Skip to content

chore(deps): bump requests from 2.34.0 to 2.34.2 in /scripts#11047

Merged
rafaeltonholo merged 1 commit into
mainfrom
dependabot/pip/scripts/requests-2.34.2
Jun 1, 2026
Merged

chore(deps): bump requests from 2.34.0 to 2.34.2 in /scripts#11047
rafaeltonholo merged 1 commit into
mainfrom
dependabot/pip/scripts/requests-2.34.2

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github May 26, 2026

Copy link
Copy Markdown
Contributor

Bumps requests from 2.34.0 to 2.34.2.

Release notes

Sourced from requests's releases.

v2.34.2

2.34.2 (2026-05-14)

  • Moved headers input type back to Mapping to avoid invariance issues with MutableMapping and inferred dict types. Users calling Request.headers.update() may need to narrow typing in their code. (#7441)

Full Changelog: https://github.com/psf/requests/blob/main/HISTORY.md#2342-2026-05-14

v2.34.1

2.34.1 (2026-05-13)

Bugfixes

  • Widened json input type from dict and list to Mapping and Sequence. (#7436)
  • Changed headers input type to MutableMapping and removed None from Request.headers typing to improve handling for users. (#7431)
  • Response.reason moved from str | None to str to improve handling for users. (#7437)
  • Fixed a bug where some bodies with custom __getattr__ implementations weren't being properly detected as Iterables. (#7433)

New Contributors

Full Changelog: https://github.com/psf/requests/blob/main/HISTORY.md#2341-2026-05-13

Changelog

Sourced from requests's changelog.

2.34.2 (2026-05-14)

  • Moved headers input type back to Mapping to avoid invariance issues with MutableMapping and inferred dict types. Users calling Request.headers.update() may need to narrow typing in their code. (#7441)

2.34.1 (2026-05-13)

Bugfixes

  • Widened json input type from dict and list to Mapping and Sequence. (#7436)
  • Changed headers input type to MutableMapping and removed None from Request.headers typing to improve handling for users. (#7431)
  • Response.reason moved from str | None to str to improve handling for users. (#7437)
  • Fixed a bug where some bodies with custom __getattr__ implementations weren't being properly detected as Iterables. (#7433)
Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
chore(deps): bump requests from 2.34.0 to 2.34.2 in /scripts
c6bf9ef 
Bumps [requests](https://github.com/psf/requests) from 2.34.0 to 2.34.2.
- [Release notes](https://github.com/psf/requests/releases)
- [Changelog](https://github.com/psf/requests/blob/main/HISTORY.md)
- [Commits](psf/requests@v2.34.0...v2.34.2)

---
updated-dependencies:
- dependency-name: requests
  dependency-version: 2.34.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added type: dependency Project dependencies type: pip Python pip dependency updates labels May 26, 2026
@dependabot dependabot Bot requested a review from a team as a code owner May 26, 2026 21:36
@dependabot dependabot Bot requested a review from rafaeltonholo May 26, 2026 21:36
@dependabot dependabot Bot added type: dependency Project dependencies type: pip Python pip dependency updates labels May 26, 2026
@github-actions

github-actions Bot commented May 26, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

Validation Passed: All report and feature-flag labels are correctly set.

@github-actions

github-actions Bot commented May 26, 2026

Copy link
Copy Markdown
Contributor

Missing report label. Set exactly one of: report: include, report: exclude OR report: highlight.

@rafaeltonholo rafaeltonholo added the report: exclude Exclude changes from user-facing reports (internal, minor, or not relevant to users). label Jun 1, 2026
rafaeltonholo
rafaeltonholo approved these changes Jun 1, 2026
View reviewed changes

@rafaeltonholo rafaeltonholo left a comment

Copy link
Copy Markdown
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@rafaeltonholo rafaeltonholo merged commit a0f2527 into main Jun 1, 2026
21 of 26 checks passed
@rafaeltonholo rafaeltonholo deleted the dependabot/pip/scripts/requests-2.34.2 branch June 1, 2026 10:30
@thunderbird-botmobile thunderbird-botmobile Bot added this to the Thunderbird 21 milestone Jun 1, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@rafaeltonholo rafaeltonholo rafaeltonholo approved these changes

Assignees

@rafaeltonholo rafaeltonholo

Labels

report: exclude Exclude changes from user-facing reports (internal, minor, or not relevant to users). type: dependency Project dependencies type: pip Python pip dependency updates

Projects

None yet

Milestone

Thunderbird 21

Development

Successfully merging this pull request may close these issues.

1 participant

@rafaeltonholo