From f9996b5286fc325b15c1230e4985d4c10100877c Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 22 Aug 2025 10:26:19 +0000
Subject: [PATCH] Bump cherry-picker from 2.5.0 to 2.6.0 (#11444)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Bumps [cherry-picker](https://github.com/python/cherry-picker) from
2.5.0 to 2.6.0.
Release notes
Sourced from cherry-picker's
releases.
cherry-picker-v2.6.0
What's Changed
Full Changelog: https://github.com/python/cherry-picker/compare/cherry-picker-v2.5.0...cherry-picker-v2.6.0
Changelog
Sourced from cherry-picker's
changelog.
2.6.0
Commits
beb1939
Update changelog for 2.6.0 (#161)cdae289
Check commit count against upstream (#156)3c84cda
Use PEP 639 licence expression and remove deprecated Trove classifier
(#160)3a6a9ea
[pre-commit.ci] pre-commit autoupdate (#157)cb7fdc1
Revert "Ignore Jinja2 CVE warning in safety dep (#129)"
after upstream fix ...- See full diff in compare
view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
requirements/constraints.txt | 2 +-
requirements/dev.txt | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
diff --git a/requirements/constraints.txt b/requirements/constraints.txt
index 210b1083dca..fe1f26d49eb 100644
--- a/requirements/constraints.txt
+++ b/requirements/constraints.txt
@@ -43,7 +43,7 @@ cfgv==3.4.0
# via pre-commit
charset-normalizer==3.4.3
# via requests
-cherry-picker==2.5.0
+cherry-picker==2.6.0
# via -r requirements/dev.in
click==8.1.8
# via
diff --git a/requirements/dev.txt b/requirements/dev.txt
index a9646d1a368..0d20f5fe36f 100644
--- a/requirements/dev.txt
+++ b/requirements/dev.txt
@@ -43,7 +43,7 @@ cfgv==3.4.0
# via pre-commit
charset-normalizer==3.4.3
# via requests
-cherry-picker==2.5.0
+cherry-picker==2.6.0
# via -r requirements/dev.in
click==8.1.8
# via