Bump twine from 1.15.0 to 2.0.0

[dependabot-preview]

Bumps twine from 1.15.0 to 2.0.0.

Changelog

Sourced from twine's changelog.

orphan

:

Changelog

• 2.0.0 <2019-09-24>
• 437: Twine now requires Python 3.6 or later. Use pip 9 or pin to "twine<2" to install twine on older Python versions.
• 491 Require requests 2.20 or later to avoid reported security vulnerabilities in earlier releases.
• 1.15.0 <2019-09-17>
• 488 Improved output on check command: Prints a message when there are no distributions given to check. Improved handling of errors in a distribution's markup, avoiding messages flowing through to the next distribution's errors.
• 1.14.0 <2019-09-06>
• 456 Better error handling and gpg2 fallback if gpg not available.
• 341 Fail more gracefully when encountering bad metadata
• 459 Show Warehouse URL after uploading a package
• 310 Now provide a more meaningful error on redirect during upload.
• 1.13.0 <2019-02-13>
• 452 major Restore prompts while retaining support for suppressing prompts.
• 447 major Avoid requests-toolbelt to 0.9.0 to prevent attempting to use openssl when it isn't available.
• 427 Add disable_progress_bar option to disable tqdm.
• 426 Allow defining an empty username and password in .pypirc.
• 441 major Only install pyblake2 if needed.
• 444 major Use io.StringIO instead of StringIO.
• 436 major Use modern Python language features.
• 439 Refactor tox env and travis config.
• 435 major Specify python_requires in setup.py
• 432 major Use https URLs everywhere.
• 428 major Fix --skip-existing for Nexus Repos.
• 419 Support keyring.get_credential.
• 418 Support keyring.get_username_and_password.
• 421 major Remove unnecessary usage of readme_render.markdown.
• 416 Add Python 3.7 to classifiers.
• 412 major Don't crash if there's no package description.
• 408 major Fix keyring support.
• 1.12.1 <2018-09-24>
• 404 Fix regression with upload exit code
• 1.12.0 <2018-09-24>
• 395 major Add twine check command to check long description
• 392 major Drop support for Python 3.3
• 363 Empower --skip-existing for Artifactory repositories
• 367 major Avoid MD5 when Python is compiled in FIPS mode
• 1.11.0 <2018-03-19>
• 269 major Avoid uploading to PyPI when given alternate repository URL, and require http:// or https:// in repository_url.
• 277 Add instructions on how to use keyring.
• 314 Add new maintainer, release checklists.
• 322 major Raise exception if attempting upload to deprecated legacy PyPI URLs.
• :feature:320 Remove PyPI as default register package index.
• 319 Support Metadata 2.1 (566), including Markdown for description fields.
• 318 Update PyPI URLs.

... (truncated)

Commits

• 5cb1867 Merge pull request #498 from pypa/release/2.0
• 17f08fc Update release date and changelog.
• 73cfdd5 Prepare for 2.0 release
• fdffae1 Merge pull request #437 from jdufresne/py3
• 44e9eb6 Update changelog
• 2c9aa20 Merge branch 'master' into py3
• f3c1523 Merge pull request #497 from pypa/bugfix/491-requests-220
• 20c33ca Pin to requests 2.20 or later. Fixes #491.
• 0b6b39e Merge branch 'master' into py3
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

If all status checks pass Dependabot will automatically merge this pull request.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

• Update frequency
• Automerge options (never/patch/minor, and dev/runtime dependencies)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

Finally, you can contact us by mentioning @dependabot.

[dependabot-preview]

One of your CI runs failed on this pull request, so Dependabot won't merge it.

• continuous-integration/appveyor/branch
• Travis CI - Branch

Dependabot will still automatically merge this pull request if you amend it and your tests pass.

[webknjaz]

FTR: twine 2.0 dropped support for Python 2.7 and 3.5 today. It's reasonable to only install in under the latest Python.

[asvetlov]

Depends on #4046

[webknjaz]

Not really, we don't need it under each Python.

[asvetlov]

@dependabot recreate

[codecov-io]

Codecov Report

Merging #4091 into master will not change coverage.
The diff coverage is n/a.

@@           Coverage Diff           @@
##           master    #4091   +/-   ##
=======================================
  Coverage   97.55%   97.55%           
=======================================
  Files          43       43           
  Lines        8829     8829           
  Branches     1381     1381           
=======================================
  Hits         8613     8613           
  Misses         93       93           
  Partials      123      123

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update e048934...0f21766. Read the comment docs.