chore(deps): bump marshmallow from 3.26.2 to 4.3.0#39751
chore(deps): bump marshmallow from 3.26.2 to 4.3.0#39751dependabot[bot] wants to merge 1 commit into
Conversation
LabelsThe following labels could not be found: Please fix the above issues or remove invalid values from |
Code Review Agent Run #01009fActionable Suggestions - 0Review Details
Bito Usage GuideCommands Type the following command in the pull request comment and save the comment.
Refer to the documentation for additional commands. Configuration This repository uses Documentation & Help AI Code Review powered by |
rusackas
requested review from
betodealmeida,
Copilot,
michael-s-molina and
villebro
dependabot
Bot
force-pushed
the
dependabot/pip/marshmallow-4.3.0
branch
from
ff090bd to
9fdc81d
Compare
| @@ -68,7 +68,7 @@ dependencies = [ | |||
| "Mako>=1.2.2", | |||
| "markdown>=3.0", | |||
| # marshmallow>=4 has issues: https://github.com/apache/superset/issues/33162 | |||
There was a problem hiding this comment.
The comment says marshmallow>=4 has known issues (linking to #33162), but the dependency range is now relaxed to allow marshmallow 4.x (<5). Either update/remove this comment with a rationale/updated link (e.g., if the issue is resolved), or keep the upper bound at <4 if the issue still applies—right now the comment contradicts the constraint.
| # marshmallow>=4 has issues: https://github.com/apache/superset/issues/33162 |
| "markdown>=3.0", | ||
| # marshmallow>=4 has issues: https://github.com/apache/superset/issues/33162 | ||
| "marshmallow>=3.0, <4", | ||
| "marshmallow>=3.0, <5", |
There was a problem hiding this comment.
This PR claims to bump marshmallow to 4.3.0, but the repo’s pinned requirements (used by CI/CD and Docker) are generated into requirements/*.txt and currently still pin marshmallow==3.26.2. To make the bump effective, regenerate and commit the pinned requirements (e.g., run ./scripts/uv-pip-compile.sh) so CI/Docker actually test and ship marshmallow 4.3.0.
Code Review Agent Run #c13c24Actionable Suggestions - 0Review Details
Bito Usage GuideCommands Type the following command in the pull request comment and save the comment.
Refer to the documentation for additional commands. Configuration This repository uses Documentation & Help AI Code Review powered by |
Bumps [marshmallow](https://github.com/marshmallow-code/marshmallow) from 3.26.2 to 4.3.0. - [Changelog](https://github.com/marshmallow-code/marshmallow/blob/dev/CHANGELOG.rst) - [Commits](marshmallow-code/marshmallow@3.26.2...4.3.0) --- updated-dependencies: - dependency-name: marshmallow dependency-version: 4.3.0 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
Bot
force-pushed
the
dependabot/pip/marshmallow-4.3.0
branch
from
9fdc81d to
cd8c41d
Compare
Code Review Agent Run #e50290Actionable Suggestions - 0Review Details
Bito Usage GuideCommands Type the following command in the pull request comment and save the comment.
Refer to the documentation for additional commands. Configuration This repository uses Documentation & Help AI Code Review powered by |
Bumps marshmallow from 3.26.2 to 4.3.0.
Changelog
Sourced from marshmallow's changelog.
... (truncated)
Commits
b596fdbBump version and update changelog256f0aaAdd pre/post_load parameters to Field (#2799)c847ad4Typing improvements to marshmallow.validate (#2940)eb86322Remove redundant docs job (#2939)a44ad62Avoid infinite recursion in nesting docs (#2938)3360e34Bump version and update changelog7b9ce45Fix changelog typos and update releasing docsf07eadcFix validate.Email to accept IDNs (#2937)4acb783Fix Unreachable Warning (#2935)3492faeRemove redundant python-version (#2932)