dependency: (deps): bump pyjwt from 2.8.0 to 2.9.0 in /backend #206

dependabot · 2024-08-02T10:00:08Z

Bumps pyjwt from 2.8.0 to 2.9.0.

Release notes

2.9.0

What's Changed

[pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in jpadilla/pyjwt#905

[pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in jpadilla/pyjwt#909

Add support for Python 3.12 by @hugovk in jpadilla/pyjwt#910

[pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in jpadilla/pyjwt#911

Fix an unnecessary str concat by @sirosen in jpadilla/pyjwt#904

Update jwt-api to accept either a string or list of strings for issuer validation by @mattpollak in jpadilla/pyjwt#913

Bump actions/checkout from 3 to 4 by @dependabot in jpadilla/pyjwt#916

[pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in jpadilla/pyjwt#917

[pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in jpadilla/pyjwt#922

[pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in jpadilla/pyjwt#926

Bump actions/setup-python from 4 to 5 by @dependabot in jpadilla/pyjwt#931

Bump hynek/build-and-inspect-python-package from 1 to 2 by @dependabot in jpadilla/pyjwt#935

docs/api: document strict_aud on decode_complete by @woodruffw in jpadilla/pyjwt#923

chore: fix docs step by @jpadilla in jpadilla/pyjwt#950

[pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in jpadilla/pyjwt#953

Add coverage and improve performance of is_ssh_key by @bdraco in jpadilla/pyjwt#940

Decode with PyJWK by @luhn in jpadilla/pyjwt#886

Remove an unused variable from an example code block by @kenkoooo in jpadilla/pyjwt#958

Handle load_pem_public_key ValueError by @CollinEMac in jpadilla/pyjwt#952

[pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in jpadilla/pyjwt#960

Raise exception when required cryptography dependency is missing by @tobloef in jpadilla/pyjwt#963

[pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in jpadilla/pyjwt#965

Add 2.9.0 changelog. Fixes #949 by @benvdh in jpadilla/pyjwt#967

New Contributors

@mattpollak made their first contribution in jpadilla/pyjwt#913

@bdraco made their first contribution in jpadilla/pyjwt#940

@luhn made their first contribution in jpadilla/pyjwt#886

@kenkoooo made their first contribution in jpadilla/pyjwt#958

@CollinEMac made their first contribution in jpadilla/pyjwt#952

@tobloef made their first contribution in jpadilla/pyjwt#963

@benvdh made their first contribution in jpadilla/pyjwt#967

Full Changelog: jpadilla/pyjwt@2.8.0...2.9.0

Changelog

Sourced from pyjwt's changelog.

`v2.9.0 <https://github.com/jpadilla/pyjwt/compare/2.8.0...2.9.0>`__

Changed


- Drop support for Python 3.7 (EOL) by @hugovk in `[#910](https://github.com/jpadilla/pyjwt/issues/910) <https://github.com/jpadilla/pyjwt/pull/910>`__
- Allow JWT issuer claim validation to accept a list of strings too by @mattpollak in `[#913](https://github.com/jpadilla/pyjwt/issues/913) <https://github.com/jpadilla/pyjwt/pull/913>`__
Fixed

- Fix unnecessary string concatenation by @sirosen in `[#904](https://github.com/jpadilla/pyjwt/issues/904) &lt;https://github.com/jpadilla/pyjwt/pull/904&gt;`__
- Fix docs for ``jwt.decode_complete`` to include ``strict_aud`` option by @woodruffw in `[#923](https://github.com/jpadilla/pyjwt/issues/923) &lt;https://github.com/jpadilla/pyjwt/pull/923&gt;`__
- Fix docs step by @jpadilla in `[#950](https://github.com/jpadilla/pyjwt/issues/950) &lt;https://github.com/jpadilla/pyjwt/pull/950&gt;`__
- Fix: Remove an unused variable from example code block by @kenkoooo in `[#958](https://github.com/jpadilla/pyjwt/issues/958) &lt;https://github.com/jpadilla/pyjwt/pull/958&gt;`__
Added



Add support for Python 3.12 by @hugovk in [#910](https://github.com/jpadilla/pyjwt/issues/910) &lt;https://github.com/jpadilla/pyjwt/pull/910&gt;__
Improve performance of is_ssh_key + add unit test by @bdraco in [#940](https://github.com/jpadilla/pyjwt/issues/940) &lt;https://github.com/jpadilla/pyjwt/pull/940&gt;__
Allow jwt.decode() to accept a PyJWK object by @luhn in [#886](https://github.com/jpadilla/pyjwt/issues/886) &lt;https://github.com/jpadilla/pyjwt/pull/886&gt;__
Make algorithm_name attribute available on PyJWK by @luhn in [#886](https://github.com/jpadilla/pyjwt/issues/886) &lt;https://github.com/jpadilla/pyjwt/pull/886&gt;__
Raise InvalidKeyError on invalid PEM keys to be compatible with cryptography 42.x.x by @CollinEMac in [#952](https://github.com/jpadilla/pyjwt/issues/952) &lt;https://github.com/jpadilla/pyjwt/pull/952&gt;__
Raise an exception when required cryptography dependency is missing by @tobloef in &lt;https://github.com/jpadilla/pyjwt/pull/963&gt;__

Commits

868cf4a Add 2.9.0 changelog. Fixes #949 (#967)
304a3df [pre-commit.ci] pre-commit autoupdate (#965)
527fec2 Raise exception when required cryptography dependency is missing (#963)
18a50be [pre-commit.ci] pre-commit autoupdate (#960)
4703f87 Handle load_pem_public_key ValueError (#952)
9dc732f Update usage.rst (#958)
ab8176a Decode with PyJWK (#886)
c0a071d chore: update actions/download-artifact
2afbe32 Add coverage and improve performance of is_ssh_key (#940)
97345a7 [pre-commit.ci] pre-commit autoupdate (#953)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [pyjwt](https://github.com/jpadilla/pyjwt) from 2.8.0 to 2.9.0. - [Release notes](https://github.com/jpadilla/pyjwt/releases) - [Changelog](https://github.com/jpadilla/pyjwt/blob/master/CHANGELOG.rst) - [Commits](jpadilla/pyjwt@2.8.0...2.9.0) --- updated-dependencies: - dependency-name: pyjwt dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Aug 2, 2024

github-actions bot approved these changes Aug 2, 2024

View reviewed changes

github-actions bot merged commit 4e29626 into main Aug 2, 2024
3 of 4 checks passed

dependabot bot deleted the dependabot/pip/backend/pyjwt-2.9.0 branch August 2, 2024 10:00

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

dependency: (deps): bump pyjwt from 2.8.0 to 2.9.0 in /backend #206

dependency: (deps): bump pyjwt from 2.8.0 to 2.9.0 in /backend #206

dependabot bot commented on behalf of github Aug 2, 2024

dependency: (deps): bump pyjwt from 2.8.0 to 2.9.0 in /backend #206

dependency: (deps): bump pyjwt from 2.8.0 to 2.9.0 in /backend #206

Conversation

dependabot bot commented on behalf of github Aug 2, 2024

2.9.0

What's Changed

New Contributors

v2.9.0 <https://github.com/jpadilla/pyjwt/compare/2.8.0...2.9.0>__

`v2.9.0 <https://github.com/jpadilla/pyjwt/compare/2.8.0...2.9.0>`__