Bump requests from 2.32.5 to 2.33.0 in /mocks by dependabot[bot] · Pull Request #82 · NHSDigital/clinical-data-pathology-api

dependabot · 2026-03-26T18:38:32Z

Bumps requests from 2.32.5 to 2.33.0.

Release notes

v2.33.0

2.33.0 (2026-03-25)

Announcements

📣 Requests is adding inline types. If you have a typed code base that uses Requests, please take a look at #7271. Give it a try, and report any gaps or feedback you may have in the issue. 📣

Security

CVE-2026-25645 requests.utils.extract_zipped_paths now extracts contents to a non-deterministic location to prevent malicious file replacement. This does not affect default usage of Requests, only applications calling the utility function directly.

Improvements

Migrated to a PEP 517 build system using setuptools. (#7012)

Bugfixes

Fixed an issue where an empty netrc entry could cause malformed authentication to be applied to Requests on Python 3.11+. (#7205)

Deprecations

Dropped support for Python 3.9 following its end of support. (#7196)

Documentation

Various typo fixes and doc improvements.

New Contributors

@M0d3v1 made their first contribution in psf/requests#6865

@aminvakil made their first contribution in psf/requests#7220

@E8Price made their first contribution in psf/requests#6960

@mitre88 made their first contribution in psf/requests#7244

@magsen made their first contribution in psf/requests#6553

@Rohan5commit made their first contribution in psf/requests#7227

Full Changelog: https://github.com/psf/requests/blob/main/HISTORY.md#2330-2026-03-25

Changelog

Sourced from requests's changelog.

2.33.0 (2026-03-25)

Announcements

📣 Requests is adding inline types. If you have a typed code base that uses Requests, please take a look at #7271. Give it a try, and report any gaps or feedback you may have in the issue. 📣

Security

CVE-2026-25645 requests.utils.extract_zipped_paths now extracts contents to a non-deterministic location to prevent malicious file replacement. This does not affect default usage of Requests, only applications calling the utility function directly.

Improvements

Migrated to a PEP 517 build system using setuptools. (#7012)

Bugfixes

Fixed an issue where an empty netrc entry could cause malformed authentication to be applied to Requests on Python 3.11+. (#7205)

Deprecations

Dropped support for Python 3.9 following its end of support. (#7196)

Documentation

Various typo fixes and doc improvements.

Commits

bc04dfd v2.33.0
66d21cb Merge commit from fork
8b9bc8f Move badges to top of README (#7293)
e331a28 Remove unused extraction call (#7292)
753fd08 docs: fix FAQ grammar in httplib2 example
774a0b8 docs(socks): same block as other sections
9c72a41 Bump github/codeql-action from 4.33.0 to 4.34.1
ebf7190 Bump github/codeql-action from 4.32.0 to 4.33.0
0e4ae38 docs: exclude Response.is_permanent_redirect from API docs (#7244)
d568f47 docs: clarify Quickstart POST example (#6960)
Additional commits viewable in compare view

neil-sproston · 2026-04-02T10:02:03Z

Closing to recreate after dependabot config change

dependabot · 2026-04-02T10:02:06Z

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

sonarqubecloud · 2026-04-02T15:08:46Z

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

neil-sproston · 2026-04-02T15:13:21Z

@dependabot recreate

neil-sproston · 2026-04-16T08:38:36Z

@dependabot rebase

Bumps [requests](https://github.com/psf/requests) from 2.32.5 to 2.33.0. - [Release notes](https://github.com/psf/requests/releases) - [Changelog](https://github.com/psf/requests/blob/main/HISTORY.md) - [Commits](psf/requests@v2.32.5...v2.33.0) --- updated-dependencies: - dependency-name: requests dependency-version: 2.33.0 dependency-type: direct:development ... Signed-off-by: dependabot[bot] <support@github.com>

github-actions · 2026-04-16T08:48:01Z

Deployment Complete

Preview with mock:
- URL: https://dependabot-82.dev.endpoints.pathology-laboratory-reporting.national.nhs.uk — Status
  - Smoke test result: ✅ Passed (HTTP 200)
- Proxy URL: https://internal-dev.api.service.nhs.uk/pathology-laboratory-reporting-pr-82
- Lambda function: pr-dependabot-82
Mock endpoints:
- URL: https://dependabot-82.m.dev.endpoints.pathology-laboratory-reporting.national.nhs.uk
  - Smoke test result: ✅ Passed (HTTP 200)
- Lambda function: mock-dependabot-82
Preview with integration:
- URL: Skipped for Dependabot PR
  - Smoke test result: Skipped for Dependabot PR
- Proxy URL: Skipped for Dependabot PR
- Lambda function: Skipped for Dependabot PR

neil-sproston

Pasess tests

dependabot Bot added dependencies Pull requests that update a dependency file python Pull requests that update python code labels Mar 26, 2026

dependabot Bot requested a review from a team as a code owner March 26, 2026 18:38

neil-sproston closed this Apr 2, 2026

dependabot Bot deleted the dependabot/pip/mocks/requests-2.33.0 branch April 2, 2026 10:02

neil-sproston restored the dependabot/pip/mocks/requests-2.33.0 branch April 2, 2026 15:03

neil-sproston reopened this Apr 2, 2026

dependabot Bot force-pushed the dependabot/pip/mocks/requests-2.33.0 branch from f87ef94 to ae8d72f Compare April 3, 2026 15:29

dependabot Bot force-pushed the dependabot/pip/mocks/requests-2.33.0 branch from ae8d72f to a1a2f3e Compare April 15, 2026 14:13

dependabot Bot force-pushed the dependabot/pip/mocks/requests-2.33.0 branch from a1a2f3e to 6bb1862 Compare April 16, 2026 08:39

neil-sproston approved these changes Apr 16, 2026

View reviewed changes

neil-sproston merged commit 06fe3cc into main Apr 16, 2026
37 checks passed

neil-sproston deleted the dependabot/pip/mocks/requests-2.33.0 branch April 16, 2026 09:20

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump requests from 2.32.5 to 2.33.0 in /mocks#82

Bump requests from 2.32.5 to 2.33.0 in /mocks#82
neil-sproston merged 1 commit intomainfrom
dependabot/pip/mocks/requests-2.33.0

dependabot Bot commented on behalf of github Mar 26, 2026 •

edited

Loading

Uh oh!

neil-sproston commented Apr 2, 2026

Uh oh!

dependabot Bot commented on behalf of github Apr 2, 2026

Uh oh!

sonarqubecloud Bot commented Apr 2, 2026

Uh oh!

neil-sproston commented Apr 2, 2026

Uh oh!

neil-sproston commented Apr 16, 2026

Uh oh!

github-actions Bot commented Apr 16, 2026

Uh oh!

neil-sproston left a comment

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

dependabot Bot commented on behalf of github Mar 26, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

v2.33.0

2.33.0 (2026-03-25)

New Contributors

2.33.0 (2026-03-25)

Uh oh!

neil-sproston commented Apr 2, 2026

Uh oh!

dependabot Bot commented on behalf of github Apr 2, 2026

Uh oh!

sonarqubecloud Bot commented Apr 2, 2026

Quality Gate passed

Uh oh!

neil-sproston commented Apr 2, 2026

Uh oh!

neil-sproston commented Apr 16, 2026

Uh oh!

github-actions Bot commented Apr 16, 2026

Uh oh!

neil-sproston left a comment

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

dependabot Bot commented on behalf of github Mar 26, 2026 •

edited

Loading