Sourced from flask-httpauth's changelog.

Flask-HTTPAuth change log

Release 3.3.0 - 2019-05-19

• Use constant time string comparisons #82 (commit1, commit2) (thanks Brendan Long!)
• Edited and changed the usage of JWT, because in fact the code and documentation uses JWS tokens. #79 (commit) (thanks unuseless!)
• Documentation fix #78 (commit)
• Documentation improvements #77 (commit)
• helper release script (commit)

Release 3.2.4 - 2018-06-17

• Refactored HTTPAuth login_required #74 (commit) (thanks nestedsoftware!)
• remove incorrect references to JWT in example application #69 (commit)
• Fix typo in docs #70 (commit) (thanks Grey Li!)
• Fix documentation #67 (commit) (thanks Eugene Rymarev!)
• correct spelling mistake #56 (commit) (thanks Edward Betts!)
• travis build fix for py36 (commit)

Release 3.2.3 - 2017-06-05

• Include docs and tests in pypi source tarball #55 (commit) (thanks Chandan Kumar!)

Release 3.2.2 - 2017-01-30

• Validate authorization header in multi auth #51 (commit)
• index.rst: Add a missing variable in a code snippet #49 (commit) (thanks Baptiste Fontaine!)

Release 3.2.1 - 2016-09-04

• add __version__ to package (commit)
• Add readme and license files to the built package #45 (commit)

Release 3.2.0 - 2016-08-20

• Fix TCP Connection reset by peer error #39 (commit) (thanks Joe Kemp!)

Release 3.1.2 - 2016-04-21

• Add robustness to password check (commit)

Release 3.1.1 - 2016-03-24

• pass params to view function in MultiAuth #36 (commit) (thanks vovanz!)
• add examples to flake8 build (commit)
• Added multi auth tests (commit)
• removed dead code (commit)

Release 3.1.0 - 2016-03-13

... (truncated)

• 31a1d4b Release 3.3.0
• 7276d8d helper release script
• fcc7ada Merge branch 'brendanlong-constant-time-comparison'
• 97f0e64 use werkzeug's safe_str_cmp instead of compare_digest
• 788d42e Use constant time string comparisons
• 3f743c6 Edited and changed the usage of JWT, because in fact the code and documentati...
• c38c523 Documentation fix
• ce5e5b4 Documentation improvements
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Automerge options (never/patch/minor, and dev/runtime dependencies)
• Pull request limits (per update run and/or open at any time)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

Finally, you can contact us by mentioning @dependabot.