From 693e57f602a2d455a72582197987f48042464e55 Mon Sep 17 00:00:00 2001 From: Sam Bull Date: Sun, 22 Dec 2024 23:10:22 +0000 Subject: [PATCH 01/11] Bump Dependabot updates to Python 3.10 (#10192) --- requirements/base.txt | 2 +- requirements/constraints.txt | 2 +- requirements/cython.txt | 2 +- requirements/dev.txt | 2 +- requirements/doc-spelling.txt | 2 +- requirements/doc.txt | 2 +- requirements/lint.txt | 2 +- requirements/multidict.txt | 2 +- requirements/runtime-deps.txt | 2 +- requirements/test.txt | 2 +- 10 files changed, 10 insertions(+), 10 deletions(-) diff --git a/requirements/base.txt b/requirements/base.txt index 207048df7fb..15dd10c52fb 100644 --- a/requirements/base.txt +++ b/requirements/base.txt @@ -1,5 +1,5 @@ # -# This file is autogenerated by pip-compile with Python 3.8 +# This file is autogenerated by pip-compile with Python 3.10 # by the following command: # # pip-compile --allow-unsafe --output-file=requirements/base.txt --strip-extras requirements/base.in diff --git a/requirements/constraints.txt b/requirements/constraints.txt index 21985052837..d858a754d04 100644 --- a/requirements/constraints.txt +++ b/requirements/constraints.txt @@ -1,5 +1,5 @@ # -# This file is autogenerated by pip-compile with python 3.8 +# This file is autogenerated by pip-compile with python 3.10 # To update, run: # # pip-compile --allow-unsafe --output-file=requirements/constraints.txt --resolver=backtracking --strip-extras requirements/constraints.in diff --git a/requirements/cython.txt b/requirements/cython.txt index f67cc903a0b..7e392bddf91 100644 --- a/requirements/cython.txt +++ b/requirements/cython.txt @@ -1,5 +1,5 @@ # -# This file is autogenerated by pip-compile with python 3.8 +# This file is autogenerated by pip-compile with python 3.10 # by the following command: # # pip-compile --allow-unsafe --output-file=requirements/cython.txt --resolver=backtracking --strip-extras requirements/cython.in diff --git a/requirements/dev.txt b/requirements/dev.txt index 4fdd3f808a0..361c93aac9b 100644 --- a/requirements/dev.txt +++ b/requirements/dev.txt @@ -1,5 +1,5 @@ # -# This file is autogenerated by pip-compile with python 3.8 +# This file is autogenerated by pip-compile with python 3.10 # To update, run: # # pip-compile --allow-unsafe --output-file=requirements/dev.txt --resolver=backtracking --strip-extras requirements/dev.in diff --git a/requirements/doc-spelling.txt b/requirements/doc-spelling.txt index ea3cff3889a..69f1b401ab0 100644 --- a/requirements/doc-spelling.txt +++ b/requirements/doc-spelling.txt @@ -1,5 +1,5 @@ # -# This file is autogenerated by pip-compile with Python 3.8 +# This file is autogenerated by pip-compile with Python 3.10 # by the following command: # # pip-compile --allow-unsafe --output-file=requirements/doc-spelling.txt --strip-extras requirements/doc-spelling.in diff --git a/requirements/doc.txt b/requirements/doc.txt index 01821866294..65aa066bd63 100644 --- a/requirements/doc.txt +++ b/requirements/doc.txt @@ -1,5 +1,5 @@ # -# This file is autogenerated by pip-compile with python 3.8 +# This file is autogenerated by pip-compile with python 3.10 # To update, run: # # pip-compile --allow-unsafe --output-file=requirements/doc.txt --resolver=backtracking --strip-extras requirements/doc.in diff --git a/requirements/lint.txt b/requirements/lint.txt index ae8a7f12007..08896951db6 100644 --- a/requirements/lint.txt +++ b/requirements/lint.txt @@ -1,5 +1,5 @@ # -# This file is autogenerated by pip-compile with python 3.8 +# This file is autogenerated by pip-compile with python 3.10 # by the following command: # # pip-compile --allow-unsafe --output-file=requirements/lint.txt --strip-extras requirements/lint.in diff --git a/requirements/multidict.txt b/requirements/multidict.txt index b8b44428920..e9f433aa07d 100644 --- a/requirements/multidict.txt +++ b/requirements/multidict.txt @@ -1,5 +1,5 @@ # -# This file is autogenerated by pip-compile with python 3.8 +# This file is autogenerated by pip-compile with python 3.10 # by the following command: # # pip-compile --allow-unsafe --output-file=requirements/multidict.txt --resolver=backtracking --strip-extras requirements/multidict.in diff --git a/requirements/runtime-deps.txt b/requirements/runtime-deps.txt index fccdc047d1e..8e681d51560 100644 --- a/requirements/runtime-deps.txt +++ b/requirements/runtime-deps.txt @@ -1,5 +1,5 @@ # -# This file is autogenerated by pip-compile with Python 3.8 +# This file is autogenerated by pip-compile with Python 3.10 # by the following command: # # pip-compile --allow-unsafe --output-file=requirements/runtime-deps.txt --strip-extras requirements/runtime-deps.in diff --git a/requirements/test.txt b/requirements/test.txt index 60091d0375a..b7a99936036 100644 --- a/requirements/test.txt +++ b/requirements/test.txt @@ -1,5 +1,5 @@ # -# This file is autogenerated by pip-compile with python 3.8 +# This file is autogenerated by pip-compile with python 3.10 # by the following command: # # pip-compile --allow-unsafe --output-file=requirements/test.txt --resolver=backtracking --strip-extras requirements/test.in From 7b05cac4d04d5c72e3f60a9fc6399dd99cbae1f0 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Sun, 22 Dec 2024 23:57:29 +0000 Subject: [PATCH 02/11] Bump python-dateutil from 2.8.2 to 2.9.0.post0 (#10194) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Bumps [python-dateutil](https://github.com/dateutil/dateutil) from 2.8.2 to 2.9.0.post0.
Release notes

Sourced from python-dateutil's releases.

2.9.0.post0

Version 2.9.0.post0 (2024-03-01)

Bugfixes

  • Pinned setuptools_scm to <8, which should make the generated _version.py file compatible with all supported versions of Python.

2.9.0

Version 2.9.0 (2024-02-29)

Data updates

  • Updated tzdata version to 2024a. (gh pr #1342)

Features

  • Made all dateutil submodules lazily imported using PEP 562. On Python 3.7+, things like import dateutil; dateutil.tz.gettz("America/New_York") will now work without explicitly importing dateutil.tz, with the import occurring behind the scenes on first use. The old behavior remains on Python 3.6 and earlier. Fixed by Orson Adams. (gh issue #771, gh pr #1007)

Bugfixes

  • Removed a call to datetime.utcfromtimestamp, which is deprecated as of Python 3.12. Reported by Hugo van Kemenade (gh pr #1284), fixed by Thomas Grainger (gh pr #1285).

Documentation changes

  • Added note into docs and tests where relativedelta would return last day of the month only if the same day on a different month resolves to a date that doesn't exist. Reported by @​hawkEye-01 (gh issue #1167). Fixed by @​Mifrill (gh pr #1168)
Changelog

Sourced from python-dateutil's changelog.

Version 2.9.0.post0 (2024-03-01)

Bugfixes

  • Pinned setuptools_scm to <8, which should make the generated _version.py file compatible with all supported versions of Python.

Version 2.9.0 (2024-02-29)

Data updates

  • Updated tzdata version to 2024a. (gh pr #1342)

Features

  • Made all dateutil submodules lazily imported using PEP 562 <https://www.python.org/dev/peps/pep-0562/>_. On Python 3.7+, things like import dateutil; dateutil.tz.gettz("America/New_York") will now work without explicitly importing dateutil.tz, with the import occurring behind the scenes on first use. The old behavior remains on Python 3.6 and earlier. Fixed by Orson Adams. (gh issue #771, gh pr #1007)

Bugfixes

  • Removed a call to datetime.utcfromtimestamp, which is deprecated as of Python 3.12. Reported by Hugo van Kemenade (gh pr #1284), fixed by Thomas Grainger (gh pr #1285).

Documentation changes

  • Added note into docs and tests where relativedelta would return last day of the month only if the same day on a different month resolves to a date that doesn't exist. Reported by @​hawkEye-01 (gh issue #1167). Fixed by @​Mifrill (gh pr #1168)
Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=python-dateutil&package-manager=pip&previous-version=2.8.2&new-version=2.9.0.post0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- requirements/constraints.txt | 38 +++++++----------------------------- requirements/dev.txt | 23 +++++++++------------- requirements/lint.txt | 5 +++-- requirements/test.txt | 12 +++++------- 4 files changed, 24 insertions(+), 54 deletions(-) diff --git a/requirements/constraints.txt b/requirements/constraints.txt index d858a754d04..59df2132877 100644 --- a/requirements/constraints.txt +++ b/requirements/constraints.txt @@ -18,8 +18,6 @@ alabaster==1.0.0 # via sphinx annotated-types==0.7.0 # via pydantic -apipkg==1.5 - # via execnet async-timeout==4.0.3 ; python_version < "3.11" # via # -r requirements/runtime-deps.in @@ -67,12 +65,12 @@ docutils==0.20.1 # via sphinx exceptiongroup==1.2.2 # via pytest +execnet==2.1.1 + # via pytest-xdist filelock==3.16.1 # via # pytest-codspeed # virtualenv -execnet==2.1.1 - # via pytest-xdist freezegun==1.5.1 # via # -r requirements/lint.in @@ -94,12 +92,6 @@ idna==3.6 # yarl imagesize==1.4.1 # via sphinx -importlib-metadata==8.5.0 - # via - # build - # sphinx -importlib-resources==6.4.5 - # via towncrier incremental==24.7.2 # via towncrier iniconfig==2.0.0 @@ -149,8 +141,6 @@ proxy-py==2.4.9 # via # -r requirements/lint.in # -r requirements/test.in -py==1.11.0 - # via pytest pycares==4.4.0 # via aiodns pycparser==2.22 @@ -188,29 +178,17 @@ pytest-codspeed==3.0.0 pytest-cov==5.0.0 # via -r requirements/test.in pytest-mock==3.14.0 - # via -r requirements/test.in -pytest-xdist==3.6.1 - # via -r requirements/test.txt -python-dateutil==2.8.2 - # via freezegun -python-on-whales==0.71.0 # via # -r requirements/lint.in # -r requirements/test.in -pytest-cov==5.0.0 +pytest-xdist==3.6.1 # via -r requirements/test.in -pytest-mock==3.14.0 - # via - # -r requirements/lint.in - # -r requirements/test.in python-dateutil==2.9.0.post0 # via freezegun python-on-whales==0.73.0 # via # -r requirements/lint.in # -r requirements/test.in -pytz==2024.2 - # via babel pyyaml==6.0.2 # via pre-commit requests==2.32.3 @@ -219,7 +197,9 @@ requests==2.32.3 # python-on-whales # sphinx rich==13.9.3 - # via typer + # via + # pytest-codspeed + # typer setuptools-git==1.2 # via -r requirements/test.in shellingham==1.5.4 @@ -261,6 +241,7 @@ tomli==2.0.2 # pip-tools # pytest # slotscheck + # sphinx # towncrier towncrier==23.11.0 # via @@ -276,7 +257,6 @@ typer==0.12.5 # via python-on-whales typing-extensions==4.12.2 # via - # annotated-types # multidict # mypy # pydantic @@ -302,10 +282,6 @@ wheel==0.44.0 # via pip-tools yarl==1.18.3 # via -r requirements/runtime-deps.in -zipp==3.20.2 - # via - # importlib-metadata - # importlib-resources # The following packages are considered to be unsafe in a requirements file: pip==24.3.1 diff --git a/requirements/dev.txt b/requirements/dev.txt index 361c93aac9b..690364cb71f 100644 --- a/requirements/dev.txt +++ b/requirements/dev.txt @@ -63,6 +63,8 @@ docutils==0.20.1 # via sphinx exceptiongroup==1.2.2 # via pytest +execnet==2.1.1 + # via pytest-xdist filelock==3.16.1 # via # pytest-codspeed @@ -88,12 +90,6 @@ idna==3.6 # yarl imagesize==1.4.1 # via sphinx -importlib-metadata==8.5.0 - # via - # build - # sphinx -importlib-resources==6.4.5 - # via towncrier incremental==24.7.2 # via towncrier iniconfig==2.0.0 @@ -169,6 +165,7 @@ pytest==8.1.1 # pytest-codspeed # pytest-cov # pytest-mock + # pytest-xdist pytest-codspeed==3.0.0 # via # -r requirements/lint.in @@ -179,14 +176,14 @@ pytest-mock==3.14.0 # via # -r requirements/lint.in # -r requirements/test.in +pytest-xdist==3.6.1 + # via -r requirements/test.in python-dateutil==2.9.0.post0 # via freezegun python-on-whales==0.73.0 # via # -r requirements/lint.in # -r requirements/test.in -pytz==2024.2 - # via babel pyyaml==6.0.2 # via pre-commit requests==2.32.3 @@ -195,7 +192,9 @@ requests==2.32.3 # python-on-whales # sphinx rich==13.9.3 - # via typer + # via + # pytest-codspeed + # typer setuptools-git==1.2 # via -r requirements/test.in shellingham==1.5.4 @@ -234,6 +233,7 @@ tomli==2.0.2 # pip-tools # pytest # slotscheck + # sphinx # towncrier towncrier==23.11.0 # via @@ -249,7 +249,6 @@ typer==0.12.5 # via python-on-whales typing-extensions==4.12.2 # via - # annotated-types # multidict # mypy # pydantic @@ -275,10 +274,6 @@ wheel==0.44.0 # via pip-tools yarl==1.18.3 # via -r requirements/runtime-deps.in -zipp==3.20.2 - # via - # importlib-metadata - # importlib-resources # The following packages are considered to be unsafe in a requirements file: pip==24.3.1 diff --git a/requirements/lint.txt b/requirements/lint.txt index 08896951db6..0bc4d9b71b9 100644 --- a/requirements/lint.txt +++ b/requirements/lint.txt @@ -93,7 +93,9 @@ pyyaml==6.0.2 requests==2.32.3 # via python-on-whales rich==13.9.3 - # via typer + # via + # pytest-codspeed + # typer shellingham==1.5.4 # via typer six==1.16.0 @@ -113,7 +115,6 @@ typer==0.12.5 # via python-on-whales typing-extensions==4.12.2 # via - # annotated-types # mypy # pydantic # pydantic-core diff --git a/requirements/test.txt b/requirements/test.txt index b7a99936036..ab2b5f9cba2 100644 --- a/requirements/test.txt +++ b/requirements/test.txt @@ -80,8 +80,6 @@ propcache==0.2.0 # yarl proxy-py==2.4.9 # via -r requirements/test.in -py==1.11.0 - # via pytest pycares==4.4.0 # via aiodns pycparser==2.22 @@ -98,10 +96,9 @@ pytest==8.1.1 # pytest-codspeed # pytest-cov # pytest-mock -pytest-codspeed==3.0.0 - # via - # -r requirements/test.in # pytest-xdist +pytest-codspeed==3.0.0 + # via -r requirements/test.in pytest-cov==5.0.0 # via -r requirements/test.in pytest-mock==3.14.0 @@ -115,7 +112,9 @@ python-on-whales==0.73.0 requests==2.32.3 # via python-on-whales rich==13.9.3 - # via typer + # via + # pytest-codspeed + # typer setuptools-git==1.2 # via -r requirements/test.in shellingham==1.5.4 @@ -135,7 +134,6 @@ typer==0.12.5 # via python-on-whales typing-extensions==4.12.2 # via - # annotated-types # multidict # mypy # pydantic From 095175b50bfdd5736dff795a87c43b937a8100d4 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 23 Dec 2024 00:12:02 +0000 Subject: [PATCH 03/11] Bump click from 8.1.7 to 8.1.8 (#10195) Bumps [click](https://github.com/pallets/click) from 8.1.7 to 8.1.8.
Release notes

Sourced from click's releases.

8.1.8

This is the Click 8.1.8 fix release, which fixes bugs but does not otherwise change behavior and should not result in breaking changes compared to the latest feature release.

PyPI: https://pypi.org/project/click/8.1.8/ Changes: https://click.palletsprojects.com/en/stable/changes/#version-8-1-8 Milestone https://github.com/pallets/click/milestones/23?closed=1

  • Fix an issue with type hints for click.open_file(). #2717
  • Fix issue where error message for invalid click.Path displays on multiple lines. #2697
  • Fixed issue that prevented a default value of "" from being displayed in the help for an option. #2500
  • The test runner handles stripping color consistently on Windows. #2705
  • Show correct value for flag default when using default_map. #2632
  • Fix click.echo(color=...) passing color to coloroma so it can be forced on Windows. #2606.
  • More robust bash version check, fixing problem on Windows with git-bash. #2638
  • Cache the help option generated by the help_option_names setting to respect its eagerness. #2811
  • Replace uses of os.system with subprocess.Popen. #1476
  • Exceptions generated during a command will use the context's color setting when being displayed. #2193
  • Error message when defining option with invalid name is more descriptive. #2452
  • Refactor code generating default --help option to deduplicate code. #2563
  • Test CLIRunner resets patched _compat.should_strip_ansi. #2732
Changelog

Sourced from click's changelog.

Version 8.1.8

Unreleased

  • Fix an issue with type hints for click.open_file(). :issue:2717
  • Fix issue where error message for invalid click.Path displays on multiple lines. :issue:2697
  • Fixed issue that prevented a default value of "" from being displayed in the help for an option. :issue:2500
  • The test runner handles stripping color consistently on Windows. :issue:2705
  • Show correct value for flag default when using default_map. :issue:2632
  • Fix click.echo(color=...) passing color to coloroma so it can be forced on Windows. :issue:2606.
Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=click&package-manager=pip&previous-version=8.1.7&new-version=8.1.8)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- requirements/constraints.txt | 2 +- requirements/dev.txt | 2 +- requirements/doc-spelling.txt | 13 ++----------- requirements/doc.txt | 13 ++----------- requirements/lint.txt | 2 +- requirements/test.txt | 2 +- 6 files changed, 8 insertions(+), 26 deletions(-) diff --git a/requirements/constraints.txt b/requirements/constraints.txt index 59df2132877..59f96d822f0 100644 --- a/requirements/constraints.txt +++ b/requirements/constraints.txt @@ -41,7 +41,7 @@ charset-normalizer==3.4.0 # via requests cherry-picker==2.2.0 # via -r requirements/dev.in -click==8.1.7 +click==8.1.8 # via # cherry-picker # pip-tools diff --git a/requirements/dev.txt b/requirements/dev.txt index 690364cb71f..e89dcf5faf1 100644 --- a/requirements/dev.txt +++ b/requirements/dev.txt @@ -41,7 +41,7 @@ charset-normalizer==3.4.0 # via requests cherry-picker==2.2.0 # via -r requirements/dev.in -click==8.1.7 +click==8.1.8 # via # cherry-picker # pip-tools diff --git a/requirements/doc-spelling.txt b/requirements/doc-spelling.txt index 69f1b401ab0..b902dd8fb55 100644 --- a/requirements/doc-spelling.txt +++ b/requirements/doc-spelling.txt @@ -14,7 +14,7 @@ certifi==2024.8.30 # via requests charset-normalizer==3.4.0 # via requests -click==8.1.7 +click==8.1.8 # via towncrier docutils==0.20.1 # via sphinx @@ -22,10 +22,6 @@ idna==3.6 # via requests imagesize==1.4.1 # via sphinx -importlib-metadata==8.5.0 - # via sphinx -importlib-resources==6.4.5 - # via towncrier incremental==24.7.2 # via towncrier jinja2==3.1.4 @@ -40,8 +36,6 @@ pyenchant==3.2.2 # via sphinxcontrib-spelling pygments==2.18.0 # via sphinx -pytz==2024.2 - # via babel requests==2.32.3 # via sphinx snowballstemmer==2.2.0 @@ -70,6 +64,7 @@ sphinxcontrib-towncrier==0.4.0a0 tomli==2.0.2 # via # incremental + # sphinx # towncrier towncrier==23.11.0 # via @@ -77,10 +72,6 @@ towncrier==23.11.0 # sphinxcontrib-towncrier urllib3==2.2.3 # via requests -zipp==3.20.2 - # via - # importlib-metadata - # importlib-resources # The following packages are considered to be unsafe in a requirements file: setuptools==75.2.0 diff --git a/requirements/doc.txt b/requirements/doc.txt index 65aa066bd63..41ea2ec7bb6 100644 --- a/requirements/doc.txt +++ b/requirements/doc.txt @@ -14,7 +14,7 @@ certifi==2024.8.30 # via requests charset-normalizer==3.4.0 # via requests -click==8.1.7 +click==8.1.8 # via towncrier docutils==0.20.1 # via sphinx @@ -22,10 +22,6 @@ idna==3.6 # via requests imagesize==1.4.1 # via sphinx -importlib-metadata==8.5.0 - # via sphinx -importlib-resources==6.4.5 - # via towncrier incremental==24.7.2 # via towncrier jinja2==3.1.4 @@ -38,8 +34,6 @@ packaging==24.1 # via sphinx pygments==2.18.0 # via sphinx -pytz==2024.2 - # via babel requests==2.32.3 # via sphinx snowballstemmer==2.2.0 @@ -65,6 +59,7 @@ sphinxcontrib-towncrier==0.4.0a0 tomli==2.0.2 # via # incremental + # sphinx # towncrier towncrier==23.11.0 # via @@ -72,10 +67,6 @@ towncrier==23.11.0 # sphinxcontrib-towncrier urllib3==2.2.3 # via requests -zipp==3.20.2 - # via - # importlib-metadata - # importlib-resources # The following packages are considered to be unsafe in a requirements file: setuptools==75.2.0 diff --git a/requirements/lint.txt b/requirements/lint.txt index 0bc4d9b71b9..7bdc947d231 100644 --- a/requirements/lint.txt +++ b/requirements/lint.txt @@ -21,7 +21,7 @@ cfgv==3.4.0 # via pre-commit charset-normalizer==3.4.0 # via requests -click==8.1.7 +click==8.1.8 # via # slotscheck # typer diff --git a/requirements/test.txt b/requirements/test.txt index ab2b5f9cba2..bb47acb34b7 100644 --- a/requirements/test.txt +++ b/requirements/test.txt @@ -25,7 +25,7 @@ cffi==1.17.1 # pytest-codspeed charset-normalizer==3.4.0 # via requests -click==8.1.7 +click==8.1.8 # via # typer # wait-for-it From 3f07b7e790efe5d6a4a4effbb1999da0f6e39be6 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 23 Dec 2024 00:12:07 +0000 Subject: [PATCH 04/11] Bump certifi from 2024.8.30 to 2024.12.14 (#10197) Bumps [certifi](https://github.com/certifi/python-certifi) from 2024.8.30 to 2024.12.14.
Commits
  • 4ba3900 2024.12.14 (#329)
  • 9164660 Bump pypa/gh-action-pypi-publish from 1.12.2 to 1.12.3 (#331)
  • 3dc3651 Bump pypa/gh-action-pypi-publish from 1.11.0 to 1.12.2 (#328)
  • c5bf18d Bump pypa/gh-action-pypi-publish from 1.10.3 to 1.11.0 (#327)
  • b908391 Bump actions/setup-python from 5.2.0 to 5.3.0 (#326)
  • bc26b41 Bump actions/checkout from 4.2.1 to 4.2.2 (#325)
  • 57afc22 Bump actions/upload-artifact from 4.4.1 to 4.4.3 (#323)
  • a495091 test against 3.13 final
  • 62f8144 Added 3.13 classifier (#322)
  • 94d23a0 Bump pypa/gh-action-pypi-publish from 1.10.2 to 1.10.3 (#321)
  • Additional commits viewable in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=certifi&package-manager=pip&previous-version=2024.8.30&new-version=2024.12.14)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- requirements/constraints.txt | 2 +- requirements/dev.txt | 2 +- requirements/doc-spelling.txt | 2 +- requirements/doc.txt | 2 +- requirements/lint.txt | 2 +- requirements/test.txt | 2 +- 6 files changed, 6 insertions(+), 6 deletions(-) diff --git a/requirements/constraints.txt b/requirements/constraints.txt index 59f96d822f0..c0a892bb786 100644 --- a/requirements/constraints.txt +++ b/requirements/constraints.txt @@ -28,7 +28,7 @@ brotli==1.1.0 ; platform_python_implementation == "CPython" # via -r requirements/runtime-deps.in build==1.2.2.post1 # via pip-tools -certifi==2024.8.30 +certifi==2024.12.14 # via requests cffi==1.17.1 # via diff --git a/requirements/dev.txt b/requirements/dev.txt index e89dcf5faf1..950f3e8b48f 100644 --- a/requirements/dev.txt +++ b/requirements/dev.txt @@ -28,7 +28,7 @@ brotli==1.1.0 ; platform_python_implementation == "CPython" # via -r requirements/runtime-deps.in build==1.2.2.post1 # via pip-tools -certifi==2024.8.30 +certifi==2024.12.14 # via requests cffi==1.17.1 # via diff --git a/requirements/doc-spelling.txt b/requirements/doc-spelling.txt index b902dd8fb55..3ceddaf7e67 100644 --- a/requirements/doc-spelling.txt +++ b/requirements/doc-spelling.txt @@ -10,7 +10,7 @@ alabaster==1.0.0 # via sphinx babel==2.16.0 # via sphinx -certifi==2024.8.30 +certifi==2024.12.14 # via requests charset-normalizer==3.4.0 # via requests diff --git a/requirements/doc.txt b/requirements/doc.txt index 41ea2ec7bb6..589500172d8 100644 --- a/requirements/doc.txt +++ b/requirements/doc.txt @@ -10,7 +10,7 @@ alabaster==1.0.0 # via sphinx babel==2.16.0 # via sphinx -certifi==2024.8.30 +certifi==2024.12.14 # via requests charset-normalizer==3.4.0 # via requests diff --git a/requirements/lint.txt b/requirements/lint.txt index 7bdc947d231..c94f4d15dd7 100644 --- a/requirements/lint.txt +++ b/requirements/lint.txt @@ -10,7 +10,7 @@ annotated-types==0.7.0 # via pydantic async-timeout==4.0.3 # via valkey -certifi==2024.8.30 +certifi==2024.12.14 # via requests cffi==1.17.1 # via diff --git a/requirements/test.txt b/requirements/test.txt index bb47acb34b7..e82d9b1b8d9 100644 --- a/requirements/test.txt +++ b/requirements/test.txt @@ -16,7 +16,7 @@ async-timeout==4.0.3 ; python_version < "3.11" # via -r requirements/runtime-deps.in brotli==1.1.0 ; platform_python_implementation == "CPython" # via -r requirements/runtime-deps.in -certifi==2024.8.30 +certifi==2024.12.14 # via requests cffi==1.17.1 # via From 0ada08659f68956bda47a302cff27dbaefc7d31a Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 23 Dec 2024 00:41:28 +0000 Subject: [PATCH 05/11] Bump markupsafe from 2.1.5 to 3.0.2 (#10200) Bumps [markupsafe](https://github.com/pallets/markupsafe) from 2.1.5 to 3.0.2.
Release notes

Sourced from markupsafe's releases.

3.0.2

This is the MarkupSafe 3.0.2 fix release, which fixes bugs but does not otherwise change behavior and should not result in breaking changes.

PyPI: https://pypi.org/project/MarkupSafe/3.0.2/ Changes: https://markupsafe.palletsprojects.com/en/stable/changes/#version-3-0-2 Milestone: https://github.com/pallets/markupsafe/milestone/14?closed=1

  • Fix compatibility when __str__ returns a str subclass. #472
  • Build requires setuptools >= 70.1. #475

3.0.1

This is the MarkupSafe 3.0.1 fix release, which fixes bugs but does not otherwise change behavior and should not result in breaking changes.

PyPI: https://pypi.org/project/MarkupSafe/3.0.1/ Changes: https://markupsafe.palletsprojects.com/en/stable/changes/#version-3-0-1 Milestone: https://github.com/pallets/markupsafe/milestone/13?closed=1

  • Address compiler warnings that became errors in GCC 14. #466
  • Fix compatibility with proxy objects. #467

3.0.0

This is the MarkupSafe 3.0.0 feature release. A feature release may include new features, remove previously deprecated code, add new deprecations, or introduce potentially breaking changes. The 3.0.x branch is now the supported fix branch, the 2.1.x branch will become a tag marking the end of support for that branch. We encourage everyone to upgrade, and to use a tool such as pip-tools to pin all dependencies and control upgrades. Test with warnings treated as errors to be able to adapt to deprecation warnings early.

PyPI: https://pypi.org/project/MarkupSafe/3.0.0/ Changes: https://markupsafe.palletsprojects.com/en/stable/changes/#version-3-0-0 Milestone: https://github.com/pallets/markupsafe/milestone/10?closed=1

  • Support Python 3.13 and its experimental free-threaded build. #461
  • Drop support for Python 3.7 and 3.8.
  • Use modern packaging metadata with pyproject.toml instead of setup.cfg. #348
  • Change distutils imports to setuptools. #399
  • Use deferred evaluation of annotations. #400
  • Update signatures for Markup methods to match str signatures. Use positional-only arguments. #400
  • Some str methods on Markup no longer escape their argument: strip, lstrip, rstrip, removeprefix, removesuffix, partition, and rpartition; replace only escapes its new argument. These methods are conceptually linked to search methods such as in, find, and index, which already do not escape their argument. #401
  • The __version__ attribute is deprecated. Use feature detection, or importlib.metadata.version("markupsafe"), instead. #402
  • Speed up escaping plain strings by 40%. #434
  • Simplify speedups implementation. #437
Changelog

Sourced from markupsafe's changelog.

Version 3.0.2

Released 2024-10-18

  • Fix compatibility when __str__ returns a str subclass. :issue:472
  • Build requires setuptools >= 70.1. :issue:475

Version 3.0.1

Released 2024-10-08

  • Address compiler warnings that became errors in GCC 14. :issue:466
  • Fix compatibility with proxy objects. :issue:467

Version 3.0.0

Released 2024-10-07

  • Support Python 3.13 and its experimental free-threaded build. :pr:461
  • Drop support for Python 3.7 and 3.8.
  • Use modern packaging metadata with pyproject.toml instead of setup.cfg. :pr:348
  • Change distutils imports to setuptools. :pr:399
  • Use deferred evaluation of annotations. :pr:400
  • Update signatures for Markup methods to match str signatures. Use positional-only arguments. :pr:400
  • Some str methods on Markup no longer escape their argument: strip, lstrip, rstrip, removeprefix, removesuffix, partition, and rpartition; replace only escapes its new argument. These methods are conceptually linked to search methods such as in, find, and index, which already do not escape their argument. :issue:401
  • The __version__ attribute is deprecated. Use feature detection, or importlib.metadata.version("markupsafe"), instead. :pr:402
  • Speed up escaping plain strings by 40%. :pr:434
  • Simplify speedups implementation. :pr:437
Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=markupsafe&package-manager=pip&previous-version=2.1.5&new-version=3.0.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- requirements/constraints.txt | 2 +- requirements/dev.txt | 2 +- requirements/doc-spelling.txt | 2 +- requirements/doc.txt | 2 +- 4 files changed, 4 insertions(+), 4 deletions(-) diff --git a/requirements/constraints.txt b/requirements/constraints.txt index c0a892bb786..0415be698b7 100644 --- a/requirements/constraints.txt +++ b/requirements/constraints.txt @@ -102,7 +102,7 @@ jinja2==3.1.4 # towncrier markdown-it-py==3.0.0 # via rich -markupsafe==2.1.5 +markupsafe==3.0.2 # via jinja2 mdurl==0.1.2 # via markdown-it-py diff --git a/requirements/dev.txt b/requirements/dev.txt index 950f3e8b48f..e31701aa63b 100644 --- a/requirements/dev.txt +++ b/requirements/dev.txt @@ -100,7 +100,7 @@ jinja2==3.1.4 # towncrier markdown-it-py==3.0.0 # via rich -markupsafe==2.1.5 +markupsafe==3.0.2 # via jinja2 mdurl==0.1.2 # via markdown-it-py diff --git a/requirements/doc-spelling.txt b/requirements/doc-spelling.txt index 3ceddaf7e67..a9e55b4aa51 100644 --- a/requirements/doc-spelling.txt +++ b/requirements/doc-spelling.txt @@ -28,7 +28,7 @@ jinja2==3.1.4 # via # sphinx # towncrier -markupsafe==2.1.5 +markupsafe==3.0.2 # via jinja2 packaging==24.1 # via sphinx diff --git a/requirements/doc.txt b/requirements/doc.txt index 589500172d8..c4e1303be65 100644 --- a/requirements/doc.txt +++ b/requirements/doc.txt @@ -28,7 +28,7 @@ jinja2==3.1.4 # via # sphinx # towncrier -markupsafe==2.1.5 +markupsafe==3.0.2 # via jinja2 packaging==24.1 # via sphinx From b3fa93eda90c08bbe19427b3bb21557358203354 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 23 Dec 2024 00:41:33 +0000 Subject: [PATCH 06/11] Bump urllib3 from 2.2.3 to 2.3.0 (#10202) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Bumps [urllib3](https://github.com/urllib3/urllib3) from 2.2.3 to 2.3.0.
Release notes

Sourced from urllib3's releases.

2.3.0

🚀 urllib3 is fundraising for HTTP/2 support

urllib3 is raising ~$40,000 USD to release HTTP/2 support and ensure long-term sustainable maintenance of the project after a sharp decline in financial support for 2023. If your company or organization uses Python and would benefit from HTTP/2 support in Requests, pip, cloud SDKs, and thousands of other projects please consider contributing financially to ensure HTTP/2 support is developed sustainably and maintained for the long-haul.

Thank you for your support.

Features

  • Added HTTPResponse.shutdown() to stop any ongoing or future reads for a specific response. It calls shutdown(SHUT_RD) on the underlying socket. This feature was sponsored by LaunchDarkly. (urllib3/urllib3#2868)
  • Added support for JavaScript Promise Integration on Emscripten. This enables more efficient WebAssembly requests and streaming, and makes it possible to use in Node.js if you launch it as node --experimental-wasm-stack-switching. (urllib3/urllib3#3400)
  • Added the proxy_is_tunneling property to HTTPConnection and HTTPSConnection. (urllib3/urllib3#3285)
  • Added pickling support to NewConnectionError and NameResolutionError. (urllib3/urllib3#3480)

Bugfixes

  • Fixed an issue in debug logs where the HTTP version was rendering as "HTTP/11" instead of "HTTP/1.1". (urllib3/urllib3#3489)

Deprecations and Removals

Full Changelog: https://github.com/urllib3/urllib3/compare/2.2.3...2.3.0

Changelog

Sourced from urllib3's changelog.

2.3.0 (2024-12-22)

Features

  • Added HTTPResponse.shutdown() to stop any ongoing or future reads for a specific response. It calls shutdown(SHUT_RD) on the underlying socket. This feature was sponsored by LaunchDarkly <https://opencollective.com/urllib3/contributions/815307>. ([#2868](https://github.com/urllib3/urllib3/issues/2868) <https://github.com/urllib3/urllib3/issues/2868>)
  • Added support for JavaScript Promise Integration on Emscripten. This enables more efficient WebAssembly requests and streaming, and makes it possible to use in Node.js if you launch it as node --experimental-wasm-stack-switching. ([#3400](https://github.com/urllib3/urllib3/issues/3400) <https://github.com/urllib3/urllib3/issues/3400>__)
  • Added the proxy_is_tunneling property to HTTPConnection and HTTPSConnection. ([#3285](https://github.com/urllib3/urllib3/issues/3285) <https://github.com/urllib3/urllib3/issues/3285>__)
  • Added pickling support to NewConnectionError and NameResolutionError. ([#3480](https://github.com/urllib3/urllib3/issues/3480) <https://github.com/urllib3/urllib3/issues/3480>__)

Bugfixes

  • Fixed an issue in debug logs where the HTTP version was rendering as "HTTP/11" instead of "HTTP/1.1". ([#3489](https://github.com/urllib3/urllib3/issues/3489) <https://github.com/urllib3/urllib3/issues/3489>__)

Deprecations and Removals

  • Removed support for Python 3.8. ([#3492](https://github.com/urllib3/urllib3/issues/3492) <https://github.com/urllib3/urllib3/issues/3492>__)
Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=urllib3&package-manager=pip&previous-version=2.2.3&new-version=2.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- requirements/constraints.txt | 2 +- requirements/dev.txt | 2 +- requirements/doc-spelling.txt | 2 +- requirements/doc.txt | 2 +- requirements/lint.txt | 2 +- requirements/test.txt | 2 +- 6 files changed, 6 insertions(+), 6 deletions(-) diff --git a/requirements/constraints.txt b/requirements/constraints.txt index 0415be698b7..e52881a2b3e 100644 --- a/requirements/constraints.txt +++ b/requirements/constraints.txt @@ -266,7 +266,7 @@ typing-extensions==4.12.2 # typer uritemplate==4.1.1 # via gidgethub -urllib3==2.2.3 +urllib3==2.3.0 # via requests uvloop==0.21.0 ; platform_system != "Windows" # via diff --git a/requirements/dev.txt b/requirements/dev.txt index e31701aa63b..7224dbfb414 100644 --- a/requirements/dev.txt +++ b/requirements/dev.txt @@ -258,7 +258,7 @@ typing-extensions==4.12.2 # typer uritemplate==4.1.1 # via gidgethub -urllib3==2.2.3 +urllib3==2.3.0 # via requests uvloop==0.21.0 ; platform_system != "Windows" and implementation_name == "cpython" # via diff --git a/requirements/doc-spelling.txt b/requirements/doc-spelling.txt index a9e55b4aa51..1a5264a9677 100644 --- a/requirements/doc-spelling.txt +++ b/requirements/doc-spelling.txt @@ -70,7 +70,7 @@ towncrier==23.11.0 # via # -r requirements/doc.in # sphinxcontrib-towncrier -urllib3==2.2.3 +urllib3==2.3.0 # via requests # The following packages are considered to be unsafe in a requirements file: diff --git a/requirements/doc.txt b/requirements/doc.txt index c4e1303be65..a17cebb9025 100644 --- a/requirements/doc.txt +++ b/requirements/doc.txt @@ -65,7 +65,7 @@ towncrier==23.11.0 # via # -r requirements/doc.in # sphinxcontrib-towncrier -urllib3==2.2.3 +urllib3==2.3.0 # via requests # The following packages are considered to be unsafe in a requirements file: diff --git a/requirements/lint.txt b/requirements/lint.txt index c94f4d15dd7..d85c8976510 100644 --- a/requirements/lint.txt +++ b/requirements/lint.txt @@ -121,7 +121,7 @@ typing-extensions==4.12.2 # python-on-whales # rich # typer -urllib3==2.2.3 +urllib3==2.3.0 # via requests uvloop==0.21.0 ; platform_system != "Windows" # via -r requirements/lint.in diff --git a/requirements/test.txt b/requirements/test.txt index e82d9b1b8d9..dfe6fbf9abf 100644 --- a/requirements/test.txt +++ b/requirements/test.txt @@ -141,7 +141,7 @@ typing-extensions==4.12.2 # python-on-whales # rich # typer -urllib3==2.2.3 +urllib3==2.3.0 # via requests uvloop==0.21.0 ; platform_system != "Windows" and implementation_name == "cpython" # via -r requirements/base.in From 539b217bf015b3d027c3b2201927d121796fd0ee Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 23 Dec 2024 00:41:35 +0000 Subject: [PATCH 07/11] Bump six from 1.16.0 to 1.17.0 (#10203) Bumps [six](https://github.com/benjaminp/six) from 1.16.0 to 1.17.0.
Changelog

Sourced from six's changelog.

1.17.0

  • Pull request #388: Remove URLopener and FancyURLopener classes from urllib.request when running on Python 3.14 or greater.

  • Pull request #365, issue #283: six.moves.UserDict now points to UserDict.IterableUserDict instead of UserDict.UserDict on Python 2.

Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=six&package-manager=pip&previous-version=1.16.0&new-version=1.17.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- requirements/constraints.txt | 2 +- requirements/dev.txt | 2 +- requirements/lint.txt | 2 +- requirements/test.txt | 2 +- 4 files changed, 4 insertions(+), 4 deletions(-) diff --git a/requirements/constraints.txt b/requirements/constraints.txt index e52881a2b3e..3f7054cd6c7 100644 --- a/requirements/constraints.txt +++ b/requirements/constraints.txt @@ -204,7 +204,7 @@ setuptools-git==1.2 # via -r requirements/test.in shellingham==1.5.4 # via typer -six==1.16.0 +six==1.17.0 # via python-dateutil slotscheck==0.19.1 # via -r requirements/lint.in diff --git a/requirements/dev.txt b/requirements/dev.txt index 7224dbfb414..b5ec99a7f72 100644 --- a/requirements/dev.txt +++ b/requirements/dev.txt @@ -199,7 +199,7 @@ setuptools-git==1.2 # via -r requirements/test.in shellingham==1.5.4 # via typer -six==1.16.0 +six==1.17.0 # via python-dateutil slotscheck==0.19.1 # via -r requirements/lint.in diff --git a/requirements/lint.txt b/requirements/lint.txt index d85c8976510..58f155c3c99 100644 --- a/requirements/lint.txt +++ b/requirements/lint.txt @@ -98,7 +98,7 @@ rich==13.9.3 # typer shellingham==1.5.4 # via typer -six==1.16.0 +six==1.17.0 # via python-dateutil slotscheck==0.19.1 # via -r requirements/lint.in diff --git a/requirements/test.txt b/requirements/test.txt index dfe6fbf9abf..d1e052f817b 100644 --- a/requirements/test.txt +++ b/requirements/test.txt @@ -119,7 +119,7 @@ setuptools-git==1.2 # via -r requirements/test.in shellingham==1.5.4 # via typer -six==1.16.0 +six==1.17.0 # via python-dateutil tomli==2.0.2 # via From 4cd103df7757c1df576adaa5e62eca2ef7680b01 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 23 Dec 2024 00:47:05 +0000 Subject: [PATCH 08/11] Bump pydantic from 2.9.2 to 2.10.4 (#10199) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Bumps [pydantic](https://github.com/pydantic/pydantic) from 2.9.2 to 2.10.4.
Release notes

Sourced from pydantic's releases.

v2.10.4 2024-12-18

What's Changed

Packaging

Fixes

New Contributors

Full Changelog: https://github.com/pydantic/pydantic/compare/v2.10.3...v2.10.4

v2.10.3 2024-12-03

What's Changed

Fixes

  • Set fields when defer_build is set on Pydantic dataclasses by @​Viicos in #10984
  • Do not resolve the JSON Schema reference for dict core schema keys by @​Viicos in #10989
  • Use the globals of the function when evaluating the return type for PlainSerializer and WrapSerializer functions by @​Viicos in #11008
  • Fix host required enforcement for urls to be compatible with v2.9 behavior by @​sydney-runkle in #11027
  • Add a default_factory_takes_validated_data property to FieldInfo by @​Viicos in #11034
  • Fix url json schema in serialization mode by @​sydney-runkle in #11035

Full Changelog: https://github.com/pydantic/pydantic/compare/v2.10.2...v2.10.3

v2.10.2 2024-11-26

What's Changed

Fixes

Full Changelog: https://github.com/pydantic/pydantic/compare/v2.10.1...v2.10.2

... (truncated)

Changelog

Sourced from pydantic's changelog.

v2.10.4 (2024-12-18)

GitHub release

What's Changed

Packaging

Fixes

New Contributors

v2.10.3 (2024-12-03)

GitHub release

What's Changed

Fixes

  • Set fields when defer_build is set on Pydantic dataclasses by @​Viicos in #10984
  • Do not resolve the JSON Schema reference for dict core schema keys by @​Viicos in #10989
  • Use the globals of the function when evaluating the return type for PlainSerializer and WrapSerializer functions by @​Viicos in #11008
  • Fix host required enforcement for urls to be compatible with v2.9 behavior by @​sydney-runkle in #11027
  • Add a default_factory_takes_validated_data property to FieldInfo by @​Viicos in #11034
  • Fix url json schema in serialization mode by @​sydney-runkle in #11035

v2.10.2 (2024-11-25)

GitHub release

What's Changed

Fixes

  • Only evaluate FieldInfo annotations if required during schema building by @​Viicos in #10769

... (truncated)

Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pydantic&package-manager=pip&previous-version=2.9.2&new-version=2.10.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- requirements/constraints.txt | 4 ++-- requirements/dev.txt | 4 ++-- requirements/lint.txt | 4 ++-- requirements/test.txt | 4 ++-- 4 files changed, 8 insertions(+), 8 deletions(-) diff --git a/requirements/constraints.txt b/requirements/constraints.txt index 3f7054cd6c7..adaccea6377 100644 --- a/requirements/constraints.txt +++ b/requirements/constraints.txt @@ -145,9 +145,9 @@ pycares==4.4.0 # via aiodns pycparser==2.22 # via cffi -pydantic==2.9.2 +pydantic==2.10.4 # via python-on-whales -pydantic-core==2.23.4 +pydantic-core==2.27.2 # via pydantic pyenchant==3.2.2 # via sphinxcontrib-spelling diff --git a/requirements/dev.txt b/requirements/dev.txt index b5ec99a7f72..9254080bbf6 100644 --- a/requirements/dev.txt +++ b/requirements/dev.txt @@ -142,9 +142,9 @@ pycares==4.4.0 # via aiodns pycparser==2.22 # via cffi -pydantic==2.9.2 +pydantic==2.10.4 # via python-on-whales -pydantic-core==2.23.4 +pydantic-core==2.27.2 # via pydantic pygments==2.18.0 # via diff --git a/requirements/lint.txt b/requirements/lint.txt index 58f155c3c99..a9a328f6561 100644 --- a/requirements/lint.txt +++ b/requirements/lint.txt @@ -69,9 +69,9 @@ pycares==4.4.0 # via aiodns pycparser==2.22 # via cffi -pydantic==2.9.2 +pydantic==2.10.4 # via python-on-whales -pydantic-core==2.23.4 +pydantic-core==2.27.2 # via pydantic pygments==2.18.0 # via rich diff --git a/requirements/test.txt b/requirements/test.txt index d1e052f817b..0728435d226 100644 --- a/requirements/test.txt +++ b/requirements/test.txt @@ -84,9 +84,9 @@ pycares==4.4.0 # via aiodns pycparser==2.22 # via cffi -pydantic==2.9.2 +pydantic==2.10.4 # via python-on-whales -pydantic-core==2.23.4 +pydantic-core==2.27.2 # via pydantic pygments==2.18.0 # via rich From d704cacfbfd401771f8a6e91fb6722cebd4b2e0b Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 23 Dec 2024 00:48:10 +0000 Subject: [PATCH 09/11] Bump rich from 13.9.3 to 13.9.4 (#10196) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit [//]: # (dependabot-start) ⚠️ **Dependabot is rebasing this PR** ⚠️ Rebasing might not happen immediately, so don't worry if this takes some time. Note: if you make any changes to this PR yourself, they will take precedence over the rebase. --- [//]: # (dependabot-end) Bumps [rich](https://github.com/Textualize/rich) from 13.9.3 to 13.9.4.
Release notes

Sourced from rich's releases.

The Faster is Faster release

[13.9.4] - 2024-11-01

Changed

Changelog

Sourced from rich's changelog.

[13.9.4] - 2024-11-01

Changed

Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=rich&package-manager=pip&previous-version=13.9.3&new-version=13.9.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- requirements/constraints.txt | 2 +- requirements/dev.txt | 2 +- requirements/lint.txt | 2 +- requirements/test.txt | 2 +- 4 files changed, 4 insertions(+), 4 deletions(-) diff --git a/requirements/constraints.txt b/requirements/constraints.txt index adaccea6377..712a087bb79 100644 --- a/requirements/constraints.txt +++ b/requirements/constraints.txt @@ -196,7 +196,7 @@ requests==2.32.3 # cherry-picker # python-on-whales # sphinx -rich==13.9.3 +rich==13.9.4 # via # pytest-codspeed # typer diff --git a/requirements/dev.txt b/requirements/dev.txt index 9254080bbf6..7bff72ee4d8 100644 --- a/requirements/dev.txt +++ b/requirements/dev.txt @@ -191,7 +191,7 @@ requests==2.32.3 # cherry-picker # python-on-whales # sphinx -rich==13.9.3 +rich==13.9.4 # via # pytest-codspeed # typer diff --git a/requirements/lint.txt b/requirements/lint.txt index a9a328f6561..da4fd238ac5 100644 --- a/requirements/lint.txt +++ b/requirements/lint.txt @@ -92,7 +92,7 @@ pyyaml==6.0.2 # via pre-commit requests==2.32.3 # via python-on-whales -rich==13.9.3 +rich==13.9.4 # via # pytest-codspeed # typer diff --git a/requirements/test.txt b/requirements/test.txt index 0728435d226..ca658e36500 100644 --- a/requirements/test.txt +++ b/requirements/test.txt @@ -111,7 +111,7 @@ python-on-whales==0.73.0 # via -r requirements/test.in requests==2.32.3 # via python-on-whales -rich==13.9.3 +rich==13.9.4 # via # pytest-codspeed # typer From 8c124b51aaed4e6604c547ffbd0a99e172710a82 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 23 Dec 2024 01:06:04 +0000 Subject: [PATCH 10/11] Bump aiosignal from 1.3.1 to 1.3.2 (#10198) Bumps [aiosignal](https://github.com/aio-libs/aiosignal) from 1.3.1 to 1.3.2.
Release notes

Sourced from aiosignal's releases.

1.3.2

Deprecations and Removals

  • Dropped Python 3.7 support. (#413)

  • Dropped Python 3.8 support. (#645)

Misc

Changelog

Sourced from aiosignal's changelog.

1.3.2 (2024-12-13)

Deprecations and Removals

  • Dropped Python 3.7 support. [#413](https://github.com/aio-libs/aiosignal/issues/413) <https://github.com/aio-libs/aiosignal/issues/413>_

  • Dropped Python 3.8 support. [#645](https://github.com/aio-libs/aiosignal/issues/645) <https://github.com/aio-libs/aiosignal/issues/645>_

Misc

  • [#362](https://github.com/aio-libs/aiosignal/issues/362) <https://github.com/aio-libs/aiosignal/issues/362>_
Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aiosignal&package-manager=pip&previous-version=1.3.1&new-version=1.3.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- requirements/base.txt | 2 +- requirements/constraints.txt | 2 +- requirements/dev.txt | 2 +- requirements/runtime-deps.txt | 2 +- requirements/test.txt | 2 +- 5 files changed, 5 insertions(+), 5 deletions(-) diff --git a/requirements/base.txt b/requirements/base.txt index 15dd10c52fb..d3e45711ac8 100644 --- a/requirements/base.txt +++ b/requirements/base.txt @@ -8,7 +8,7 @@ aiodns==3.2.0 ; sys_platform == "linux" or sys_platform == "darwin" # via -r requirements/runtime-deps.in aiohappyeyeballs==2.4.3 # via -r requirements/runtime-deps.in -aiosignal==1.3.1 +aiosignal==1.3.2 # via -r requirements/runtime-deps.in async-timeout==4.0.3 ; python_version < "3.11" # via -r requirements/runtime-deps.in diff --git a/requirements/constraints.txt b/requirements/constraints.txt index 712a087bb79..0b78efc02d9 100644 --- a/requirements/constraints.txt +++ b/requirements/constraints.txt @@ -12,7 +12,7 @@ aiohappyeyeballs==2.4.3 # via -r requirements/runtime-deps.in aiohttp-theme==0.1.7 # via -r requirements/doc.in -aiosignal==1.3.1 +aiosignal==1.3.2 # via -r requirements/runtime-deps.in alabaster==1.0.0 # via sphinx diff --git a/requirements/dev.txt b/requirements/dev.txt index 7bff72ee4d8..81abf48ef62 100644 --- a/requirements/dev.txt +++ b/requirements/dev.txt @@ -12,7 +12,7 @@ aiohappyeyeballs==2.4.3 # via -r requirements/runtime-deps.in aiohttp-theme==0.1.7 # via -r requirements/doc.in -aiosignal==1.3.1 +aiosignal==1.3.2 # via -r requirements/runtime-deps.in alabaster==1.0.0 # via sphinx diff --git a/requirements/runtime-deps.txt b/requirements/runtime-deps.txt index 8e681d51560..29af761624e 100644 --- a/requirements/runtime-deps.txt +++ b/requirements/runtime-deps.txt @@ -8,7 +8,7 @@ aiodns==3.2.0 ; sys_platform == "linux" or sys_platform == "darwin" # via -r requirements/runtime-deps.in aiohappyeyeballs==2.4.3 # via -r requirements/runtime-deps.in -aiosignal==1.3.1 +aiosignal==1.3.2 # via -r requirements/runtime-deps.in async-timeout==4.0.3 ; python_version < "3.11" # via -r requirements/runtime-deps.in diff --git a/requirements/test.txt b/requirements/test.txt index ca658e36500..7267ba433b7 100644 --- a/requirements/test.txt +++ b/requirements/test.txt @@ -8,7 +8,7 @@ aiodns==3.2.0 ; sys_platform == "linux" or sys_platform == "darwin" # via -r requirements/runtime-deps.in aiohappyeyeballs==2.4.3 # via -r requirements/runtime-deps.in -aiosignal==1.3.1 +aiosignal==1.3.2 # via -r requirements/runtime-deps.in annotated-types==0.7.0 # via pydantic From a5ca135f3d6ae46f5a071011d0b1d281c8c4928d Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 23 Dec 2024 01:11:44 +0000 Subject: [PATCH 11/11] Bump packaging from 24.1 to 24.2 (#10201) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Bumps [packaging](https://github.com/pypa/packaging) from 24.1 to 24.2.
Release notes

Sourced from packaging's releases.

24.2

What's Changed

New Contributors

Full Changelog: https://github.com/pypa/packaging/compare/24.1...24.2

Changelog

Sourced from packaging's changelog.

24.2 - 2024-11-08


* PEP 639: Implement License-Expression and License-File (:issue:`828`)
* Use ``!r`` formatter for error messages with filenames (:issue:`844`)
* Add support for PEP 730 iOS tags (:issue:`832`)
* Fix prerelease detection for ``>`` and ``<`` (:issue:`794`)
* Fix uninformative error message (:issue:`830`)
* Refactor ``canonicalize_version`` (:issue:`793`)
* Patch python_full_version unconditionally (:issue:`825`)
* Fix doc for ``canonicalize_version`` to mention
``strip_trailing_zero`` and a typo in a docstring (:issue:`801`)
* Fix typo in Version ``__str__`` (:issue:`817`)
* Support creating a ``SpecifierSet`` from an iterable of ``Specifier``
objects (:issue:`775`)
Commits
  • d8e3b31 Bump for release
  • 2de393d Update changelog for release
  • 9c66f5c Remove extraneous quotes in f-strings by using !r (#848)
  • 4dc334c Upgrade to latest mypy (#853)
  • d1a9f93 Bump the github-actions group with 4 updates (#852)
  • 029f415 PEP 639: Implement License-Expression and License-File (#828)
  • 6c338a8 Use !r formatter for error messages with filenames. (#844)
  • 28e7da7 Add a comment as to why Metadata.name isn't normalized (#842)
  • ce0d79c Mention updating changelog in release process (#841)
  • ac5bdf3 Update the changelog to reflect 24.1 changes (#840)
  • Additional commits viewable in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=packaging&package-manager=pip&previous-version=24.1&new-version=24.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- requirements/base.txt | 2 +- requirements/constraints.txt | 2 +- requirements/dev.txt | 2 +- requirements/doc-spelling.txt | 2 +- requirements/doc.txt | 2 +- requirements/lint.txt | 2 +- requirements/test.txt | 2 +- 7 files changed, 7 insertions(+), 7 deletions(-) diff --git a/requirements/base.txt b/requirements/base.txt index d3e45711ac8..16a0080bdec 100644 --- a/requirements/base.txt +++ b/requirements/base.txt @@ -28,7 +28,7 @@ multidict==6.1.0 # via # -r requirements/runtime-deps.in # yarl -packaging==24.1 +packaging==24.2 # via gunicorn propcache==0.2.0 # via diff --git a/requirements/constraints.txt b/requirements/constraints.txt index 0b78efc02d9..86376043919 100644 --- a/requirements/constraints.txt +++ b/requirements/constraints.txt @@ -119,7 +119,7 @@ mypy-extensions==1.0.0 # via mypy nodeenv==1.9.1 # via pre-commit -packaging==24.1 +packaging==24.2 # via # build # gunicorn diff --git a/requirements/dev.txt b/requirements/dev.txt index 81abf48ef62..14e7e0d3978 100644 --- a/requirements/dev.txt +++ b/requirements/dev.txt @@ -116,7 +116,7 @@ mypy-extensions==1.0.0 # via mypy nodeenv==1.9.1 # via pre-commit -packaging==24.1 +packaging==24.2 # via # build # gunicorn diff --git a/requirements/doc-spelling.txt b/requirements/doc-spelling.txt index 1a5264a9677..d02d5f1af92 100644 --- a/requirements/doc-spelling.txt +++ b/requirements/doc-spelling.txt @@ -30,7 +30,7 @@ jinja2==3.1.4 # towncrier markupsafe==3.0.2 # via jinja2 -packaging==24.1 +packaging==24.2 # via sphinx pyenchant==3.2.2 # via sphinxcontrib-spelling diff --git a/requirements/doc.txt b/requirements/doc.txt index a17cebb9025..e1f5edc6b04 100644 --- a/requirements/doc.txt +++ b/requirements/doc.txt @@ -30,7 +30,7 @@ jinja2==3.1.4 # towncrier markupsafe==3.0.2 # via jinja2 -packaging==24.1 +packaging==24.2 # via sphinx pygments==2.18.0 # via sphinx diff --git a/requirements/lint.txt b/requirements/lint.txt index da4fd238ac5..1ba40066e60 100644 --- a/requirements/lint.txt +++ b/requirements/lint.txt @@ -55,7 +55,7 @@ mypy-extensions==1.0.0 # via mypy nodeenv==1.9.1 # via pre-commit -packaging==24.1 +packaging==24.2 # via pytest platformdirs==4.3.6 # via virtualenv diff --git a/requirements/test.txt b/requirements/test.txt index 7267ba433b7..d53e6889fce 100644 --- a/requirements/test.txt +++ b/requirements/test.txt @@ -68,7 +68,7 @@ mypy==1.13.0 ; implementation_name == "cpython" # via -r requirements/test.in mypy-extensions==1.0.0 # via mypy -packaging==24.1 +packaging==24.2 # via # gunicorn # pytest