumentation support of disconnect reasons <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1423">#1423</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/b75fd31625cfea0d8c67d776070e4f8de99c1e45">commit</a>)</li> <li>Stop using deprecated datetime functions (<a href="https://github.com/miguelgrinberg/python-socketio/commit/8fe012abbb350107b742ab2cf9aa44d328bc23e9">commit</a>)</li> <li>Enable admin instrumentation by default in WSGI and ASGI examples (<a href="https://github.com/miguelgrinberg/python-socketio/commit/269332da8041df115e3a1e2ca04808c3179a72e1">commit</a>)</li> <li>Fixed broken gevent URL in documentation <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1427">#1427</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/8964dab9d545333646fafad9aae0becd761a1045">commit</a>) (thanks <strong>Carlos Guerrero</strong>!)</li> </ul> <p><strong>Release 5.12.0</strong> - 2024-12-18</p> <ul> <li>Added a <code>reason</code> argument to the disconnect handler <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1422">#1422</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/bd8555da8523d1a73432685a00eb5acb4d2261f5">commit</a>)</li> <li>Prevented starting multiple tasks for reconnection <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1369">#1369</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/b6ee33e56cf2679664c1b894bf7e5d33a30976db">commit</a>) (thanks <strong>humayunsr</strong>!)</li> <li>Fixed <code>AsyncClient::wait()</code> unexpected return after success reconnect <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1407">#1407</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/78d1124c50cff149051fb89bf6f08000bf184da5">commit</a>) (thanks <strong>Arseny</strong>!)</li> <li>Removed old constructs from old and unsupported Python versions (<a href="https://github.com/miguelgrinberg/python-socketio/commit/db642bb2bd9794eeceddd54abc47665c69e85406">commit</a>)</li> <li>Removed dependency on unittest.TestCase base class in unit tests (<a href="https://github.com/miguelgrinberg/python-socketio/commit/abf336e108b01f44afb473eb86c1dece6360195c">commit</a>)</li> <li>Adopted pyenv-asyncio for async unit tests (<a href="https://github.com/miguelgrinberg/python-socketio/commit/0b5c4638e5e4bff06fcf46476d218ae5ad4ada14">commit</a>)</li> <li>Adopted unittest.mock.AsyncMock in async unit tests (<a href="https://github.com/miguelgrinberg/python-socketio/commit/8f0e66c1cd1cd63dcef703576cc9cb9c99104df7">commit</a>)</li> <li>Fix typo with <code>AsyncClient.connect</code> example <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1403">#1403</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/72d37ea79f4cf6076591782e4781fd4868a7e0d6">commit</a>) (thanks <strong>Peter Bierma</strong>!)</li> <li>Documentation typo <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1421">#1421</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/bf5a05ae9bf94b2fbd1367a04884ef5a39cd2671">commit</a>) (thanks <strong>Masen Furer</strong>!)</li> <li>Renamed flask-socketio references to python-socketio in documentation <a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1377">#1377</a> (<a href="https://github.com/miguelgrinberg/python-socketio/commit/5f83cd0f7b2911705eaf1a8cb9060afbee6eb456">commit</a>)</li> <li>Added Python 3.13 CI builds (<a href="https://github.com/miguelgrinberg/python-socketio/commit/42da5d2f5426e812fd37d4cabcb9277810cae9c1">commit</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/miguelgrinberg/python-socketio/commit/400200e00625a49796b84baa44a09cd711fabe50"><code>400200e</code></a> Release 5.14.0</li> <li><a href="https://github.com/miguelgrinberg/python-socketio/commit/53f6be094257ed81476b0e212c8cddd6d06ca39a"><code>53f6be0</code></a> Replace pickle with json (<a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1502">#1502</a>)</li> <li><a href="https://github.com/miguelgrinberg/python-socketio/commit/a59c6f520059eb095ab4472e5192ce3e486875d9"><code>a59c6f5</code></a> Fix: SimpleClient.call does not raise TimeoutError on timeout (<a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1501">#1501</a>)</li> <li><a href="https://github.com/miguelgrinberg/python-socketio/commit/f61e0bec3750a83de619db9b779f9d93e449eade"><code>f61e0be</code></a> wait for client to end background tasks on disconnect (<a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1500">#1500</a>)</li> <li><a href="https://github.com/miguelgrinberg/python-socketio/commit/23556fb3dcb37074020494df40fb4495d47e7efe"><code>23556fb</code></a> Fixed transport property of the simple clients to be a string as documented (...</li> <li><a href="https://github.com/miguelgrinberg/python-socketio/commit/e59acf146550d5c07f530a4766dfdfffda21e20c"><code>e59acf1</code></a> Address failures of test suite on Mac (<a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1497">#1497</a>)</li> <li><a href="https://github.com/miguelgrinberg/python-socketio/commit/36a89226a2fb18f876dcba48125a8c51904586ec"><code>36a8922</code></a> Add support for valkey in the Redis client managers (<a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1488">#1488</a>)</li> <li><a href="https://github.com/miguelgrinberg/python-socketio/commit/5dc2aea077469ad318e47b28a84845c5efb6bdcf"><code>5dc2aea</code></a> keep track of which namespaces failed to connect (<a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1496">#1496</a>)</li> <li><a href="https://github.com/miguelgrinberg/python-socketio/commit/b3da354ed9eb46c0fb847c628b379ccae475a970"><code>b3da354</code></a> Add message queue deployment recommendations</li> <li><a href="https://github.com/miguelgrinberg/python-socketio/commit/3625fe821debf33e5430bff6375ec85056a5d95f"><code>3625fe8</code></a> Bump eventlet from 0.35.2 to 0.40.3 in /examples/server/wsgi (<a href="https://redirect.github.com/miguelgrinberg/python-socketio/issues/1491">#1491</a>) #nolog</li> <li>Additional commits viewable in <a href="https://github.com/miguelgrinberg/python-socketio/compare/v5.13.0...v5.14.0">compare view</a></li> </ul> </details> <br /> Updates `authlib` from 1.6.3 to 1.6.5 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/authlib/authlib/releases">authlib's releases</a>.</em></p> <blockquote> <h2>v1.6.4</h2> <h2>What's Changed</h2> <ul> <li>fix(jose): prevent public/unprotected header overwriting protected header by <a href="https://github.com/lepture"><code>@​lepture</code></a> in <a href="https://redirect.github.com/authlib/authlib/pull/809">authlib/authlib#809</a></li> <li>Fix <code>InsecureTransportError</code> raising by <a href="https://github.com/azmeuk"><code>@​azmeuk</code></a> in <a href="https://redirect.github.com/authlib/authlib/pull/810">authlib/authlib#810</a></li> <li>Add conventional-commits pre-commit hook by <a href="https://github.com/azmeuk"><code>@​azmeuk</code></a> in <a href="https://redirect.github.com/authlib/authlib/pull/811">authlib/authlib#811</a></li> <li>Fix response_mode=form_post with Starlette client by <a href="https://github.com/azmeuk"><code>@​azmeuk</code></a> in <a href="https://redirect.github.com/authlib/authlib/pull/812">authlib/authlib#812</a></li> <li>Specify README.md as project long description by <a href="https://github.com/EpicWink"><code>@​EpicWink</code></a> in <a href="https://redirect.github.com/authlib/authlib/pull/817">authlib/authlib#817</a></li> <li>Migrate tests to pytest paradigm by <a href="https://github.com/azmeuk"><code>@​azmeuk</code></a> in <a href="https://redirect.github.com/authlib/authlib/pull/813">authlib/authlib#813</a></li> <li>jose/jws: Reject unprotected ‘crit’ and enforce type; add tests by <a href="https://github.com/AL-Cybision"><code>@​AL-Cybision</code></a> in <a href="https://redirect.github.com/authlib/authlib/pull/823">authlib/authlib#823</a></li> <li>Use explicit *.test urls in unit tests by <a href="https://github.com/azmeuk"><code>@​azmeuk</code></a> in <a href="https://redirect.github.com/authlib/authlib/pull/824">authlib/authlib#824</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/EpicWink"><code>@​EpicWink</code></a> made their first contribution in <a href="https://redirect.github.com/authlib/authlib/pull/817">authlib/authlib#817</a></li> <li><a href="https://github.com/AL-Cybision"><code>@​AL-Cybision</code></a> made their first contribution in <a href="https://redirect.github.com/authlib/authlib/pull/823">authlib/authlib#823</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/authlib/authlib/compare/v1.6.3...v1.6.4">https://github.com/authlib/authlib/compare/v1.6.3...v1.6.4</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/authlib/authlib/blob/main/docs/changelog.rst">authlib's changelog</a>.</em></p> <blockquote> <h2>Version 1.6.5</h2> <p><strong>Released on Oct 2, 2025</strong></p> <ul> <li>RFC7591 <code>generate_client_info</code> and <code>generate_client_secret</code> take a <code>request</code> parameter.</li> <li>Add size limitation when decode JWS/JWE to prevent DoS.</li> <li>Add size limitation for <code>DEF</code> JWE zip algorithm.</li> </ul> <h2>Version 1.6.4</h2> <p><strong>Released on Sep 17, 2025</strong></p> <ul> <li>Fix <code>InsecureTransportError</code> error raising. :issue:<code>795</code></li> <li>Fix <code>response_mode=form_post</code> with Starlette client. :issue:<code>793</code></li> <li>Validate <code>crit</code> header value, reject unprotected header in <code>crit</code> header.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/authlib/authlib/commit/9ec42561cd1a81b518598d252f8adbcf446f7419"><code>9ec4256</code></a> chore: release 1.6.5</li> <li><a href="https://github.com/authlib/authlib/commit/b62b5b27577db038133f7453dacc534d6a3b06a5"><code>b62b5b2</code></a> Merge branch 'fix-GHSA-pq5p-34cr-23v9'</li> <li><a href="https://github.com/authlib/authlib/commit/e0863d5129316b1790eee5f14cece32a03b8184d"><code>e0863d5</code></a> Merge pull request <a href="https://redirect.github.com/authlib/authlib/issues/830">#830</a> from authlib/fix-GHSA-g7f3-828f-7h7m</li> <li><a href="https://github.com/authlib/authlib/commit/867e3f87b072347a1ae9cf6983cc8bbf88447e5e"><code>867e3f8</code></a> fix(jose): add size limitation to prevent DoS</li> <li><a href="https://github.com/authlib/authlib/commit/75ad6d4d625613d9d6cbbb91f5b559e071d8493b"><code>75ad6d4</code></a> Merge pull request <a href="https://redirect.github.com/authlib/authlib/issues/828">#828</a> from authlib/dependabot/github_actions/dot-github/wor...</li> <li><a href="https://github.com/authlib/authlib/commit/68b982352d9b20c3e859fc3af30308ca9855ef57"><code>68b9823</code></a> chore(deps): bump SonarSource/sonarqube-scan-action</li> <li><a href="https://github.com/authlib/authlib/commit/5bdfc4bfff8380620ed5ec55ba7a06d96cac3365"><code>5bdfc4b</code></a> Merge pull request <a href="https://redirect.github.com/authlib/authlib/issues/827">#827</a> from lisongmin/support-list-params-in-prepare-grant-uri</li> <li><a href="https://github.com/authlib/authlib/commit/30ea3c5f85a9640cd08562db2c6fd9d3e4a9bfef"><code>30ea3c5</code></a> feat: support list params in prepare_grant_uri</li> <li><a href="https://github.com/authlib/authlib/commit/4b5b5703394608124cd39e547cc7829feda05a13"><code>4b5b570</code></a> fix(jose): add max size for JWE zip=DEF decompression</li> <li><a href="https://github.com/authlib/authlib/commit/6e35a02ecf3c22d27249e6ed9fa07e544314ebe9"><code>6e35a02</code></a> Merge pull request <a href="https://redirect.github.com/authlib/authlib/issues/825">#825</a> from azmeuk/request-params</li> <li>Additional commits viewable in <a href="https://github.com/authlib/authlib/compare/v1.6.3...v1.6.5">compare view</a></li> </ul> </details> <br /> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore <dependency name> major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore <dependency name> minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore <dependency name>` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore <dependency name>` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore <dependency name> <ignore condition>` will remove the ignore condition of the specified dependency and ignore conditions You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/open-webui/open-webui/network/alerts). </details> --- <sub>🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.</sub>
GiteaMirror added the pull-request label 2025-11-11 19:33:42 -06:00
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
bug
core
documentation
enhancement
good first issue
help wanted
non-core
pull-request
Mirrored from GitHub Pull Request
 python
question
testing wanted
No Label pull-request
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
GiteaMirror ninjasurge
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: github-starred/open-webui#11513
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?