From f8cc32442a7314fbbb8e65614f7cfdace873c997 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 16 Oct 2025 10:25:51 +0000
Subject: [PATCH 1/2] Bump cryptography from 46.0.2 to 46.0.3 (#11667)
Bumps [cryptography](https://github.com/pyca/cryptography) from 46.0.2
to 46.0.3.
Changelog
Sourced from cryptography's
changelog.
46.0.3 - 2025-10-15
* Fixed compilation when using LibreSSL 4.2.0.
.. _v46-0-2:
Commits
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
requirements/constraints.txt | 9 ++-------
requirements/dev.txt | 12 +++---------
requirements/lint.txt | 2 +-
requirements/test-common.txt | 2 +-
requirements/test-ft.txt | 2 +-
requirements/test.txt | 2 +-
6 files changed, 9 insertions(+), 20 deletions(-)
diff --git a/requirements/constraints.txt b/requirements/constraints.txt
index 90d9d1ae4ca..2142935c79e 100644
--- a/requirements/constraints.txt
+++ b/requirements/constraints.txt
@@ -57,10 +57,8 @@ coverage==7.10.7
# via
# -r requirements/test-common.in
# pytest-cov
-cryptography==46.0.2
- # via
- # pyjwt
- # trustme
+cryptography==46.0.3
+ # via trustme
cython==3.1.4
# via -r requirements/cython.in
distlib==0.4.0
@@ -167,9 +165,6 @@ pygments==2.19.2
# pytest
# rich
# sphinx
-pyjwt==2.8.0
- # via
- # pyjwt
pyproject-hooks==1.2.0
# via
# build
diff --git a/requirements/dev.txt b/requirements/dev.txt
index 1f022fa22fa..1b3c5e275ce 100644
--- a/requirements/dev.txt
+++ b/requirements/dev.txt
@@ -57,10 +57,8 @@ coverage==7.10.7
# via
# -r requirements/test-common.in
# pytest-cov
-cryptography==46.0.2
- # via
- # pyjwt
- # trustme
+cryptography==46.0.3
+ # via trustme
distlib==0.4.0
# via virtualenv
docutils==0.21.2
@@ -162,9 +160,6 @@ pygments==2.19.2
# pytest
# rich
# sphinx
-pyjwt==2.8.0
- # via
- # pyjwt
pyproject-hooks==1.2.0
# via
# build
@@ -198,8 +193,7 @@ python-on-whales==0.78.0
pyyaml==6.0.3
# via pre-commit
requests==2.32.5
- # via
- # sphinx
+ # via sphinx
rich==14.2.0
# via pytest-codspeed
setuptools-git==1.2
diff --git a/requirements/lint.txt b/requirements/lint.txt
index ab5305dba15..ab8dfc02bb4 100644
--- a/requirements/lint.txt
+++ b/requirements/lint.txt
@@ -23,7 +23,7 @@ cfgv==3.4.0
# via pre-commit
click==8.3.0
# via slotscheck
-cryptography==46.0.2
+cryptography==46.0.3
# via trustme
distlib==0.4.0
# via virtualenv
diff --git a/requirements/test-common.txt b/requirements/test-common.txt
index 6eff60fbeff..4da969cc271 100644
--- a/requirements/test-common.txt
+++ b/requirements/test-common.txt
@@ -18,7 +18,7 @@ coverage==7.10.7
# via
# -r requirements/test-common.in
# pytest-cov
-cryptography==46.0.2
+cryptography==46.0.3
# via trustme
exceptiongroup==1.3.0
# via pytest
diff --git a/requirements/test-ft.txt b/requirements/test-ft.txt
index 4971f2ef9dd..d39d7397da8 100644
--- a/requirements/test-ft.txt
+++ b/requirements/test-ft.txt
@@ -31,7 +31,7 @@ coverage==7.10.7
# via
# -r requirements/test-common.in
# pytest-cov
-cryptography==46.0.2
+cryptography==46.0.3
# via trustme
exceptiongroup==1.3.0
# via pytest
diff --git a/requirements/test.txt b/requirements/test.txt
index 0021468e317..892dc1717e8 100644
--- a/requirements/test.txt
+++ b/requirements/test.txt
@@ -31,7 +31,7 @@ coverage==7.10.7
# via
# -r requirements/test-common.in
# pytest-cov
-cryptography==46.0.2
+cryptography==46.0.3
# via trustme
exceptiongroup==1.3.0
# via pytest
From 4234f7f35d844cd181dcdd3446bf77e54aeee2ef Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 16 Oct 2025 10:41:45 +0000
Subject: [PATCH 2/2] Bump coverage from 7.10.7 to 7.11.0 (#11668)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Bumps [coverage](https://github.com/nedbat/coveragepy) from 7.10.7 to
7.11.0.
Changelog
Sourced from coverage's
changelog.
Version 7.11.0 — 2025-10-15
- Dropped support for Python 3.9, declared support for Python 3.15
alpha.
.. _changes_7-10-7:
Commits
20ef00b
docs: sample HTML for 7.11.05edf8eb
docs: prep for 7.11.02c023ae
build: 3.15 is supported2f1b95b
refactor: no need for _BaseCoverageException72b1bcc
build: test light-threads on all versions of Python16e9379
refactor: move core tests to their own filebc8875d
test: change a test to be in-process so metacov can capture its
work8e5d5b1
build: tweak some version infob0236df
test: more tests for core selection, and some refactoring of them56edde6
build: next version will be 7.11.0- Additional commits viewable in compare
view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
requirements/constraints.txt | 2 +-
requirements/dev.txt | 2 +-
requirements/test-common.txt | 2 +-
requirements/test-ft.txt | 2 +-
requirements/test.txt | 2 +-
5 files changed, 5 insertions(+), 5 deletions(-)
diff --git a/requirements/constraints.txt b/requirements/constraints.txt
index 2142935c79e..2f5c4402804 100644
--- a/requirements/constraints.txt
+++ b/requirements/constraints.txt
@@ -53,7 +53,7 @@ click==8.3.0
# slotscheck
# towncrier
# wait-for-it
-coverage==7.10.7
+coverage==7.11.0
# via
# -r requirements/test-common.in
# pytest-cov
diff --git a/requirements/dev.txt b/requirements/dev.txt
index 1b3c5e275ce..f77ac5f273c 100644
--- a/requirements/dev.txt
+++ b/requirements/dev.txt
@@ -53,7 +53,7 @@ click==8.3.0
# slotscheck
# towncrier
# wait-for-it
-coverage==7.10.7
+coverage==7.11.0
# via
# -r requirements/test-common.in
# pytest-cov
diff --git a/requirements/test-common.txt b/requirements/test-common.txt
index 4da969cc271..3ce08ae3eff 100644
--- a/requirements/test-common.txt
+++ b/requirements/test-common.txt
@@ -14,7 +14,7 @@ cffi==2.0.0
# pytest-codspeed
click==8.3.0
# via wait-for-it
-coverage==7.10.7
+coverage==7.11.0
# via
# -r requirements/test-common.in
# pytest-cov
diff --git a/requirements/test-ft.txt b/requirements/test-ft.txt
index d39d7397da8..6e0f50ccf57 100644
--- a/requirements/test-ft.txt
+++ b/requirements/test-ft.txt
@@ -27,7 +27,7 @@ cffi==2.0.0
# pytest-codspeed
click==8.3.0
# via wait-for-it
-coverage==7.10.7
+coverage==7.11.0
# via
# -r requirements/test-common.in
# pytest-cov
diff --git a/requirements/test.txt b/requirements/test.txt
index 892dc1717e8..76c5888f529 100644
--- a/requirements/test.txt
+++ b/requirements/test.txt
@@ -27,7 +27,7 @@ cffi==2.0.0
# pytest-codspeed
click==8.3.0
# via wait-for-it
-coverage==7.10.7
+coverage==7.11.0
# via
# -r requirements/test-common.in
# pytest-cov