Skip to content

chore(deps): bump asyncssh from 2.21.1 to 2.22.0 #21

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
dependabot wants to merge 1 commit into
base: main
Choose a base branch
from
Open

chore(deps): bump asyncssh from 2.21.1 to 2.22.0 #21

dependabot wants to merge 1 commit into from

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Dec 22, 2025

Bumps asyncssh from 2.21.1 to 2.22.0.

Changelog

Sourced from asyncssh's changelog.

Release 2.22.0 (21 Dec 2025)

  • Added a new config option utf8_decode_errors for handling UTF-8 decode errors when parsing certain fields in SSH packets (disconnect error, debug message, userauth banner, channel open failure reason, channel exit signal reason, and SFTP error reason). The default continues to behave as before, raising a ProtocolError exception, but this option allows invalid bytes to be removed or replaced. Thanks go to GitHub user Le-Syl21 for suggesting this.

  • Changed config parser to Ignore subdirectories and parse only plain files matching a glob pattern in include directives, better matching the behavior of other SSH implementations. Thanks go to Jacopo Nespolo for contributing this change.

  • Improved a previous fix for a race condition which sometimes triggered assertion errors in SSHForwarder. Thanks go to Mike Barry for reporting the issue and helping to test the improved fix.

  • Removed optional dependency on libnacl/libsodium for chacha20 and Edwrds curves, now that these are available in all supported versions of the cryptography package.

  • Updated asyncssh to use version 2 of the fido2 package, and update minimum Python version to 3.10, required by that updated package.

  • Fixed issue with the OpenSSL legacy provider on Windows and re-enabled OpenSSL use in unit tests on Windows.

  • Inproved "run multiple clients" example to show the hostname being accessed by each task.

  • Added unit testing for Python 3.14 and dropped 3.8 and 3.9.

Commits
  • af5a81e Bump version number up to 2.22.0 and update change log
  • 254d735 Add an option handling UTF-8 decode errors in certain SSH packets
  • c7bc3aa Add unit tests for filtering directories from config include glob match
  • 54f83ac Skip directories within ~/.ssh/config.d
  • 8d5d7be Remove optional dependency on libnacl/libsodium
  • 00600f0 Update Python version in examples to Python 3.10 and update copyright
  • c54ded6 Add support for client reported version 1.99
  • 6c46e76 Remove unnecessary key exchange unit test
  • 0b9e5b6 Build and workflow updates
  • d281290 Disable reliance on OpenSSL on Windows for now due to GitHub runner issues
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
chore(deps): bump asyncssh from 2.21.1 to 2.22.0
867c8ad 
Bumps [asyncssh](https://github.com/ronf/asyncssh) from 2.21.1 to 2.22.0.
- [Changelog](https://github.com/ronf/asyncssh/blob/develop/docs/changes.rst)
- [Commits](ronf/asyncssh@v2.21.1...v2.22.0)

---
updated-dependencies:
- dependency-name: asyncssh
  dependency-version: 2.22.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code labels Dec 22, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant