Bump guzzlehttp/guzzle from 4.1.7 to 4.2.4

[dependabot]

Bumps guzzlehttp/guzzle from 4.1.7 to 4.2.4.

Release notes

Sourced from guzzlehttp/guzzle's releases.

4.2.4

No release notes provided.

4.2.3

No release notes provided.

4.2.2

• Fixed a memory leak in the CurlAdapter when reusing cURL handles.
• No longer using request_fulluri in stream adapter proxies.
• Relative redirects are now based on the last response, not the first response.

4.2.1

• Ensuring that the StreamAdapter does not always add a Content-Type header
• Adding automated github releases with a phar and zip

Changelog

Sourced from guzzlehttp/guzzle's changelog.

4.2.4 (2016-07-18)

• Address HTTP_PROXY security vulnerability, CVE-2016-5385: https://httpoxy.org/

4.2.3 (2014-10-05)

• Using getenv rather than $_SERVER for proxy settings to prevent a potential security issue.
• Cookies now use a space between semicolons.
• Curl adapters now rewind the response body stream to match the behavior of the stream adapter.
• The body of a request in the MockAdapter is now only read after invoking a callback.
• Can now configure the maximum number of open curl multi handles.
• Added an XmlException for more XML parsing error information.
• Using STDOUT for debug only when it is available.

4.2.2 (2014-09-08)

• Fixed a memory leak in the CurlAdapter when reusing cURL handles.
• No longer using request_fulluri in stream adapter proxies.
• Relative redirects are now based on the last response, not the first response.

4.2.1 (2014-08-19)

• Ensuring that the StreamAdapter does not always add a Content-Type header
• Adding automated github releases with a phar and zip

4.2.0 (2014-08-17)

• Now merging in default options using a case-insensitive comparison. Closes guzzle/guzzle#767
• Added the ability to automatically decode Content-Encoding response bodies using the decode_content request option. This is set to true by default to decode the response body if it comes over the wire with a Content-Encoding. Set this value to false to disable decoding the response content, and pass a string to provide a request Accept-Encoding header and turn on automatic response decoding. This feature now allows you to pass an Accept-Encoding header in the headers of a request but still disable automatic response decoding. Closes guzzle/guzzle#764
• Added the ability to throw an exception immediately when transferring requests in parallel. Closes guzzle/guzzle#760
• Updating guzzlehttp/streams dependency to ~2.1

... (truncated)

Commits

• 13a8e5a 4.2.4 release
• 66fd916 4.2.3 release
• dd8cfa8 Merge pull request #834 from michaelmoussa/master
• b4de302 Using STDOUT only if defined. Closes 846
• 3c0acec Using getenv instead of $_SERVER
• c38ff16 Merge pull request #838 from GrahamCampbell/cs
• 920f392 Merge pull request #843 from s7anley/feature/xml-parse-exception
• 8ce582b Merge pull request #845 from jeremylivingston/message_default
• 1b6b66d Remove default message in RequestException
• 06e7e28 Extend the exception with error information when parsing XML
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

[dependabot]

Superseded by #13.