Skip to content

Bump okhttp from 3.14.2 to 4.9.3#2885

Closed
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/maven/com.squareup.okhttp3-okhttp-4.9.3
Closed

Bump okhttp from 3.14.2 to 4.9.3#2885
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/maven/com.squareup.okhttp3-okhttp-4.9.3

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github May 13, 2022

Bumps okhttp from 3.14.2 to 4.9.3.

Changelog

Sourced from okhttp's changelog.

Change Log

Version 5.0.0-alpha.7

2022-04-26

This release introduces new Kotlin-friendly APIs. When we migrated OkHttp from Java to Kotlin in OkHttp 4.0, we kept our Java-first APIs. With 5.0 we're continuing to support Java and adding additional improvements for Kotlin users. In this alpha we're excited to skip-the-builder for requests and remove a common source of non-null assertions (!!) on the response body.

The alpha releases in the 5.0.0 series have production-quality code and an unstable API. We expect to make changes to the APIs introduced in 5.0.0-alpha.X. These releases are safe for production use and 'alpha' strictly signals that we're still experimenting with some new APIs. If you're eager for the fixes or features below, please upgrade.

  • New: Named and default parameters constructor for Request:

    val request = Request(
  url = "https://cash.app/".toHttpUrl(),
)

  • New: Response.body is now non-null. This was generally the case in OkHttp 4.x, but the Kotlin type declaration was nullable to support rare cases like the body on Response.cacheResponse, Response.networkResponse, and Response.priorResponse. In such cases the body is now non-null, but attempts to read its content will fail.

  • New: Kotlin-specific APIs for request tags. Kotlin language users can lookup tags with a type parameter only, like request.tag<MyTagClass>().

  • New: MockWebServer has improved support for HTTP/1xx responses. Once you've migrated to the new mockwebserver3 package, there's a new field, MockResponse.informationalResponses.

  • Fix: Don't interpret trailers as headers after an HTTP/100 response. This was a bug only when the HTTP response body itself is empty.

  • Fix: Don't crash when a fast fallback call has both a deferred connection and a held connection.

  • Fix: OkHttpClient no longer implements Cloneable. It never should have; the class is immutable. This is left over from OkHttp 2.x (!) when that class was mutable. We're using the 5.x upgrade as an opportunity to remove very obsolete APIs.

  • Fix: Recover gracefully when Android's NativeCrypto crashes with "ssl == null". This occurs when OkHttp retrieves ALPN state on a closed connection.

  • Upgrade: [Kotlin 1.6.21][kotlin_1_6_21].

  • Upgrade: [Okio 3.1.0][okio_3_1_0].

Version 5.0.0-alpha.6

2022-03-14

  • Fix: Don't attempt to close pooled connections. We saw occasional fast fallback calls crash in

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump okhttp from 3.14.2 to 4.9.3
d7867a6 
Bumps [okhttp](https://github.com/square/okhttp) from 3.14.2 to 4.9.3.
- [Release notes](https://github.com/square/okhttp/releases)
- [Changelog](https://github.com/square/okhttp/blob/master/CHANGELOG.md)
- [Commits](square/okhttp@parent-3.14.2...parent-4.9.3)

---
updated-dependencies:
- dependency-name: com.squareup.okhttp3:okhttp
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label May 13, 2022
@hezhangjian
Copy link
Copy Markdown
Member

hezhangjian commented May 13, 2022

It's not a good time to upgrade okhttp, ignore it first.

@hezhangjian
Copy link
Copy Markdown
Member

hezhangjian commented May 13, 2022

@dependabot ignore this minor version

@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot bot commented on behalf of github May 13, 2022

OK, I won't notify you about version 4.9.x again, unless you re-open this PR or update to a 4.9.x release yourself.

@dependabot dependabot bot closed this May 13, 2022
@dependabot dependabot bot deleted the dependabot/maven/com.squareup.okhttp3-okhttp-4.9.3 branch May 13, 2022 07:44
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@hezhangjian