Bump werkzeug from 1.0.0 to 1.0.1

[dependabot-preview]

Bumps werkzeug from 1.0.0 to 1.0.1.

Release notes

Sourced from werkzeug's releases.

1.0.1

• Changelog: https://werkzeug.palletsprojects.com/en/1.0.x/changes/#version-1-0-1

Changelog

Sourced from werkzeug's changelog.

Version 1.0.1

Released 2020-03-31

• Make the argument to RequestRedirect.get_response optional. 1718
• Only allow a single access control allow origin value. 1723
• Fix crash when trying to parse a non-existent Content Security Policy header. 1731
• http_date zero fills years < 1000 to always output four digits. 1739
• Fix missing local variables in interactive debugger console. 1746
• Fix passing file-like objects like io.BytesIO to FileStorage.save. 1733

Commits

• 1dde4b1 release version 1.0.1
• 1527e05 Merge pull request #1743 from Dreamsorcerer/patch-1
• a9ba22a Add missing documentation about None return type.
• 244b486 Merge pull request #1734 from alexa-infra/fix-filestorage-save-bytes-io
• c341a0a fix os.fspath call on file-like objects
• 32f3b07 Merge pull request #1741 from mbertoldi/1.0.x
• c761ff8 fix locals in InteractiveConsole
• 6ff5cd1 Merge pull request #1740 from nicolary/hf-zfill_4_year_dump_date
• b70df18 zfill year < 1000
• 8568bed Merge pull request #1736 from magula/1.0.x
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

• Update frequency
• Automerge options (never/patch/minor, and dev/runtime dependencies)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)