Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump the python-packages group across 1 directory with 9 updates #252

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Bump the python-packages group across 1 directory with 9 updates #252

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jul 26, 2024

Bumps the python-packages group with 8 updates in the / directory:

Package From To
requests-cache 1.2.0 1.2.1
lxml 5.2.1 5.2.2
boto3 1.34.92 1.34.149
pre-commit 3.7.0 3.7.1
certifi 2024.2.2 2024.7.4
ruff 0.4.2 0.5.5
pytest 8.1.1 8.3.2
pytest-ruff 0.3.1 0.4.1

Updates requests-cache from 1.2.0 to 1.2.1

Changelog

Sourced from requests-cache's changelog.

1.2.1 (2024-06-18)

🪲 Bugfixes:

  • Fix normalize_headers not accepting header values in bytes
  • Fix inconsistency due to rounding in CachedResponse.expires_unix property
  • Fix form boundary used for cached multipart requests to fully comply with RFC 2046
  • Fix loading cached JSON content with decode_content=True when the root element is an empty list or object
  • Fix usage example with responses library to be compatible with requests 2.32
Commits
  • 7f6be31 Merge pull request #993 from requests-cache/fix-empty-array
  • 423af82 Fix loading cached JSON content with decode_content=True when the root elemen...
  • 28dfa64 Add compatibility tests (for docs/external libraries) to CI and nox config
  • 4114cee Merge pull request #992 from requests-cache/fix-responses-test
  • f652475 Fix usage example with responses library to be compatible with requests 2.32
  • 4dc0a52 Update dependencies
  • d002851 Update changelog and contributors
  • 1290ae9 Update dependencies
  • 08390ee Merge pull request #985 from jcd000/main
  • be91e87 Fixes crashes from patched form boundary
  • Additional commits viewable in compare view

Updates lxml from 5.2.1 to 5.2.2

Release notes

Sourced from lxml's releases.

lxml-5.2.2

5.2.2 (2024-05-12)

Bugs fixed

  • GH#417: The test_feed_parser test could fail if lxml_html_clean was not installed. It is now skipped in that case.

  • LP#2059910: The minimum CPU architecture for the Linux x86 binary wheels was set back to "core2", without SSE 4.2.

  • If libxml2 uses iconv, the compile time version is available as etree.ICONV_COMPILED_VERSION.

Changelog

Sourced from lxml's changelog.

5.2.2 (2024-05-12)

Bugs fixed

  • GH#417: The test_feed_parser test could fail if lxml_html_clean was not installed. It is now skipped in that case.

  • LP#2059910: The minimum CPU architecture for the Linux x86 binary wheels was set back to "core2", without SSE 4.2.

  • If libxml2 uses iconv, the compile time version is available as etree.ICONV_COMPILED_VERSION.

Commits
  • 8e4b14c Prepare release of lxml 5.2.2.
  • ddaa6ed Provide compile time version of libiconv as "etree.ICONV_COMPILED_VERSION".
  • 1ab00bd CI: Do not install lxml as dependency of "lxml_html_clean".
  • b325054 CI: Stop building LTO wheels to avoid messing with the library build cache.
  • 81624c2 CI: Exclude now-unsupported Python versions 3.6/7 from macOS jobs.
  • 069fa36 Fix typo.
  • e0df2ba Fix typo.
  • df55eaf Update changelog.
  • f3e77fa Remove dependency on SSE4 instructions, reverting back to "core2" as a target...
  • a22e83c Update changelog.
  • Additional commits viewable in compare view

Updates boto3 from 1.34.92 to 1.34.149

Commits
  • 9dc3e48 Merge branch 'release-1.34.149'
  • 2448ec2 Bumping version to 1.34.149
  • 2a65fa9 Add changelog entries from botocore
  • 4c0c448 Merge branch 'release-1.34.148'
  • 8884183 Merge branch 'release-1.34.148' into develop
  • a4c65c8 Bumping version to 1.34.148
  • 80606ab Add changelog entries from botocore
  • cf616c3 Merge branch 'release-1.34.147'
  • a496f69 Merge branch 'release-1.34.147' into develop
  • 24baa35 Bumping version to 1.34.147
  • Additional commits viewable in compare view

Updates pre-commit from 3.7.0 to 3.7.1

Release notes

Sourced from pre-commit's releases.

pre-commit v3.7.1

Fixes

Changelog

Sourced from pre-commit's changelog.

3.7.1 - 2024-05-10

Fixes

Commits
  • 9ee0768 v3.7.1
  • eeac061 Merge pull request #3201 from pre-commit/rust-default-language-version
  • 296f592 determine rust default language version independent of rust-toolchain.toml
  • 1602328 Merge pull request #3193 from pre-commit/pre-commit-ci-update-config
  • 0142f45 [pre-commit.ci] pre-commit autoupdate
  • d7e21cd Merge pull request #3194 from pre-commit/handle-readonly-3-12
  • 5c3d006 use a simpler gem for testing additional_dependencies
  • 0d4c6da adjust _handle_readonly for typeshed updates
  • 85fe182 Merge pull request #3176 from pre-commit/pre-commit-ci-update-config
  • 74d05b4 [pre-commit.ci] pre-commit autoupdate
  • Additional commits viewable in compare view

Updates certifi from 2024.2.2 to 2024.7.4

Commits

Updates requests from 2.31.0 to 2.32.3

Release notes

Sourced from requests's releases.

v2.32.3

2.32.3 (2024-05-29)

Bugfixes

  • Fixed bug breaking the ability to specify custom SSLContexts in sub-classes of HTTPAdapter. (#6716)
  • Fixed issue where Requests started failing to run on Python versions compiled without the ssl module. (#6724)

v2.32.2

2.32.2 (2024-05-21)

Deprecations

  • To provide a more stable migration for custom HTTPAdapters impacted by the CVE changes in 2.32.0, we've renamed _get_connection to a new public API, get_connection_with_tls_context. Existing custom HTTPAdapters will need to migrate their code to use this new API. get_connection is considered deprecated in all versions of Requests>=2.32.0.

    A minimal (2-line) example has been provided in the linked PR to ease migration, but we strongly urge users to evaluate if their custom adapter is subject to the same issue described in CVE-2024-35195. (#6710)

v2.32.1

2.32.1 (2024-05-20)

Bugfixes

  • Add missing test certs to the sdist distributed on PyPI.

v2.32.0

2.32.0 (2024-05-20)

🐍 PYCON US 2024 EDITION 🐍

Security

  • Fixed an issue where setting verify=False on the first request from a Session will cause subsequent requests to the same origin to also ignore cert verification, regardless of the value of verify. (GHSA-9wx4-h78v-vm56)

Improvements

  • verify=True now reuses a global SSLContext which should improve request time variance between first and subsequent requests. It should also minimize certificate load time on Windows systems when using a Python version built with OpenSSL 3.x. (#6667)
  • Requests now supports optional use of character detection (chardet or charset_normalizer) when repackaged or vendored.

... (truncated)

Changelog

Sourced from requests's changelog.

2.32.3 (2024-05-29)

Bugfixes

  • Fixed bug breaking the ability to specify custom SSLContexts in sub-classes of HTTPAdapter. (#6716)
  • Fixed issue where Requests started failing to run on Python versions compiled without the ssl module. (#6724)

2.32.2 (2024-05-21)

Deprecations

  • To provide a more stable migration for custom HTTPAdapters impacted by the CVE changes in 2.32.0, we've renamed _get_connection to a new public API, get_connection_with_tls_context. Existing custom HTTPAdapters will need to migrate their code to use this new API. get_connection is considered deprecated in all versions of Requests>=2.32.0.

    A minimal (2-line) example has been provided in the linked PR to ease migration, but we strongly urge users to evaluate if their custom adapter is subject to the same issue described in CVE-2024-35195. (#6710)

2.32.1 (2024-05-20)

Bugfixes

  • Add missing test certs to the sdist distributed on PyPI.

2.32.0 (2024-05-20)

Security

  • Fixed an issue where setting verify=False on the first request from a Session will cause subsequent requests to the same origin to also ignore cert verification, regardless of the value of verify. (GHSA-9wx4-h78v-vm56)

Improvements

  • verify=True now reuses a global SSLContext which should improve request time variance between first and subsequent requests. It should also minimize certificate load time on Windows systems when using a Python version built with OpenSSL 3.x. (#6667)
  • Requests now supports optional use of character detection (chardet or charset_normalizer) when repackaged or vendored. This enables pip and other projects to minimize their vendoring surface area. The Response.text() and apparent_encoding APIs will default to utf-8 if neither library is present. (#6702)

... (truncated)

Commits
  • 0e322af v2.32.3
  • e188799 Don't create default SSLContext if ssl module isn't present (#6724)
  • 145b539 Merge pull request #6716 from sigmavirus24/bug/6715
  • b1d73dd Don't use default SSLContext with custom poolmanager kwargs
  • 6badbac Update HISTORY.md
  • a62a2d3 Allow for overriding of specific pool key params
  • 88dce9d v2.32.2
  • c98e4d1 Merge pull request #6710 from nateprewitt/api_rename
  • 92075b3 Add deprecation warning
  • aa1461b Move _get_connection to get_connection_with_tls_context
  • Additional commits viewable in compare view

Updates ruff from 0.4.2 to 0.5.5

Release notes

Sourced from ruff's releases.

0.5.5

Release Notes

Preview features

  • [fastapi] Implement fastapi-redundant-response-model (FAST001) and fastapi-non-annotated-dependency(FAST002) (#11579)
  • [pydoclint] Implement docstring-missing-exception (DOC501) and docstring-extraneous-exception (DOC502) (#11471)

Rule changes

  • [numpy] Fix NumPy 2.0 rule for np.alltrue and np.sometrue (#12473)
  • [numpy] Ignore NPY201 inside except blocks for compatibility with older numpy versions (#12490)
  • [pep8-naming] Avoid applying ignore-names to self and cls function names (N804, N805) (#12497)

Formatter

  • Fix incorrect placement of leading function comment with type params (#12447)

Server

  • Do not bail code action resolution when a quick fix is requested (#12462)

Bug fixes

  • Fix Ord implementation of cmp_fix (#12471)
  • Raise syntax error for unparenthesized generator expression in multi-argument call (#12445)
  • [pydoclint] Fix panic in DOC501 reported in #12428 (#12435)
  • [flake8-bugbear] Allow singleton tuples with starred expressions in B013 (#12484)

Documentation

  • Add Eglot setup guide for Emacs editor (#12426)
  • Add note about the breaking change in nvim-lspconfig (#12507)
  • Add note to include notebook files for native server (#12449)
  • Add setup docs for Zed editor (#12501)

Contributors

... (truncated)

Changelog

Sourced from ruff's changelog.

0.5.5

Preview features

  • [fastapi] Implement fastapi-redundant-response-model (FAST001) and fastapi-non-annotated-dependency(FAST002) (#11579)
  • [pydoclint] Implement docstring-missing-exception (DOC501) and docstring-extraneous-exception (DOC502) (#11471)

Rule changes

  • [numpy] Fix NumPy 2.0 rule for np.alltrue and np.sometrue (#12473)
  • [numpy] Ignore NPY201 inside except blocks for compatibility with older numpy versions (#12490)
  • [pep8-naming] Avoid applying ignore-names to self and cls function names (N804, N805) (#12497)

Formatter

  • Fix incorrect placement of leading function comment with type params (#12447)

Server

  • Do not bail code action resolution when a quick fix is requested (#12462)

Bug fixes

  • Fix Ord implementation of cmp_fix (#12471)
  • Raise syntax error for unparenthesized generator expression in multi-argument call (#12445)
  • [pydoclint] Fix panic in DOC501 reported in #12428 (#12435)
  • [flake8-bugbear] Allow singleton tuples with starred expressions in B013 (#12484)

Documentation

  • Add Eglot setup guide for Emacs editor (#12426)
  • Add note about the breaking change in nvim-lspconfig (#12507)
  • Add note to include notebook files for native server (#12449)
  • Add setup docs for Zed editor (#12501)

0.5.4

Rule changes

  • [ruff] Rename RUF007 to zip-instead-of-pairwise (#12399)

Bug fixes

  • [flake8-builtins] Avoid shadowing diagnostics for @override methods (#12415)
  • [flake8-comprehensions] Insert parentheses for multi-argument generators (#12422)
  • [pydocstyle] Handle escaped docstrings within docstring (D301) (#12192)

Documentation

  • Fix GitHub link to Neovim setup (#12410)

... (truncated)

Commits
  • fc16d8d Bump version to 0.5.5 (#12510)
  • 175e5d7 Add missing traceback line in f-string-in-exception docstring. (#12508)
  • c03f257 Add note about the breaking change in nvim-lspconfig (#12507)
  • 6bbb4a2 Add setup docs for Zed editor (#12501)
  • 2ce3e3a Fix the search path tests on MacOS (#12503)
  • 2a64ccc Avoid applying ignore-names to self and cls function names (#12497)
  • 928ffd6 Ignore NPY201 inside except blocks for compatibility with older numpy ver...
  • e52be09 [red-knot] Improve validation for search paths (#12376)
  • 8890735 [flake8-bugbear] Allow singleton tuples with starred expressions in B013 (#12...
  • eac965e [red-knot] Watch search paths (#12407)
  • Additional commits viewable in compare view

Updates pytest from 8.1.1 to 8.3.2

Release notes

Sourced from pytest's releases.

8.3.2

pytest 8.3.2 (2024-07-24)

Bug fixes

  • #12652: Resolve regression [conda]{.title-ref} environments where no longer being automatically detected.

    -- by RonnyPfannschmidt{.interpreted-text role="user"}

8.3.1

pytest 8.3.1 (2024-07-20)

The 8.3.0 release failed to include the change notes and docs for the release. This patch release remedies this. There are no other changes.

8.3.0

pytest 8.3.0 (2024-07-20)

New features

  • #12231: Added [--xfail-tb]{.title-ref} flag, which turns on traceback output for XFAIL results.

    • If the [--xfail-tb]{.title-ref} flag is not given, tracebacks for XFAIL results are NOT shown.
    • The style of traceback for XFAIL is set with [--tb]{.title-ref}, and can be [auto|long|short|line|native|no]{.title-ref}.
    • Note: Even if you have [--xfail-tb]{.title-ref} set, you won't see them if [--tb=no]{.title-ref}.

    Some history:

    With pytest 8.0, [-rx]{.title-ref} or [-ra]{.title-ref} would not only turn on summary reports for xfail, but also report the tracebacks for xfail results. This caused issues with some projects that utilize xfail, but don't want to see all of the xfail tracebacks.

    This change detaches xfail tracebacks from [-rx]{.title-ref}, and now we turn on xfail tracebacks with [--xfail-tb]{.title-ref}. With this, the default [-rx]{.title-ref}/ [-ra]{.title-ref} behavior is identical to pre-8.0 with respect to xfail tracebacks. While this is a behavior change, it brings default behavior back to pre-8.0.0 behavior, which ultimately was considered the better course of action.

  • #12281: Added support for keyword matching in marker expressions.

    Now tests can be selected by marker keyword arguments. Supported values are int{.interpreted-text role="class"}, (unescaped) str{.interpreted-text role="class"}, bool{.interpreted-text role="class"} & None{.interpreted-text role="data"}.

    See marker examples <marker_keyword_expression_example>{.interpreted-text role="ref"} for more information.

    -- by lovetheguitar{.interpreted-text role="user"}

  • #12567: Added --no-fold-skipped command line option.

    If this option is set, then skipped tests in short summary are no longer grouped by reason but all tests are printed individually with their nodeid in the same way as other statuses.

    -- by pbrezina{.interpreted-text role="user"}

... (truncated)

Commits
  • bbcec9c Prepare release version 8.3.2
  • 78fe8b6 Merge pull request #12657 from pytest-dev/patchback/backports/8.3.x/6c806b499...
  • 238bad2 Merge pull request #12656 from RonnyPfannschmidt/fix-12652-detect-conda-env
  • ae6034a Merge pull request #12641 from pytest-dev/patchback/backports/8.3.x/c03989cee...
  • 31337ab Merge pull request #12640 from pytest-dev/update-user
  • ca3070b Merge pull request #12637 from pytest-dev/release-8.3.1
  • de98446 Prepare release version 8.3.1
  • bd0a042 Merge pull request #12636 from pytest-dev/update-release-notes
  • 664325b doc/changelog: update 8.3.0 notes
  • 19d225d Merge pull request #12635 from pytest-dev/release-8.3.0
  • Additional commits viewable in compare view

Updates pytest-ruff from 0.3.1 to 0.4.1

Release notes

Sourced from pytest-ruff's releases.

v0.4.1

What's Changed

Full Changelog: businho/pytest-ruff@v0.4.0...v0.4.1

v0.4.0

What's Changed

Full Changelog: businho/pytest-ruff@v0.3.2...v0.4.0

Cleaner test error output

Full stack trace is not relevant for us, it was removed in #18. Thanks to @​lexi-k.

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the python-packages group across 1 directory with 9 updates
4b496fd 
Bumps the python-packages group with 8 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [requests-cache](https://github.com/requests-cache/requests-cache) | `1.2.0` | `1.2.1` |
| [lxml](https://github.com/lxml/lxml) | `5.2.1` | `5.2.2` |
| [boto3](https://github.com/boto/boto3) | `1.34.92` | `1.34.149` |
| [pre-commit](https://github.com/pre-commit/pre-commit) | `3.7.0` | `3.7.1` |
| [certifi](https://github.com/certifi/python-certifi) | `2024.2.2` | `2024.7.4` |
| [ruff](https://github.com/astral-sh/ruff) | `0.4.2` | `0.5.5` |
| [pytest](https://github.com/pytest-dev/pytest) | `8.1.1` | `8.3.2` |
| [pytest-ruff](https://github.com/businho/pytest-ruff) | `0.3.1` | `0.4.1` |



Updates `requests-cache` from 1.2.0 to 1.2.1
- [Release notes](https://github.com/requests-cache/requests-cache/releases)
- [Changelog](https://github.com/requests-cache/requests-cache/blob/main/HISTORY.md)
- [Commits](requests-cache/requests-cache@v1.2.0...v1.2.1)

Updates `lxml` from 5.2.1 to 5.2.2
- [Release notes](https://github.com/lxml/lxml/releases)
- [Changelog](https://github.com/lxml/lxml/blob/master/CHANGES.txt)
- [Commits](lxml/lxml@lxml-5.2.1...lxml-5.2.2)

Updates `boto3` from 1.34.92 to 1.34.149
- [Release notes](https://github.com/boto/boto3/releases)
- [Commits](boto/boto3@1.34.92...1.34.149)

Updates `pre-commit` from 3.7.0 to 3.7.1
- [Release notes](https://github.com/pre-commit/pre-commit/releases)
- [Changelog](https://github.com/pre-commit/pre-commit/blob/main/CHANGELOG.md)
- [Commits](pre-commit/pre-commit@v3.7.0...v3.7.1)

Updates `certifi` from 2024.2.2 to 2024.7.4
- [Commits](certifi/python-certifi@2024.02.02...2024.07.04)

Updates `requests` from 2.31.0 to 2.32.3
- [Release notes](https://github.com/psf/requests/releases)
- [Changelog](https://github.com/psf/requests/blob/main/HISTORY.md)
- [Commits](psf/requests@v2.31.0...v2.32.3)

Updates `ruff` from 0.4.2 to 0.5.5
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@v0.4.2...0.5.5)

Updates `pytest` from 8.1.1 to 8.3.2
- [Release notes](https://github.com/pytest-dev/pytest/releases)
- [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst)
- [Commits](pytest-dev/pytest@8.1.1...8.3.2)

Updates `pytest-ruff` from 0.3.1 to 0.4.1
- [Release notes](https://github.com/businho/pytest-ruff/releases)
- [Commits](businho/pytest-ruff@v0.3.1...v0.4.1)

---
updated-dependencies:
- dependency-name: requests-cache
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: python-packages
- dependency-name: lxml
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: python-packages
- dependency-name: boto3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: python-packages
- dependency-name: pre-commit
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: python-packages
- dependency-name: certifi
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: python-packages
- dependency-name: requests
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: python-packages
- dependency-name: ruff
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: python-packages
- dependency-name: pytest
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: python-packages
- dependency-name: pytest-ruff
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: python-packages
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Jul 26, 2024
@dependabot dependabot bot mentioned this pull request Jul 26, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants