Skip to content

Bump redis from 5.2.1 to 6.1.0 in /backend #3

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 2 commits into from
Closed

Bump redis from 5.2.1 to 6.1.0 in /backend #3

wants to merge 2 commits into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github May 23, 2025

Bumps redis from 5.2.1 to 6.1.0.

Release notes

Sourced from redis's releases.

6.1.0

Changes

🚀 New Features

  • Support for transactions in RedisCluster client (#3611)
  • Add equality and hashability to Retry and backoff classes (#3628)

🐛 Bug Fixes

  • Fix RedisCluster ssl_check_hostname not set to connections. For SSL verification with ssl_cert_reqs="none", check_hostname is set to False (#3637)
  • Prevent RuntimeError while reinitializing clusters - sync and async (#3633)
  • Add equality and hashability to Retry and backoff classes (#3628) - fixes integration with Django RQ
  • Fix AttributeError on ClusterPipeline (#3634)

🧰 Maintenance

  • Updating the readme and lib version to contain the changes from the latest stable release (#3644)
  • Export REDIS_MAJOR_VERSION correctly in run-tests (#3642)
  • Fix matrix in hiredis-py-integration.yaml (#3641)
  • Test against unstable hiredis-py (#3617)
  • Adding return types for the RedisModuleCommands class (#3632)
  • Updating Redis 8 test image for GH pipeline (#3639)
  • Allow newer PyJWT versions (#3636)
  • Change type hints with possible None args or return types to be annotated with Optional - includes commands in core.py and json commands (#3610)

🙏 Special Thanks

A big thank you to our collaborators at Scopely for their valuable contributions to this release! Your support and improvements help move the project forward — we appreciate it!

Contributors

We'd like to thank all the contributors who worked on this release! @​robertosantamaria-scopely @​sentrivana @​terencehonles @​kesha1225 @​aberres @​uglide @​omerfeyzioglu @​petyaslavova @​vladvildanov @​andy-stark-redis

6.0.0

Changes

🚀 New Features

  • New hash commands with expiration options support are added - HGETDEL, HGETEX, HSETEX (#3570)
  • Adds option not to raise an exception when leaving context manager after lock expiration (#3531)
  • Add force_master_ip support to async Sentinel client (#3524)

🧪 Experimental Features

  • Adding VectorSet commands support. (#3584)

🔥 Breaking changes

  • Changing the default value for ssl_check_hostname to True, to ensure security validations are not skipped by default (#3626) Important: When connecting to a Redis master via Sentinel, you may need to set ssl_check_hostname=False if the Sentinel service is not configured to return hostnames. Refer to [issue #3629](https://github.com/redis/redis-py/releases/edit/v6.0.0#3629) for more details.
  • Updated default value of 'require_full_coverage' argument to true for sync Cluster client to match sync/async cluster APIs (#3434)
  • Adding default retry configuration changes for cluster clients (#3622) Important: When instantiating a cluster client retry object becomes mandatory.
    • If retry object is not provided a default one is created with ExponentialWithJitterBackoff strategy and number of retries synced with 'cluster_error_retry_attempts'
    • In case a retry object is provided, its number of retries will be used for cluster operations number of retries and 'cluster_error_retry_attempts' will be ignored

... (truncated)

Commits
  • 3331a42 Adding comment for the lib version in init.py (to force ci pipeline execu...
  • def589d Fix Readme formatting for Installation section
  • 0d28291 Updating the readme and lib version to contain the changes from the latest st...
  • e9f22dd Fix RedisCluster ssl_check_hostname not set to connections. For SSL verifica...
  • 91be4a0 Multi exec on cluster (#3611)
  • 02b2ab6 Export REDIS_MAJOR_VERSION correctly in run-tests (#3642)
  • 92e2ff7 Fix matrix in hiredis-py-integration.yaml (#3641)
  • 7130e1a Test against unstable hiredis-py (#3617)
  • 4fd1100 Adding return types for the RedisModuleCommands class (#3632)
  • e13c42b Prevent RuntimeError while reinitializing clusters - sync and async (#3633)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump redis from 5.2.1 to 6.1.0 in /backend
28ecc07 
Bumps [redis](https://github.com/redis/redis-py) from 5.2.1 to 6.1.0.
- [Release notes](https://github.com/redis/redis-py/releases)
- [Changelog](https://github.com/redis/redis-py/blob/master/CHANGES)
- [Commits](redis/redis-py@v5.2.1...v6.1.0)

---
updated-dependencies:
- dependency-name: redis
  dependency-version: 6.1.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github May 23, 2025

Assignees

The following users could not be added as assignees: Randroids-Dojo. Either the username does not exist or it does not have the correct permissions to be added as an assignee.

Labels

The following labels could not be found: backend, dependencies. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

randroid88 pushed a commit that referenced this pull request May 23, 2025
@claude
Combine all Dependabot dependency updates
390f39a 
This commit combines all open Dependabot PRs into a single update:

Backend (Python):
- python-dotenv: 1.0.1 → 1.1.0 (PR #2)
- pydantic-settings: 2.7.1 → 2.9.1 (PR #2)
- python-jose[cryptography]: 3.3.0 → 3.4.0 (PR #2)
- redis: 5.2.1 → 6.1.0 (PR #3)
- Python Docker image: 3.12-slim → 3.13-slim (PR #7)

Frontend:
- tailwindcss: 3.4.17 → 4.1.7 (PR #5)
- Node.js Docker image: 22-alpine → 24-alpine (PR #8)

Auth Service:
- express: 4.21.2 → 5.1.0 (PR #4)
- Node.js Docker image: 22-alpine → 24-alpine (PR #6)

These updates include:
- Security fixes (CVE-2024-33664, CVE-2024-33663 in python-jose)
- Performance improvements
- Support for newer Python and Node.js versions
- Bug fixes and stability improvements

Closes #2, #3, #4, #5, #6, #7, #8

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <noreply@anthropic.com>
@randroid88 randroid88 mentioned this pull request May 23, 2025
Merged
5 tasks
@randroid88
Copy link
Contributor

Superseded by #9 which combines all dependency updates

@randroid88 randroid88 closed this May 23, 2025
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github May 23, 2025

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

@dependabot dependabot bot deleted the dependabot/pip/backend/redis-6.1.0 branch May 23, 2025 06:39
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@randroid88