You can use boolean logic (e.g. AND/OR/NOT) for complex search queries. For more help and examples, see the search documentation.
Search by package name:
my-package (implicit)
name:my-package (explicit)
Search by package filename:
filename:my-package.ext
Search by package tag:
tag:latest
Search by package version:
version:1.0.0
prerelease:true (prereleases)
prerelease:false (no prereleases)
Search by package architecture:
architecture:x86_64
Search by package distribution:
distribution:el
Search by package license:
license:MIT
Search by package format:
format:deb
Search by package status:
status:in_progress
Search by package file checksum:
checksum:5afba
Search by package security status:
severity:critical
Search by package vulnerabilities:
vulnerabilities:>1
vulnerabilities:<1000
Search by # of package downloads:
downloads:>8
downloads:<100
Search by package type:
type:binary
type:source
Search by package size (bytes):
size:>50000
size:<10000
Search by dependency name/version:
dependency:log4j
dependency:log4j=1.0.0
dependency:log4j>1.0.0
Search by uploaded date:
uploaded:>"1 day ago"
uploaded:<"August 14, 2022 EST"
Search by entitlement token (identifier):
entitlement:3lKPVJPosCsY
Search by policy violation:
policy_violated:true
deny_policy_violated:true
license_policy_violated:true
vulnerability_policy_violated:true
Search by repository:
repository:repo-name
Search by last download date:
last_downloaded:<"30 days ago"
last_downloaded:>"August 14, 2022 EST"
Search queries for all Debian-specific (and related) package types
Search by component:
deb_component:unstable
Search queries for all Maven-specific (and related) package types
Search by group ID:
maven_group_id:org.apache
Search queries for all Docker-specific (and related) package types
Search by image digest:
docker_image_digest:sha256:7c5..6d4
(full hashref only)
Search by layer digest:
docker_layer_digest:sha256:4c4..ae4
(full hashref only)
Search queries for all Generic-specific package types
Search by file path:
generic_filepath:path/to/file.txt
Search by directory:
generic_directory:path/to
Field type modifiers (depending on the type, you can influence behaviour)
For all queries, you can use:
~foo for negation
For string queries, you can use:
^foo to anchor to start of term
foo$ to anchor to end of term
foo*bar for fuzzy matching
For number/date or version queries, you can use:
>foo for values greater than
>=foo for values greater / equal
<foo for values less than
<=foo for values less / equal
Need a secure and centralised artifact repository to deliver Alpine,
Cargo,
CocoaPods,
Composer,
Conan,
Conda,
CRAN,
Dart,
Debian,
Docker,
Generic,
Go,
Helm,
Hex,
HuggingFace,
LuaRocks,
Maven,
MCP,
npm,
NuGet,
P2,
Python,
RedHat,
Ruby,
Swift,
Terraform,
Vagrant,
VSX,
Raw & More packages?
Cloudsmith is the new standard in Package / Artifact Management and Software Distribution.
With support for all major package formats, you can trust us to manage your software supply chain.
Alpine
Cargo
Composer
Dart
Debian
Docker
Go
Helm
Maven
npm
NuGet
RedHat
Ruby
Swift
Terraform
Raw
demo-docs
/
awesome-repo
requests
2.25.1
One-liner (summary)
Description
# Requests
Requests is a simple, yet elegant HTTP library.
`python >>> import requests >>> r = requests.get('https://api.github.com/user', auth=('user', 'pass')) >>> r.status_code 200 >>> r.headers['content-type'] 'application/json; charset=utf8' >>> r.encoding 'utf-8' >>> r.text '{"type":"User"...' >>> r.json() {'disk_usage': 368627, 'private_gists': 484, ...} `
Requests allows you to send HTTP/1.1 requests extremely easily. There’s no need to manually add query strings to your URLs, or to form-encode your PUT & POST data — but nowadays, just use the json method!
Requests is one of the most downloaded Python package today, pulling in around 14M downloads / week— according to GitHub, Requests is currently [depended upon](https://github.com/psf/requests/network/dependents?package_id=UGFja2FnZS01NzA4OTExNg%3D%3D) by 500,000+ repositories. You may certainly put your trust in this code.
[](https://pepy.tech/project/requests/month) [](https://pypi.org/project/requests) [](https://github.com/psf/requests/graphs/contributors)
## Installing Requests and Supported Versions
Requests is available on PyPI:
`console $ python -m pip install requests `
Requests officially supports Python 2.7 & 3.5+.
## Supported Features & Best–Practices
Requests is ready for the demands of building robust and reliable HTTP–speaking applications, for the needs of today.
- Keep-Alive & Connection Pooling
- International Domains and URLs
- Sessions with Cookie Persistence
- Browser-style TLS/SSL Verification
- Basic & Digest Authentication
- Familiar dict–like Cookies
- Automatic Content Decompression and Decoding
- Multi-part File Uploads
- SOCKS Proxy Support
- Connection Timeouts
- Streaming Downloads
- Automatic honoring of .netrc
- Chunked HTTP Requests
## API Reference and User Guide available on [Read the Docs](https://requests.readthedocs.io)
[](https://requests.readthedocs.io)
---
[](https://kennethreitz.org) [](https://www.python.org/psf)
License
Size
59.8 KB
Downloads
7
Tags
bdist/wheel whl noarch py2/py3 upstream python-upstream-pro… latest
| Status | Completed |
|---|---|
| Checksum (MD5) | ec79209809129bf13cb002a0a573ef45 |
| Checksum (SHA-1) | b1009d9fd6acadc64e1a3cecb6f0083fe047e753 |
| Checksum (SHA-256) | c210084e36a42ae6b9219e00e48287def368a26d03a048ddad7bfee44f75871e |
| Checksum (SHA-512) | cc0afada76d46295c685ac060d15a1ccb9af671522cb7b4fa0ad11988853715d1b… |
| GPG Signature | |
| GPG Fingerprint | 6811684bac0b8895434e97bdd4391b8fb999e537 |
| Storage Region | Dublin, Ireland |
| Type | Binary (contains binaries and binary artifacts) |
| Uploaded At | 9 months, 3 weeks ago |
| Uploaded By |
|
| Slug Id | requests-2251-py2py3-none-anywhl-dj68 |
| Unique Id | 4DXTCuCrmGD66lgE |
| Version (Raw) | 2.25.1 |
| Version (Parsed) |
|
| extended metadata | |
| Author | Kenneth Reitz <me@kennethreitz.org> |
| Classifiers | Development Status :: 5 - Production/Stable | Intended Audience :: Developers | License :: OSI Approved :: Apache Software License | Natural Language :: English | Programming Language :: Python | Programming Language :: Python :: 2 | Programming Language :: Python :: 2.7 | Programming Language :: Python :: 3 | Programming Language :: Python :: 3.5 | Programming Language :: Python :: 3.6 | Programming Language :: Python :: 3.7 | Programming Language :: Python :: 3.8 | Programming Language :: Python :: 3.9 | Programming Language :: Python :: Implementation :: CPython | Programming Language :: Python :: Implementation :: PyPy |
| Homepage URL | https://requests.readthedocs.io |
| Metadata Version | 2.1 |
| Project Urls | Documentation, https://requests.readthedocs.io | Source, https://github.com/psf/requests |
| Py Filetype | bdist_wheel |
| Py Version | py2.py3 |
| Requires Dist | PySocks (!=1.5.7,>=1.5.6) ; extra == 'socks' | certifi (>=2017.4.17) | chardet (<5,>=3.0.2) | cryptography (>=1.3.4) ; extra == 'security' | idna (<3,>=2.5) | pyOpenSSL (>=0.14) ; extra == 'security' | urllib3 (<1.27,>=1.21.1) | win-inet-pton ; (sys_platform == "win32" and python_version == "2.7") and extra == 'socks' |
| Requires Python | >=2.7, !=3.0.*, !=3.1.*, !=3.2.*, !=3.3.*, !=3.4.* |
| pkg | requests-2.25.1-py2.py3-none-an… |
7
59.8 KB |
md5 | sha1 | sha256 | sha512 |
This package has 26 files/directories.
|
|
requests |
7 |
|
Last scanned
9 months, 3 weeks ago
Scan result
Vulnerable
Vulnerability count
3
Max. severity
Medium| Target: | requirements.txt | |
| MEDIUM |
CVE-2023-32681: python-requests: Unintended leak of Proxy-Authorization headerRequests is a HTTP library. Since Requests 2.3.0, Requests has been leaking Proxy-Authorization headers to destination servers when redirected to an HTTPS endpoint. This is a product of how we use `rebuild_proxies` to reattach the `Proxy-Authorization` header to requests. For HTTP connections sent through the tunnel, the proxy will identify the header in the request itself and remove it prior to forwarding to the destination server. However when sent over HTTPS, the `Proxy-Authorization` header must be sent in the CONNECT request as the proxy has no visibility into the tunneled request. This results in Requests forwarding proxy credentials to the destination server unintentionally, allowing a malicious actor to potentially exfiltrate sensitive information. This issue has been patched in version 2.31.0.Package Name: requests Installed Version: 2.25.1 Fixed Version: 2.31.0 References: access.redhat.com access.redhat.com bugzilla.redhat.com bugzilla.redhat.com cve.mitre.org errata.almalinux.org errata.rockylinux.org github.com github.com github.com github.com github.com linux.oracle.com linux.oracle.com lists.debian.org lists.fedoraproject.org lists.fedoraproject.org lists.fedoraproject.org lists.fedoraproject.org nvd.nist.gov security.gentoo.org ubuntu.com ubuntu.com ubuntu.com www.cve.org |
|
| MEDIUM |
CVE-2024-35195: requests: subsequent requests to the same host ignore cert verificationRequests is a HTTP library. Prior to 2.32.0, when making requests through a Requests `Session`, if the first request is made with `verify=False` to disable cert verification, all subsequent requests to the same host will continue to ignore cert verification regardless of changes to the value of `verify`. This behavior will continue for the lifecycle of the connection in the connection pool. This vulnerability is fixed in 2.32.0.Package Name: requests Installed Version: 2.25.1 Fixed Version: 2.32.0 References: access.redhat.com access.redhat.com bugzilla.redhat.com bugzilla.redhat.com cve.mitre.org errata.almalinux.org errata.rockylinux.org github.com github.com github.com github.com linux.oracle.com linux.oracle.com lists.fedoraproject.org lists.fedoraproject.org lists.fedoraproject.org lists.fedoraproject.org nvd.nist.gov www.cve.org |
|
| MEDIUM |
CVE-2024-47081: requests: Requests vulnerable to .netrc credentials leak via malicious URLsRequests is a HTTP library. Due to a URL parsing issue, Requests releases prior to 2.32.4 may leak .netrc credentials to third parties for specific maliciously-crafted URLs. Users should upgrade to version 2.32.4 to receive a fix. For older versions of Requests, use of the .netrc file can be disabled with `trust_env=False` on one's Requests Session.Package Name: requests Installed Version: 2.25.1 Fixed Version: 2.32.4 References: seclists.org www.openwall.com www.openwall.com www.openwall.com www.openwall.com access.redhat.com github.com github.com github.com github.com nvd.nist.gov requests.readthedocs.io seclists.org ubuntu.com www.cve.org www.openwall.com |
|
Package statistics are no longer available on cloudsmith.io. Please visit our new web app to access this feature.
You can embed a badge in another website that shows this or the latest version of this package.
To embed the badge for this specific package version, use the following:
[](https://cloudsmith.io/~demo-docs/repos/awesome-repo/packages/detail/python/requests/2.25.1/a=noarch;xf=bdist_wheel;xn=requests;xv=py2.py3/)|This version of 'requests' @ Cloudsmith|
.. |This version of 'requests' @ Cloudsmith| image:: https://api.cloudsmith.com/v1/badges/version/demo-docs/awesome-repo/python/requests/2.25.1/a=noarch;xf=bdist_wheel;xn=requests;xv=py2.py3/?render=true
:target: https://cloudsmith.io/~demo-docs/repos/awesome-repo/packages/detail/python/requests/2.25.1/a=noarch;xf=bdist_wheel;xn=requests;xv=py2.py3/image::https://api.cloudsmith.com/v1/badges/version/demo-docs/awesome-repo/python/requests/2.25.1/a=noarch;xf=bdist_wheel;xn=requests;xv=py2.py3/?render=true[link="https://cloudsmith.io/~demo-docs/repos/awesome-repo/packages/detail/python/requests/2.25.1/a=noarch;xf=bdist_wheel;xn=requests;xv=py2.py3/",title="This version of 'requests' @ Cloudsmith"]<a href="https://cloudsmith.io/~demo-docs/repos/awesome-repo/packages/detail/python/requests/2.25.1/a=noarch;xf=bdist_wheel;xn=requests;xv=py2.py3/"><img src="https://api.cloudsmith.com/v1/badges/version/demo-docs/awesome-repo/python/requests/2.25.1/a=noarch;xf=bdist_wheel;xn=requests;xv=py2.py3/?render=true" alt="This version of 'requests' @ Cloudsmith" /></a>rendered as:
To embed the badge for the latest package version, use the following:
[](https://cloudsmith.io/~demo-docs/repos/awesome-repo/packages/detail/python/requests/latest/a=noarch;xf=bdist_wheel;xn=requests;xv=py2.py3/)|Latest version of 'requests' @ Cloudsmith|
.. |Latest version of 'requests' @ Cloudsmith| image:: https://api.cloudsmith.com/v1/badges/version/demo-docs/awesome-repo/python/requests/latest/a=noarch;xf=bdist_wheel;xn=requests;xv=py2.py3/?render=true&show_latest=true
:target: https://cloudsmith.io/~demo-docs/repos/awesome-repo/packages/detail/python/requests/latest/a=noarch;xf=bdist_wheel;xn=requests;xv=py2.py3/image::https://api.cloudsmith.com/v1/badges/version/demo-docs/awesome-repo/python/requests/latest/a=noarch;xf=bdist_wheel;xn=requests;xv=py2.py3/?render=true&show_latest=true[link="https://cloudsmith.io/~demo-docs/repos/awesome-repo/packages/detail/python/requests/latest/a=noarch;xf=bdist_wheel;xn=requests;xv=py2.py3/",title="Latest version of 'requests' @ Cloudsmith"]<a href="https://cloudsmith.io/~demo-docs/repos/awesome-repo/packages/detail/python/requests/latest/a=noarch;xf=bdist_wheel;xn=requests;xv=py2.py3/"><img src="https://api.cloudsmith.com/v1/badges/version/demo-docs/awesome-repo/python/requests/latest/a=noarch;xf=bdist_wheel;xn=requests;xv=py2.py3/?render=true&show_latest=true" alt="Latest version of 'requests' @ Cloudsmith" /></a>rendered as:
These instructions assume you have setup the repository first (or read it).
To install/use requests @ version 2.25.1 ...
pip install 'requests==2.25.1'You can also install the latest version of this package:
pip install --upgrade 'requests'If necessary, you can specify the repository directly:
pip install \
--index-url=https://dl.cloudsmith.io/public/demo-docs/awesome-repo/python/simple/ \
requests==2.25.1If you've got a project requirements.txt file, you can specify this as a dependency:
--index-url=https://dl.cloudsmith.io/public/demo-docs/awesome-repo/python/simple/
requests==2.25.1In addition, you can use this repository as an extra index url. However, please read our documentation on this parameter before using it. For example in a requirements.txt file:
--extra-index-url=https://dl.cloudsmith.io/public/demo-docs/awesome-repo/python/simple/
requests==2.25.1
](https://pypi.org/project/requests){kind=link}
](https://github.com/psf/requests/graphs/contributors){kind=link}
](https://requests.readthedocs.io){kind=link}
](https://kennethreitz.org){kind=link}
](https://www.python.org/psf){kind=link}