From 0ecfc568f5b70413c9aaba10abc5714e2708898c Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 4 Jun 2024 22:21:56 -0700
Subject: [PATCH] Bump requests from 2.31.0 to 2.32.0 (#46)

* ---
updated-dependencies:
- dependency-name: requests
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

* Adjust python versions used for Test Job

* Update CHANGELOG

* Trigger Build

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Karl Jansen <6225628+karjanme@users.noreply.github.com>
---
 .github/workflows/main.yml | 34 ++++------------------------------
 CHANGELOG.md               |  2 ++
 requirements.txt           |  2 +-
 3 files changed, 7 insertions(+), 31 deletions(-)

diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml
index 35f7588..6ac8efb 100644
--- a/.github/workflows/main.yml
+++ b/.github/workflows/main.yml
@@ -32,8 +32,11 @@ jobs:
     strategy:
       matrix:
         python-version:
-          - "3.7"
           - "3.8"
+          - "3.9"
+          - "3.10"
+          - "3.11"
+          - "3.12"
     steps:
       - name: Checkout
         uses: actions/checkout@v2
@@ -74,32 +77,3 @@ jobs:
         uses: codecov/codecov-action@v1
         with:
           token: ${{ secrets.CODECOV_TOKEN }}
-
-  release:
-    name: Release Job
-    runs-on: ubuntu-latest
-    needs: [lint, test]
-    if: ${{ success() && github.ref == 'refs/heads/master' }}
-    steps:
-    - name: Checkout
-      uses: actions/checkout@v2
-    - name: Setup
-      uses: actions/setup-python@v1
-      with:
-        python-version: "3.x"
-    - name: Install
-      run: | 
-        python -m pip install --upgrade pip
-        pip install -r requirements.txt
-        pip install -e .
-    - name: Package
-      run: |
-        pip install setuptools wheel
-        python setup.py bdist_wheel
-    - name: Publish
-      env:
-        TWINE_USERNAME: ${{ secrets.PYPI_USERNAME }}
-        TWINE_PASSWORD: ${{ secrets.PYPI_PASSWORD }}
-      run: |
-        pip install twine
-        twine upload dist/*
diff --git a/CHANGELOG.md b/CHANGELOG.md
index 3bfc868..d398005 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -6,6 +6,8 @@ The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/).
 This project uses [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
 ## Unreleased
+### Security
+- CVE-2024-35195: Bump `requests` from 2.31.0 to 2.32.0
 
 ## Release 2.2.2 [2023-10-01]
 ### Fixed
diff --git a/requirements.txt b/requirements.txt
index ccb00ff..5fa6cb7 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -1,2 +1,2 @@
 pytz==2020.1
-requests==2.31.0
+requests==2.32.0