⬆ Bump pyjwt from 2.6.0 to 2.7.0

[dependabot]

Bumps pyjwt from 2.6.0 to 2.7.0.

Release notes

Sourced from pyjwt's releases.

2.7.0

What's Changed

• Add classifier for Python 3.11 by @​eseifert in jpadilla/pyjwt#818
• Add Algorithm.compute_hash_digest and use it to implement at_hash validation example by @​sirosen in jpadilla/pyjwt#775
• fix: use datetime.datetime.timestamp function to have a milliseconds by @​daillouf in jpadilla/pyjwt#821
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in jpadilla/pyjwt#825
• Custom header configuration in jwk client by @​thundercat1 in jpadilla/pyjwt#823
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in jpadilla/pyjwt#828
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in jpadilla/pyjwt#833
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in jpadilla/pyjwt#835
• Add PyJWT._{de,en}code_payload hooks by @​akx in jpadilla/pyjwt#829
• Add sort_headers parameter to api_jwt.encode by @​evroon in jpadilla/pyjwt#832
• Make mypy configuration stricter and improve typing by @​akx in jpadilla/pyjwt#830
• Bump actions/stale from 6 to 7 by @​dependabot in jpadilla/pyjwt#840
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in jpadilla/pyjwt#838
• Add more types by @​Viicos in jpadilla/pyjwt#843
• Differentiate between two errors by @​irdkwmnsb in jpadilla/pyjwt#809
• Fix _validate_iat validation by @​Viicos in jpadilla/pyjwt#847
• Improve error messages when cryptography isn't installed by @​Viicos in jpadilla/pyjwt#846
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in jpadilla/pyjwt#852
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in jpadilla/pyjwt#855
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in jpadilla/pyjwt#859
• Make Algorithm an abstract base class by @​Viicos in jpadilla/pyjwt#845
• docs: correct mistake in the changelog about verify param by @​gbillig in jpadilla/pyjwt#866
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in jpadilla/pyjwt#868
• Bump actions/stale from 7 to 8 by @​dependabot in jpadilla/pyjwt#872
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in jpadilla/pyjwt#874
• Add a timeout for PyJWKClient requests by @​daviddavis in jpadilla/pyjwt#875
• Add client connection error exception by @​daviddavis in jpadilla/pyjwt#876
• Add complete types to take all allowed keys into account by @​Viicos in jpadilla/pyjwt#873
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in jpadilla/pyjwt#878
• Build and upload PyPI package by @​jpadilla in jpadilla/pyjwt#884
• Fix for issue #862 - ignore invalid keys in a jwks. by @​timw6n in jpadilla/pyjwt#863
• Add as_dict option to Algorithm.to_jwk by @​fluxth in jpadilla/pyjwt#881

New Contributors

• @​eseifert made their first contribution in jpadilla/pyjwt#818
• @​daillouf made their first contribution in jpadilla/pyjwt#821
• @​thundercat1 made their first contribution in jpadilla/pyjwt#823
• @​evroon made their first contribution in jpadilla/pyjwt#832
• @​Viicos made their first contribution in jpadilla/pyjwt#843
• @​irdkwmnsb made their first contribution in jpadilla/pyjwt#809
• @​gbillig made their first contribution in jpadilla/pyjwt#866
• @​daviddavis made their first contribution in jpadilla/pyjwt#875
• @​timw6n made their first contribution in jpadilla/pyjwt#863
• @​fluxth made their first contribution in jpadilla/pyjwt#881

Full Changelog: jpadilla/pyjwt@2.6.0...2.7.0

Changelog

Sourced from pyjwt's changelog.

v2.7.0 <https://github.com/jpadilla/pyjwt/compare/2.6.0...2.7.0>__

Changed

- Changed the error message when the token audience doesn't match the expected audience by @irdkwmnsb `[#809](https://github.com/jpadilla/pyjwt/issues/809) <https://github.com/jpadilla/pyjwt/pull/809>`__
- Improve error messages when cryptography isn't installed by @Viicos in `[#846](https://github.com/jpadilla/pyjwt/issues/846) <https://github.com/jpadilla/pyjwt/pull/846>`__
- Make `Algorithm` an abstract base class by @Viicos in `[#845](https://github.com/jpadilla/pyjwt/issues/845) <https://github.com/jpadilla/pyjwt/pull/845>`__
- ignore invalid keys in a jwks by @timw6n in `[#863](https://github.com/jpadilla/pyjwt/issues/863) <https://github.com/jpadilla/pyjwt/pull/863>`__
Fixed

- Add classifier for Python 3.11 by @eseifert in `[#818](https://github.com/jpadilla/pyjwt/issues/818) &lt;https://github.com/jpadilla/pyjwt/pull/818&gt;`__
- Fix ``_validate_iat`` validation by @Viicos in `[#847](https://github.com/jpadilla/pyjwt/issues/847) &lt;https://github.com/jpadilla/pyjwt/pull/847&gt;`__
- fix: use datetime.datetime.timestamp function to have a milliseconds by @daillouf `[#821](https://github.com/jpadilla/pyjwt/issues/821) &lt;https://github.com/jpadilla/pyjwt/pull/821&gt;`__
- docs: correct mistake in the changelog about verify param by @gbillig in `[#866](https://github.com/jpadilla/pyjwt/issues/866) &lt;https://github.com/jpadilla/pyjwt/pull/866&gt;`__
Added



Add compute_hash_digest as a method of Algorithm objects, which uses
the underlying hash algorithm to compute a digest. If there is no appropriate
hash algorithm, a NotImplementedError will be raised in [#775](https://github.com/jpadilla/pyjwt/issues/775) &lt;https://github.com/jpadilla/pyjwt/pull/775&gt;__
Add optional headers argument to PyJWKClient. If provided, the headers
will be included in requests that the client uses when fetching the JWK set by @​thundercat1 in [#823](https://github.com/jpadilla/pyjwt/issues/823) &lt;https://github.com/jpadilla/pyjwt/pull/823&gt;__
Add PyJWT._{de,en}code_payload hooks by @​akx in [#829](https://github.com/jpadilla/pyjwt/issues/829) &lt;https://github.com/jpadilla/pyjwt/pull/829&gt;__
Add sort_headers parameter to api_jwt.encode by @​evroon in [#832](https://github.com/jpadilla/pyjwt/issues/832) &lt;https://github.com/jpadilla/pyjwt/pull/832&gt;__
Make mypy configuration stricter and improve typing by @​akx in [#830](https://github.com/jpadilla/pyjwt/issues/830) &lt;https://github.com/jpadilla/pyjwt/pull/830&gt;__
Add more types by @​Viicos in [#843](https://github.com/jpadilla/pyjwt/issues/843) &lt;https://github.com/jpadilla/pyjwt/pull/843&gt;__
Add a timeout for PyJWKClient requests by @​daviddavis in [#875](https://github.com/jpadilla/pyjwt/issues/875) &lt;https://github.com/jpadilla/pyjwt/pull/875&gt;__
Add client connection error exception by @​daviddavis in [#876](https://github.com/jpadilla/pyjwt/issues/876) &lt;https://github.com/jpadilla/pyjwt/pull/876&gt;__
Add complete types to take all allowed keys into account by @​Viicos in [#873](https://github.com/jpadilla/pyjwt/issues/873) &lt;https://github.com/jpadilla/pyjwt/pull/873&gt;__
Add as_dict option to Algorithm.to_jwk by @​fluxth in [#881](https://github.com/jpadilla/pyjwt/issues/881) &lt;https://github.com/jpadilla/pyjwt/pull/881&gt;__

Commits

• d7c54db chore: update readme
• c35e59b Add as_dict option to Algorithm.to_jwk (#881)
• 6a27341 Fix for issue #862 - ignore invalid keys in a jwks. (#863)
• abeeacb bump up version to 2.7.0
• d8b1242 Update pypi-package.yml
• 6d1c3d3 Update pypi-package.yml
• 81b9ef4 Create pypi-package.yml (#884)
• 97711b1 [pre-commit.ci] pre-commit autoupdate (#878)
• 56b3d56 Add complete types to take all allowed keys into account (#873)
• ba72644 Add client connection error exception (#876)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
authx	❌ Failed (Inspect)			May 10, 2023 5:03am

[codecov]

Codecov Report

Patch and project coverage have no change.

Comparison is base (78e7f4f) 91.82% compared to head (73ce25d) 91.82%.

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #436   +/-   ##
=======================================
  Coverage   91.82%   91.82%           
=======================================
  Files          56       56           
  Lines        1982     1982           
=======================================
  Hits         1820     1820           
  Misses        162      162           

☔ View full report in Codecov by Sentry.
📢 Do you have feedback about the report comment? Let us know in this issue.