Skip to content

Bump gunicorn from 23.0.0 to 24.1.1#1590

Merged
ChrisLovering merged 1 commit intomainfrom
dependabot/uv/gunicorn-24.1.1
Apr 3, 2026
Merged

Bump gunicorn from 23.0.0 to 24.1.1#1590
ChrisLovering merged 1 commit intomainfrom
dependabot/uv/gunicorn-24.1.1

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Feb 27, 2026
edited
Loading

Bumps gunicorn from 23.0.0 to 24.1.1.

Release notes

Sourced from gunicorn's releases.

24.1.1

Bug Fixes

  • Fix forwarded_allow_ips and proxy_allow_ips to remain as strings for backward compatibility with external tools like uvicorn. Network validation now uses strict mode to detect invalid CIDR notation (e.g., 192.168.1.1/24 where host bits are set) (#3458, [PR #3459](benoitc/gunicorn#3459))

Full Changelog: benoitc/gunicorn@24.1.0...24.1.1

Gunicorn 24.1.0

New Features

  • Official Docker Image: Gunicorn now publishes official Docker images to GitHub Container Registry ([PR #3454](benoitc/gunicorn#3454))

    • Available at ghcr.io/benoitc/gunicorn
    • Based on Python 3.12 slim image
    • Uses recommended worker formula (2 × CPU + 1)
    • Configurable via environment variables

  • PROXY Protocol v2 Support: Extended PROXY protocol implementation to support the binary v2 format in addition to the existing text-based v1 format ([PR #3451](benoitc/gunicorn#3451))

    • New --proxy-protocol modes: off, v1, v2, auto
    • auto mode (default when enabled) detects v1 or v2 automatically
    • v2 binary format is more efficient and supports additional metadata
    • Works with HAProxy, AWS NLB/ALB, and other PROXY protocol v2 sources

  • CIDR Network Support: --forwarded-allow-ips and --proxy-allow-from now accept CIDR notation (e.g., 192.168.0.0/16) for specifying trusted networks ([PR #3449](benoitc/gunicorn#3449))

  • Socket Backlog Metric: New gunicorn.socket.backlog gauge metric reports the current socket backlog size on Linux systems ([PR #3450](benoitc/gunicorn#3450))

  • InotifyReloader Enhancement: The inotify-based reloader now watches newly imported modules, not just those loaded at startup ([PR #3447](benoitc/gunicorn#3447))

Bug Fixes

Installation

pip install gunicorn==24.1.0
</tr></table>

... (truncated)

Commits
  • 375e79e release: bump version to 24.1.1
  • ad0c12d docs: add sponsors section to README
  • 70200ee chore: add GitHub Sponsors funding configuration
  • 6841804 docs: remove incorrect PR reference from Docker changelog entry
  • abce0ca docs: add 24.1.1 changelog entry for forwarded_allow_ips fix
  • e9a3f30 fix: keep forwarded_allow_ips as strings for backward compatibility (#3459)
  • d73ff4b docs: update main changelog with 24.1.0
  • 53f2c31 ci: allow docs deploy on workflow_dispatch
  • eab5f0b ci: trigger Docker publish on tags with or without v prefix
  • a20d3fb docs: add Docker image to 24.1.0 changelog
  • Additional commits viewable in compare view

Most Recent Ignore Conditions Applied to This Pull Request
Dependency Name Ignore Conditions
gunicorn [>= 25.dev0, < 26]

@dependabot dependabot bot added dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code labels Feb 27, 2026
@netlify
Copy link
Copy Markdown

netlify bot commented Feb 27, 2026
edited
Loading

Deploy Preview for pydis-static ready!

Name Link
🔨 Latest commit 0ab5fc3
🔍 Latest deploy log https://app.netlify.com/projects/pydis-static/deploys/69cfeb08b03bf7000927f0e3
😎 Deploy Preview https://deploy-preview-1590--pydis-static.netlify.app
📱 Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify project configuration.

@python-discord-policy-bot python-discord-policy-bot bot requested a review from a team February 27, 2026 05:54
@jchristgit jchristgit self-assigned this Mar 5, 2026
jchristgit
jchristgit approved these changes Mar 5, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

@jchristgit jchristgit left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Seems sane, but I don't think I'll approve anything > 25 here in the future.

@ChrisLovering
Copy link
Copy Markdown
Member

ChrisLovering commented Apr 3, 2026

@dependabot recreate

@dependabot
Bump gunicorn from 23.0.0 to 24.1.1
0ab5fc3 
Bumps [gunicorn](https://github.com/benoitc/gunicorn) from 23.0.0 to 24.1.1.
- [Release notes](https://github.com/benoitc/gunicorn/releases)
- [Commits](benoitc/gunicorn@23.0.0...24.1.1)

---
updated-dependencies:
- dependency-name: gunicorn
  dependency-version: 24.1.1
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/uv/gunicorn-24.1.1 branch from de31aaa to 0ab5fc3 Compare April 3, 2026 16:29
@ChrisLovering ChrisLovering enabled auto-merge (squash) April 3, 2026 16:30
@ChrisLovering ChrisLovering merged commit abe6db8 into main Apr 3, 2026
11 checks passed
@ChrisLovering ChrisLovering deleted the dependabot/uv/gunicorn-24.1.1 branch April 3, 2026 16:31
@coveralls
Copy link
Copy Markdown

coveralls commented Apr 3, 2026

Coverage Status

coverage: 100.0%. remained the same
when pulling 0ab5fc3 on dependabot/uv/gunicorn-24.1.1
into 7f343b2 on main.

@jchristgit
Copy link
Copy Markdown
Contributor

jchristgit commented Apr 3, 2026

image

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@ChrisLovering ChrisLovering ChrisLovering approved these changes

@jchristgit jchristgit jchristgit approved these changes

Assignees

@jchristgit jchristgit

Labels

dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@ChrisLovering @coveralls @jchristgit