Update Python to 3.13 and bump various dependencies#488
Merged
Conversation
Signed-off-by: Johannes Ott <mail@johannes-ott.net>
Signed-off-by: Johannes Ott <mail@johannes-ott.net>
Bumps [pydantic](https://github.com/pydantic/pydantic) from 2.13.3 to 2.13.4. - [Release notes](https://github.com/pydantic/pydantic/releases) - [Changelog](https://github.com/pydantic/pydantic/blob/v2.13.4/HISTORY.md) - [Commits](pydantic/pydantic@v2.13.3...v2.13.4) --- updated-dependencies: - dependency-name: pydantic dependency-version: 2.13.4 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [fastapi](https://github.com/fastapi/fastapi) from 0.115.0 to 0.136.1. - [Release notes](https://github.com/fastapi/fastapi/releases) - [Commits](fastapi/fastapi@0.115.0...0.136.1) --- updated-dependencies: - dependency-name: fastapi dependency-version: 0.136.1 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [jasmine-core](https://github.com/jasmine/jasmine) from 5.1.2 to 6.2.0. - [Release notes](https://github.com/jasmine/jasmine/releases) - [Changelog](https://github.com/jasmine/jasmine/blob/main/RELEASE.md) - [Commits](jasmine/jasmine@v5.1.2...v6.2.0) --- updated-dependencies: - dependency-name: jasmine-core dependency-version: 6.2.0 dependency-type: direct:development update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [zone.js](https://github.com/angular/angular/tree/HEAD/packages/zone.js) from 0.15.1 to 0.16.2. - [Release notes](https://github.com/angular/angular/releases) - [Changelog](https://github.com/angular/angular/blob/main/packages/zone.js/CHANGELOG.md) - [Commits](https://github.com/angular/angular/commits/zone.js-0.16.2/packages/zone.js) --- updated-dependencies: - dependency-name: zone.js dependency-version: 0.16.2 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [@ngx-translate/http-loader](https://github.com/ngx-translate/core) from 16.0.1 to 17.0.0. - [Release notes](https://github.com/ngx-translate/core/releases) - [Commits](https://github.com/ngx-translate/core/commits/v17.0.0) --- updated-dependencies: - dependency-name: "@ngx-translate/http-loader" dependency-version: 17.0.0 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [autoprefixer](https://github.com/postcss/autoprefixer) from 10.4.27 to 10.5.0. - [Release notes](https://github.com/postcss/autoprefixer/releases) - [Changelog](https://github.com/postcss/autoprefixer/blob/main/CHANGELOG.md) - [Commits](postcss/autoprefixer@10.4.27...10.5.0) --- updated-dependencies: - dependency-name: autoprefixer dependency-version: 10.5.0 dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [karma-jasmine-html-reporter](https://github.com/dfederm/karma-jasmine-html-reporter) from 2.1.0 to 2.2.0. - [Release notes](https://github.com/dfederm/karma-jasmine-html-reporter/releases) - [Commits](dfederm/karma-jasmine-html-reporter@v2.1.0...v2.2.0) --- updated-dependencies: - dependency-name: karma-jasmine-html-reporter dependency-version: 2.2.0 dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [docker/metadata-action](https://github.com/docker/metadata-action) from 5 to 6. - [Release notes](https://github.com/docker/metadata-action/releases) - [Commits](docker/metadata-action@v5...v6) --- updated-dependencies: - dependency-name: docker/metadata-action dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [actions/checkout](https://github.com/actions/checkout) from 4 to 6. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@v4...v6) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 4 to 8. - [Release notes](https://github.com/actions/download-artifact/releases) - [Commits](actions/download-artifact@v4...v8) --- updated-dependencies: - dependency-name: actions/download-artifact dependency-version: '8' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 6 to 7. - [Release notes](https://github.com/docker/build-push-action/releases) - [Commits](docker/build-push-action@v6...v7) --- updated-dependencies: - dependency-name: docker/build-push-action dependency-version: '7' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [actions/github-script](https://github.com/actions/github-script) from 7 to 9. - [Release notes](https://github.com/actions/github-script/releases) - [Commits](actions/github-script@v7...v9) --- updated-dependencies: - dependency-name: actions/github-script dependency-version: '9' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [actions/setup-python](https://github.com/actions/setup-python) from 5 to 6. - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](actions/setup-python@v5...v6) --- updated-dependencies: - dependency-name: actions/setup-python dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
Bump pydantic from 2.13.3 to 2.13.4 in /core
Bump fastapi from 0.115.0 to 0.136.1 in /core
…s/setup-python-6 Bump actions/setup-python from 5 to 6
…/build-push-action-7 Bump docker/build-push-action from 6 to 7
…s/github-script-9 Bump actions/github-script from 7 to 9
Bumps [uvicorn](https://github.com/Kludex/uvicorn) from 0.31.1 to 0.46.0. - [Release notes](https://github.com/Kludex/uvicorn/releases) - [Changelog](https://github.com/Kludex/uvicorn/blob/main/docs/release-notes.md) - [Commits](Kludex/uvicorn@0.31.1...0.46.0) --- updated-dependencies: - dependency-name: uvicorn dependency-version: 0.46.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [loguru](https://github.com/Delgan/loguru) from 0.7.2 to 0.7.3. - [Release notes](https://github.com/Delgan/loguru/releases) - [Changelog](https://github.com/Delgan/loguru/blob/master/CHANGELOG.rst) - [Commits](Delgan/loguru@0.7.2...0.7.3) --- updated-dependencies: - dependency-name: loguru dependency-version: 0.7.3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [pandas](https://github.com/pandas-dev/pandas) from 3.0.2 to 3.0.3. - [Release notes](https://github.com/pandas-dev/pandas/releases) - [Commits](pandas-dev/pandas@v3.0.2...v3.0.3) --- updated-dependencies: - dependency-name: pandas dependency-version: 3.0.3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
…s/checkout-6 Bump actions/checkout from 4 to 6
…s/download-artifact-8 Bump actions/download-artifact from 4 to 8
…/metadata-action-6 Bump docker/metadata-action from 5 to 6
…-jasmine-html-reporter-2.2.0 Bump karma-jasmine-html-reporter from 2.1.0 to 2.2.0 in /ui
…efixer-10.5.0 Bump autoprefixer from 10.4.27 to 10.5.0 in /ui
…anslate/http-loader-17.0.0 Bump @ngx-translate/http-loader from 16.0.1 to 17.0.0 in /ui
…s-0.16.2 Bump zone.js from 0.15.1 to 0.16.2 in /ui
…e-core-6.2.0 Bump jasmine-core from 5.1.2 to 6.2.0 in /ui
Bump pandas from 3.0.2 to 3.0.3 in /core
Bump loguru from 0.7.2 to 0.7.3 in /core
Bump uvicorn from 0.31.1 to 0.46.0 in /core
…ailwind CSS imports Signed-off-by: Johannes Ott <mail@johannes-ott.net>
Signed-off-by: Johannes Ott <mail@johannes-ott.net>
Signed-off-by: Johannes Ott <mail@johannes-ott.net>
There was a problem hiding this comment.
Pull request overview
This PR modernizes the project toolchain and dependencies by upgrading the backend runtime to Python 3.13, updating CI/CD and Docker accordingly, and bumping several frontend dependencies while adjusting Angular i18n loader configuration and Tailwind integration.
Changes:
- Upgrade Python runtime targeting (Docker + packaging metadata) to Python 3.13 and update core Python dependency pins.
- Update GitHub Actions workflow versions/config and build matrix (Python 3.13; Node 24 already used for UI build).
- Bump UI dependencies and refactor ngx-translate HTTP loader configuration; adjust global styles Tailwind includes.
Reviewed changes
Copilot reviewed 9 out of 11 changed files in this pull request and generated 1 comment.
Show a summary per file
| File | Description |
|---|---|
| ui/src/styles.scss | Switch Tailwind + fonts includes to Sass @use syntax. |
| ui/src/app/app.module.ts | Update ngx-translate HTTP loader wiring to the newer http-loader API/token. |
| ui/package.json | Bump selected frontend dependencies (ngx-translate http-loader, zone.js, autoprefixer, jasmine, karma reporter). |
| ui/package-lock.json | Lockfile regeneration reflecting updated UI dependency graph. |
| docker/Dockerfile | Move runtime/build images to Python 3.13. |
| core/setup.py | Update package metadata/classifiers and python_requires to 3.13+. |
| core/requirements.txt | Bump core Python dependency pins to newer versions. |
| .gitignore | Minor cleanup (remove trailing blank line). |
| .github/workflows/build_project.yml | Update action versions, set Python matrix to 3.13, and adjust release conditions/permissions. |
| .devcontainer/devcontainer.json | Update devcontainer image/features for Python 3.13 + Node 24 and newer feature sources. |
| .devcontainer/devcontainer-lock.json | Add devcontainer feature lockfile for reproducible feature versions. |
Files not reviewed (1)
- ui/package-lock.json: Language not supported
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
Comment on lines
+7
to
9
| "ghcr.io/devcontainers/features/python:1": { | ||
| "version": "3.13" | ||
| }, |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
This pull request introduces several important updates to modernize the development environment, dependencies, and workflows for both the backend and frontend. The main focus is on upgrading the Python and Node.js versions, updating related dependencies, and aligning the CI/CD pipeline and Docker setup accordingly. Additionally, there are improvements to Angular and Tailwind CSS integration in the frontend.
Development Environment and Dependency Upgrades
.devcontainer, Docker, and CI/CD workflows, and updated the Node.js version to 24. This includes updating the devcontainer images and features, as well as the Python and Node.js setup in the GitHub Actions workflows. [1] [2] [3] [4] [5] [6]core/requirements.txt, includingfastapi,loguru,numpy,pandas,PyJWT,scikit-learn, anduvicorn.CI/CD Workflow Improvements
.github/workflows/build_project.ymlfor enhanced security and compatibility (actions/checkout,actions/github-script,actions/download-artifact,actions/setup-python,docker/metadata-action,docker/build-push-action). Also updated the Python version matrix and release conditions to use Python 3.13. [1] [2] [3] [4] [5] [6]Frontend Dependency and Build Updates
ui/package.json, including@ngx-translate/http-loader,zone.js,autoprefixer,jasmine-core, andkarma-jasmine-html-reporter. [1] [2]Frontend Code and Integration Enhancements
ui/src/app/app.module.tsto use the newTRANSLATE_HTTP_LOADER_CONFIGandTranslateHttpLoaderclass, simplifying configuration and aligning with the updated package API. [1] [2] [3] [4]ui/src/styles.scssfrom@importto the recommended@usesyntax, improving style encapsulation and compatibility with newer versions.