Bump schemathesis from 3.19.7 to 3.20.0

[dependabot]

Bumps schemathesis from 3.19.7 to 3.20.0.

Release notes

Sourced from schemathesis's releases.

Release 3.20.0

I am pleased to announce the latest release of Schemathesis, which brings a range of new features, improvements, and bug fixes aimed at enhancing your API testing experience. 🎉

Here's a quick overview of what's new:

• OpenAPI 3.1: Experimental support for OpenAPI 3.1 provides forward compatibility for evolving APIs.
• Security: Automatic sanitization of sensitive data in the output is now enabled by default for better data hygiene.
• XML Serialization: Support for application/xml serialization opens up new testing possibilities for APIs that use this format.
• Hook Shortcuts: Minimize boilerplate in your extensions with new hook shortcuts like filter_query, map_header, etc.
• FastAPI & GraphQL Enhancements: Automatic FastAPI fixup and body hooks in GraphQL schemas simplify the testing process for FastAPI and GraphQL users.
• Improved Debugging: Refined reproduction code and shortened test case IDs for easier debugging.

For a full list of changes, please see the changelog below. Your feedback is valuable to us, and we look forward to hearing your thoughts on these updates 🙏

🚀 Added

• --experimental=openapi-3.1 CLI option for experimental support of OpenAPI 3.1. This enables compatible JSON Schema validation for responses, while data generation remains OpenAPI 3.0-compatible. #1820
• Automatic sanitization of sensitive data in the output is now enabled by default. This feature can be disabled using the --sanitize-output=false CLI option. For more advanced customization, use schemathesis.sanitizing.configure(). #1794
• Support for application/xml serialization based on Open API schema definitions. #733
• Hook shortcuts (filter_query, map_header, etc.) to minimize boilerplate in extensions. #1673
• Automatic FastAPI fixup injecting for ASGI loaders, eliminating the need for manual setup. #1797
• Support for body hooks in GraphQL schemas, enabling custom filtering or modification of queries and mutations. #1464
• Support for colored output from docker container. #1170
• A way to disable suggestions for visualizing test results via the SCHEMATHESIS_REPORT_SUGGESTION=0 environment variable. #1802
• New filter_operations hook to conditionally include or exclude specific API operations from being tested.
• Added contains method to ParameterSet for easier parameter checks in hooks. #1789

Note: Experimental features can change or be removed in any minor version release.

🔧 Changed

• Support Werkzeug>=3.0. #1819
• Refined generated reproduction code and shortened X-Schemathesis-TestCaseId for easier debugging. #1801
• Add case as the first argument to AuthContext.set. The previous calling convention is still supported. #1788
• Disable the 'explain' phase in Hypothesis to improve performance. #1808
• Simplify Python code samples for failure reproduction.
• Do not display InsecureRequestWarning in CLI output if the user explicitly provided --request-tls-verify=false. #1780
• Enhance CLI output for schema loading and internal errors, providing clearer diagnostics and guidance. #1781, #1517, #1472

Before:

Failed to load schema from https://127.0.0.1:6423/openapi.json
You can use `--wait-for-schema=NUM` to wait for a maximum of NUM seconds on the API schema availability.
Error: requests.exceptions.SSLError: HTTPSConnectionPool(host='localhost', port=6423): Max retries exceeded with url: /openapi.json (Caused by SSLError(SSLCertVerificationError(1, '[SSL: WRONG_VERSION_NUMBER] wrong version number (_ssl.c:992)')))
Add this option to your command line parameters to see full tracebacks: --show-errors-tracebacks

... (truncated)

Changelog

Sourced from schemathesis's changelog.

3.20.0_ - 2023-10-18

Added

• Support for application/xml serialization based on Open API schema definitions. [#733](https://github.com/schemathesis/schemathesis/issues/733)_
• Hook shortcuts (filter_query, map_header, etc.) to minimize boilerplate in extensions. [#1673](https://github.com/schemathesis/schemathesis/issues/1673)_
• Support for colored output from docker container. [#1170](https://github.com/schemathesis/schemathesis/issues/1170)_
• A way to disable suggestion for visualizing test results via the SCHEMATHESIS_REPORT_SUGGESTION=0 environment variable. [#1802](https://github.com/schemathesis/schemathesis/issues/1802)_
• Automatic FastAPI fixup injecting for ASGI loaders, eliminating the need for manual setup. [#1797](https://github.com/schemathesis/schemathesis/issues/1797)_
• Support for body hooks in GraphQL schemas, enabling custom filtering or modification of queries and mutations. [#1464](https://github.com/schemathesis/schemathesis/issues/1464)_
• New filter_operations hook to conditionally include or exclude specific API operations from being tested.
• Added contains method to ParameterSet for easier parameter checks in hooks. [#1789](https://github.com/schemathesis/schemathesis/issues/1789)_
• Automatic sanitization of sensitive data in the output is now enabled by default. This feature can be disabled using the --sanitize-output=false CLI option. For more advanced customization, use schemathesis.sanitizing.configure(). [#1794](https://github.com/schemathesis/schemathesis/issues/1794)_
• --experimental=openapi-3.1 CLI option for experimental support of OpenAPI 3.1. This enables compatible JSON Schema validation for responses, while data generation remains OpenAPI 3.0-compatible. [#1820](https://github.com/schemathesis/schemathesis/issues/1820)_

Note: Experimental features can change or be removed in any minor version release.

Changed

• Support Werkzeug>=3.0. [#1819](https://github.com/schemathesis/schemathesis/issues/1819)_
• Refined generated reproduction code and shortened X-Schemathesis-TestCaseId for easier debugging. [#1801](https://github.com/schemathesis/schemathesis/issues/1801)_
• Add case as the first argument to AuthContext.set. Previous calling convention is still supported. [#1788](https://github.com/schemathesis/schemathesis/issues/1788)_
• Disable the 'explain' phase in Hypothesis to improve performance. [#1808](https://github.com/schemathesis/schemathesis/issues/1808)_
• Simplify Python code samples for failure reproduction.
• Do not display InsecureRequestWarning in CLI output if the user explicitly provided --request-tls-verify=false. [#1780](https://github.com/schemathesis/schemathesis/issues/1780)_
• Enhance CLI output for schema loading and internal errors, providing clearer diagnostics and guidance. [#1781](https://github.com/schemathesis/schemathesis/issues/1781), [#1517](https://github.com/schemathesis/schemathesis/issues/1517), [#1472](https://github.com/schemathesis/schemathesis/issues/1472)_

Before:

.. code:: text

Failed to load schema from https://127.0.0.1:6423/openapi.json
You can use `--wait-for-schema=NUM` to wait for a maximum of NUM seconds on the API schema availability.
Error: requests.exceptions.SSLError: HTTPSConnectionPool(host='localhost', port=6423): Max retries exceeded with url: /openapi.json (Caused by SSLError(SSLCertVerificationError(1, '[SSL: WRONG_VERSION_NUMBER] wrong version number (_ssl.c:992)')))
Add this option to your command line parameters to see full tracebacks: --show-errors-tracebacks

After:

.. code:: text

Schema Loading Error
SSL verification problem
[SSL: WRONG_VERSION_NUMBER] wrong version number

Tip: Bypass SSL verification with --request-tls-verify=false.

... (truncated)

Commits

• a34b773 docs: update .readthedocs.yml
• a223573 chore: Release 3.20.0
• cd5adf3 docs: update changelog
• b911f9e test: More tests for generated cURL commands
• c62960b test: Disable deadlines for some tests
• 990b87b chore: Support Werkzeug>=3.0
• bde2ec7 feat: Automatic sanitization of sensitive data in the output (#1842)
• 34f2bcd build(deps): bump urllib3 from 1.26.17 to 1.26.18 in /example
• 8ea9833 chore: Remove unused TestResult.overridden_headers attribute
• e74fa64 chore: Remove unused SerializedError.example attribute
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Superseded by #3890.