Bump locust from 1.1.0 to 1.3.2 #6

dependabot · 2024-02-23T20:52:01Z

Bumps locust from 1.1.0 to 1.3.2.

Release notes

1.3.2

List Python 3.9 as supported in the package/on PyPi

Fix XSS vulnerability in the web UI (sounds important but really isn't, as Locust UI is not meant to be exposed to outside users)

(side note: I have also fixed the docker build process, so any tagged commit will push to locustio/locust:latest, this was broken in the past)

1.3.1

Bump minimum required gevent version to 20.9.0 (latest), as all the previous ones had sneaky binary incompatibilities with the latest version of greenlet ("RuntimeWarning: greenlet.greenlet size changed, may indicate binary incompatibility. Expected 144 from C header, got 152 from PyObject")

1.3.0

Breaking change: Remove step-load feature (now that we have LoadTestShape it is no longer needed)

More type hints to enable better code completion and linting of locustfiles

Lots of documentation updates

Bug fixes:

LoadTestShape.get_run_time is not relative to start of test locustio/locust#1557

Refactor and fix delayed user stopping in combination with on_stop locustio/locust#1560

runner.quit gets blocked by slow on stop locustio/locust#1552

Remove legacy code that was only needed for py2

Lots more (https://github.com/locustio/locust/blob/master/CHANGELOG.md)

1.2.3

Various linting fixes that should have no functional impact

Bug fix (TypeError: code() takes at least 14 arguments (13 given) (Werkzeug version issue) locustio/locust#1545)

Bug fix (Locust stuck in "Shape worker starting" when restarting a test from the webUI locustio/locust#1540)

1.2.2

Bug fix (LoadTestShape in headless mode locustio/locust#1539)

1.2.1

Bug fix (StatsEntry.use_response_times_cache must be set to True, locustio/locust#1531)

1.2

Rename hatch rate to spawn rate (the –hatch-rate parameter is only deprecated, but the hatch_complete event has been renamed spawning_complete)

Ability to generate any custom load shape with LoadTestShape class

Allow ramping down of users

Ability to use save custom percentiles

Improve command line stats output

Bug fixes (excessive precision of metrics in losust csv stats, negative response time when system clock has changed, issue with non-string failure messages, some typos etc)

Documentation improvements

1.1.1

Fix for run not ending if there is an exception in a test_stop listener

FastHttpUser: Handle stream ended at an unexpected time and UnicodeDecodeError. Show bad/error status codes on failures page.

Improve logging when locust master port is busy

Changelog

Sourced from locust's changelog.

1.3.2 (2020-11-03)

Full Changelog

Merged pull requests:

Run builds for python 3.9 #1607 (cyberw)

Add note and link to k8s Helm chart #1606 (max-rocket-internet)

Replace '<' and '>' for swarm 'host' field. Fix for XSS attack. #1603 (lhupfeldt)

1.3.1 (2020-10-15)

Full Changelog

1.3.0 (2020-10-12)

Full Changelog

Fixed bugs:

After starting and then stopping a load test, master is updating state in a loop #1577

Misleading log message in distributed mode #1572

LoadTestShape.get_run_time is not relative to start of test #1557

On Stop causes the task to continue #1552

Closed issues:

Remove step load feature now that LoadTestShape is possible? #1575

Add ability to easily extend Locust web UI #1530

Type hinting for common functions #1260

Merged pull requests:

Start web_ui later to avoid race adding UI routes #1585 (solowalker27)

Remove step load feature #1584 (max-rocket-internet)

Add more type hints #1582 (cyberw)

Run time relative to start when using LoadTestShape #1581 (DennisKrone)

Don't log state change if it's the same #1580 (max-rocket-internet)

SequentialTaskSet improvements #1579 (cyberw)

Fixed documentation for tags to link properly. #1578 (Trouv)

More easily extend web UI #1574 (solowalker27)

Only warn about open file limit when not running as master #1573 (parberge)

Adding more debug logging for runners.py #1570 (max-rocket-internet)

Add friendlier message about expected limit #1566 (parberge)

Update documentation for schedule_task parameters in TaskSet (task.py) #1565 (kmels)

Added comment for clarity #1561 (raiyankamal)

Refactor and fix delayed user stopping in combination with on_stop #1560 (cyberw)

Remove legacy code that was only needed for py2 #1559 (cyberw)

Clean up code and tighten flake8 linting #1558 (cyberw)

... (truncated)

Commits

01c0fa4 Revert "Add py39 to black config"
32cfb88 Add py39 to black config
d9fea47 1.3.2 version bump & changelog
a031f20 Clarify documentation of start()'s user_count parameter
7f21896 Merge pull request #1607 from locustio/support-for-python-3.9
5db48f0 Merge pull request #1606 from max-rocket-internet/add_chart_doc
d2dd606 format link differently
9829594 Add note and link to k8s Helm chart
aa7b34d Black
4049173 Merge pull request #1603 from lhupfeldt/host_field_xss
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the Security Alerts page.

Bumps [locust](https://github.com/locustio/locust) from 1.1.0 to 1.3.2. - [Release notes](https://github.com/locustio/locust/releases) - [Changelog](https://github.com/locustio/locust/blob/master/CHANGELOG.md) - [Commits](locustio/locust@1.1...1.3.2) --- updated-dependencies: - dependency-name: locust dependency-type: direct:production ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot added the dependencies Pull requests that update a dependency file label Feb 23, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump locust from 1.1.0 to 1.3.2 #6

Bump locust from 1.1.0 to 1.3.2 #6

dependabot bot commented on behalf of github Feb 23, 2024

Bump locust from 1.1.0 to 1.3.2 #6

Are you sure you want to change the base?

Bump locust from 1.1.0 to 1.3.2 #6

Conversation

dependabot bot commented on behalf of github Feb 23, 2024

1.3.2

1.3.1

1.3.0

1.2.3

1.2.2

1.2.1

1.2

1.1.1

1.3.2 (2020-11-03)

1.3.1 (2020-10-15)

1.3.0 (2020-10-12)