Path: csiph.com!usenet.pasdenom.info!news.redatomik.org!newsfeed.xs4all.nl!newsfeed4a.news.xs4all.nl!xs4all!newsgate.cistron.nl!newsgate.news.xs4all.nl!post.news.xs4all.nl!not-for-mail Return-Path: X-Original-To: python-announce-list@python.org Delivered-To: python-announce-list@mail.python.org X-Spam-Status: OK 0.001 X-Spam-Evidence: '*H*': 1.00; '*S*': 0.00; 'python,': 0.02; 'parameters': 0.04; 'fixes': 0.07; 'redirected': 0.07; 'skip:` 10': 0.07; 'subject:released': 0.07; 'cookie': 0.09; 'dependency': 0.09; 'http': 0.09; 'identifier': 0.09; 'setup.py': 0.09; '\xe2\x80\x94': 0.09; 'python': 0.11; '``str``,': 0.16; 'argument.': 0.16; 'cookies': 0.16; 'hostname': 0.16; 'subject:requests': 0.16; 'to:addr:python-announce-list': 0.16; 'url:updates': 0.16; 'fix': 0.17; 'written': 0.21; 'input': 0.22; 'import': 0.22; 'previously': 0.22; 'creating': 0.23; 'error': 0.23; 'affects': 0.24; 'library,': 0.24; 'skip:` 20': 0.24; 'header': 0.24; 'versions': 0.24; 'handling': 0.26; 'query': 0.26; 'post': 0.26; 'host': 0.29; 'message-id:@mail.gmail.com': 0.30; 'requests': 0.31; 'continues': 0.31; 'this.': 0.32; 'connection': 0.35; 'received:google.com': 0.35; 'add': 0.35; 'licensed': 0.36; 'url:org': 0.36; 'integration': 0.37; 'to:addr:python.org': 0.39; 'users': 0.40; 'manually': 0.60; 'making': 0.63; 'more': 0.64; 'skip:+ 10': 0.65; 'services': 0.66; '100%': 0.77; 'potentially': 0.81; '(inclusive': 0.84; 'disclosed': 0.84; 'duplication': 0.84; 'exposing': 0.91; 'url:latest': 0.91; 'urls,': 0.91 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:date:message-id:subject:from:to:content-type; bh=9rIwypL5wcQBFnrbA7z3xktPAxi2nOyVjbPErfmrya0=; b=YnAPt8cmehA04fdBgTTt4/s6gBsw0Ss2C6i9LLnTYukbjhIuCRXsWGButKaG+cX3Oy UCdUiqzRgATZh99MNvvrnmraPGbhq/6mRB4dEcBbyf2ODKvhjZAW6Y7yeuR8Vd3WXv4Q FA8ErjPHcMVn3oYviuYDNFqVlUgmzO7jNQaaoHVqFDfTS8hC8xR/vk9UE9FOj3hZ9wCg xwH+4cJFHUDsKaj5vbCvddS5Ac42oK5X8zpfIxXm8N8reJWCm5tXtqlhyNqGo6nvZ2dY FAGOzIyQchfWCssWkDIORWfmfVacdEfRs2GQXf8UnbSGybCZTmmoArSlTRRJcvouT3oX CGhA== MIME-Version: 1.0 X-Received: by 10.50.124.73 with SMTP id mg9mr93262837igb.38.1426352475867; Sat, 14 Mar 2015 10:01:15 -0700 (PDT) Date: Sat, 14 Mar 2015 12:01:15 -0500 Subject: requests v2.6.0 released From: Ian Cordasco To: python-announce-list@python.org X-Mailman-Approved-At: Sat, 14 Mar 2015 20:12:14 +0100 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.19 X-BeenThere: python-announce-list@python.org X-Mailman-Version: 2.1.19 Precedence: list List-Id: Announcement-only list for the Python programming language List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Approved: python-announce-list@python.org Newsgroups: comp.lang.python.announce Message-ID: Lines: 48 NNTP-Posting-Host: 2001:888:2000:d::a6 X-Trace: 1426360335 news.xs4all.nl 2963 [2001:888:2000:d::a6]:60958 X-Complaints-To: abuse@xs4all.nl Xref: csiph.com comp.lang.python.announce:1618 About Requests ++++++++++++++ Requests is an Apache2 Licensed HTTP library, written in Python, for human beings. Requests takes all of the work out of Python HTTP/1.1 =E2=80=94 mak= ing your integration with web services seamless. There=E2=80=99s no need to manually= add query strings to your URLs, or to form-encode your POST data. Keep-alive and HTTP connection pooling are 100% automatic, powered by urllib3. 2.6.0 (2015-03-14) ++++++++++++++++++ **Bugfixes** - Fix handling of cookies on redirect. Previously a cookie without a host value set would use the hostname for the redirected URL exposing requests users to session fixation attacks and potentially cookie stealing. This was disclosed privately by Matthew Daley of `BugFuzz `_. An CVE identifier has not yet been assigned for this. This affects all versions of requests from v2.1.0 to v2.5.3 (inclusive on both ends). - Fix error when requests is an ``install_requires`` dependency and ``pytho= n setup.py test`` is run. (#2462) - Fix error when urllib3 is unbundled and requests continues to use the vendored import location. - Include fixes to ``urllib3``'s header handling. - Requests' handling of unvendored dependencies is now more restrictive. **Features and Improvements** - Support bytearrays when passed as parameters in the ``files`` argument. (#2468) - Avoid data duplication when creating a request with ``str``, ``bytes``, o= r ``bytearray`` input to the ``files`` argument. (Release notes are also available http://docs.python-requests.org/en/latest/community/updates/#software-updat= es )