Skip to content

chore(deps-dev): bump multipart from 0.2.5 to 1.2.2#376

Merged
Sashwatdas123 merged 1 commit into
mainfrom
dependabot/pip/multipart-1.2.2
May 27, 2026
Merged

chore(deps-dev): bump multipart from 0.2.5 to 1.2.2#376
Sashwatdas123 merged 1 commit into
mainfrom
dependabot/pip/multipart-1.2.2

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 27, 2026
edited
Loading

Bumps multipart from 0.2.5 to 1.2.2.

Release notes

Sourced from multipart's releases.

v1.2.2

Full Changelog: defnull/multipart@v1.2.1...v1.2.2

This release contains security fixes. See GHSA-p2m9-wcp5-6qw3

v1.2.1

Full Changelog: defnull/multipart@v1.2.0...v1.2.1

v1.2.0

Full Changelog: defnull/multipart@v1.1.0...v1.2.0

v1.1.0

Full Changelog: defnull/multipart@v1.0.0...v1.1.0

v1.0.0

Full Changelog: defnull/multipart@v0.2.5...v1.0.0

Changelog

Sourced from multipart's changelog.

========= Changelog

This project follows Semantic Versioning (major.minor.patch), with the exception that behavior changes are allowed in minor releases as long as the change corrects behavior to match documentation, specification or expectation. In other words: Bugfixes do not count as backward incompatible changes, even if they technically change behavior from incorrect to correct and may break applications that rely on incorrect or undefined behavior or undocumented APIs. EOL Python versions may also be dropped during minor releases.

Release 1.4 (not released yet)

  • change: Dropped support for Python 3.8 and 3.8 (both EOL)
  • change: Raise mor helpful :exc:ParserStateError instead of implicit :exc:AssertionError or :exc:TypeError when the parser is used incorrectly.
  • feat: Hardened (and faster) header validation.
  • git: Change default brach to main

Release 1.3

This release adds new APIs and contains internal or non-breaking api changes.

  • feat: New convenience methods :meth:PushMultipartParser.parse_blocking and :meth:PushMultipartParser.parse_async.
  • feat: Nicer error messages when reading from a closed MultipartPart.
  • feat: Improved typing.
  • change: segment is now a required constructor argument for MultipartPart and changed position. The constructor is not part of the public API, so this should not break user code.
  • fix/change: Closing a MultipartPart should set its file to None, not False.

Release 1.2

This release improves error handling, documentation and performance, fixes several parser edge-cases and adds new functionality. API changes are backwards compatible.

  • feat: Split up MultipartError into more specific exceptions and add HTTP status code hints. All exceptions are subclasses of MultipartError.
  • feat: New parse_form_data(ignore_errors) parameter to throw exceptions in non-strict mode, or suppress exceptions in strict mode. Default behavior does not change (throw in strict-mode, ignore in non-strict mode).

... (truncated)

Commits
  • eeaff60 Release of 1.2.2
  • d6f79b3 fix: Header parser performance
  • 0071a55 Release of 1.2.1
  • 1c87607 build: Explicitly list additional sdist files.
  • 970f764 Release of 1.2.0
  • d28f0ce build: Link to readthedocs.org in project metadata
  • cff5a25 build: Depend on sphinx-autobuild in dev mode.
  • f6f30ef docs: Finalize changelog for release
  • 54209b9 docs: Enable github banner and fixed sidebar
  • 382e8ae fix: Behavior of MultiDict.get(index=999)
  • Additional commits viewable in compare view

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python Pull requests that update python code labels May 27, 2026
@Sashwatdas123
Copy link
Copy Markdown
Contributor

Sashwatdas123 commented May 27, 2026

@dependabot rebase

@dependabot
chore(deps-dev): bump multipart from 0.2.5 to 1.2.2
0ca14d1 
Bumps [multipart](https://github.com/defnull/multipart) from 0.2.5 to 1.2.2.
- [Release notes](https://github.com/defnull/multipart/releases)
- [Changelog](https://github.com/defnull/multipart/blob/main/CHANGELOG.rst)
- [Commits](defnull/multipart@v0.2.5...v1.2.2)

---
updated-dependencies:
- dependency-name: multipart
  dependency-version: 1.2.2
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/pip/multipart-1.2.2 branch from 1e7e9a7 to 0ca14d1 Compare May 27, 2026 08:18
Sashwatdas123
Sashwatdas123 approved these changes May 27, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

@Sashwatdas123 Sashwatdas123 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@Sashwatdas123 Sashwatdas123 merged commit 891c7a8 into main May 27, 2026
7 of 9 checks passed
@Sashwatdas123 Sashwatdas123 deleted the dependabot/pip/multipart-1.2.2 branch May 27, 2026 08:23
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Sashwatdas123 Sashwatdas123 Sashwatdas123 approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python Pull requests that update python code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@Sashwatdas123