Skip to content

Commit 5ecc08a

Browse files
dependabot[bot]dependabot[bot]
authored
Bump gunicorn from 23.0.0 to 24.0.0 (#11983)
Bumps [gunicorn](https://github.com/benoitc/gunicorn) from 23.0.0 to 24.0.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/benoitc/gunicorn/releases">gunicorn's releases</a>.</em></p> <blockquote> <h2>24.0.0</h2> <h2>New Features</h2> <ul> <li> <p><strong>ASGI Worker (Beta)</strong>: Native asyncio-based ASGI support for running async Python frameworks like FastAPI, Starlette, and Quart without external dependencies</p> <ul> <li>HTTP/1.1 with keepalive connections</li> <li>WebSocket support</li> <li>Lifespan protocol for startup/shutdown hooks</li> <li>Optional uvloop for improved performance</li> </ul> </li> <li> <p><strong>uWSGI Binary Protocol</strong>: Support for receiving requests from nginx via <code>uwsgi_pass</code> directive</p> </li> <li> <p><strong>Documentation Migration</strong>: Migrated to MkDocs with Material theme</p> </li> </ul> <h2>Security</h2> <ul> <li><strong>eventlet</strong>: Require eventlet &gt;= 0.40.3 (CVE-2021-21419, CVE-2025-58068)</li> <li><strong>gevent</strong>: Require gevent &gt;= 24.10.1 (CVE-2023-41419, CVE-2024-3219)</li> <li><strong>tornado</strong>: Require tornado &gt;= 6.5.0 (CVE-2025-47287)</li> </ul> <h2>Install</h2> <pre><code>pip install gunicorn==24.0.0 </code></pre> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/benoitc/gunicorn/commit/3960372b820eea9161de29a1761707aaf318d514"><code>3960372</code></a> Merge pull request <a href="https://redirect.github.com/benoitc/gunicorn/issues/3426">#3426</a> from benoitc/website-2025</li> <li><a href="https://github.com/benoitc/gunicorn/commit/d34d3de01ba9e618b47849fed1c2db740737dd66"><code>d34d3de</code></a> docs: Set release date for 24.0.0</li> <li><a href="https://github.com/benoitc/gunicorn/commit/066e6d8bb307acdbe70fb7f0902feb03bacb6c95"><code>066e6d8</code></a> docs: Move ASGI worker tab after Gthread</li> <li><a href="https://github.com/benoitc/gunicorn/commit/c6b115948315108780c851f78ca643f373c4939f"><code>c6b1159</code></a> docs: Add Tornado worker to design page</li> <li><a href="https://github.com/benoitc/gunicorn/commit/c959daeb82dc5b5eafa463b5fb96857935dc9da0"><code>c959dae</code></a> docs: Redesign architecture page with visual components</li> <li><a href="https://github.com/benoitc/gunicorn/commit/571bc121d1f75ff45f559b662ad4de1a705097d3"><code>571bc12</code></a> docs: Add punchy theme with vibrant colors and modern features</li> <li><a href="https://github.com/benoitc/gunicorn/commit/73adc7cb298e2339d7de14bd7b07502ac826f843"><code>73adc7c</code></a> docs: Add collapsible TOC for settings reference</li> <li><a href="https://github.com/benoitc/gunicorn/commit/dcec6e701a22a63fa8ac1a68e47627eec724b3e8"><code>dcec6e7</code></a> docs: Modern landing page with custom template</li> <li><a href="https://github.com/benoitc/gunicorn/commit/5ea4eb340a2d0a8b5c7b963007f7b414910a64f3"><code>5ea4eb3</code></a> docs: Add 2026 changelog and modernize README</li> <li><a href="https://github.com/benoitc/gunicorn/commit/0b961036b7dc756632fc97676eb71aea3f682ca6"><code>0b96103</code></a> docs: Configure GitHub Pages deployment with custom domain</li> <li>Additional commits viewable in <a href="https://github.com/benoitc/gunicorn/compare/23.0.0...24.0.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=gunicorn&package-manager=pip&previous-version=23.0.0&new-version=24.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
1 parent a61ace9 commit 5ecc08a

6 files changed

Lines changed: 6 additions & 6 deletions

File tree

requirements/base-ft.txt

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -24,7 +24,7 @@ frozenlist==1.8.0
2424
# via
2525
# -r requirements/runtime-deps.in
2626
# aiosignal
27-
gunicorn==23.0.0
27+
gunicorn==24.0.0
2828
# via -r requirements/base-ft.in
2929
idna==3.10
3030
# via yarl

requirements/base.txt

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -24,7 +24,7 @@ frozenlist==1.8.0
2424
# via
2525
# -r requirements/runtime-deps.in
2626
# aiosignal
27-
gunicorn==23.0.0
27+
gunicorn==24.0.0
2828
# via -r requirements/base.in
2929
idna==3.10
3030
# via yarl

requirements/constraints.txt

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -83,7 +83,7 @@ frozenlist==1.8.0
8383
# via
8484
# -r requirements/runtime-deps.in
8585
# aiosignal
86-
gunicorn==23.0.0
86+
gunicorn==24.0.0
8787
# via -r requirements/base.in
8888
identify==2.6.16
8989
# via pre-commit

requirements/dev.txt

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -81,7 +81,7 @@ frozenlist==1.8.0
8181
# via
8282
# -r requirements/runtime-deps.in
8383
# aiosignal
84-
gunicorn==23.0.0
84+
gunicorn==24.0.0
8585
# via -r requirements/base.in
8686
identify==2.6.16
8787
# via pre-commit

requirements/test-ft.txt

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -47,7 +47,7 @@ frozenlist==1.8.0
4747
# via
4848
# -r requirements/runtime-deps.in
4949
# aiosignal
50-
gunicorn==23.0.0
50+
gunicorn==24.0.0
5151
# via -r requirements/base-ft.in
5252
idna==3.10
5353
# via

requirements/test.txt

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -47,7 +47,7 @@ frozenlist==1.8.0
4747
# via
4848
# -r requirements/runtime-deps.in
4949
# aiosignal
50-
gunicorn==23.0.0
50+
gunicorn==24.0.0
5151
# via -r requirements/base.in
5252
idna==3.10
5353
# via

0 commit comments

Comments
 (0)