chore(pip-prod)(deps): bump pyjwt from 2.4.0 to 2.8.0 in the pip group across 1 directory #293

2024-07-05T23:35:19+02:00

dependabot[bot] commented

2024-07-05 23:35:19 +02:00

(Migrated from github.com)

Bumps the pip group with 1 update in the / directory: pyjwt.

Updates pyjwt from 2.4.0 to 2.8.0

Release notes

Sourced from pyjwt's releases.

2.8.0

What's Changed

Export PyJWKClientConnectionError class by @daviddavis in jpadilla/pyjwt#887

[pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in jpadilla/pyjwt#889

Patch 1 by @juur in jpadilla/pyjwt#891

[pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in jpadilla/pyjwt#896

[pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in jpadilla/pyjwt#898

[pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in jpadilla/pyjwt#900

Update python version by @auvipy in jpadilla/pyjwt#895

api_jwt: add a strict_aud option by @woodruffw in jpadilla/pyjwt#902

New Contributors

@juur made their first contribution in jpadilla/pyjwt#891

Full Changelog: https://github.com/jpadilla/pyjwt/compare/2.7.0...2.8.0

2.7.0

What's Changed

Add classifier for Python 3.11 by @eseifert in jpadilla/pyjwt#818

Add Algorithm.compute_hash_digest and use it to implement at_hash validation example by @sirosen in jpadilla/pyjwt#775

fix: use datetime.datetime.timestamp function to have a milliseconds by @daillouf in jpadilla/pyjwt#821

[pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in jpadilla/pyjwt#825

Custom header configuration in jwk client by @thundercat1 in jpadilla/pyjwt#823

[pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in jpadilla/pyjwt#828

[pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in jpadilla/pyjwt#833

[pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in jpadilla/pyjwt#835

Add PyJWT._{de,en}code_payload hooks by @akx in jpadilla/pyjwt#829

Add sort_headers parameter to api_jwt.encode by @evroon in jpadilla/pyjwt#832

Make mypy configuration stricter and improve typing by @akx in jpadilla/pyjwt#830

Bump actions/stale from 6 to 7 by @dependabot in jpadilla/pyjwt#840

[pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in jpadilla/pyjwt#838

Add more types by @Viicos in jpadilla/pyjwt#843

Differentiate between two errors by @irdkwmnsb in jpadilla/pyjwt#809

Fix _validate_iat validation by @Viicos in jpadilla/pyjwt#847

Improve error messages when cryptography isn't installed by @Viicos in jpadilla/pyjwt#846

[pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in jpadilla/pyjwt#852

[pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in jpadilla/pyjwt#855

[pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in jpadilla/pyjwt#859

Make Algorithm an abstract base class by @Viicos in jpadilla/pyjwt#845

docs: correct mistake in the changelog about verify param by @gbillig in jpadilla/pyjwt#866

[pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in jpadilla/pyjwt#868

Bump actions/stale from 7 to 8 by @dependabot in jpadilla/pyjwt#872

[pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in jpadilla/pyjwt#874

Add a timeout for PyJWKClient requests by @daviddavis in jpadilla/pyjwt#875

Add client connection error exception by @daviddavis in jpadilla/pyjwt#876

Add complete types to take all allowed keys into account by @Viicos in jpadilla/pyjwt#873

[pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in jpadilla/pyjwt#878

Build and upload PyPI package by @jpadilla in jpadilla/pyjwt#884

Fix for issue #862 - ignore invalid keys in a jwks. by @timw6n in jpadilla/pyjwt#863

Add as_dict option to Algorithm.to_jwk by @fluxth in jpadilla/pyjwt#881

... (truncated)

Changelog

Sourced from pyjwt's changelog.

v2.8.0 <https://github.com/jpadilla/pyjwt/compare/2.7.0...2.8.0>__

Changed
- Update python version test matrix by @auvipy in `[#895](https://github.com/jpadilla/pyjwt/issues/895) <https://github.com/jpadilla/pyjwt/pull/895>`__
Fixed

Added


Add strict_aud as an option to jwt.decode by @woodruffw in [#902](https://github.com/jpadilla/pyjwt/issues/902) &lt;https://github.com/jpadilla/pyjwt/pull/902&gt;__
Export PyJWKClientConnectionError class by @daviddavis in [#887](https://github.com/jpadilla/pyjwt/issues/887) &lt;https://github.com/jpadilla/pyjwt/pull/887&gt;__
Allows passing of ssl.SSLContext to PyJWKClient by @juur in [#891](https://github.com/jpadilla/pyjwt/issues/891) &lt;https://github.com/jpadilla/pyjwt/pull/891&gt;__

v2.7.0 &lt;https://github.com/jpadilla/pyjwt/compare/2.6.0...2.7.0&gt;__
Changed
Changed the error message when the token audience doesn't match the expected audience by @irdkwmnsb [#809](https://github.com/jpadilla/pyjwt/issues/809) <https://github.com/jpadilla/pyjwt/pull/809>__

Improve error messages when cryptography isn't installed by @Viicos in [#846](https://github.com/jpadilla/pyjwt/issues/846) <https://github.com/jpadilla/pyjwt/pull/846>__

Make Algorithm an abstract base class by @Viicos in [#845](https://github.com/jpadilla/pyjwt/issues/845) <https://github.com/jpadilla/pyjwt/pull/845>__

ignore invalid keys in a jwks by @timw6n in [#863](https://github.com/jpadilla/pyjwt/issues/863) <https://github.com/jpadilla/pyjwt/pull/863>__

Fixed
- Add classifier for Python 3.11 by @eseifert in `[#818](https://github.com/jpadilla/pyjwt/issues/818) <https://github.com/jpadilla/pyjwt/pull/818>`__
- Fix ``_validate_iat`` validation by @Viicos in `[#847](https://github.com/jpadilla/pyjwt/issues/847) <https://github.com/jpadilla/pyjwt/pull/847>`__
- fix: use datetime.datetime.timestamp function to have a milliseconds by @daillouf `[#821](https://github.com/jpadilla/pyjwt/issues/821) <https://github.com/jpadilla/pyjwt/pull/821>`__
- docs: correct mistake in the changelog about verify param by @gbillig in `[#866](https://github.com/jpadilla/pyjwt/issues/866) <https://github.com/jpadilla/pyjwt/pull/866>`__
Added
Add compute_hash_digest as a method of Algorithm objects, which uses the underlying hash algorithm to compute a digest. If there is no appropriate hash algorithm, a NotImplementedError will be raised in [#775](https://github.com/jpadilla/pyjwt/issues/775) <https://github.com/jpadilla/pyjwt/pull/775>__

Add optional headers argument to PyJWKClient. If provided, the headers will be included in requests that the client uses when fetching the JWK set by @thundercat1 in [#823](https://github.com/jpadilla/pyjwt/issues/823) <https://github.com/jpadilla/pyjwt/pull/823>__

Add PyJWT._{de,en}code_payload hooks by @akx in [#829](https://github.com/jpadilla/pyjwt/issues/829) <https://github.com/jpadilla/pyjwt/pull/829>__

Add sort_headers parameter to api_jwt.encode by @evroon in [#832](https://github.com/jpadilla/pyjwt/issues/832) <https://github.com/jpadilla/pyjwt/pull/832>__

Make mypy configuration stricter and improve typing by @akx in [#830](https://github.com/jpadilla/pyjwt/issues/830) <https://github.com/jpadilla/pyjwt/pull/830>__

Add more types by @Viicos in [#843](https://github.com/jpadilla/pyjwt/issues/843) <https://github.com/jpadilla/pyjwt/pull/843>__

Add a timeout for PyJWKClient requests by @daviddavis in [#875](https://github.com/jpadilla/pyjwt/issues/875) <https://github.com/jpadilla/pyjwt/pull/875>__

... (truncated)

Commits

72ad55f bump version
22ba132 api_jwt: add a strict_aud option (#902)
6db5df7 Update python version (#895)
6e70276 [pre-commit.ci] pre-commit autoupdate (#900)
ea35155 [pre-commit.ci] pre-commit autoupdate (#898)
faeae6e [pre-commit.ci] pre-commit autoupdate (#896)
6cef6f2 Patch 1 (#891)
7f07d50 [pre-commit.ci] pre-commit autoupdate (#889)
1c27281 Export PyJWKClientConnectionError class (#887)
d7c54db chore: update readme
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
You can disable automated security fix PRs for this repo from the Security Alerts page.

Bumps the pip group with 1 update in the / directory: [pyjwt](https://github.com/jpadilla/pyjwt). Updates `pyjwt` from 2.4.0 to 2.8.0 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/jpadilla/pyjwt/releases">pyjwt's releases</a>.</em></p> <blockquote> <h2>2.8.0</h2> <h2>What's Changed</h2> <ul> <li>Export PyJWKClientConnectionError class by <a href="https://github.com/daviddavis"><code>@daviddavis</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/887">jpadilla/pyjwt#887</a></li> <li>[pre-commit.ci] pre-commit autoupdate by <a href="https://github.com/pre-commit-ci"><code>@pre-commit-ci</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/889">jpadilla/pyjwt#889</a></li> <li>Patch 1 by <a href="https://github.com/juur"><code>@juur</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/891">jpadilla/pyjwt#891</a></li> <li>[pre-commit.ci] pre-commit autoupdate by <a href="https://github.com/pre-commit-ci"><code>@pre-commit-ci</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/896">jpadilla/pyjwt#896</a></li> <li>[pre-commit.ci] pre-commit autoupdate by <a href="https://github.com/pre-commit-ci"><code>@pre-commit-ci</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/898">jpadilla/pyjwt#898</a></li> <li>[pre-commit.ci] pre-commit autoupdate by <a href="https://github.com/pre-commit-ci"><code>@pre-commit-ci</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/900">jpadilla/pyjwt#900</a></li> <li>Update python version by <a href="https://github.com/auvipy"><code>@auvipy</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/895">jpadilla/pyjwt#895</a></li> <li>api_jwt: add a <code>strict_aud</code> option by <a href="https://github.com/woodruffw"><code>@woodruffw</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/902">jpadilla/pyjwt#902</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/juur"><code>@juur</code></a> made their first contribution in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/891">jpadilla/pyjwt#891</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/jpadilla/pyjwt/compare/2.7.0...2.8.0">https://github.com/jpadilla/pyjwt/compare/2.7.0...2.8.0</a></p> <h2>2.7.0</h2> <h2>What's Changed</h2> <ul> <li>Add classifier for Python 3.11 by <a href="https://github.com/eseifert"><code>@eseifert</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/818">jpadilla/pyjwt#818</a></li> <li>Add <code>Algorithm.compute_hash_digest</code> and use it to implement at_hash validation example by <a href="https://github.com/sirosen"><code>@sirosen</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/775">jpadilla/pyjwt#775</a></li> <li>fix: use datetime.datetime.timestamp function to have a milliseconds by <a href="https://github.com/daillouf"><code>@daillouf</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/821">jpadilla/pyjwt#821</a></li> <li>[pre-commit.ci] pre-commit autoupdate by <a href="https://github.com/pre-commit-ci"><code>@pre-commit-ci</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/825">jpadilla/pyjwt#825</a></li> <li>Custom header configuration in jwk client by <a href="https://github.com/thundercat1"><code>@thundercat1</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/823">jpadilla/pyjwt#823</a></li> <li>[pre-commit.ci] pre-commit autoupdate by <a href="https://github.com/pre-commit-ci"><code>@pre-commit-ci</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/828">jpadilla/pyjwt#828</a></li> <li>[pre-commit.ci] pre-commit autoupdate by <a href="https://github.com/pre-commit-ci"><code>@pre-commit-ci</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/833">jpadilla/pyjwt#833</a></li> <li>[pre-commit.ci] pre-commit autoupdate by <a href="https://github.com/pre-commit-ci"><code>@pre-commit-ci</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/835">jpadilla/pyjwt#835</a></li> <li>Add PyJWT._{de,en}code_payload hooks by <a href="https://github.com/akx"><code>@akx</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/829">jpadilla/pyjwt#829</a></li> <li>Add <code>sort_headers</code> parameter to <code>api_jwt.encode</code> by <a href="https://github.com/evroon"><code>@evroon</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/832">jpadilla/pyjwt#832</a></li> <li>Make mypy configuration stricter and improve typing by <a href="https://github.com/akx"><code>@akx</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/830">jpadilla/pyjwt#830</a></li> <li>Bump actions/stale from 6 to 7 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/840">jpadilla/pyjwt#840</a></li> <li>[pre-commit.ci] pre-commit autoupdate by <a href="https://github.com/pre-commit-ci"><code>@pre-commit-ci</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/838">jpadilla/pyjwt#838</a></li> <li>Add more types by <a href="https://github.com/Viicos"><code>@Viicos</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/843">jpadilla/pyjwt#843</a></li> <li>Differentiate between two errors by <a href="https://github.com/irdkwmnsb"><code>@irdkwmnsb</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/809">jpadilla/pyjwt#809</a></li> <li>Fix <code>_validate_iat</code> validation by <a href="https://github.com/Viicos"><code>@Viicos</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/847">jpadilla/pyjwt#847</a></li> <li>Improve error messages when cryptography isn't installed by <a href="https://github.com/Viicos"><code>@Viicos</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/846">jpadilla/pyjwt#846</a></li> <li>[pre-commit.ci] pre-commit autoupdate by <a href="https://github.com/pre-commit-ci"><code>@pre-commit-ci</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/852">jpadilla/pyjwt#852</a></li> <li>[pre-commit.ci] pre-commit autoupdate by <a href="https://github.com/pre-commit-ci"><code>@pre-commit-ci</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/855">jpadilla/pyjwt#855</a></li> <li>[pre-commit.ci] pre-commit autoupdate by <a href="https://github.com/pre-commit-ci"><code>@pre-commit-ci</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/859">jpadilla/pyjwt#859</a></li> <li>Make <code>Algorithm</code> an abstract base class by <a href="https://github.com/Viicos"><code>@Viicos</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/845">jpadilla/pyjwt#845</a></li> <li>docs: correct mistake in the changelog about verify param by <a href="https://github.com/gbillig"><code>@gbillig</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/866">jpadilla/pyjwt#866</a></li> <li>[pre-commit.ci] pre-commit autoupdate by <a href="https://github.com/pre-commit-ci"><code>@pre-commit-ci</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/868">jpadilla/pyjwt#868</a></li> <li>Bump actions/stale from 7 to 8 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/872">jpadilla/pyjwt#872</a></li> <li>[pre-commit.ci] pre-commit autoupdate by <a href="https://github.com/pre-commit-ci"><code>@pre-commit-ci</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/874">jpadilla/pyjwt#874</a></li> <li>Add a timeout for PyJWKClient requests by <a href="https://github.com/daviddavis"><code>@daviddavis</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/875">jpadilla/pyjwt#875</a></li> <li>Add client connection error exception by <a href="https://github.com/daviddavis"><code>@daviddavis</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/876">jpadilla/pyjwt#876</a></li> <li>Add complete types to take all allowed keys into account by <a href="https://github.com/Viicos"><code>@Viicos</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/873">jpadilla/pyjwt#873</a></li> <li>[pre-commit.ci] pre-commit autoupdate by <a href="https://github.com/pre-commit-ci"><code>@pre-commit-ci</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/878">jpadilla/pyjwt#878</a></li> <li>Build and upload PyPI package by <a href="https://github.com/jpadilla"><code>@jpadilla</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/884">jpadilla/pyjwt#884</a></li> <li>Fix for issue <a href="https://redirect.github.com/jpadilla/pyjwt/issues/862">#862</a> - ignore invalid keys in a jwks. by <a href="https://github.com/timw6n"><code>@timw6n</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/863">jpadilla/pyjwt#863</a></li> <li>Add <code>as_dict</code> option to <code>Algorithm.to_jwk</code> by <a href="https://github.com/fluxth"><code>@fluxth</code></a> in <a href="https://redirect.github.com/jpadilla/pyjwt/pull/881">jpadilla/pyjwt#881</a></li> </ul>  </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/jpadilla/pyjwt/blob/master/CHANGELOG.rst">pyjwt's changelog</a>.</em></p> <blockquote> <h2><code>v2.8.0 <https://github.com/jpadilla/pyjwt/compare/2.7.0...2.8.0></code>__</h2> <p>Changed</p> <pre><code> - Update python version test matrix by @auvipy in `[#895](https://github.com/jpadilla/pyjwt/issues/895) <https://github.com/jpadilla/pyjwt/pull/895>`__ <p>Fixed</p> <pre><code> Added </code></pre> <ul> <li>Add <code>strict_aud</code> as an option to <code>jwt.decode</code> by <a href="https://github.com/woodruffw"><code>@woodruffw</code></a> in <code>[#902](https://github.com/jpadilla/pyjwt/issues/902) &lt;https://github.com/jpadilla/pyjwt/pull/902&gt;</code>__</li> <li>Export PyJWKClientConnectionError class by <a href="https://github.com/daviddavis"><code>@daviddavis</code></a> in <code>[#887](https://github.com/jpadilla/pyjwt/issues/887) &lt;https://github.com/jpadilla/pyjwt/pull/887&gt;</code>__</li> <li>Allows passing of ssl.SSLContext to PyJWKClient by <a href="https://github.com/juur"><code>@juur</code></a> in <code>[#891](https://github.com/jpadilla/pyjwt/issues/891) &lt;https://github.com/jpadilla/pyjwt/pull/891&gt;</code>__</li> </ul> <h2><code>v2.7.0 &lt;https://github.com/jpadilla/pyjwt/compare/2.6.0...2.7.0&gt;</code>__</h2> <p>Changed </code></pre></p> <ul> <li>Changed the error message when the token audience doesn't match the expected audience by <a href="https://github.com/irdkwmnsb"><code>@irdkwmnsb</code></a> <code>[#809](https://github.com/jpadilla/pyjwt/issues/809) <https://github.com/jpadilla/pyjwt/pull/809></code>__</li> <li>Improve error messages when cryptography isn't installed by <a href="https://github.com/Viicos"><code>@Viicos</code></a> in <code>[#846](https://github.com/jpadilla/pyjwt/issues/846) <https://github.com/jpadilla/pyjwt/pull/846></code>__</li> <li>Make <code>Algorithm</code> an abstract base class by <a href="https://github.com/Viicos"><code>@Viicos</code></a> in <code>[#845](https://github.com/jpadilla/pyjwt/issues/845) <https://github.com/jpadilla/pyjwt/pull/845></code>__</li> <li>ignore invalid keys in a jwks by <a href="https://github.com/timw6n"><code>@timw6n</code></a> in <code>[#863](https://github.com/jpadilla/pyjwt/issues/863) <https://github.com/jpadilla/pyjwt/pull/863></code>__</li> </ul> <p>Fixed</p> <pre><code> - Add classifier for Python 3.11 by @eseifert in `[#818](https://github.com/jpadilla/pyjwt/issues/818) <https://github.com/jpadilla/pyjwt/pull/818>`__ - Fix ``_validate_iat`` validation by @Viicos in `[#847](https://github.com/jpadilla/pyjwt/issues/847) <https://github.com/jpadilla/pyjwt/pull/847>`__ - fix: use datetime.datetime.timestamp function to have a milliseconds by @daillouf `[#821](https://github.com/jpadilla/pyjwt/issues/821) <https://github.com/jpadilla/pyjwt/pull/821>`__ - docs: correct mistake in the changelog about verify param by @gbillig in `[#866](https://github.com/jpadilla/pyjwt/issues/866) <https://github.com/jpadilla/pyjwt/pull/866>`__ <p>Added </code></pre></p> <ul> <li>Add <code>compute_hash_digest</code> as a method of <code>Algorithm</code> objects, which uses the underlying hash algorithm to compute a digest. If there is no appropriate hash algorithm, a <code>NotImplementedError</code> will be raised in <code>[#775](https://github.com/jpadilla/pyjwt/issues/775) <https://github.com/jpadilla/pyjwt/pull/775></code>__</li> <li>Add optional <code>headers</code> argument to <code>PyJWKClient</code>. If provided, the headers will be included in requests that the client uses when fetching the JWK set by <a href="https://github.com/thundercat1"><code>@thundercat1</code></a> in <code>[#823](https://github.com/jpadilla/pyjwt/issues/823) <https://github.com/jpadilla/pyjwt/pull/823></code>__</li> <li>Add PyJWT._{de,en}code_payload hooks by <a href="https://github.com/akx"><code>@akx</code></a> in <code>[#829](https://github.com/jpadilla/pyjwt/issues/829) <https://github.com/jpadilla/pyjwt/pull/829></code>__</li> <li>Add <code>sort_headers</code> parameter to <code>api_jwt.encode</code> by <a href="https://github.com/evroon"><code>@evroon</code></a> in <code>[#832](https://github.com/jpadilla/pyjwt/issues/832) <https://github.com/jpadilla/pyjwt/pull/832></code>__</li> <li>Make mypy configuration stricter and improve typing by <a href="https://github.com/akx"><code>@akx</code></a> in <code>[#830](https://github.com/jpadilla/pyjwt/issues/830) <https://github.com/jpadilla/pyjwt/pull/830></code>__</li> <li>Add more types by <a href="https://github.com/Viicos"><code>@Viicos</code></a> in <code>[#843](https://github.com/jpadilla/pyjwt/issues/843) <https://github.com/jpadilla/pyjwt/pull/843></code>__</li> <li>Add a timeout for PyJWKClient requests by <a href="https://github.com/daviddavis"><code>@daviddavis</code></a> in <code>[#875](https://github.com/jpadilla/pyjwt/issues/875) <https://github.com/jpadilla/pyjwt/pull/875></code>__</li> </ul>  </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/jpadilla/pyjwt/commit/72ad55f6d7041ae698dc0790a690804118be50fc"><code>72ad55f</code></a> bump version</li> <li><a href="https://github.com/jpadilla/pyjwt/commit/22ba13287874a7a22748b451c7d84f12b2f8ccab"><code>22ba132</code></a> api_jwt: add a <code>strict_aud</code> option (<a href="https://redirect.github.com/jpadilla/pyjwt/issues/902">#902</a>)</li> <li><a href="https://github.com/jpadilla/pyjwt/commit/6db5df72d031bd49f8a25e84ccf4ec91b2d6af3b"><code>6db5df7</code></a> Update python version (<a href="https://redirect.github.com/jpadilla/pyjwt/issues/895">#895</a>)</li> <li><a href="https://github.com/jpadilla/pyjwt/commit/6e7027684c37218786c1526c6790a57720602fa9"><code>6e70276</code></a> [pre-commit.ci] pre-commit autoupdate (<a href="https://redirect.github.com/jpadilla/pyjwt/issues/900">#900</a>)</li> <li><a href="https://github.com/jpadilla/pyjwt/commit/ea351558128d726ead5502409a6a14dc05119578"><code>ea35155</code></a> [pre-commit.ci] pre-commit autoupdate (<a href="https://redirect.github.com/jpadilla/pyjwt/issues/898">#898</a>)</li> <li><a href="https://github.com/jpadilla/pyjwt/commit/faeae6e54312f9827f369d185f60e99579338309"><code>faeae6e</code></a> [pre-commit.ci] pre-commit autoupdate (<a href="https://redirect.github.com/jpadilla/pyjwt/issues/896">#896</a>)</li> <li><a href="https://github.com/jpadilla/pyjwt/commit/6cef6f28fa63f2bb01d22ff03868409da24373fd"><code>6cef6f2</code></a> Patch 1 (<a href="https://redirect.github.com/jpadilla/pyjwt/issues/891">#891</a>)</li> <li><a href="https://github.com/jpadilla/pyjwt/commit/7f07d50b41d21cb476bf81853257f9f9fedae3bc"><code>7f07d50</code></a> [pre-commit.ci] pre-commit autoupdate (<a href="https://redirect.github.com/jpadilla/pyjwt/issues/889">#889</a>)</li> <li><a href="https://github.com/jpadilla/pyjwt/commit/1c272817a217c03534feb98004f3f6bd10512e07"><code>1c27281</code></a> Export PyJWKClientConnectionError class (<a href="https://redirect.github.com/jpadilla/pyjwt/issues/887">#887</a>)</li> <li><a href="https://github.com/jpadilla/pyjwt/commit/d7c54dbebdab2ae17f7948fd4432b15e1bb82852"><code>d7c54db</code></a> chore: update readme</li> <li>Additional commits viewable in <a href="https://github.com/jpadilla/pyjwt/compare/2.4.0...2.8.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pyjwt&package-manager=pip&previous-version=2.4.0&new-version=2.8.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore <dependency name> major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore <dependency name> minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore <dependency name>` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore <dependency name>` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore <dependency name> <ignore condition>` will remove the ignore condition of the specified dependency and ignore conditions You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/luketainton/webexmemebot/network/alerts). </details>

luketainton (Migrated from github.com) reviewed 2024-07-05 23:35:19 +02:00

sonarqubecloud[bot] commented

2024-07-05 23:36:22 +02:00

(Migrated from github.com)

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud

## [![Quality Gate Passed](https://sonarsource.github.io/sonarcloud-github-static-resources/v2/checks/QualityGateBadge/qg-passed-20px.png 'Quality Gate Passed')](https://sonarcloud.io/dashboard?id=luketainton_webexmemebot&pullRequest=293) **Quality Gate passed** Issues ![](https://sonarsource.github.io/sonarcloud-github-static-resources/v2/common/passed-16px.png '') [0 New issues](https://sonarcloud.io/project/issues?id=luketainton_webexmemebot&pullRequest=293&resolved=false&sinceLeakPeriod=true) ![](https://sonarsource.github.io/sonarcloud-github-static-resources/v2/common/accepted-16px.png '') [0 Accepted issues](https://sonarcloud.io/project/issues?id=luketainton_webexmemebot&pullRequest=293&resolutions=WONTFIX) Measures ![](https://sonarsource.github.io/sonarcloud-github-static-resources/v2/common/passed-16px.png '') [0 Security Hotspots](https://sonarcloud.io/project/security_hotspots?id=luketainton_webexmemebot&pullRequest=293&resolved=false&sinceLeakPeriod=true) ![](https://sonarsource.github.io/sonarcloud-github-static-resources/v2/common/passed-16px.png '') [0.0% Coverage on New Code](https://sonarcloud.io/component_measures?id=luketainton_webexmemebot&pullRequest=293&metric=new_coverage&view=list) ![](https://sonarsource.github.io/sonarcloud-github-static-resources/v2/common/passed-16px.png '') [0.0% Duplication on New Code](https://sonarcloud.io/component_measures?id=luketainton_webexmemebot&pullRequest=293&metric=new_duplicated_lines_density&view=list) [See analysis details on SonarCloud](https://sonarcloud.io/dashboard?id=luketainton_webexmemebot&pullRequest=293)

Sign in to join this conversation.

No reviewers

luketainton