chore(deps): update dependency starlette to ^0.45.0

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
starlette (changelog)	^0.37.2 -> ^0.45.0

---

Release Notes

encode/starlette (starlette)

v0.45.2: Version 0.45.2

Compare Source

Fixed

• Make create_memory_object_stream compatible with old anyio versions once again, and bump anyio minimum version to 3.6.2 by @​graingert in #​2833.

Full Changelog: encode/starlette@0.45.1...0.45.2

v0.45.1: Version 0.45.1

Compare Source

Fixed

• Collect errors more reliably from WebSocket test client by @​graingert in https://github.com/encode/starlette/pull/2814
• Fix unclosed MemoryObjectReceiveStream upon exception in BaseHTTPMiddleware children by @​Kludex in https://github.com/encode/starlette/pull/2813

Refactor

• Use a pair of memory object streams instead of two queues by @​graingert in https://github.com/encode/starlette/pull/2829

---

Full Changelog: encode/starlette@0.45.0...0.45.1

v0.45.0: Version 0.45.0

Compare Source

Removed

• Drop Python 3.8 by @​Kludex in https://github.com/encode/starlette/pull/2823
• Remove ExceptionMiddleware import proxy from starlette.exceptions module by @​Kludex in https://github.com/encode/starlette/pull/2826
• Remove deprecated WS_1004_NO_STATUS_RCVD and WS_1005_ABNORMAL_CLOSURE by @​Kludex in https://github.com/encode/starlette/pull/2827

---

Full Changelog: encode/starlette@0.44.0...0.45.0

v0.44.0: Version 0.44.0

Compare Source

Added

• Add max_part_size parameter to Request.form() by @​iudeen in https://github.com/encode/starlette/pull/2815
• Add client parameter to TestClient by @​iudeen in https://github.com/encode/starlette/pull/2810

New Contributors

• @​iudeen made their first contribution in https://github.com/encode/starlette/pull/2815

Full Changelog: encode/starlette@0.43.0...0.44.0

v0.43.0: Version 0.43.0

Compare Source

Removed

• Remove deprecated allow_redirects argument from TestClient #​2808.

Added

• Make UUID path parameter conversion more flexible #​2806.

---

New Contributors

• @​AbduazizZiyodov made their first contribution in https://github.com/encode/starlette/pull/2799
• @​edthrn made their first contribution in https://github.com/encode/starlette/pull/2806

Full Changelog: encode/starlette@0.42.0...0.43.0

v0.42.0

Compare Source

Added

• Raise ClientDisconnect on StreamingResponse #​2732.

Fixed

• Use ETag from headers when parsing If-Range in FileResponse #​2761.
• Follow directory symlinks in StaticFiles when follow_symlinks=True #​2711.
• Bump minimum python-multipart version to 0.0.18 0ba8395.
• Bump minimum httpx version to 0.27.0 #​2773.

---

New Contributors

• @​logan-connolly made their first contribution in https://github.com/encode/starlette/pull/2763
• @​eltoder made their first contribution in https://github.com/encode/starlette/pull/2768
• @​hanxi made their first contribution in https://github.com/encode/starlette/pull/2711
• @​viccie30 made their first contribution in https://github.com/encode/starlette/pull/2761
• @​dbowring made their first contribution in https://github.com/encode/starlette/pull/2782
• @​lealre made their first contribution in https://github.com/encode/starlette/pull/2793

Full Changelog: encode/starlette@0.41.3...0.42.0

v0.41.3: Version 0.41.3

Compare Source

Fixed

• Exclude the query parameters from the scope[raw_path] on the TestClient #​2716.
• Replace dict by Mapping on HTTPException.headers #​2749.
• Correct middleware argument passing and improve factory pattern #​2752.

---

Full Changelog: encode/starlette@0.41.2...0.41.3

v0.41.2: Version 0.41.2

Compare Source

What's Changed

• Revert bump on python-multipart by @​Kludex in https://github.com/encode/starlette/pull/2737

---

Full Changelog: encode/starlette@0.41.1...0.41.2

v0.41.1: Version 0.41.1

Compare Source

What's Changed

• Change python-multipart import to python_multipart by @​Kludex in https://github.com/encode/starlette/pull/2733
• Bump minimum python-multipart version to 0.0.13 by @​Kludex in https://github.com/encode/starlette/pull/2734

---

Full Changelog: encode/starlette@0.41.0...0.41.1

v0.41.0: Version 0.41.0

Compare Source

Added

• Allow to raise HTTPException before websocket.accept() https://github.com/encode/starlette/pull/2725

v0.40.0: Version 0.40.0

Compare Source

This release fixes a Denial of service (DoS) via multipart/form-data requests.

You can view the full security advisory:
GHSA-f96h-pmfr-66vw

Fixed

• Add max_part_size to MultiPartParser to limit the size of parts in multipart/form-data
  requests fd038f3.

v0.39.2: Version 0.39.2

Compare Source

Fixed

• Allow use of request.url_for when only "app" scope is available #​2672.
• Fix internal type hints to support python-multipart==0.0.12 #​2708.

---

Full Changelog: encode/starlette@0.39.1...0.39.2

v0.39.1: Version 0.39.1

Compare Source

Fixed

• Avoid regex re-compilation in responses.py and schemas.py #​2700.
• Improve performance of get_route_path by removing regular expression usage #​2701.
• Consider FileResponse.chunk_size when handling multiple ranges #​2703.
• Use token_hex for generating multipart boundary strings #​2702.

---

Full Changelog: encode/starlette@0.39.0...0.39.1

v0.39.0: Version 0.39.0

Compare Source

Added

• Add support for HTTP Range to FileResponse #​2697

---

Full Changelog: encode/starlette@0.38.6...0.39.0

v0.38.6: Version 0.38.6

Compare Source

Fixed

• Close unclosed MemoryObjectReceiveStream in TestClient #​2693.

---

Full Changelog: encode/starlette@0.38.5...0.38.6

v0.38.5: Version 0.38.5

Compare Source

Fixed

• Schedule BackgroundTasks from within BaseHTTPMiddleware #​2688.
  This behavior was removed in 0.38.3, and is now restored.

---

Full Changelog: encode/starlette@0.38.4...0.38.5

v0.38.4: Version 0.38.4

Compare Source

Fixed

• Ensure accurate root_path removal in get_route_path function #​2600

---

Full Changelog: encode/starlette@0.38.3...0.38.4

v0.38.3: Version 0.38.3

Compare Source

Added

• Support for Python 3.13 #​2662.

Fixed

• Don't poll for disconnects in BaseHTTPMiddleware via StreamingResponse #​2620.

---

Full Changelog: encode/starlette@0.38.2...0.38.3

v0.38.2: Version 0.38.2

Compare Source

Fixed

• Fix routing.get_name() not to assume all routines have __name__ #​2648

---

Full Changelog: encode/starlette@0.38.1...0.38.2

v0.38.1: Version 0.38.1

Compare Source

Removed

• Revert "Add support for ASGI pathsend extension" #​2649.

---

Full Changelog: encode/starlette@0.38.0...0.38.1

v0.38.0: Version 0.38.0

Compare Source

Added

• Allow use of memoryview in StreamingResponse and Response #​2576
  and #​2577.
• Send 404 instead of 500 when filename requested is too long on StaticFiles #​2583.

Changed

• Fail fast on invalid Jinja2Template instantiation parameters #​2568.
• Check endpoint handler is async only once #​2536.

Fixed

• Add proper synchronization to WebSocketTestSession #​2597.

---

Full Changelog: encode/starlette@0.37.2...0.38.0

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[renovate]

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

• any of the package files in this branch needs updating, or
• the branch becomes conflicted, or
• you click the rebase/retry checkbox if found above, or
• you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: stories/poetry.lock

Updating dependencies
Resolving dependencies...

Creating virtualenv compone-stories-SCS3KxFy-py3.13 in /home/ubuntu/.cache/pypoetry/virtualenvs

The current project's supported Python range (>=3.8,<4.0) is not compatible with some of the required packages Python requirement:
  - starlette requires Python >=3.9, so it will not be satisfied for Python >=3.8,<3.9
  - starlette requires Python >=3.9, so it will not be satisfied for Python >=3.8,<3.9
  - starlette requires Python >=3.9, so it will not be satisfied for Python >=3.8,<3.9

Because no versions of starlette match >0.45.0,<0.45.1 || >0.45.1,<0.45.2 || >0.45.2,<0.46.0
 and starlette (0.45.0) requires Python >=3.9, starlette is forbidden.
And because starlette (0.45.1) requires Python >=3.9, starlette is forbidden.
So, because starlette (0.45.2) requires Python >=3.9
 and compone-stories depends on starlette (^0.45.0), version solving failed.

  • Check your dependencies Python requirement: The Python requirement can be specified via the `python` or `markers` properties
    
    For starlette, a possible solution would be to set the `python` property to ">=3.9,<4.0"
    For starlette, a possible solution would be to set the `python` property to ">=3.9,<4.0"
    For starlette, a possible solution would be to set the `python` property to ">=3.9,<4.0"

    https://python-poetry.org/docs/dependency-specification/#python-restricted-dependencies,
    https://python-poetry.org/docs/dependency-specification/#using-environment-markers