Bump gunicorn from 25.1.0 to 25.2.0

[dependabot]

Bumps gunicorn from 25.1.0 to 25.2.0.

Release notes

Sourced from gunicorn's releases.

Gunicorn 25.2.0

New Features

• Fast HTTP Parser (gunicorn_h1c 0.4.1): Integrate new exception types and limit parameters from gunicorn_h1c 0.4.1 for both WSGI and ASGI workers
  • Requires gunicorn_h1c >= 0.4.1 for http_parser='fast'
  • Falls back to Python parser in auto mode if version not met
  • Proper HTTP status codes for limit errors (414, 431)

Bug Fixes

• uWSGI Async Workers: Fix InvalidUWSGIHeader: incomplete header error when using gevent or gthread workers with uwsgi protocol behind nginx. (#3552, [PR #3554](benoitc/gunicorn#3554))

• FileWrapper Iterator Protocol: Add __iter__ and __next__ methods to FileWrapper for full PEP 3333 compliance. (#3396, [PR #3550](benoitc/gunicorn#3550))

Performance

• ASGI HTTP Parser Optimizations: Improve ASGI worker HTTP parsing performance
  • Callback-based parsing with direct bytearray buffer operations
  • Use bytearray.find() directly instead of converting to bytes first
  • Use index-based iteration for header parsing instead of list.pop(0) (O(1) vs O(n))

Commits

• dcaf2e1 Add 25.2.0 to 2026 changelog
• 6f601a0 Bump version to 25.2.0
• 22443a8 Bump tornado to 6.5.5 in lock file
• cb708b4 Add uwsgi async fix to changelog
• 385a921 Fix uwsgi incomplete header error with async workers (#3554)
• f555180 Add FileWrapper iterator fix to changelog
• f8fca7a fix: add iter and next to FileWrapper for PEP 3333 compliance (#3550)
• 0ad47db Use user-writable default path for control socket (#3551)
• 3667a10 Merge pull request #3549 from benoitc/feature/optional-http-parser
• 3568af1 Skip SIGINT shutdown test on PyPy
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)