Skip to content

chore(deps-dev): update sqlalchemy-exasol requirement from <3.0,>=2.4.0 to >=2.4.0,<8.0#40182

Merged
rusackas merged 1 commit into
masterfrom
dependabot/pip/sqlalchemy-exasol-gte-2.4.0-and-lt-8.0
May 17, 2026
Merged

chore(deps-dev): update sqlalchemy-exasol requirement from <3.0,>=2.4.0 to >=2.4.0,<8.0#40182
rusackas merged 1 commit into
masterfrom
dependabot/pip/sqlalchemy-exasol-gte-2.4.0-and-lt-8.0

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 16, 2026

Updates the requirements on sqlalchemy-exasol to permit the latest version.

Release notes

Sourced from sqlalchemy-exasol's releases.

7.0.0 - 2026-04-30

Summary

This major release adds support for DLT and also improves the exceptions to be PEP-249 compliant.

Features

  • #671: Added DLT support
    • Adds an exception handler for PyExasol errors bubbling up and converts them to proper PEP-249 exceptions.
    • Maps sqlalchemy DATETIME type to Exasol TIMESTAMP.
    • Formats datetime so it works within DLT.
    • Binary types such as UUINT, BLOB, BINARY and VARBINARY now throw a clear error when used.

Security Issues

This release fixes vulnerabilities by updating dependencies:

Dependency Vulnerability Affected Fixed in
black CVE-2026-32274 25.12.0 26.3.1
cryptography CVE-2026-34073 46.0.5 46.0.6
cryptography CVE-2026-39892 46.0.5 46.0.7
requests CVE-2026-25645 2.32.5 2.33.0
pygments CVE-2026-4539 2.19.2 2.20.0
python-dotenv CVE-2026-28684 1.2.1 1.2.2
  • #733: Fixed vulnerabilities by re-locking transitive dependencies
  • #736: Fixed vulnerabilities by re-locking transitive dependencies & updated to exasol-toolbox 7.0.0

Dependency Updates

dev

  • Updated dependency exasol-toolbox:6.0.0 to 7.0.0
  • Updated dependency pytest-exasol-backend:1.2.4 to 1.4.0
Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
chore(deps-dev): update sqlalchemy-exasol requirement
24152f2 
Updates the requirements on [sqlalchemy-exasol](https://github.com/exasol/sqlalchemy-exasol) to permit the latest version.
- [Release notes](https://github.com/exasol/sqlalchemy-exasol/releases)
- [Commits](exasol/sqlalchemy-exasol@2.4.0...7.0.0)

---
updated-dependencies:
- dependency-name: sqlalchemy-exasol
  dependency-version: 7.0.0
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot Bot commented on behalf of github May 16, 2026

Labels

The following labels could not be found: pip. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

@dosubot dosubot Bot added data:connect:exasol Related to Exasol dependencies:python risk:breaking-change Issues or PRs that will introduce breaking changes labels May 16, 2026
@bito-code-review
Copy link
Copy Markdown
Contributor

bito-code-review Bot commented May 16, 2026
edited
Loading

Code Review Agent Run #431aec

Actionable Suggestions - 0
Review Details
  • Files reviewed - 1 · Commit Range: 24152f2..24152f2
    • pyproject.toml
  • Files skipped - 0
  • Tools
    • Whispers (Secret Scanner) - ✔︎ Successful
    • Detect-secrets (Secret Scanner) - ✔︎ Successful
Bito Usage Guide

Commands

Type the following command in the pull request comment and save the comment.

  • /review - Manually triggers a full AI review.

  • /pause - Pauses automatic reviews on this pull request.

  • /resume - Resumes automatic reviews.

  • /resolve - Marks all Bito-posted review comments as resolved.

  • /abort - Cancels all in-progress reviews.

Refer to the documentation for additional commands.

Configuration

This repository uses Superset You can customize the agent settings here or contact your Bito workspace admin at evan@preset.io.

Documentation & Help

AI Code Review powered by Bito Logo

@rusackas rusackas merged commit dd4e2e2 into master May 17, 2026
66 of 69 checks passed
@rusackas rusackas deleted the dependabot/pip/sqlalchemy-exasol-gte-2.4.0-and-lt-8.0 branch May 17, 2026 17:24
kasiazjc pushed a commit that referenced this pull request May 26, 2026
@dependabot @kasiazjc
chore(deps-dev): update sqlalchemy-exasol requirement from <3.0,>=2.4…
f83be77 
….0 to >=2.4.0,<8.0 (#40182)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@rusackas rusackas rusackas approved these changes

Assignees

No one assigned

Labels

data:connect:exasol Related to Exasol dependabot risk:breaking-change Issues or PRs that will introduce breaking changes size/XS

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@rusackas