Skip to content

build(deps): Bump authlib from 1.6.6 to 1.6.9 in /components/clp-mcp-server#2098

Closed
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/uv/components/clp-mcp-server/authlib-1.6.9
Closed

build(deps): Bump authlib from 1.6.6 to 1.6.9 in /components/clp-mcp-server#2098
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/uv/components/clp-mcp-server/authlib-1.6.9

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Mar 16, 2026
edited
Loading

Bumps authlib from 1.6.6 to 1.6.9.

Release notes

Sourced from authlib's releases.

v1.6.9

Full Changelog: authlib/authlib@v1.6.8...v1.6.9

Changes in jose module

  • Not using header's jwk automatically
  • Add ES256K into default jwt algorithms
  • Remove deprecated algorithm from default registry
  • Generate random cek when cek length doesn't match

v1.6.8

Full Changelog: authlib/authlib@v1.6.7...v1.6.8

  • Add EdDSA to default jwt instance.

v1.6.7

Full Changelog: authlib/authlib@v1.6.6...v1.6.7

Set supported algorithms for the default jwt instance.

Commits
  • 9266eaa chore: release 1.6.9
  • b9bb2b2 fix(oidc): fail close at validating c_hash and at_hash
  • 1b0a1d9 fix(jose): generate random cek when cek length doesn't match
  • 5be3c51 fix(jose): add ES256K into default jwt algorithms
  • 48b345f fix(jose): remove deprecated algorithm from default registry
  • a5d4b2d fix(jose): do not use header's jwk automatically
  • a769f34 chore: release 1.6.8
  • 84f3fa2 fix: add EdDSA to default jwt algorithms
  • 38e872a chore: release 1.6.7
  • b87c32e fix: remove "none" algorithm from default jwt instance
  • See full diff in compare view

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code labels Mar 16, 2026
@dependabot dependabot Bot requested a review from a team as a code owner March 16, 2026 15:41
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code labels Mar 16, 2026
@dependabot dependabot Bot mentioned this pull request Mar 16, 2026
Closed
@dependabot
build(deps): Bump authlib in /components/clp-mcp-server
4c6ff28 
Bumps [authlib](https://github.com/authlib/authlib) from 1.6.6 to 1.6.9.
- [Release notes](https://github.com/authlib/authlib/releases)
- [Changelog](https://github.com/authlib/authlib/blob/main/docs/changelog.rst)
- [Commits](authlib/authlib@v1.6.6...v1.6.9)

---
updated-dependencies:
- dependency-name: authlib
  dependency-version: 1.6.9
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/uv/components/clp-mcp-server/authlib-1.6.9 branch from 326a5c8 to 4c6ff28 Compare April 10, 2026 15:05
@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot Bot commented on behalf of github Apr 15, 2026

Superseded by #2206.

@dependabot dependabot Bot closed this Apr 15, 2026
@dependabot dependabot Bot deleted the dependabot/uv/components/clp-mcp-server/authlib-1.6.9 branch April 15, 2026 21:01
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants