Bump requests from 2.18.4 to 2.20.0

[dependabot]

Bumps requests from 2.18.4 to 2.20.0.

Changelog

Sourced from requests's changelog.

2.20.0 (2018-10-18)

Bugfixes

• Content-Type header parsing is now case-insensitive (e.g. charset=utf8 v Charset=utf8).
• Fixed exception leak where certain redirect urls would raise uncaught urllib3 exceptions.
• Requests removes Authorization header from requests redirected from https to http on the same hostname. (CVE-2018-18074)
• should_bypass_proxies now handles URIs without hostnames (e.g. files).

Dependencies

• Requests now supports urllib3 v1.24.

Deprecations

• Requests has officially stopped support for Python 2.6.

2.19.1 (2018-06-14)

Bugfixes

• Fixed issue where status_codes.py's init function failed trying to append to a __doc__ value of None.

2.19.0 (2018-06-12)

Improvements

• Warn user about possible slowdown when using cryptography version < 1.3.4
• Check for invalid host in proxy URL, before forwarding request to adapter.
• Fragments are now properly maintained across redirects. (RFC7231 7.1.2)
• Removed use of cgi module to expedite library load time.
• Added support for SHA-256 and SHA-512 digest auth algorithms.
• Minor performance improvement to Request.content.
• Migrate to using collections.abc for 3.7 compatibility.

Bugfixes

• Parsing empty Link headers with parse_header_links() no longer return one bogus entry.

... (truncated)

Commits

• bd84045 v2.20.0
• 7fd9267 remove final remnants from 2.6
• 6ae8a21 Add myself to AUTHORS
• 89ab030 Use comprehensions whenever possible
• 2c6a842 Merge pull request #4827 from webmaven/patch-1
• 30be889 CVE URLs update: www sub-subdomain no longer valid
• a6cd380 Merge pull request #4765 from requests/encapsulate_urllib3_exc
• bbdbcc8 wrap url parsing exceptions from urllib3's PoolManager
• ff0c325 Merge pull request #4805 from jdufresne/https
• b0ad249 Prefer https:// for URLs throughout project
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

[cxronen]

Scan submitted to Checkmarx

[cxronen]

Checkmarx scan completed

Full Scan Details

Violation Summary

Severity	Count
High	220

Details

Lines	Severity	Category	File	Link
105	High	Client_DOM_XSS	admin/defaulthours.php	Checkmarx
30 33 55	High	Command_Injection	createaccount.php	Checkmarx
26 45	High	Command_Injection	or-reserve.php	Checkmarx
11	High	Command_Injection	or-cancel.php	Checkmarx
103	High	LDAP_Injection	or-authenticate.php	Checkmarx
24 38	High	Reflected_XSS_All_Clients	admin/bans.php	Checkmarx
44 186 221	High	Reflected_XSS_All_Clients	modules/dayviewajax.php	Checkmarx
52 66 80 94 95 116 117 141 157 158	High	Reflected_XSS_All_Clients	admin/timing.php	Checkmarx
20	High	Reflected_XSS_All_Clients	admin/report-userlookup.php	Checkmarx
24 53	High	Reflected_XSS_All_Clients	admin/roomgroups.php	Checkmarx
60 61 62 63 64 65 66 201 228 238 276	High	Reflected_XSS_All_Clients	admin/multiplereservations.php	Checkmarx
118	High	Reflected_XSS_All_Clients	includes/mobile.php	Checkmarx
30 33	High	Reflected_XSS_All_Clients	createaccount.php	Checkmarx
19	High	Reflected_XSS_All_Clients	admin/defaulthours.php	Checkmarx
8	High	Reflected_XSS_All_Clients	index.php	Checkmarx
24 38	High	Reflected_XSS_All_Clients	admin/administrators.php	Checkmarx
24 38	High	Reflected_XSS_All_Clients	admin/reporters.php	Checkmarx
20 21	High	Reflected_XSS_All_Clients	admin/report-canceldaily.php	Checkmarx
7	High	Reflected_XSS_All_Clients	modules/calendarajax.php	Checkmarx
20 21	High	Reflected_XSS_All_Clients	admin/report-daily.php	Checkmarx
53 81	High	Reflected_XSS_All_Clients	admin/rooms.php	Checkmarx
10 111	High	SQL_Injection	includes/mobile.php	Checkmarx
22 23	High	SQL_Injection	admin/report-canceldaily.php	Checkmarx
26 39 40	High	SQL_Injection	admin/defaulthours.php	Checkmarx
24 25	High	SQL_Injection	admin/report-cancelmonthly.php	Checkmarx
31 76	High	SQL_Injection	admin/specialhours.php	Checkmarx
26	High	SQL_Injection	or-reserve.php	Checkmarx
38	High	SQL_Injection	admin/administrators.php	Checkmarx
24 35 46 57 72 83 94	High	SQL_Injection	admin/configuration.php	Checkmarx
11	High	SQL_Injection	or-cancel.php	Checkmarx
18 45 46 47 48 49 50	High	SQL_Injection	admin/customfields.php	Checkmarx
22 23	High	SQL_Injection	admin/report-daily.php	Checkmarx
20 21 22	High	SQL_Injection	admin/report-userlookup.php	Checkmarx
24 25	High	SQL_Injection	admin/report-monthly.php	Checkmarx
18	High	SQL_Injection	editaccount.php	Checkmarx
20	High	SQL_Injection	admin/policies.php	Checkmarx
20	High	SQL_Injection	admin/reminder.php	Checkmarx
24 25 37 53	High	SQL_Injection	admin/roomgroups.php	Checkmarx
30 33 35 36	High	SQL_Injection	createaccount.php	Checkmarx
25 39 53 54 55 56 81 82 83 84 85 99	High	SQL_Injection	admin/rooms.php	Checkmarx
103	High	SQL_Injection	or-authenticate.php	Checkmarx
24 38	High	SQL_Injection	admin/reporters.php	Checkmarx
24 38 52 66 80 94 95 116 117 141 157 158 187	High	SQL_Injection	admin/timing.php	Checkmarx
24 38	High	SQL_Injection	admin/bans.php	Checkmarx
24 39 54 69 84 99 114 128 129 138 151 164	High	SQL_Injection	admin/email.php	Checkmarx
131 230	High	Second_Order_SQL_Injection	admin/specialhours.php	Checkmarx
7 358 365	High	Second_Order_SQL_Injection	or-reserve.php	Checkmarx
138	High	Second_Order_SQL_Injection	admin/defaulthours.php	Checkmarx
73	High	Second_Order_SQL_Injection	admin/report-daily.php	Checkmarx
80	High	Second_Order_SQL_Injection	admin/report-monthly.php	Checkmarx
94	High	Second_Order_SQL_Injection	or-getroominfo.php	Checkmarx
54	High	Second_Order_SQL_Injection	or-getdatarange.php	Checkmarx
27 41 101 119 177	High	Second_Order_SQL_Injection	admin/rooms.php	Checkmarx
26 29 101 104 112 115	High	Second_Order_SQL_Injection	admin/customfields.php	Checkmarx
80	High	Second_Order_SQL_Injection	admin/report-cancelmonthly.php	Checkmarx
6 14 106	High	Second_Order_SQL_Injection	or-cancel.php	Checkmarx
73	High	Second_Order_SQL_Injection	admin/report-canceldaily.php	Checkmarx
80	High	Second_Order_SQL_Injection	admin/report-userlookup.php	Checkmarx
13 40 49	High	Second_Order_SQL_Injection	editaccount.php	Checkmarx
222 237	High	Second_Order_SQL_Injection	themes/default/mobile/content.php	Checkmarx
80	High	Stored_XSS	admin/report-cancelmonthly.php	Checkmarx
80	High	Stored_XSS	admin/report-monthly.php	Checkmarx
19 212	High	Stored_XSS	admin/multiplereservations.php	Checkmarx
244	High	Stored_XSS	admin/email.php	Checkmarx
94 99 147 156	High	Stored_XSS	or-getroominfo.php	Checkmarx
18	High	Stored_XSS	modules/policies.php	Checkmarx
138 142 154	High	Stored_XSS	admin/defaulthours.php	Checkmarx
92	High	Stored_XSS	admin/bans.php	Checkmarx
73	High	Stored_XSS	admin/report-canceldaily.php	Checkmarx
68 112 117	High	Stored_XSS	includes/mobile.php	Checkmarx
93	High	Stored_XSS	admin/administrators.php	Checkmarx
174	High	Stored_XSS	modules/dayview.php	Checkmarx
80 93	High	Stored_XSS	admin/report-userlookup.php	Checkmarx
101 177 181 205 241	High	Stored_XSS	admin/rooms.php	Checkmarx
104	High	Stored_XSS	admin/roomgroups.php	Checkmarx
43	High	Stored_XSS	or-reserve.php	Checkmarx
49 131 135 143 230 234	High	Stored_XSS	admin/specialhours.php	Checkmarx
154 237 252	High	Stored_XSS	themes/default/mobile/content.php	Checkmarx
54 68	High	Stored_XSS	or-getdatarange.php	Checkmarx
49	High	Stored_XSS	editaccount.php	Checkmarx
41 57	High	Stored_XSS	modules/dayviewajax.php	Checkmarx
73	High	Stored_XSS	admin/report-daily.php	Checkmarx
92	High	Stored_XSS	admin/reporters.php	Checkmarx
26 192	High	Stored_XSS	admin/customfields.php	Checkmarx