From 68836cb7bea458c0f2d2e1d681cf5386611a78c8 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 10 Nov 2025 03:01:51 +0000 Subject: [PATCH 01/11] chore(deps): bump mkdocs-material in the mkdocs group Bumps the mkdocs group with 1 update: [mkdocs-material](https://github.com/squidfunk/mkdocs-material). Updates `mkdocs-material` from 9.6.22 to 9.6.23 - [Release notes](https://github.com/squidfunk/mkdocs-material/releases) - [Changelog](https://github.com/squidfunk/mkdocs-material/blob/master/CHANGELOG) - [Commits](https://github.com/squidfunk/mkdocs-material/compare/9.6.22...9.6.23) --- updated-dependencies: - dependency-name: mkdocs-material dependency-version: 9.6.23 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: mkdocs ... Signed-off-by: dependabot[bot] --- docs/requirements-docs.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/requirements-docs.txt b/docs/requirements-docs.txt index 05a8699dfe9..ad158c88b76 100644 --- a/docs/requirements-docs.txt +++ b/docs/requirements-docs.txt @@ -1,6 +1,6 @@ markdown==3.9 mkdocs==1.6.1 -mkdocs-material==9.6.22 +mkdocs-material==9.6.23 mdx_truly_sane_lists==1.3 pymdown-extensions==10.16.1 jinja2==3.1.6 From c6bf0e18434a1f7476ebcc6ad1ab6a7cf6492a23 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 10 Nov 2025 03:02:04 +0000 Subject: [PATCH 02/11] chore(deps): bump plotly from 6.3.1 to 6.4.0 Bumps [plotly](https://github.com/plotly/plotly.py) from 6.3.1 to 6.4.0. - [Release notes](https://github.com/plotly/plotly.py/releases) - [Changelog](https://github.com/plotly/plotly.py/blob/main/CHANGELOG.md) - [Commits](https://github.com/plotly/plotly.py/compare/v6.3.1...v6.4.0) --- updated-dependencies: - dependency-name: plotly dependency-version: 6.4.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- requirements-plot.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements-plot.txt b/requirements-plot.txt index ff1f22873d8..858077929c0 100644 --- a/requirements-plot.txt +++ b/requirements-plot.txt @@ -1,4 +1,4 @@ # Include all requirements to run the bot. -r requirements.txt -plotly==6.3.1 +plotly==6.4.0 From f22feb7dee16c32a61a2457b5d2d692a348dc78f Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 10 Nov 2025 03:02:07 +0000 Subject: [PATCH 03/11] chore(deps): bump docker/setup-qemu-action from 3.6.0 to 3.7.0 Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action) from 3.6.0 to 3.7.0. - [Release notes](https://github.com/docker/setup-qemu-action/releases) - [Commits](https://github.com/docker/setup-qemu-action/compare/29109295f81e9208d7d86ff1c6c12d2833863392...c7c53464625b32c7a7e944ae62b3e17d2b600130) --- updated-dependencies: - dependency-name: docker/setup-qemu-action dependency-version: 3.7.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- .github/workflows/docker-build.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/docker-build.yml b/.github/workflows/docker-build.yml index 08dcfd9bd18..b9faa7b75d0 100644 --- a/.github/workflows/docker-build.yml +++ b/.github/workflows/docker-build.yml @@ -48,7 +48,7 @@ jobs: password: ${{ secrets.DOCKER_PASSWORD }} - name: Set up QEMU - uses: docker/setup-qemu-action@29109295f81e9208d7d86ff1c6c12d2833863392 # v3.6.0 + uses: docker/setup-qemu-action@c7c53464625b32c7a7e944ae62b3e17d2b600130 # v3.7.0 with: cache-image: false From 728d2c9bcb0a64dcc7f687048a7030ddf32b8d78 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 10 Nov 2025 03:02:16 +0000 Subject: [PATCH 04/11] chore(deps): bump psutil from 7.1.2 to 7.1.3 Bumps [psutil](https://github.com/giampaolo/psutil) from 7.1.2 to 7.1.3. - [Changelog](https://github.com/giampaolo/psutil/blob/master/HISTORY.rst) - [Commits](https://github.com/giampaolo/psutil/compare/release-7.1.2...release-7.1.3) --- updated-dependencies: - dependency-name: psutil dependency-version: 7.1.3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 4f5e26edc83..7717bf32d4a 100644 --- a/requirements.txt +++ b/requirements.txt @@ -44,7 +44,7 @@ pydantic==2.12.3 uvicorn==0.38.0 pyjwt==2.10.1 aiofiles==25.1.0 -psutil==7.1.2 +psutil==7.1.3 # Building config files interactively questionary==2.1.1 From 0eb206c7b303b11ed61189422bfdeb0c3a0ff0d6 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 10 Nov 2025 03:02:27 +0000 Subject: [PATCH 05/11] chore(deps-dev): bump ruff from 0.14.2 to 0.14.3 Bumps [ruff](https://github.com/astral-sh/ruff) from 0.14.2 to 0.14.3. - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/0.14.2...0.14.3) --- updated-dependencies: - dependency-name: ruff dependency-version: 0.14.3 dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements-dev.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements-dev.txt b/requirements-dev.txt index c368887679d..c8eb4ccb8fc 100644 --- a/requirements-dev.txt +++ b/requirements-dev.txt @@ -6,7 +6,7 @@ -r requirements-freqai-rl.txt -r docs/requirements-docs.txt -ruff==0.14.2 +ruff==0.14.3 mypy==1.18.2 pre-commit==4.3.0 pytest==8.4.2 From 7189c0ff356831ffda6b89bca715afe23d048f56 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 10 Nov 2025 03:02:34 +0000 Subject: [PATCH 06/11] chore(deps): bump pydantic from 2.12.3 to 2.12.4 Bumps [pydantic](https://github.com/pydantic/pydantic) from 2.12.3 to 2.12.4. - [Release notes](https://github.com/pydantic/pydantic/releases) - [Changelog](https://github.com/pydantic/pydantic/blob/v2.12.4/HISTORY.md) - [Commits](https://github.com/pydantic/pydantic/compare/v2.12.3...v2.12.4) --- updated-dependencies: - dependency-name: pydantic dependency-version: 2.12.4 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 4f5e26edc83..6aaa3f61d32 100644 --- a/requirements.txt +++ b/requirements.txt @@ -40,7 +40,7 @@ sdnotify==0.3.2 # API Server fastapi==0.120.2 -pydantic==2.12.3 +pydantic==2.12.4 uvicorn==0.38.0 pyjwt==2.10.1 aiofiles==25.1.0 From 40b9a836ebdc5a58a5418475947233d6b0c6cf48 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 10 Nov 2025 03:02:44 +0000 Subject: [PATCH 07/11] chore(deps): bump gymnasium from 1.2.1 to 1.2.2 Bumps [gymnasium](https://github.com/Farama-Foundation/Gymnasium) from 1.2.1 to 1.2.2. - [Release notes](https://github.com/Farama-Foundation/Gymnasium/releases) - [Commits](https://github.com/Farama-Foundation/Gymnasium/compare/v1.2.1...v1.2.2) --- updated-dependencies: - dependency-name: gymnasium dependency-version: 1.2.2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements-freqai-rl.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements-freqai-rl.txt b/requirements-freqai-rl.txt index b077300df93..69918710fc5 100644 --- a/requirements-freqai-rl.txt +++ b/requirements-freqai-rl.txt @@ -3,7 +3,7 @@ # Required for freqai-rl torch==2.9.0; sys_platform != 'darwin' or platform_machine != 'x86_64' -gymnasium==1.2.1 +gymnasium==1.2.2 # SB3 >=2.5.0 depends on torch 2.3.0 - which implies it dropped support x86 macos stable_baselines3==2.7.0; sys_platform != 'darwin' or platform_machine != 'x86_64' sb3_contrib>=2.2.1; sys_platform != 'darwin' or platform_machine != 'x86_64' From 35fb598017b6a967250d97944d2c267927e90e99 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 10 Nov 2025 03:02:56 +0000 Subject: [PATCH 08/11] chore(deps): bump markdown from 3.9 to 3.10 Bumps [markdown](https://github.com/Python-Markdown/markdown) from 3.9 to 3.10. - [Release notes](https://github.com/Python-Markdown/markdown/releases) - [Changelog](https://github.com/Python-Markdown/markdown/blob/master/docs/changelog.md) - [Commits](https://github.com/Python-Markdown/markdown/compare/3.9.0...3.10.0) --- updated-dependencies: - dependency-name: markdown dependency-version: '3.10' dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- docs/requirements-docs.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/requirements-docs.txt b/docs/requirements-docs.txt index 05a8699dfe9..42d0615d7f9 100644 --- a/docs/requirements-docs.txt +++ b/docs/requirements-docs.txt @@ -1,4 +1,4 @@ -markdown==3.9 +markdown==3.10 mkdocs==1.6.1 mkdocs-material==9.6.22 mdx_truly_sane_lists==1.3 From 73f91eab15530e0d04058194d285843367defeee Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 10 Nov 2025 03:03:06 +0000 Subject: [PATCH 09/11] chore(deps): bump ccxt from 4.5.16 to 4.5.17 Bumps [ccxt](https://github.com/ccxt/ccxt) from 4.5.16 to 4.5.17. - [Release notes](https://github.com/ccxt/ccxt/releases) - [Changelog](https://github.com/ccxt/ccxt/blob/master/exchanges.cfg) - [Commits](https://github.com/ccxt/ccxt/compare/v4.5.16...v4.5.17) --- updated-dependencies: - dependency-name: ccxt dependency-version: 4.5.17 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 4f5e26edc83..96209ff9458 100644 --- a/requirements.txt +++ b/requirements.txt @@ -7,7 +7,7 @@ ft-pandas-ta==0.3.16 ta-lib==0.6.8 technical==1.5.3 -ccxt==4.5.16 +ccxt==4.5.17 # for fast ECDSA signatures/verification coincurve==21.0.0 cryptography==46.0.3 From 9fa9f0860ca14a4bae0db2a9f1c20f9bf3ccf32f Mon Sep 17 00:00:00 2001 From: Matthias Date: Mon, 10 Nov 2025 06:43:05 +0100 Subject: [PATCH 10/11] chore: remove coincurve - ccxt depends directly on it --- requirements.txt | 2 -- 1 file changed, 2 deletions(-) diff --git a/requirements.txt b/requirements.txt index 96209ff9458..dfeaecc80dd 100644 --- a/requirements.txt +++ b/requirements.txt @@ -8,8 +8,6 @@ ta-lib==0.6.8 technical==1.5.3 ccxt==4.5.17 -# for fast ECDSA signatures/verification -coincurve==21.0.0 cryptography==46.0.3 aiohttp==3.13.2 SQLAlchemy==2.0.44 From 625629b9db734fb5ca9673a2dfad267ae5ea1adf Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 10 Nov 2025 05:48:14 +0000 Subject: [PATCH 11/11] chore(deps): bump fastapi from 0.120.2 to 0.121.0 Bumps [fastapi](https://github.com/fastapi/fastapi) from 0.120.2 to 0.121.0. - [Release notes](https://github.com/fastapi/fastapi/releases) - [Commits](https://github.com/fastapi/fastapi/compare/0.120.2...0.121.0) --- updated-dependencies: - dependency-name: fastapi dependency-version: 0.121.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index fe0c0228d0d..7c2ff06f1be 100644 --- a/requirements.txt +++ b/requirements.txt @@ -39,7 +39,7 @@ orjson==3.11.4 sdnotify==0.3.2 # API Server -fastapi==0.120.2 +fastapi==0.121.0 pydantic==2.12.4 uvicorn==0.38.0 pyjwt==2.10.1