Skip to content

2.2.0

Latest
Latest
Compare
Choose a tag to compare
@github-actions github-actions released this 16 Apr 21:46
· 52 commits to main since this release
2.2.0
This tag was signed with the committer’s verified signature.
davidism David Lord
GPG key ID: 7A1C87E3F5BC42A8
Learn about vigilant mode.
096c8d4
This commit was signed with the committer’s verified signature.
davidism David Lord
GPG key ID: 7A1C87E3F5BC42A8
Learn about vigilant mode.

This is a feature release, which includes new features, removes previously deprecated code, and adds new deprecations. The 2.2.x branch is now the supported fix branch, the 2.1.x branch will become a tag marking the end of support for that branch. We encourage everyone to upgrade, and to use a tool such as pip-tools to pin all dependencies and control upgrades. Test with warnings treated as errors to be able to adapt to deprecation warnings early.

Changes: https://itsdangerous.palletsprojects.com/en/2.2.x/changes/#version-2-2-0
Milestone: https://github.com/pallets/itsdangerous/milestone/8?closed=1

  • Drop support for Python 3.7.
  • Use modern packaging metadata with pyproject.toml instead of setup.cfg.
  • Use flit_core instead of setuptools as build backend.
  • Deprecate the __version__ attribute. Use feature detection, or importlib.metadata.version("itsdangerous"), instead.
  • Serializer and the return type of dumps is generic for type checking. By default it is Serializer[str] and dumps returns a str. If a different serializer argument is given, it will try to infer the return type of its dumps method.
  • The default hashlib.sha1 may not be available in FIPS builds. Don't access it at import time so the developer has time to change the default.
Assets 5
Loading