core: bump gunicorn from 25.1.0 to 25.2.0 by dependabot[bot] · Pull Request #21134 · goauthentik/authentik

dependabot · 2026-03-25T04:08:05Z

Bumps gunicorn from 25.1.0 to 25.2.0.

Release notes

Gunicorn 25.2.0

New Features

Fast HTTP Parser (gunicorn_h1c 0.4.1): Integrate new exception types and limit parameters from gunicorn_h1c 0.4.1 for both WSGI and ASGI workers

Requires gunicorn_h1c >= 0.4.1 for http_parser='fast'

Falls back to Python parser in auto mode if version not met

Proper HTTP status codes for limit errors (414, 431)

Bug Fixes

uWSGI Async Workers: Fix InvalidUWSGIHeader: incomplete header error when using gevent or gthread workers with uwsgi protocol behind nginx. (#3552, [PR #3554](benoitc/gunicorn#3554))

FileWrapper Iterator Protocol: Add __iter__ and __next__ methods to FileWrapper for full PEP 3333 compliance. (#3396, [PR #3550](benoitc/gunicorn#3550))

Performance

ASGI HTTP Parser Optimizations: Improve ASGI worker HTTP parsing performance

Read chunks in 64-byte blocks instead of 1 byte at a time

Reuse BytesIO buffers with truncate/seek instead of creating new objects

Use bytearray.find() directly instead of converting to bytes first

Use index-based iteration for header parsing instead of list.pop(0)

Commits

dcaf2e1 Add 25.2.0 to 2026 changelog
6f601a0 Bump version to 25.2.0
22443a8 Bump tornado to 6.5.5 in lock file
cb708b4 Add uwsgi async fix to changelog
385a921 Fix uwsgi incomplete header error with async workers (#3554)
f555180 Add FileWrapper iterator fix to changelog
f8fca7a fix: add iter and next to FileWrapper for PEP 3333 compliance (#3550)
0ad47db Use user-writable default path for control socket (#3551)
3667a10 Merge pull request #3549 from benoitc/feature/optional-http-parser
3568af1 Skip SIGINT shutdown test on PyPy
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [gunicorn](https://github.com/benoitc/gunicorn) from 25.1.0 to 25.2.0. - [Release notes](https://github.com/benoitc/gunicorn/releases) - [Commits](benoitc/gunicorn@25.1.0...25.2.0) --- updated-dependencies: - dependency-name: gunicorn dependency-version: 25.2.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

netlify · 2026-03-25T04:09:48Z

✅ Deploy Preview for authentik-docs ready!

Name	Link
🔨 Latest commit	`d66b6a4`
🔍 Latest deploy log	https://app.netlify.com/projects/authentik-docs/deploys/69c35fa9ac442600085cbad1
😎 Deploy Preview	https://deploy-preview-21134--authentik-docs.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify project configuration.

codecov · 2026-03-25T04:16:59Z

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 92.77%. Comparing base (5ff8400) to head (d66b6a4).
⚠️ Report is 5 commits behind head on main.
✅ All tests successful. No failed tests found.

Additional details and impacted files

@@            Coverage Diff             @@
##             main   #21134      +/-   ##
==========================================
- Coverage   92.81%   92.77%   -0.05%     
==========================================
  Files        1000     1000              
  Lines       56589    56589              
  Branches      425      425              
==========================================
- Hits        52525    52501      -24     
- Misses       4064     4088      +24

Flag	Coverage Δ
conformance	`37.39% <ø> (+<0.01%)`	⬆️
e2e	`42.89% <ø> (ø)`
integration	`22.17% <ø> (-0.05%)`	⬇️
rust	`0.23% <ø> (ø)`
unit	`91.72% <ø> (+<0.01%)`	⬆️
unit-migrate	`91.81% <ø> (+<0.01%)`	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

* main: (42 commits) endpoints/connectors: fix enabled flag not respected (#21144) web: bump vite from 7.3.1 to 8.0.2 in /web (#21109) website/docs: add a single page about our user interface, document Consent stage (#20533) website: bump the build group across 1 directory with 9 updates (#21127) web: bump knip from 5.88.1 to 6.0.5 in /web (#21129) core: bump drf-spectacular from 0.28.0 to 0.29.0 (#19420) packages/client-go: init (#21139) providers/proxy: Add a default maxResponseBodySize to Traefik Middleware (#21111) core: bump library/nginx from `dec7a90` to `7150b3a` in /website (#21137) core: bump gunicorn from 25.1.0 to 25.2.0 (#21134) core: bump github.com/getsentry/sentry-go from 0.43.0 to 0.44.1 (#21122) core: bump astral-sh/uv from 0.11.0 to 0.11.1 in /lifecycle/container (#21135) ci: bump taiki-e/install-action from 2.69.8 to 2.69.9 in /.github/actions/setup (#21136) web/a11y: Modals, Command Palette (Merge branch) (#17812) website/docs: document file picker values (#20994) packages/client-rust: init (#21117) core: bump sentry-sdk from 2.55.0 to 2.56.0 (#21124) events: add helper to log deprecation configuration_warning message (#21115) core: bump djangorestframework from 3.17.0 to 3.17.1 (#21126) core: bump twilio from 9.10.3 to 9.10.4 (#21123) ...

dependabot bot added the dependencies Pull requests that update a dependency file label Mar 25, 2026

dependabot bot requested a review from a team as a code owner March 25, 2026 04:08

BeryJu approved these changes Mar 25, 2026

View reviewed changes

rissson merged commit 92493c9 into main Mar 25, 2026
107 checks passed

rissson deleted the dependabot/uv/gunicorn-25.2.0 branch March 25, 2026 12:16

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

core: bump gunicorn from 25.1.0 to 25.2.0#21134

core: bump gunicorn from 25.1.0 to 25.2.0#21134
rissson merged 1 commit intomainfrom
dependabot/uv/gunicorn-25.2.0

dependabot bot commented on behalf of github Mar 25, 2026

Uh oh!

netlify bot commented Mar 25, 2026

Uh oh!

codecov bot commented Mar 25, 2026 •

edited

Loading

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

Uh oh!

Conversation

dependabot bot commented on behalf of github Mar 25, 2026

Gunicorn 25.2.0

New Features

Bug Fixes

Performance

Uh oh!

netlify bot commented Mar 25, 2026

✅ Deploy Preview for authentik-docs ready!

Uh oh!

codecov bot commented Mar 25, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Codecov Report

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

codecov bot commented Mar 25, 2026 •

edited

Loading