build(deps-dev): bump oss2 from 2.5.0 to 2.9.1

[dependabot-preview]

Bumps oss2 from 2.5.0 to 2.9.1.

Release notes

Sourced from oss2's releases.

2.9.1

• 增加：异步fetch 接口
• 增加：签名url支持访问者付费参数
• 增加：分片上传支持sequential参数，支持分片上传的文件返回content-md5
• 增加：支持python3.6 & python3.7
• 优化：在python3下，header支持传入bytes类型数据
• 优化：GetBucketInfo api 兼容低版本后台服务

2.9.0

增加：面向用户的QOS查询设置接口 增加：支持在创建bucket时设置容灾类型 增加：GetVodPlaylist 接口，支持获取指定时间播放列表 增加：sign url接口新增 slash-safe参数，避免'/'转义成'%2F' 增加：Storage Capacity 接口，支持设置Bucket容量 增加：Lifecycle 支持多版本 优化：增加bucket名字的合法性检查

2.8.0

增加：Request Payment 接口，支持访问者付费请求 增加：服务端限速设置接口，支持上传下载限速功能 增加：Routing Rule 接口，支持设置跳转或者镜像回源规则 优化：对部分bucket API 添加content-md5

Version 2.7.0

• 增加：SelectObject 接口支持 byte range 查询
• 增加：对象标签( Object Tagging) 功能
• 增加：Bucket Encryption 接口
• 增加：多版本(Versioning) 功能
• 增加：Bucket Policy 接口
• 增加：SelectObject 接口支持json格式对象查询

Version 2.6.1

• 修复: 不指定默认的日志级别
• 修复: 修复日志中存在的中文标点符号的问题
• 增加: 帮助文档增加如何设置日志级别的方法说明
• 修复: 当传入的playlist为空时，不指定playlist为生成推流签名的url的参数
• 修复: 初始化LiveChannelInfo实例时，使用默认的构造函数初始化target成员
• 修复: 有些调试信息的日志，修改成debug级别，避免过多的日志打印

Version 2.6.0

• 增加: 添加详细的log输出
• 增加: 断点下载支持crc校验
• 增加: ipv6支持
• 增加: 使用签名URL上传下载
• 增加: 服务端加密支持传入CMK ID
• 增加: select查询接口支持
• 修复: list bucket支持返回extranet endpoint & interanet enpoint & storage class
• 修复: upload_part_copy接口支持中文等特殊字符对象的拷贝
• 修复: get_object接口带'range'的http header时不校验crc
• 修复: get_object接口带'Accept-Encoding'的http header且值为'gzip'时不校验crc

... (truncated)

Changelog

Sourced from oss2's changelog.

Version 2.9.1

• 增加：异步fetch 接口
• 增加：签名url支持访问者付费参数
• 增加：分片上传支持sequential参数，支持分片上传的文件返回content-md5
• 增加：支持python3.6 & python3.7
• 优化：在python3下，支持传入bytes类型数据
• 优化：GetBucketInfo api 兼容低版本后台服务

Version 2.9.0

• 增加：面向用户的QOS查询设置接口
• 增加：支持在创建bucket时设置容灾类型
• 增加：GetVodPlaylist 接口，支持获取指定时间播放列表
• 增加：sign url接口新增 slash-safe参数，避免'/'转义成'%2F'
• 增加：Storage Capacity 接口，支持设置Bucket容量
• 增加：Lifecycle 支持多版本
• 优化：增加bucket名字的合法性检查

Version 2.8.0

• 增加：Request Payment 接口，支持访问者付费请求
• 增加：服务端限速设置接口，支持上传下载限速功能
• 增加：Routing Rule 接口，支持设置跳转或者镜像回源规则
• 优化：对部分bucket API 添加content-md5

Version 2.7.0

• 增加：SelectObjct 接口 支持 byte range 查询
• 增加：对象标签( Object Tagging) 功能
• 增加：Bucket Encryption 接口
• 增加：多版本(Versioning) 功能
• 增加：Bucket Policy 接口

Version 2.6.1

• 修复: 不指定默认的日志级别
• 修复: 修复日志中存在的中文标点符号的问题
• 增加: 帮助文档增加如何设置日志级别的方法说明
• 修复: 当传入的playlist为空时，不指定playlist为生成推流签名的url的参数
• 修复: 初始化LiveChannelInfo实例时，使用默认的构造函数初始化target成员
• 修复: 有些调试信息的日志，修改成debug级别，避免过多的日志打印

Version 2.6.0

... (truncated)

Commits

• a427f35 release 2.9.1
• 7ba2b01 add python3.6 & ptyon3.7
• 988056d Compatible with old version bucketInfo API
• 8f6d453 support to post a encode string from header.
• e16ca17 1, Support sequential upload mode.
• 5b93a52 Support async fetch task.
• 946e64f release 2.9.0
• da3ce04 Add bucket name check.
• 054874f 1, Support object versions lifecycle.
• 18d6883 Add bucket storage capacity api
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Pull request limits (per update run and/or open at any time)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

[dependabot-preview]

Superseded by #22.