Bump aiohttp to 3.9.3 #109025
Merged
Bump aiohttp to 3.9.3 #109025
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
home-assistant
bot
added
cla-signed
core
dependency
small-pr
bdraco
added a commit
that referenced
this pull request
Jan 28, 2024
https://github.com/aio-libs/aiohttp/releases/tag/v3.9.2 opened directly to rc since #109025 is blocked
|
Thanks @joostlek |
|
Seen and started merge + bumb, sorry for inconvenience |
|
New version is ready without the pinning, thanks for the heads-up both! |
|
Thanks |
MartinHjelmare
approved these changes
Jan 29, 2024
|
Please take a look at the requested changes, and use the Ready for review button when you are done, thanks 👍 |
|
We need to hold on this for another release since 3.9.2 is not compatible with aiobotocore aio-libs/aiohttp#8098 |
|
I'll double check the websocket changes but I think this is OK as it's actually being closed instead of getting close and than hanging open now which is a good thing |
|
Final analysis indicates HA is not affected by the two security changes in aiohttp so we can wait for aiobotocore to be fixed here. I'm going to drop the milestone. I'll retarget it as soon as the new aiohttp release is available |
frenck
approved these changes
Jan 29, 2024
frenck
approved these changes
Jan 29, 2024
Moustachauve
pushed a commit
to Moustachauve/HA-core
that referenced
this pull request
Jan 30, 2024
Co-authored-by: Joost Lekkerkerker <[email protected]>
frenck
pushed a commit
that referenced
this pull request
Jan 30, 2024
Co-authored-by: Joost Lekkerkerker <[email protected]>
Merged
nrdufour
added a commit
to nrdufour/home-ops
that referenced
this pull request
Jan 31, 2024
…to v2024.1.6 (#350) This PR contains the following updates: | Package | Update | Change | |---|---|---| | [ghcr.io/home-assistant/home-assistant](https://www.home-assistant.io/) ([source](https://github.com/home-assistant/core)) | patch | `2024.1.5` -> `2024.1.6` | --- ### Release Notes <details> <summary>home-assistant/core (ghcr.io/home-assistant/home-assistant)</summary> ### [`v2024.1.6`](https://github.com/home-assistant/core/releases/tag/2024.1.6) [Compare Source](home-assistant/core@2024.1.5...2024.1.6) - Pass default SSLContext instances to Octoprint custom HTTP sessions ([@​vexofp] - [#​105351]) ([octoprint docs]) - Reduce overhead for google calendar state updates ([@​allenporter] - [#​108133]) ([google docs]) - Fix SleepIQ setting FootWarmer timer ([@​jmwaldrip] - [#​108433]) ([sleepiq docs]) - Fix zha illuminance measured value mapping ([@​floriankisser] - [#​108547]) ([zha docs]) - Bump yolink-api to 0.3.6 fix aiomqtt breaking changes ([@​matrixd2] - [#​108555]) ([yolink docs]) (dependency) - Update openerz-api to 0.3.0 ([@​misialq] - [#​108575]) ([openerz docs]) (dependency) - Bump aiovodafone to 0.5.4 ([@​chemelli74] - [#​108592]) ([vodafone_station docs]) (dependency) - Bump airthings-ble to 0.6.0 ([@​LaStrada] - [#​108612]) ([airthings_ble docs]) (dependency) - Fix alexa fails reporting the state in specific cases ([@​jbouwh] - [#​108743]) ([alexa docs]) - Reduce log level of ZHA endpoint handler init ([@​puddly] - [#​108749]) ([zha docs]) - Fix google_assistant climate modes might be None ([@​jbouwh] - [#​108793]) ([google_assistant docs]) - Fix unhandled exception on humidifier intent when available_modes is None ([@​jbouwh] - [#​108802]) ([humidifier docs]) - Fix processing supported color modes for emulated_hue ([@​jbouwh] - [#​108803]) ([emulated_hue docs]) - Reduce log level for creating ZHA cluster handler ([@​TheJulianJES] - [#​108809]) ([zha docs]) - Fix stalls in config flow of APCUPSD ([@​yuxincs] - [#​108931]) ([apcupsd docs]) - Add strings to Sensirion BLE ([@​joostlek] - [#​109001]) ([sensirion_ble docs]) - Fix entity naming for heatpump heatings in ViCare ([@​CFenner] - [#​109013]) ([vicare docs]) - Bump aiohttp to 3.9.3 ([@​bdraco] - [#​109025]) (dependency) - Bump ZHA dependency zigpy to 0.60.7 ([@​puddly] - [#​109082]) ([zha docs]) (dependency) - Add missing abort message for Spotify ([@​joostlek] - [#​109102]) ([spotify docs]) [#​105351]: home-assistant/core#105351 [#​106970]: home-assistant/core#106970 [#​107239]: home-assistant/core#107239 [#​107365]: home-assistant/core#107365 [#​107883]: home-assistant/core#107883 [#​108133]: home-assistant/core#108133 [#​108379]: home-assistant/core#108379 [#​108433]: home-assistant/core#108433 [#​108502]: home-assistant/core#108502 [#​108547]: home-assistant/core#108547 [#​108555]: home-assistant/core#108555 [#​108575]: home-assistant/core#108575 [#​108592]: home-assistant/core#108592 [#​108612]: home-assistant/core#108612 [#​108743]: home-assistant/core#108743 [#​108749]: home-assistant/core#108749 [#​108793]: home-assistant/core#108793 [#​108802]: home-assistant/core#108802 [#​108803]: home-assistant/core#108803 [#​108809]: home-assistant/core#108809 [#​108931]: home-assistant/core#108931 [#​109001]: home-assistant/core#109001 [#​109013]: home-assistant/core#109013 [#​109025]: home-assistant/core#109025 [#​109082]: home-assistant/core#109082 [#​109102]: home-assistant/core#109102 [@​CFenner]: https://github.com/CFenner [@​LaStrada]: https://github.com/LaStrada [@​TheJulianJES]: https://github.com/TheJulianJES [@​allenporter]: https://github.com/allenporter [@​bdraco]: https://github.com/bdraco [@​chemelli74]: https://github.com/chemelli74 [@​floriankisser]: https://github.com/floriankisser [@​frenck]: https://github.com/frenck [@​jbouwh]: https://github.com/jbouwh [@​jmwaldrip]: https://github.com/jmwaldrip [@​joostlek]: https://github.com/joostlek [@​matrixd2]: https://github.com/matrixd2 [@​misialq]: https://github.com/misialq [@​puddly]: https://github.com/puddly [@​vexofp]: https://github.com/vexofp [@​yuxincs]: https://github.com/yuxincs [airthings_ble docs]: https://www.home-assistant.io/integrations/airthings_ble/ [alexa docs]: https://www.home-assistant.io/integrations/alexa/ [apcupsd docs]: https://www.home-assistant.io/integrations/apcupsd/ [dlna_dmr docs]: https://www.home-assistant.io/integrations/dlna_dmr/ [dlna_dms docs]: https://www.home-assistant.io/integrations/dlna_dms/ [emulated_hue docs]: https://www.home-assistant.io/integrations/emulated_hue/ [enigma2 docs]: https://www.home-assistant.io/integrations/enigma2/ [google docs]: https://www.home-assistant.io/integrations/google/ [google_assistant docs]: https://www.home-assistant.io/integrations/google_assistant/ [humidifier docs]: https://www.home-assistant.io/integrations/humidifier/ [octoprint docs]: https://www.home-assistant.io/integrations/octoprint/ [openerz docs]: https://www.home-assistant.io/integrations/openerz/ [samsungtv docs]: https://www.home-assistant.io/integrations/samsungtv/ [sensirion_ble docs]: https://www.home-assistant.io/integrations/sensirion_ble/ [shelly docs]: https://www.home-assistant.io/integrations/shelly/ [sleepiq docs]: https://www.home-assistant.io/integrations/sleepiq/ [spotify docs]: https://www.home-assistant.io/integrations/spotify/ [ssdp docs]: https://www.home-assistant.io/integrations/ssdp/ [streamlabswater docs]: https://www.home-assistant.io/integrations/streamlabswater/ [system_bridge docs]: https://www.home-assistant.io/integrations/system_bridge/ [upnp docs]: https://www.home-assistant.io/integrations/upnp/ [vicare docs]: https://www.home-assistant.io/integrations/vicare/ [vodafone_station docs]: https://www.home-assistant.io/integrations/vodafone_station/ [yeelight docs]: https://www.home-assistant.io/integrations/yeelight/ [yolink docs]: https://www.home-assistant.io/integrations/yolink/ [zha docs]: https://www.home-assistant.io/integrations/zha/ </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about these updates again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNy4xNjEuMCIsInVwZGF0ZWRJblZlciI6IjM3LjE2MS4wIiwidGFyZ2V0QnJhbmNoIjoibWFpbiJ9--> Reviewed-on: https://git.home/nrdufour/home-ops/pulls/350 Co-authored-by: Renovate <[email protected]> Co-committed-by: Renovate <[email protected]>
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
needs https://github.com/aio-libs/aiohttp/actions/runs/7701265001Proposed change
https://github.com/aio-libs/aiohttp/releases/tag/v3.9.3
resolves GHSA-5h86-8mv2-jq9f
resolves GHSA-8qpw-xqxj-h4r2
Type of change
Additional information
Checklist
ruff format homeassistant tests)If user exposed functionality or configuration variables are added/changed:
If the code communicates with devices, web services, or third-party tools:
Updated and included derived files by running:
python3 -m script.hassfest.requirements_all.txt.Updated by running
python3 -m script.gen_requirements_all..coveragerc.To help with the load of incoming pull requests: