chore(deps): bump requests from 2.32.5 to 2.33.0 in /packages/uipath by dependabot[bot] · Pull Request #1494 · UiPath/uipath-python
Navigation Menu
{{ message }}
UiPath / uipath-python Public
- Notifications You must be signed in to change notification settings
- Fork 23
Open
dependabot[bot] wants to merge 1 commit intomainfrom
Open
chore(deps): bump requests from 2.32.5 to 2.33.0 in /packages/uipath#1494
dependabot[bot] wants to merge 1 commit intomainfrom
chore(deps): bump requests from 2.32.5 to 2.33.0 in /packages/uipath#1494
dependabot[bot] wants to merge 1 commit intomainfrom
Conversation
Copy link Copy Markdown
Bumps requests from 2.32.5 to 2.33.0.
Release notes
Sourced from requests's releases.
v2.33.0
2.33.0 (2026-03-25)
Announcements
- 📣 Requests is adding inline types. If you have a typed code base that uses Requests, please take a look at #7271. Give it a try, and report any gaps or feedback you may have in the issue. 📣
Security
- CVE-2026-25645
requests.utils.extract_zipped_pathsnow extracts contents to a non-deterministic location to prevent malicious file replacement. This does not affect default usage of Requests, only applications calling the utility function directly.Improvements
- Migrated to a PEP 517 build system using setuptools. (#7012)
Bugfixes
- Fixed an issue where an empty netrc entry could cause malformed authentication to be applied to Requests on Python 3.11+. (#7205)
Deprecations
- Dropped support for Python 3.9 following its end of support. (#7196)
Documentation
- Various typo fixes and doc improvements.
New Contributors
@M0d3v1made their first contribution in psf/requests#6865@aminvakilmade their first contribution in psf/requests#7220@E8Pricemade their first contribution in psf/requests#6960@mitre88made their first contribution in psf/requests#7244@magsenmade their first contribution in psf/requests#6553@Rohan5commitmade their first contribution in psf/requests#7227Full Changelog: https://github.com/psf/requests/blob/main/HISTORY.md#2330-2026-03-25
Changelog
Sourced from requests's changelog.
2.33.0 (2026-03-25)
Announcements
- 📣 Requests is adding inline types. If you have a typed code base that uses Requests, please take a look at #7271. Give it a try, and report any gaps or feedback you may have in the issue. 📣
Security
- CVE-2026-25645
requests.utils.extract_zipped_pathsnow extracts contents to a non-deterministic location to prevent malicious file replacement. This does not affect default usage of Requests, only applications calling the utility function directly.Improvements
- Migrated to a PEP 517 build system using setuptools. (#7012)
Bugfixes
- Fixed an issue where an empty netrc entry could cause malformed authentication to be applied to Requests on Python 3.11+. (#7205)
Deprecations
- Dropped support for Python 3.9 following its end of support. (#7196)
Documentation
- Various typo fixes and doc improvements.
Commits
bc04dfdv2.33.066d21cbMerge commit from fork8b9bc8fMove badges to top of README (#7293)e331a28Remove unused extraction call (#7292)753fd08docs: fix FAQ grammar in httplib2 example774a0b8docs(socks): same block as other sections9c72a41Bump github/codeql-action from 4.33.0 to 4.34.1ebf7190Bump github/codeql-action from 4.32.0 to 4.33.00e4ae38docs: exclude Response.is_permanent_redirect from API docs (#7244)d568f47docs: clarify Quickstart POST example (#6960)- Additional commits viewable in compare view
dependabot
bot
added
dependencies
labels
Mar 26, 2026
dependabot
bot
force-pushed
the
dependabot/uv/packages/uipath/requests-2.33.0
branch
14 times, most recently
from
8024efd to
b2de9a0
Compare
dependabot
bot
force-pushed
the
dependabot/uv/packages/uipath/requests-2.33.0
branch
2 times, most recently
from
7f9ba0f to
92c1769
Compare
Bumps [requests](https://github.com/psf/requests) from 2.32.5 to 2.33.0. - [Release notes](https://github.com/psf/requests/releases) - [Changelog](https://github.com/psf/requests/blob/main/HISTORY.md) - [Commits](psf/requests@v2.32.5...v2.33.0) --- updated-dependencies: - dependency-name: requests dependency-version: 2.33.0 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
bot
force-pushed
the
dependabot/uv/packages/uipath/requests-2.33.0
branch
from
92c1769 to
9a02928
Compare
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode characters
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment