chore(deps): update dependency requests to v2.31.0 (GoogleCloudPlatform#10205)

renovate-bot · web-flow · commit 2a0a96707c8e · 2023-06-12T08:04:13.000Z
[![Mend Renovate](https://app.renovatebot.com/images/banner.svg)](https://renovatebot.com) This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [Requests](https://requests.readthedocs.io) ([source](https://togithub.com/psf/requests), [changelog](https://togithub.com/psf/requests/blob/master/HISTORY.md)) | `==2.28.2` -> `==2.31.0` | [![age](https://badges.renovateapi.com/packages/pypi/Requests/2.31.0/age-slim)](https://docs.renovatebot.com/merge-confidence/) | [![adoption](https://badges.renovateapi.com/packages/pypi/Requests/2.31.0/adoption-slim)](https://docs.renovatebot.com/merge-confidence/) | [![passing](https://badges.renovateapi.com/packages/pypi/Requests/2.31.0/compatibility-slim/2.28.2)](https://docs.renovatebot.com/merge-confidence/) | [![confidence](https://badges.renovateapi.com/packages/pypi/Requests/2.31.0/confidence-slim/2.28.2)](https://docs.renovatebot.com/merge-confidence/) | | [requests](https://requests.readthedocs.io) ([source](https://togithub.com/psf/requests), [changelog](https://togithub.com/psf/requests/blob/master/HISTORY.md)) | `==2.28.2` -> `==2.31.0` | [![age](https://badges.renovateapi.com/packages/pypi/requests/2.31.0/age-slim)](https://docs.renovatebot.com/merge-confidence/) | [![adoption](https://badges.renovateapi.com/packages/pypi/requests/2.31.0/adoption-slim)](https://docs.renovatebot.com/merge-confidence/) | [![passing](https://badges.renovateapi.com/packages/pypi/requests/2.31.0/compatibility-slim/2.28.2)](https://docs.renovatebot.com/merge-confidence/) | [![confidence](https://badges.renovateapi.com/packages/pypi/requests/2.31.0/confidence-slim/2.28.2)](https://docs.renovatebot.com/merge-confidence/) | --- ### ⚠ Dependency Lookup Warnings ⚠ Warnings were logged while processing this repo. Please check the Dependency Dashboard for more information. --- ### Release Notes <details> <summary>psf/requests</summary> ### [`v2.31.0`](https://togithub.com/psf/requests/blob/HEAD/HISTORY.md#&#8203;2310-2023-05-22) [Compare Source](https://togithub.com/psf/requests/compare/v2.30.0...v2.31.0) **Security** - Versions of Requests between v2.3.0 and v2.30.0 are vulnerable to potential forwarding of `Proxy-Authorization` headers to destination servers when following HTTPS redirects. When proxies are defined with user info (https://user:pass@proxy:8080), Requests will construct a `Proxy-Authorization` header that is attached to the request to authenticate with the proxy. In cases where Requests receives a redirect response, it previously reattached the `Proxy-Authorization` header incorrectly, resulting in the value being sent through the tunneled connection to the destination server. Users who rely on defining their proxy credentials in the URL are *strongly* encouraged to upgrade to Requests 2.31.0+ to prevent unintentional leakage and rotate their proxy credentials once the change has been fully deployed. Users who do not use a proxy or do not supply their proxy credentials through the user information portion of their proxy URL are not subject to this vulnerability. Full details can be read in our [Github Security Advisory](https://togithub.com/psf/requests/security/advisories/GHSA-j8r2-6x86-q33q) and [CVE-2023-32681](https://nvd.nist.gov/vuln/detail/CVE-2023-32681). ### [`v2.30.0`](https://togithub.com/psf/requests/blob/HEAD/HISTORY.md#&#8203;2300-2023-05-03) [Compare Source](https://togithub.com/psf/requests/compare/v2.29.0...v2.30.0) **Dependencies** - ⚠️ Added support for urllib3 2.0. ⚠️ This may contain minor breaking changes so we advise careful testing and reviewing https://urllib3.readthedocs.io/en/latest/v2-migration-guide.html prior to upgrading. Users who wish to stay on urllib3 1.x can pin to `urllib3<2`. ### [`v2.29.0`](https://togithub.com/psf/requests/blob/HEAD/HISTORY.md#&#8203;2290-2023-04-26) [Compare Source](https://togithub.com/psf/requests/compare/v2.28.2...v2.29.0) **Improvements** - Requests now defers chunked requests to the urllib3 implementation to improve standardization. ([#&GoogleCloudPlatform#8203;6226](https://togithub.com/psf/requests/issues/6226)) - Requests relaxes header component requirements to support bytes/str subclasses. ([#&GoogleCloudPlatform#8203;6356](https://togithub.com/psf/requests/issues/6356)) </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Never, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about these updates again. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR has been generated by [Mend Renovate](https://www.mend.io/free-developer-tools/renovate/). View repository job log [here](https://app.renovatebot.com/dashboard#github/GoogleCloudPlatform/python-docs-samples).
diff --git a/appengine/flexible/analytics/requirements.txt b/appengine/flexible/analytics/requirements.txt
@@ -1,4 +1,4 @@
 Flask==2.1.0; python_version > '3.6'
 Flask==2.0.3; python_version < '3.7'
 gunicorn==20.1.0
-requests[security]==2.28.2
+requests[security]==2.31.0
diff --git a/appengine/flexible/metadata/requirements.txt b/appengine/flexible/metadata/requirements.txt
@@ -1,3 +1,3 @@
 Flask==2.1.0
 gunicorn==20.1.0
-requests[security]==2.28.2
+requests[security]==2.31.0
diff --git a/appengine/flexible/multiple_services/gateway-service/requirements.txt b/appengine/flexible/multiple_services/gateway-service/requirements.txt
@@ -1,3 +1,3 @@
 Flask==2.1.0
 gunicorn==20.1.0
-requests==2.28.2
+requests==2.31.0
diff --git a/appengine/flexible/multiple_services/static-service/requirements.txt b/appengine/flexible/multiple_services/static-service/requirements.txt
@@ -1,3 +1,3 @@
 Flask==2.1.0
 gunicorn==20.1.0
-requests==2.28.2
+requests==2.31.0
diff --git a/appengine/flexible/websockets/requirements.txt b/appengine/flexible/websockets/requirements.txt
@@ -1,5 +1,5 @@
 Flask==1.1.4 # it seems like Flask-sockets doesn't play well with 2.0+
 Flask-Sockets==0.2.1
 gunicorn==20.1.0
-requests==2.28.2
+requests==2.31.0
 markupsafe===2.0.1
diff --git a/appengine/flexible_python37_and_earlier/analytics/requirements.txt b/appengine/flexible_python37_and_earlier/analytics/requirements.txt
@@ -1,4 +1,4 @@
 Flask==2.1.0; python_version > '3.6'
 Flask==2.0.3; python_version < '3.7'
 gunicorn==20.1.0
-requests[security]==2.28.2
+requests[security]==2.31.0
diff --git a/appengine/flexible_python37_and_earlier/metadata/requirements.txt b/appengine/flexible_python37_and_earlier/metadata/requirements.txt
@@ -1,4 +1,4 @@
 Flask==2.1.0; python_version > '3.6'
 Flask==2.0.3; python_version < '3.7'
 gunicorn==20.1.0
-requests[security]==2.28.2
+requests[security]==2.31.0
diff --git a/appengine/flexible_python37_and_earlier/multiple_services/gateway-service/requirements.txt b/appengine/flexible_python37_and_earlier/multiple_services/gateway-service/requirements.txt
@@ -1,4 +1,4 @@
 Flask==2.1.0; python_version > '3.6'
 Flask==2.0.3; python_version < '3.7'
 gunicorn==20.1.0
-requests==2.28.2
+requests==2.31.0
diff --git a/appengine/flexible_python37_and_earlier/multiple_services/static-service/requirements.txt b/appengine/flexible_python37_and_earlier/multiple_services/static-service/requirements.txt
@@ -1,4 +1,4 @@
 Flask==2.1.0; python_version > '3.6'
 Flask==2.0.3; python_version < '3.7'
 gunicorn==20.1.0
-requests==2.28.2
+requests==2.31.0
diff --git a/appengine/flexible_python37_and_earlier/websockets/requirements.txt b/appengine/flexible_python37_and_earlier/websockets/requirements.txt
@@ -1,5 +1,5 @@
 Flask==1.1.4 # it seems like Flask-sockets doesn't play well with 2.0+
 Flask-Sockets==0.2.1
 gunicorn==20.1.0
-requests==2.28.2
+requests==2.31.0
 markupsafe===2.0.1
diff --git a/auth/end-user/web/requirements.txt b/auth/end-user/web/requirements.txt
@@ -3,4 +3,4 @@ google-auth-oauthlib==1.0.0
 google-auth-httplib2==0.1.0
 google-api-python-client==2.87.0
 flask==2.2.5
-requests==2.28.2
+requests==2.31.0
diff --git a/cloud-sql/sql-server/sqlalchemy/requirements-test.txt b/cloud-sql/sql-server/sqlalchemy/requirements-test.txt
@@ -1,3 +1,3 @@
 pytest==7.0.1
 google-auth==2.17.3
-Requests==2.28.2
+Requests==2.31.0
diff --git a/composer/cicd_sample/utils/requirements-test.txt b/composer/cicd_sample/utils/requirements-test.txt
@@ -1,4 +1,4 @@
 pytest==7.0.1
-requests==2.28.2
+requests==2.31.0
 google-api-core==2.11.0
 google-resumable-media==2.5.0
diff --git a/composer/rest/composer2/requirements-test.txt b/composer/rest/composer2/requirements-test.txt
@@ -1,2 +1,2 @@
 pytest==7.0.1
-requests==2.28.2
+requests==2.31.0
diff --git a/composer/rest/composer2/requirements.txt b/composer/rest/composer2/requirements.txt
@@ -1,2 +1,2 @@
 google-auth==2.17.3
-requests==2.28.2
+requests==2.31.0
diff --git a/compute/managed-instances/demo/requirements.txt b/compute/managed-instances/demo/requirements.txt
@@ -1,2 +1,2 @@
 Flask==2.1.0
-requests==2.28.2
+requests==2.31.0
diff --git a/functions/concepts-requests/requirements-test.txt b/functions/concepts-requests/requirements-test.txt
@@ -1,5 +1,5 @@
 flask==2.2.5
 pytest==7.0.1
-requests==2.28.2
+requests==2.31.0
 responses==0.17.0; python_version < '3.7'
 responses==0.23.1; python_version > '3.6'
diff --git a/functions/concepts-requests/requirements.txt b/functions/concepts-requests/requirements.txt
@@ -1,2 +1,2 @@
 functions-framework==3.3.0
-requests==2.28.2
+requests==2.31.0
diff --git a/functions/security/requirements.txt b/functions/security/requirements.txt
@@ -1 +1 @@
-requests==2.28.2
+requests==2.31.0
diff --git a/functions/tips-connection-pooling/requirements-test.txt b/functions/tips-connection-pooling/requirements-test.txt
@@ -1,5 +1,5 @@
 flask==2.2.5
 pytest==7.0.1
-requests==2.28.2
+requests==2.31.0
 responses==0.17.0; python_version < '3.7'
 responses==0.23.1; python_version > '3.6'
diff --git a/functions/tips-connection-pooling/requirements.txt b/functions/tips-connection-pooling/requirements.txt
@@ -1,2 +1,2 @@
-requests==2.28.2
+requests==2.31.0
 functions-framework==3.3.0
diff --git a/healthcare/api-client/v1/dicom/requirements.txt b/healthcare/api-client/v1/dicom/requirements.txt
@@ -2,4 +2,4 @@ google-api-python-client==2.87.0
 google-auth-httplib2==0.1.0
 google-auth==2.17.3
 google-cloud-pubsub==2.17.0
-requests==2.28.2
+requests==2.31.0
diff --git a/healthcare/api-client/v1beta1/fhir/requirements.txt b/healthcare/api-client/v1beta1/fhir/requirements.txt
@@ -4,4 +4,4 @@ google-auth==2.17.3
 google-cloud==0.34.0
 google-cloud-storage==2.8.0; python_version < '3.7'
 google-cloud-storage==2.8.0; python_version > '3.6'
-requests==2.28.2
+requests==2.31.0
diff --git a/iot/api-client/http_example/requirements.txt b/iot/api-client/http_example/requirements.txt
@@ -5,4 +5,4 @@ google-auth==2.17.3
 google-cloud-iot==2.5.1
 google-cloud-pubsub==2.17.0
 pyjwt==2.7.0
-requests==2.28.2
+requests==2.31.0
diff --git a/kms/attestations/requirements.txt b/kms/attestations/requirements.txt
@@ -1,3 +1,3 @@
 cryptography==40.0.2
 pem==21.2.0
-requests==2.28.2
+requests==2.31.0
diff --git a/monitoring/opencensus/requirements.txt b/monitoring/opencensus/requirements.txt
@@ -7,4 +7,4 @@ opencensus-context==0.1.3
 opencensus-ext-prometheus==0.2.1
 prometheus-client==0.17.0
 prometheus-flask-exporter==0.22.2
-requests==2.28.2
+requests==2.31.0
diff --git a/monitoring/prometheus/requirements.txt b/monitoring/prometheus/requirements.txt
@@ -4,4 +4,4 @@ google-auth==2.17.3
 googleapis-common-protos==1.59.0
 prometheus-client==0.17.0
 prometheus-flask-exporter==0.22.2
-requests==2.28.2
+requests==2.31.0
diff --git a/run/django/requirements-test.txt b/run/django/requirements-test.txt
@@ -1,4 +1,4 @@
 backoff==2.2.1
 pytest==7.0.1
 pytest-django==4.5.0
-requests==2.28.2
+requests==2.31.0
diff --git a/run/markdown-preview/editor/requirements.txt b/run/markdown-preview/editor/requirements.txt
@@ -1,4 +1,4 @@
 Flask==2.1.0
 gunicorn==20.1.0
 google-auth==2.17.3
-requests==2.28.2
+requests==2.31.0
