pip prod(deps): bump starlette from 0.17.1 to 0.19.1

[dependabot]

Bumps starlette from 0.17.1 to 0.19.1.

Release notes

Sourced from starlette's releases.

Version 0.19.1

Fixed

• Fix inference of Route.name when created from methods #1553.
• Avoid TypeError on websocket.disconnect when code is None #1574.

Deprecated

• Deprecate WS_1004_NO_STATUS_RCVD and WS_1005_ABNORMAL_CLOSURE in favor of WS_1005_NO_STATUS_RCVD and WS_1006_ABNORMAL_CLOSURE, as the previous constants didn't match the WebSockets specs #1580.

Version 0.19.0

Added

• Error handler will always run, even if the error happens on a background task #761.
• Add headers parameter to HTTPException #1435.
• Internal responses with 405 status code insert an Allow header, as described by RFC 7231 #1436.
• The content argument in JSONResponse is now required #1431.
• Add custom URL convertor register #1437.
• Add content disposition type parameter to FileResponse #1266.
• Add next query param with original request URL in requires decorator #920.
• Add raw_path to TestClient scope #1445.
• Add union operators to MutableHeaders #1240.
• Display missing route details on debug page #1363.
• Change anyio required version range to >=3.4.0,<5.0 #1421 and #1460.
• Add typing-extensions>=3.10 requirement - used only on lower versions than Python 3.10 #1475.

Fixed

• Prevent BaseHTTPMiddleware from hiding errors of StreamingResponse and mounted applications #1459.
• SessionMiddleware uses an explicit path=..., instead of defaulting to the ASGI 'root_path' #1512.
• Request.client is now compliant with the ASGI specifications #1462.
• Raise KeyError at early stage for missing boundary #1349.

Deprecated

• Deprecate WSGIMiddleware in favor of a2wsgi #1504.
• Deprecate run_until_first_complete #1443.

Version 0.18.0

Added

• Change default chunk size from 4Kb to 64Kb on FileResponse #1345.
• Add support for functools.partial in WebSocketRoute #1356.
• Add StaticFiles packages with directory #1350.
• Allow environment options in Jinja2Templates #1401.
• Allow HEAD method on HttpEndpoint #1346.
• Accept additional headers on websocket.accept message #1361 and #1422.
• Add reason to WebSocket close ASGI event #1417.
• Add headers attribute to UploadFile #1382.
• Don't omit Content-Length header for Content-Length: 0 cases #1395.
• Don't set headers for responses with 1xx, 204 and 304 status code #1397.
• SessionMiddleware.max_age now accepts None, so cookie can last as long as the browser session #1387.

Fixed

• Tweak hashlib.md5() function on FileResponses ETag generation. The parameter usedforsecurity flag is set to False, if the flag is available on the system. This fixes an error raised on systems with FIPS enabled #1366 and #1410.
• Fix path_params type on url_path_for() method i.e. turn str into Any #1341.

... (truncated)

Changelog

Sourced from starlette's changelog.

0.19.1

April 22, 2022

Fixed

• Fix inference of Route.name when created from methods #1553.
• Avoid TypeError on websocket.disconnect when code is None #1574.

Deprecated

• Deprecate WS_1004_NO_STATUS_RCVD and WS_1005_ABNORMAL_CLOSURE in favor of WS_1005_NO_STATUS_RCVD and WS_1006_ABNORMAL_CLOSURE, as the previous constants didn't match the WebSockets specs #1580.

0.19.0

March 9, 2022

Added

• Error handler will always run, even if the error happens on a background task #761.
• Add headers parameter to HTTPException #1435.
• Internal responses with 405 status code insert an Allow header, as described by RFC 7231 #1436.
• The content argument in JSONResponse is now required #1431.
• Add custom URL convertor register #1437.
• Add content disposition type parameter to FileResponse #1266.
• Add next query param with original request URL in requires decorator #920.
• Add raw_path to TestClient scope #1445.
• Add union operators to MutableHeaders #1240.
• Display missing route details on debug page #1363.
• Change anyio required version range to >=3.4.0,<5.0 #1421 and #1460.
• Add typing-extensions>=3.10 requirement - used only on lower versions than Python 3.10 #1475.

Fixed

• Prevent BaseHTTPMiddleware from hiding errors of StreamingResponse and mounted applications #1459.
• SessionMiddleware uses an explicit path=..., instead of defaulting to the ASGI 'root_path' #1512.
• Request.client is now compliant with the ASGI specifications #1462.
• Raise KeyError at early stage for missing boundary #1349.

Deprecated

• Deprecate WSGIMiddleware in favor of a2wsgi #1504.
• Deprecate run_until_first_complete #1443.

0.18.0

January 23, 2022

Added

• Change default chunk size from 4Kb to 64Kb on FileResponse #1345.
• Add support for functools.partial in WebSocketRoute #1356.
• Add StaticFiles packages with directory #1350.
• Allow environment options in Jinja2Templates #1401.

... (truncated)

Commits

• 702fe81 Version 0.19.1 (#1591)
• 9329160 Deprecate WS_1004_NO_STATUS_RCVD and WS_1005_ABNORMAL_CLOSURE (#1580)
• 5b56e7d Add typing.Optional on missing annotations (#1549)
• d7cbe2a Apply right name to Route when created from methods (#1553)
• 487f05d Avoid TypeError on websocket.disconnect when code is None (#1574)
• 20d24a8 Bump mkdocs-material from 8.1.3 to 8.2.8 (#1564)
• f699189 Bump mkdocs from 1.2.4 to 1.3.0 (#1566)
• c5b0556 Downgrade flake8 from 4.0.1 to 3.9.2 (#1567)
• d43cf0d Bump mypy from 0.931 to 0.942 (#1563)
• 8a571a4 Bump black to 22.3.0 (#1558)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov]

Codecov Report

Merging #1168 (a77a5fd) into develop (beddce0) will increase coverage by 0.08%.
The diff coverage is n/a.

@@             Coverage Diff             @@
##           develop    #1168      +/-   ##
===========================================
+ Coverage    87.26%   87.34%   +0.08%     
===========================================
  Files          166      166              
  Lines         6971     6971              
  Branches       708      708              
===========================================
+ Hits          6083     6089       +6     
+ Misses         766      763       -3     
+ Partials       122      119       -3     

Flag	Coverage Δ
pytest	87.17% <ø> (+0.08%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

Impacted Files	Coverage Δ
proxy/http/handler.py	76.10% <0.00%> (+0.88%)	⬆️
proxy/core/work/threadless.py	83.25% <0.00%> (+1.97%)	⬆️

📣 Codecov can now indicate which changes are the most critical in Pull Requests. Learn more