chore(deps): update fastapi requirement from >=0.100.0 to >=0.136.1#8
chore(deps): update fastapi requirement from >=0.100.0 to >=0.136.1#8dependabot[bot] wants to merge 1 commit into
Conversation
Updates the requirements on [fastapi](https://github.com/fastapi/fastapi) to permit the latest version. - [Release notes](https://github.com/fastapi/fastapi/releases) - [Commits](fastapi/fastapi@0.100.0...0.136.1) --- updated-dependencies: - dependency-name: fastapi dependency-version: 0.136.1 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>
LabelsThe following labels could not be found: Please fix the above issues or remove invalid values from |
Fermeture de cette PR — Découverte d'une dépendance morteLors de l'analyse de cette PR (dans le cadre d'une revue manuelle des PR dependabot du repo), il a été découvert que Vérifications effectuées# 1. Imports directs dans src/ et scripts/
$ grep -rE "^(from|import) (fastapi|starlette)" --include="*.py" src/ scripts/
# → Aucun résultat
# 2. Required-by selon pip
$ pip show fastapi | grep Required-by
Required-by: # vide
# 3. Dépendance transitive du SDK mcp ?
$ pip show mcp | grep Requires
Requires: anyio, httpx, httpx-sse, jsonschema, pydantic, pydantic-settings, pyjwt, python-multipart, sse-starlette, starlette, typing-extensions, typing-inspection, uvicorn
# → Pas de fastapi dans les requiresArchitecture réelle
DécisionPlutôt que de bumper une dépendance morte de 0.100.0 → 0.136.1, la dépendance sera supprimée dans le cadre de l'issue #9 (audit des dépendances inutilisées).
|
|
OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting If you change your mind, just re-open this PR and I'll resolve any conflicts on it. |
Release patch consolidant les 4 mises à jour de dépendances Dependabot mergées en main : - boto3 >=1.42.97 (#6) - pydantic-settings >=2.14.0 (#7) - python-multipart >=0.0.27 (#5) - rich >=15.0.0 (#4) Aucun changement applicatif, aucune modification d'API. Recette à 150/150 tests verts. 30 outils MCP inchangés. PR Dependabot fermées sans merge : - #8 (fastapi <0.110.0) : version cible morte → issue #9 ouverte - #3 (Python 3.14) : prématuré (wheels manquantes) → issue #10 ouverte Bump VERSION 2.1.1 → 2.1.2 + entrée CHANGELOG + références dans README.md, README.en.md et DESIGN/SPECIFICATION.md.
1 participant
Updates the requirements on fastapi to permit the latest version.
Release notes
Sourced from fastapi's releases.
Commits
e54e5a8🔖 Release version 0.136.19a8a5fd📝 Update release notes7815a32⬆️ Update Pydantic v2 code to address deprecations (#15101)ef1c927📝 Update release notes38039e1🔨 Tweak translation script (#15174)4fa826c📝 Update release notesc394156⬆ Bump mkdocs-material from 9.7.1 to 9.7.6 (#15408)ae230ad📝 Update release notesd9eb39d⬆ Bump inline-snapshot from 0.31.1 to 0.32.6 (#15409)4f8b5d1📝 Update release notesDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)