On Tue, May 23, 2017 at 06:13:17PM -0700, Cory Benfield wrote: > There are discussions around Requests unvendoring its dependencies > thanks to the improved nature of pip. This might be a year of pretty > big changes for Requests.
In which case, what is to prevent Requests from just depending on pyOpenSSL as usual? I'm still writing 2.7 code every day and would love to see it live a little longer, but accepting every feature request seems the wrong way to go - and MemoryBIO is a hard sell as a security enhancement, it's new functionality. David _______________________________________________ Python-Dev mailing list Python-Dev@python.org https://mail.python.org/mailman/listinfo/python-dev Unsubscribe: https://mail.python.org/mailman/options/python-dev/archive%40mail-archive.com