Bump bleach from 3.3.0 to 4.0.0 (!924) · Merge requests · Studievereniging via / viaduct

Studieverening via bot requested to merge dependabot/pip/bleach-4.0.0 into master Aug 07, 2021

Bumps bleach from 3.3.0 to 4.0.0.

Changelog

Version 4.0.0 (August 3rd, 2021)

Backwards incompatible changes

Drop support for unsupported Python versions <3.6 #520

Security fixes

None

Features

fix attribute name in the linkify docs (thanks @CheesyFeet!)

Version 3.3.1 (July 14th, 2021)

Security fixes

None

Features

add more tests for CVE-2021-23980 / GHSA-vv2x-vrpj-qqpq

bump python version to 3.8 for tox doc, vendorverify, and lint targets

update bug report template tag

update vendorverify script to detect and fail when extra files are vendored

update release process docs to check vendorverify passes locally

Bug fixes

remove extra vendored django present in the v3.3.0 whl #595

duplicate h1 header doc fix (thanks Nguyễn Gia Phong / @McSinyx!)

Commits

ad0004f Merge pull request #605 from mozilla/4.0.0-branch
5537128 update CHANGES and CONTRIBUTORS
275a51c bump major version and update releasedate
4d8a2e0 drop object from class definitions
783029f remove six usage, future.unicode_literals, compat functions
23d1397 drop security support for bleach 3.x versions
ae196a3 tests_website: remove six, bump version, update open script
e96c8d7 drop EOL pythons from tox, setup.py, and ci
45144d9 Merge pull request #600 from CheesyFeet/patch-1
ea1849a Update dev.rst
Additional commits viewable in compare view

Bump bleach from 3.3.0 to 4.0.0

Version 4.0.0 (August 3rd, 2021)

Version 3.3.1 (July 14th, 2021)

Merge request reports