Skip to content

Bump Flurl from 2.8.2 to 4.0.0#536

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/nuget/legacy/Flurl-4.0.0
Closed

Bump Flurl from 2.8.2 to 4.0.0#536
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/nuget/legacy/Flurl-4.0.0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Apr 27, 2026

Copy link
Copy Markdown
Contributor

Updated Flurl from 2.8.2 to 4.0.0.

Release notes

Sourced from Flurl's releases.

4.0.0

  • AppendQueryParams method/overloads (#​688), thx @​Marusyk!
  • BUGFIX: SetQueryParams with collection, duplicate keys should append not overwrite (#​370)
  • BUGFIX: False negatives with Url.IsValid (#​462)

4.0.0-pre7

  • BREAKING: Event handler changes (#​784)
  • BREAKING: AllowHttpStatus now takes int instead of HttpStatusCode args (#​785)
  • BUGFIX: User-Agent header didn't copy over from HttpClient correctly (#​778)

Full Changelog: tmenier/Flurl@Flurl.Http.Newtonsoft.0.9.0-pre2...Flurl.Http.4.0.0-pre7

4.0.0-pre6

  • Additional configuration enhancements for #​770 (description updated).
  • BREAKING: Refactored a shared interface (#​773)

Full Changelog: tmenier/Flurl@Flurl.Http.4.0.0-pre5...Flurl.Http.4.0.0-pre6

4.0.0-pre5

  • BREAKING: Complete overhaul of Flurl's configuration system (#​770)
  • Use SocketsHttpHandler on supported platforms (#​769)

Full Changelog: tmenier/Flurl@Flurl.4.0.0-pre4...Flurl.Http.4.0.0-pre5

4.0.0-pre4

  • AppendQueryParams method/overloads (#​688), thx @​Marusyk!
  • BUGFIX: SetQueryParams with collection, duplicate keys should append not overwrite (#​370)
  • BUGFIX: False negatives with Url.IsValid (#​462)

Full Changelog: tmenier/Flurl@Flurl.3.0.7...Flurl.4.0.0-pre4

4.0.0-pre3

  • JSON deserialization case-insensitive by default (#​719)
  • Removed circular redirect detection (#​714)
  • Fixed ShouldHaveCalled false negative with URL ending with ? (#​721)

4.0.0-pre2

  • Default GetStreamAsync to unbuffered behavior (#​630, breaking)
  • Drop WithClient extension methods (#​590, breaking)
  • Drop ConnectionLeaseTimeout setting (#​703, breaking)
  • Move CancellationToken to last arg everywhere that it isn't (#​702, breaking)

4.0.0-pre1

  • Drop dependency on Newtonsoft.Json in favor of System.Text.Json (#​517)*
  • Drop non-generic dynamic-returning JSON methods (#​699)
  • Update target frameworks (#​544 )

*WARNING: Your code may fail in subtle ways after upgrading if it depends on things like serialization attributes or global settings from the Newtonsoft library. To continue to use Newtonsoft with Flurl.Http 4.0 and later, add and register this Newtonsoft serializer in your code.

3.2.4

  • Create symbols package for upload to nuget.org (#​601, thx @​gitfool)
  • BUGFIX: NullRefEx when no body specified in RespondWith (#​606)
  • Trim leading/trailing whitespace from header values (#​623)

3.2.3

  • New feature: HttpTest.SimulateException (#​554)
  • Update Flurl dependency

3.2.2

Updated Flurl dependency for bug fix (#​669)

3.2.1

  • Deserialize to different type in callbacks (#​571)
  • CapturedMultipartContent ctor allowing custom boundary (#​611)
  • Better thread safety with headers and query params (#​642)
  • IntelliSense fail - incorrect doc file name (#​636)

3.2.0

Note: This was supposed to be released as 3.1 but mistakenly released as 3.2 and published, at which point it's basically too late. Oh well.

  • Do not URL-encode cookie values (#​594, potentially breaking)
  • Opt-in header forwarding on redirect (#​608, potentially breaking)
  • Test setups/asserts more forgiving about ignoring query strings (#​596, potentially breaking)
  • net472 target to avoid unnecessary package dependency (#​616)
  • BUGFIX: Sending cookies on redirect (#​602)
  • BUGFIX: Redircts where Location excludes scheme (#​595)
  • BUGFIX: Exception on .NET Framework if content headers are forwarded on redirect GET (#​583)

3.0.7

  • Retain trailing ? or # if specified in original string (#​734)

3.0.6

  • Create symbols package for upload to nuget.org (#​601, thx @​gitfool)

3.0.5

  • BUGFIX: SetQueryParams + IEnumerable model prop (#​672)

3.0.4

Bug - SetQueryParams using object with nullable properties (#​669)

3.0.3

Minor bug fixes for SetQueryParams (#​641 & #​632)

3.0.2

  • Trim whitespace from start and end of Url (#​603)
  • net472 target to avoid unnecessary package dependency (#​616)
  • BUGFIX: Appending "/" to Url (#​609)
  • BUGFIX: Encoding inconsistency when string is cast to object (#​620)

3.0.1

  • BUGFIX: Parsing bug when host contains upper-case characters. (#​574)
  • BUGFIX: Don't add leading slash to relative URL that doesn't contain one. (#​568)
  • BUGFIX: Encode date (or any other non-string) after stringifying for query params. (#​582)

3.0

Flurl 3.0 contains a major rewrite of the URL building/parsing engine. It brings Flurl.Url's feature set more in line with System.Uri, while also addressing some of its quirks.

New Features

  • New Url properties (#​440)

    • Scheme (read/write)
    • UserInfo (read/write)
    • Host (read/write)
    • Port (read/write)
    • Authority (read-only, UserInfo + Host + Port)
    • Root (read-only, Scheme + Authority)
    • PathSegments (modifiable)
    • IsRelative (read-only)
    • IsSecureScheme (read-only, true for https or wss)
  • All URL-building extension methods currently on string now available on System.Uri (#​489)

  • New fluent builder methods on Flurl.Url, System.Uri, and string:

    • RemovePathSegment() (removes the last segment)
    • RemovePath()
    • RemoveQuery()
    • Reset() (restores Url to its original state as constructed, NOT available on string)
  • Support for relative URLs (#​407)

  • Parameterless constructor for Url (#​518)

  • New static utility method: Url.ParsePathSegments(string) (assumes entire string is the path portion of a URL)

Breaking Changes from 2.x

  • New collection type for Url.QueryParams (#​555)
  • Url.Path changed to be more in line with the formal definition. Previously it included everything (scheme, host, etc.) up to the query string. It now starts after the host/port, including the leading / if present.
  • Url.IsValid() instance method was removed. It was confusing in the case of relative URLs since arguably any string could be considered a valid relative URL. Check the IsRelative property instead. (Static Url.IsValid(string) method is still available but, same a before, returns true only for valid absolute URLs.)
  • Dropping support for older platforms (#​544)

Bug fixes:

  • Url.ToUri() now works for relative URLs (#​407)

Commits viewable in compare view.

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

---
updated-dependencies:
- dependency-name: Flurl
  dependency-version: 4.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added .NET Pull requests that update .NET code dependencies Pull requests that update a dependency file labels Apr 27, 2026
@JoTiTu JoTiTu closed this Apr 29, 2026
@dependabot @github

dependabot Bot commented on behalf of github Apr 29, 2026

Copy link
Copy Markdown
Contributor Author

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

@dependabot dependabot Bot deleted the dependabot/nuget/legacy/Flurl-4.0.0 branch April 29, 2026 06:54
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file .NET Pull requests that update .NET code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant