openedx · edx-requirements-bot · Sep 24, 2024
diff --git a/requirements/base.txt b/requirements/base.txt
@@ -1,5 +1,5 @@
 #
-# This file is autogenerated by pip-compile with Python 3.8
+# This file is autogenerated by pip-compile with Python 3.11
 # by the following command:
 #
 #    make upgrade
@@ -10,24 +10,17 @@ appdirs==1.4.4
     # via fs
 asgiref==3.8.1
     # via django
-attrs==23.2.0
+attrs==24.2.0
     # via openedx-events
-backports-zoneinfo[tzdata]==0.2.1 ; python_version < "3.9"
-    # via
-    #   -c requirements/constraints.txt
-    #   celery
-    #   django
-    #   djangorestframework
-    #   kombu
-billiard==4.2.0
+billiard==4.2.1
     # via celery
-celery==5.3.6
+celery==5.4.0
     # via
     #   -c requirements/constraints.txt
     #   event-tracking
-certifi==2024.2.2
+certifi==2024.8.30
     # via requests
-cffi==1.16.0
+cffi==1.17.1
     # via
     #   cryptography
     #   pynacl
@@ -50,9 +43,9 @@ click-repl==0.3.0
     # via celery
 code-annotations==1.8.0
     # via edx-toggles
-cryptography==42.0.5
+cryptography==43.0.1
     # via pyjwt
-django==4.2.11
+django==4.2.16
     # via
     #   -c requirements/common_constraints.txt
     #   -r requirements/base.in
@@ -73,9 +66,9 @@ django-crum==0.7.9
     #   -r requirements/base.in
     #   edx-django-utils
     #   edx-toggles
-django-ipware==6.0.4
+django-ipware==7.0.1
     # via -r requirements/base.in
-django-model-utils==4.5.0
+django-model-utils==5.0.0
     # via
     #   -r requirements/base.in
     #   edx-when
@@ -93,75 +86,80 @@ django-webpack-loader==0.7.0
     # via
     #   -c requirements/constraints.txt
     #   -r requirements/base.in
-djangorestframework==3.15.1
+djangorestframework==3.15.2
     # via
     #   -r requirements/base.in
     #   drf-jwt
     #   edx-drf-extensions
 drf-jwt==1.19.2
     # via edx-drf-extensions
-edx-django-utils==5.12.0
+edx-ccx-keys==1.3.0
+    # via openedx-events
+edx-django-utils==5.15.0
     # via
     #   edx-drf-extensions
     #   edx-rest-api-client
     #   edx-toggles
     #   edx-when
     #   event-tracking
     #   openedx-events
-edx-drf-extensions==10.3.0
+edx-drf-extensions==10.4.0
     # via
     #   -r requirements/base.in
     #   edx-when
-edx-opaque-keys[django]==2.5.1
+edx-opaque-keys[django]==2.11.0
     # via
     #   -r requirements/base.in
+    #   edx-ccx-keys
     #   edx-drf-extensions
     #   edx-when
     #   openedx-events
-edx-rest-api-client==5.7.0
+edx-rest-api-client==6.0.0
     # via -r requirements/base.in
 edx-toggles==5.2.0
     # via event-tracking
 edx-when==2.5.0
     # via -r requirements/base.in
-event-tracking==2.3.2
-    # via -r requirements/base.in
-fastavro==1.9.4
+event-tracking==2.4.0
+    # via
+    #   -c requirements/common_constraints.txt
+    #   -r requirements/base.in
+fastavro==1.9.7
     # via openedx-events
 fs==2.4.16
     # via xblock
-idna==3.6
+idna==3.10
     # via requests
-jinja2==3.1.3
+jinja2==3.1.4
     # via code-annotations
 jsonfield==3.1.0
     # via -r requirements/base.in
-kombu==5.3.6
+kombu==5.4.2
     # via celery
-lxml==5.2.1
+lxml==5.3.0
     # via xblock
-mako==1.3.2
+mako==1.3.5
     # via xblock
 markupsafe==2.1.5
     # via
     #   jinja2
     #   mako
     #   xblock
-newrelic==9.8.0
+newrelic==9.13.0
     # via edx-django-utils
-openedx-events==9.7.0
+openedx-events==9.14.1
     # via event-tracking
-pbr==6.0.0
+pbr==6.1.0
     # via stevedore
-prompt-toolkit==3.0.43
+prompt-toolkit==3.0.47
     # via click-repl
-psutil==5.9.8
+psutil==6.0.0
     # via edx-django-utils
 pycparser==2.22
     # via cffi
 pycryptodomex==3.20.0
     # via -r requirements/base.in
-pyjwt[crypto]==2.8.0
+pyjwt[crypto]==2.9.0
     # via
     #   -r requirements/base.in
     #   drf-jwt
@@ -178,56 +176,51 @@ python-dateutil==2.9.0.post0
     #   -r requirements/base.in
     #   celery
     #   xblock
-python-ipware==2.0.2
+python-ipware==3.0.0
     # via django-ipware
 python-slugify==8.0.4
     # via code-annotations
-pytz==2024.1
+pytz==2024.2
     # via
     #   -r requirements/base.in
     #   event-tracking
     #   xblock
-pyyaml==6.0.1
+pyyaml==6.0.2
     # via
     #   code-annotations
     #   xblock
-requests==2.31.0
+requests==2.32.3
     # via
     #   edx-drf-extensions
     #   edx-rest-api-client
-    #   slumber
-rules==3.3
+rules==3.5
     # via -r requirements/base.in
 semantic-version==2.10.0
     # via edx-drf-extensions
-simplejson==3.19.2
+simplejson==3.19.3
     # via xblock
 six==1.16.0
     # via
+    #   edx-ccx-keys
     #   event-tracking
     #   fs
     #   python-dateutil
-slumber==0.7.1
-    # via edx-rest-api-client
-sqlparse==0.4.4
+sqlparse==0.5.1
     # via django
-stevedore==5.2.0
+stevedore==5.3.0
     # via
     #   code-annotations
     #   edx-django-utils
     #   edx-opaque-keys
 text-unidecode==1.3
     # via python-slugify
-typing-extensions==4.11.0
+typing-extensions==4.12.2
+    # via edx-opaque-keys
+tzdata==2024.2
     # via
-    #   asgiref
-    #   edx-opaque-keys
-    #   kombu
-tzdata==2024.1
-    # via
-    #   backports-zoneinfo
     #   celery
-urllib3==2.2.1
+    #   kombu
+urllib3==2.2.3
     # via requests
 vine==5.1.0
     # via
@@ -238,9 +231,9 @@ wcwidth==0.2.13
     # via prompt-toolkit
 web-fragments==2.2.0
     # via xblock
-webob==1.8.7
+webob==1.8.8
     # via xblock
-xblock==3.1.0
+xblock==5.1.0
     # via edx-when
 
 # The following packages are considered to be unsafe in a requirements file:

diff --git a/requirements/celery50.txt b/requirements/celery50.txt
@@ -1,9 +1,9 @@
 amqp==5.2.0
-billiard==4.2.0
-celery==5.3.6
+billiard==4.2.1
+celery==5.4.0
 click==8.1.7
 click-didyoumean==0.3.1
 click-repl==0.3.0
-kombu==5.3.6
-prompt-toolkit==3.0.43
+kombu==5.4.2
+prompt-toolkit==3.0.47
 vine==5.1.0
diff --git a/requirements/ci.txt b/requirements/ci.txt
@@ -1,40 +1,36 @@
 #
-# This file is autogenerated by pip-compile with Python 3.8
+# This file is autogenerated by pip-compile with Python 3.11
 # by the following command:
 #
 #    make upgrade
 #
-cachetools==5.3.3
+cachetools==5.5.0
     # via tox
 chardet==5.2.0
     # via tox
 colorama==0.4.6
     # via tox
-coverage==7.4.4
+coverage==7.6.1
     # via -r requirements/ci.in
 distlib==0.3.8
     # via virtualenv
-filelock==3.13.3
+filelock==3.16.1
     # via
     #   tox
     #   virtualenv
-packaging==24.0
+packaging==24.1
     # via
     #   pyproject-api
     #   tox
-platformdirs==4.2.0
+platformdirs==4.3.6
     # via
     #   tox
     #   virtualenv
-pluggy==1.4.0
+pluggy==1.5.0
     # via tox
-pyproject-api==1.6.1
+pyproject-api==1.8.0
     # via tox
-tomli==2.0.1
-    # via
-    #   pyproject-api
-    #   tox
-tox==4.14.2
+tox==4.20.0
     # via -r requirements/ci.in
-virtualenv==20.25.1
+virtualenv==20.26.5
     # via tox
diff --git a/requirements/common_constraints.txt b/requirements/common_constraints.txt
@@ -22,16 +22,15 @@ Django<5.0
 
 # elasticsearch>=7.14.0 includes breaking changes in it which caused issues in discovery upgrade process.
 # elastic search changelog: https://www.elastic.co/guide/en/enterprise-search/master/release-notes-7.14.0.html
+# See https://github.com/openedx/edx-platform/issues/35126 for more info
 elasticsearch<7.14.0
 
 # django-simple-history>3.0.0 adds indexing and causes a lot of migrations to be affected
 
 
-# opentelemetry requires version 6.x at the moment:
-# https://github.com/open-telemetry/opentelemetry-python/issues/3570
-# Normally this could be added as a constraint in edx-django-utils, where we're
-# adding the opentelemetry dependency. However, when we compile pip-tools.txt,
-# that uses version 7.x, and then there's no undoing that when compiling base.txt.
-# So we need to pin it globally, for now.
-# Ticket for unpinning: https://github.com/openedx/edx-lint/issues/407
-importlib-metadata<7
+# Cause: https://github.com/openedx/event-tracking/pull/290
+# event-tracking 2.4.1 upgrades to pymongo 4.4.0 which is not supported on edx-platform.
+# We will pin event-tracking to do not break existing installations
+# This can be unpinned once https://github.com/openedx/edx-platform/issues/34586
+# has been resolved and edx-platform is running with pymongo>=4.4.0
+event-tracking<2.4.1