Title: Bump scrapy from 2.4.1 to 2.5.1 in /ip_address by dependabot[bot] · Pull Request #13 · barnwalp/python_scripts · GitHub
Open Graph Title: Bump scrapy from 2.4.1 to 2.5.1 in /ip_address by dependabot[bot] · Pull Request #13 · barnwalp/python_scripts
X Title: Bump scrapy from 2.4.1 to 2.5.1 in /ip_address by dependabot[bot] · Pull Request #13 · barnwalp/python_scripts
Description: Bumps scrapy from 2.4.1 to 2.5.1.
Release notes
Sourced from scrapy's releases.
2.5.1
Security bug fix:
If you use HttpAuthMiddleware (i.e. the http_user and http_pass spider attributes) for HTTP authentication, any request exposes your credentials to the request target.
To prevent unintended exposure of authentication credentials to unintended domains, you must now additionally set a new, additional spider attribute, http_auth_domain, and point it to the specific domain to which the authentication credentials must be sent.
If the http_auth_domain spider attribute is not set, the domain of the first request will be considered the HTTP authentication target, and authentication credentials will only be sent in requests targeting that domain.
If you need to send the same HTTP authentication credentials to multiple domains, you can use w3lib.http.basic_auth_header instead to set the value of the Authorization header of your requests.
If you really want your spider to send the same HTTP authentication credentials to any domain, set the http_auth_domain spider attribute to None.
Finally, if you are a user of scrapy-splash, know that this version of Scrapy breaks compatibility with scrapy-splash 0.7.2 and earlier. You will need to upgrade scrapy-splash to a greater version for it to continue to work.
2.5.0
Official Python 3.9 support
Experimental HTTP/2 support
New get_retry_request() function to retry requests from spider callbacks
New headers_received signal that allows stopping downloads early
New Response.protocol attribute
See the full changelog
Changelog
Sourced from scrapy's changelog.
Scrapy 2.5.1 (2021-10-05)
Security bug fix:
If you use
:class:~scrapy.downloadermiddlewares.httpauth.HttpAuthMiddleware
(i.e. the http_user and http_pass spider attributes) for HTTP
authentication, any request exposes your credentials to the request target.
To prevent unintended exposure of authentication credentials to unintended
domains, you must now additionally set a new, additional spider attribute,
http_auth_domain, and point it to the specific domain to which the
authentication credentials must be sent.
If the http_auth_domain spider attribute is not set, the domain of the
first request will be considered the HTTP authentication target, and
authentication credentials will only be sent in requests targeting that
domain.
If you need to send the same HTTP authentication credentials to multiple
domains, you can use :func:w3lib.http.basic_auth_header instead to
set the value of the Authorization header of your requests.
If you really want your spider to send the same HTTP authentication
credentials to any domain, set the http_auth_domain spider attribute
to None.
Finally, if you are a user of scrapy-splash_, know that this version of
Scrapy breaks compatibility with scrapy-splash 0.7.2 and earlier. You will
need to upgrade scrapy-splash to a greater version for it to continue to
work.
.. _scrapy-splash: https://github.com/scrapy-plugins/scrapy-splash
.. _release-2.5.0:
Scrapy 2.5.0 (2021-04-06)
Highlights:
Official Python 3.9 support
Experimental :ref:HTTP/2 support
Open Graph Description: Bumps scrapy from 2.4.1 to 2.5.1. Release notes Sourced from scrapy's releases. 2.5.1 Security bug fix: If you use HttpAuthMiddleware (i.e. the http_user and http_pass spider attributes) for ...
X Description: Bumps scrapy from 2.4.1 to 2.5.1. Release notes Sourced from scrapy's releases. 2.5.1 Security bug fix: If you use HttpAuthMiddleware (i.e. the http_user and http_pass spider attributes) ...
Opengraph URL: https://github.com/barnwalp/python_scripts/pull/13
X: @github
Domain: github.com
| route-pattern | /:user_id/:repository/pull/:id/files(.:format) |
| route-controller | pull_requests |
| route-action | files |
| fetch-nonce | v2:24c5fb88-854e-abc1-759e-da7f2184bd05 |
| current-catalog-service-hash | ae870bc5e265a340912cde392f23dad3671a0a881730ffdadd82f2f57d81641b |
| request-id | D046:2371E7:4DCB4BA:6D3437E:6A50FA11 |
| html-safe-nonce | b229a915defdb94b9533c6a117072c8aa4d93a663d0a23d39ca7ee4a2d4ab104 |
| visitor-payload | eyJyZWZlcnJlciI6IiIsInJlcXVlc3RfaWQiOiJEMDQ2OjIzNzFFNzo0RENCNEJBOjZEMzQzN0U6NkE1MEZBMTEiLCJ2aXNpdG9yX2lkIjoiMzIwODQ0MzM2NzY0Mjk1NDI1NyIsInJlZ2lvbl9lZGdlIjoiaWFkIiwicmVnaW9uX3JlbmRlciI6ImlhZCJ9 |
| visitor-hmac | f1af0c2a460d894e713e385788cdf5c759e3dd1db1532e7551830e325acf4d25 |
| hovercard-subject-tag | pull_request:752690605 |
| github-keyboard-shortcuts | repository,pull-request-list,pull-request-conversation,pull-request-files-changed,copilot |
| google-site-verification | Apib7-x98H0j5cPqHWwSMm6dNU4GmODRoqxLiDzdx9I |
| octolytics-url | https://collector.github.com/github/collect |
| analytics-location | / |
| fb:app_id | 1401488693436528 |
| apple-itunes-app | app-id=1477376905, app-argument=https://github.com/barnwalp/python_scripts/pull/13/files |
| twitter:image | https://avatars.githubusercontent.com/in/29110?s=400&v=4 |
| twitter:card | summary_large_image |
| og:image | https://avatars.githubusercontent.com/in/29110?s=400&v=4 |
| og:image:alt | Bumps scrapy from 2.4.1 to 2.5.1. Release notes Sourced from scrapy's releases. 2.5.1 Security bug fix: If you use HttpAuthMiddleware (i.e. the http_user and http_pass spider attributes) for ... |
| og:site_name | GitHub |
| og:type | object |
| hostname | github.com |
| expected-hostname | github.com |
| None | 5266e58c17a510c403505cc811606465e90a881d2007ee7df1c4800d5c659838 |
| turbo-cache-control | no-preview |
| diff-view | unified |
| go-import | github.com/barnwalp/python_scripts git https://github.com/barnwalp/python_scripts.git |
| octolytics-dimension-user_id | 1755157 |
| octolytics-dimension-user_login | barnwalp |
| octolytics-dimension-repository_id | 258793445 |
| octolytics-dimension-repository_nwo | barnwalp/python_scripts |
| octolytics-dimension-repository_public | true |
| octolytics-dimension-repository_is_fork | false |
| octolytics-dimension-repository_network_root_id | 258793445 |
| octolytics-dimension-repository_network_root_nwo | barnwalp/python_scripts |
| turbo-body-classes | logged-out env-production page-responsive |
| disable-turbo | true |
| browser-stats-url | https://api.github.com/_private/browser/stats |
| browser-errors-url | https://api.github.com/_private/browser/errors |
| release | 8d836581d020676cc0ef4a83cd2fe17e4af02c3d |
| ui-target | canary-2 |
| theme-color | #1e2327 |
| color-scheme | light dark |
Links:
Viewport: width=device-width