Update dependency future to v0.18.3 [SECURITY]

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
future (source)	==0.17.1 -> ==0.18.3

GitHub Vulnerability Alerts

CVE-2022-40899

An issue discovered in Python Charmers Future 0.18.2 and earlier allows remote attackers to cause a denial of service via crafted Set-Cookie header from malicious web server. This issue has been patched in version 0.18.3.

---

Release Notes

PythonCharmers/python-future (future)

v0.18.3

Compare Source

This is a minor bug-fix release containing a number of fixes:

• Backport fix for bpo-38804 (c91d70b)
• Fix bug in fix_print.py fixer (dffc579)
• Fix bug in fix_raise.py fixer (3401099)
• Fix newint bool in py3 (fe645ba)
• Fix bug in super() with metaclasses (6e27aac)
• docs: fix simple typo, reqest -> request (974eb1f)
• Correct eq (c780bf5)
• Pass if lint fails (2abe00d)
• Update docker image and parcel out to constant variable. Add comment to update version constant (45cf382)
• fix order (f96a219)
• Add flake8 to image (046ff18)
• Make lint.sh executable (58cc984)
• Add docker push to optimize CI (01e8440)
• Build System (42b3025)
• Add docs build status badge to README.md (3f40bd7)
• Use same docs requirements in tox (18ecc5a)
• Add docs/requirements.txt (5f9893f)
• Add PY37_PLUS, PY38_PLUS, and PY39_PLUS (bee0247)
• fix 2.6 test, better comment (ddedcb9)
• fix 2.6 test (3f1ff7e)
• remove nan test (4dbded1)
• include list test values (e3f1a12)
• fix other python2 test issues (c051026)
• fix missing subTest (f006cad)
• import from old imp library on older python versions (fc84fa8)
• replace fstrings with format for python 3.4,3.5 (4a687ea)
• minor style/spelling fixes (8302d8c)
• improve cmp function, add unittest (0d95a40)
• Pin typing==3.7.4.1 for Python 3.3 compatiblity (1a48f1b)
• Fix various py26 unit test failures (9ca5a14)
• Add initial contributing guide with docs build instruction (e55f915)
• Add docs building to tox.ini (3ee9e7f)
• Support NumPy's specialized int types in builtins.round (b4b54f0)
• Added r""" to the docstring to avoid warnings in python3 (5f94572)
• Add subclasscheck for past.types.basestring (c9bc0ff)
• Correct example in README (681e78c)
• Add simple documentation (6c6e3ae)
• Add pre-commit hooks (a9c6a37)
• Handling of next and next by future.utils.get_next was reversed (52b0ff9)
• Add a test for our fix (461d77e)
• Compare headers to correct definition of str (3eaa8fd)
• #​322 Add support for negative ndigits in round; additionally, fixing a bug so that it handles passing in Decimal properly (a4911b9)
• Add tkFileDialog to future.movers.tkinter (f6a6549)
• Sort before comparing dicts in TestChainMap (6126997)
• Fix typo (4dfa099)
• Fix formatting in "What's new" (1663dfa)
• Fix typo (4236061)
• Avoid DeprecationWarning caused by invalid escape (e4b7fa1)
• Fixup broken link to external django documentation re: porting to Python 3 and unicode_literals (d87713e)
• Fixed newdict checking version every time (99030ec)
• Add count from 2.7 to 2.6 (1b8ef51)

v0.18.2

Compare Source

This is a minor bug-fix release containing a number of fixes:

• Fix min/max functions with generators, and 'None' default (PR #​514)
• Use BaseException in raise_() (PR #​515)
• Fix builtins.round() for Decimals (Issue #​501)
• Fix raise_from() to prevent failures with immutable classes (PR #​518)
• Make FixInput idempotent (Issue #​427)
• Fix type in newround (PR #​521)
• Support mimetype guessing in urllib2 for Py3.8+ (Issue #​508)

Python 3.8 is not yet officially supported.

v0.18.1

Compare Source

This is a minor bug-fix release containing a fix for raise_()
when passed an exception that's not an Exception (e.g. BaseException
subclasses)

v0.18.0

Compare Source

This is a major bug-fix and feature release, including:

• Fix collections.abc import for py38+
• Remove import for isnewbytes() function, reducing CPU cost significantly
• Fix bug with importing past.translation when importing past which breaks zipped python installations
• Fix an issue with copyreg import under Py3 that results in unexposed stdlib functionality
• Export and document types in future.utils
• Update behavior of newstr.eq() to match str.eq() as per reference docs
• Fix raising and the raising fixer to handle cases where the syntax is ambigious
• Allow "default" parameter in min() and max() (Issue #​334)
• Implement hash() in newstr (Issue #​454)
• Future proof some version checks to handle the fact that Py4 won't be a major breaking release
• Fix urllib.request imports for Python 3.8 compatibility (Issue #​447)
• Fix future import ordering (Issue #​445)
• Fixed bug in fix_division_safe fixture (Issue #​434)
• Do not globally destroy re.ASCII in PY3
• Fix a bug in email.Message.set_boundary() (Issue #​429)
• Implement format_map() in str
• Implement readinto() for socket.fp

As well as a number of corrections to a variety of documentation, and updates to
test infrastructure.

---

Configuration

📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[CLAassistant]

Thank you for your submission! We really appreciate it. Like many open source projects, we ask that you sign our Contributor License Agreement before we can accept your contribution.
_{You have signed the CLA already but the status is still pending? Let us recheck it.}