Skip to content

Bump the pip group across 1 directory with 3 updates#2

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/pip/pip-1fdc326e01
Closed

Bump the pip group across 1 directory with 3 updates#2
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/pip/pip-1fdc326e01

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 6, 2026

Copy link
Copy Markdown
Contributor

Bumps the pip group with 3 updates in the / directory: langgraph, langchain-core and pytest.

Updates langgraph from 0.2.60 to 1.0.10rc1

Release notes

Sourced from langgraph's releases.

langgraph==1.0.10rc1

Changes since 1.0.9

  • release: Candidate (#6947)
  • Merge commit from fork
  • chore: add tests to confirm expected subgraph persistence behavior (#6943)
  • fix(langgraph): correct ParentCommand bubbling when checkpoint_ns includes numeric task segments (#6864)
  • chore: add make type target for type checking (#6748)

langgraph==1.0.9

Changes since 1.0.8

  • release: langgraph + prebuilt (#6875)
  • fix: sequential interrupt handling w/ functional API (#6863)
  • chore: state_updated_at sort by (#6857)
  • chore: bump orjson (#6852)
  • chore: conformance testing (#6842)
  • chore(deps): bump the all-dependencies group in /libs/langgraph with 6 updates (#6815)
  • chore(deps): bump protobuf from 6.33.4 to 6.33.5 in /libs/langgraph (#6833)
  • chore(deps): bump cryptography from 46.0.3 to 46.0.5 in /libs/langgraph (#6837)
  • chore(deps): bump nbconvert from 7.16.6 to 7.17.0 in /libs/langgraph (#6832)
  • chore: server runtime type (#6774)
  • refactor: replace bare except with BaseException in AsyncQueue (#6765)

langgraph-prebuilt==1.0.9

Changes since prebuilt==1.0.8

  • release: prebuilt 1.0.9 and langgraph 1.1.5 (#7401)
  • feat: enhance runtime w/ more execution information (#7363)
  • fix: tool node injection bug (#7391)
  • release(langgraph): 1.1.4 (#7356)
  • chore(deps): bump pygments from 2.19.2 to 2.20.0 in /libs/prebuilt (#7354)
  • chore(deps): bump langchain-core from 1.2.20 to 1.2.22 in /libs/prebuilt in the minor-and-patch group (#7289)
  • chore(deps): bump requests from 2.32.5 to 2.33.0 in /libs/prebuilt (#7281)
  • chore(deps): bump the all-dependencies group in /libs/prebuilt with 2 updates (#7247)
  • release(checkpoint-postgres): 3.0.5 (#7221)
  • release(langgraph): 1.1.3 (#7215)
  • chore(deps): bump the all-dependencies group in /libs/sdk-py with 2 updates (#7197)
  • chore(deps): bump the all-dependencies group in /libs/prebuilt with 2 updates (#7196)
  • chore(deps): bump orjson from 3.11.5 to 3.11.6 in /libs/prebuilt (#7145)
  • release(langgraph): 1.1.2 (#7135)
  • release(langgraph): 1.1.1 (#7120)
  • release(langgraph): 1.1 (#7102)
  • chore(deps): bump the all-dependencies group across 1 directory with 3 updates (#7072)
  • chore(deps): bump the all-dependencies group across 1 directory with 4 updates (#7073)
  • release(langgraph) 1.0.10 (#6967)
  • release(checkpoint): 0.4.1 (#6966)
  • chore: add serde events (#6954)
  • chore: update defaults (#6953)
  • release: rc2 (#6949)

... (truncated)

Commits
  • a04ec5d release: Candidate (#6947)
  • 50df7d4 Merge commit from fork
  • c4a4a46 chore: add tests to confirm expected subgraph persistence behavior (#6943)
  • f178eb8 fix(langgraph): correct ParentCommand bubbling when checkpoint_ns includes nu...
  • 48167d7 chore(deps): bump the all-dependencies group in /libs/cli with 2 updates (#6920)
  • 806878a chore(deps): bump the all-dependencies group in /libs/checkpoint-postgres wit...
  • 8087e6a docs(sdk-py): update auth docstrings to default-deny pattern (#6933)
  • 8fbdb14 release(sdk-py): 0.3.9 (#6932)
  • 5093802 chore(deps): bump the all-dependencies group in /libs/checkpoint with 2 updat...
  • b89ef60 feat(sdk-py): add extract parameter to threads.search() (#6880)
  • Additional commits viewable in compare view

Updates langchain-core from 0.3.30 to 1.3.3

Release notes

Sourced from langchain-core's releases.

langchain-core==1.3.3

Changes since langchain-core==1.3.2

release(core): 1.3.3 (#37198) fix(core): set deprecation since to 1.3.3 to match release (#37200) fix(core, langchain): harden load() against untrusted manifests (#37197) chore: bump notebook from 7.5.0 to 7.5.6 in /libs/core (#37109) chore: bump types-pyyaml from 6.0.12.20250915 to 6.0.12.20260408 in /libs/core (#37129) fix(core): preserve structured inputs on tool runs in tracers (#37108) release(perplexity): 1.2.0 (#37091) chore(docs): update x handle references (#37081) fix(core): make removal optional in warn_deprecated (#37056) fix(core): validate batch_size in _batch and _abatch to prevent infinite loop (#36663) chore(core): mark stream_v2/astream_v2 as beta (#36992)

langchain-core==1.3.2

Changes since langchain-core==1.3.1

release(core): 1.3.2 (#36990) feat(core): add content-block-centric streaming (v2) (#36834)

langchain-core==1.3.1

Changes since langchain-core==1.3.0

release(core): 1.3.1 (#36972) feat(core): allow _format_output to pass through list of ToolOutputMixin instances (#36963) chore: bump nbconvert from 7.17.0 to 7.17.1 in /libs/core (#36923) feat(core): Update inheritance behavior for tracer metadata for special keys (#36900) chore: bump langsmith from 0.7.13 to 0.7.31 in /libs/core (#36813)

langchain-core==1.3.0

Changes since langchain-core==1.2.31

release(core): release 1.3.0 (#36851) release(core): 1.3.0a3 (#36829) chore(core): keep checkpoint_ns behavior in streaming metadata for backwards compat (#36828) feat(core): Add chat model and LLM invocation params to traceable metadata (#36771) fix(core): restore cloud metadata IPs and link-local range in SSRF policy (#36816) chore(deps): bump pytest to 9.0.3 (#36801) chore(core): harden private SSRF utilities (#36768) fix(openai): handle content blocks without type key in responses api conversion (#36725) chore: bump pytest from 9.0.2 to 9.0.3 in /libs/core (#36719) release(core): 1.3.0.a2 (#36698) fix(core): Use reference counting for storing inherited run trees to support garbage collection (#36660) docs(core): nit (#36685) release(core): 1.3.0a1 (#36656) chore(core): reduce streaming metadata / perf (#36588)

langchain-core==1.3.0a3

Initial release

... (truncated)

Commits

Updates pytest from 8.0.2 to 9.0.3

Release notes

Sourced from pytest's releases.

9.0.3

pytest 9.0.3 (2026-04-07)

Bug fixes

  • #12444: Fixed pytest.approx which now correctly takes into account ~collections.abc.Mapping keys order to compare them.

  • #13634: Blocking a conftest.py file using the -p no: option is now explicitly disallowed.

    Previously this resulted in an internal assertion failure during plugin loading.

    Pytest now raises a clear UsageError explaining that conftest files are not plugins and cannot be disabled via -p.

  • #13734: Fixed crash when a test raises an exceptiongroup with __tracebackhide__ = True.

  • #14195: Fixed an issue where non-string messages passed to unittest.TestCase.subTest() were not printed.

  • #14343: Fixed use of insecure temporary directory (CVE-2025-71176).

Improved documentation

  • #13388: Clarified documentation for -p vs PYTEST_PLUGINS plugin loading and fixed an incorrect -p example.
  • #13731: Clarified that capture fixtures (e.g. capsys and capfd) take precedence over the -s / --capture=no command-line options in Accessing captured output from a test function <accessing-captured-output>.
  • #14088: Clarified that the default pytest_collection hook sets session.items before it calls pytest_collection_finish, not after.
  • #14255: TOML integer log levels must be quoted: Updating reference documentation.

Contributor-facing changes

  • #12689: The test reports are now published to Codecov from GitHub Actions. The test statistics is visible on the web interface.

    -- by aleguy02

9.0.2

pytest 9.0.2 (2025-12-06)

Bug fixes

  • #13896: The terminal progress feature added in pytest 9.0.0 has been disabled by default, except on Windows, due to compatibility issues with some terminal emulators.

    You may enable it again by passing -p terminalprogress. We may enable it by default again once compatibility improves in the future.

    Additionally, when the environment variable TERM is dumb, the escape codes are no longer emitted, even if the plugin is enabled.

  • #13904: Fixed the TOML type of the tmp_path_retention_count settings in the API reference from number to string.

  • #13946: The private config.inicfg attribute was changed in a breaking manner in pytest 9.0.0. Due to its usage in the ecosystem, it is now restored to working order using a compatibility shim. It will be deprecated in pytest 9.1 and removed in pytest 10.

... (truncated)

Commits

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python Pull requests that update python code labels Jun 6, 2026
@cgfixit cgfixit self-assigned this Jun 9, 2026
@dependabot dependabot Bot force-pushed the dependabot/pip/pip-1fdc326e01 branch from 122670e to b786cd7 Compare June 9, 2026 22:25
Bumps the pip group with 3 updates in the / directory: [langgraph](https://github.com/langchain-ai/langgraph), [langchain-core](https://github.com/langchain-ai/langchain) and [pytest](https://github.com/pytest-dev/pytest).


Updates `langgraph` from 0.2.60 to 1.0.10rc1
- [Release notes](https://github.com/langchain-ai/langgraph/releases)
- [Commits](langchain-ai/langgraph@0.2.60...1.0.10rc1)

Updates `langchain-core` from 0.3.30 to 1.3.3
- [Release notes](https://github.com/langchain-ai/langchain/releases)
- [Commits](langchain-ai/langchain@langchain-core==0.3.30...langchain-core==1.3.3)

Updates `pytest` from 8.0.2 to 9.0.3
- [Release notes](https://github.com/pytest-dev/pytest/releases)
- [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst)
- [Commits](pytest-dev/pytest@8.0.2...9.0.3)

---
updated-dependencies:
- dependency-name: langchain-core
  dependency-version: 1.3.3
  dependency-type: direct:production
- dependency-name: langgraph
  dependency-version: 1.0.10rc1
  dependency-type: direct:production
- dependency-name: pytest
  dependency-version: 9.0.3
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/pip/pip-1fdc326e01 branch from b786cd7 to 913c63d Compare June 9, 2026 22:32
@dependabot @github

dependabot Bot commented on behalf of github Jun 13, 2026

Copy link
Copy Markdown
Contributor Author

Looks like these dependencies are no longer updatable, so this is no longer needed.

@dependabot dependabot Bot closed this Jun 13, 2026
@dependabot dependabot Bot deleted the dependabot/pip/pip-1fdc326e01 branch June 13, 2026 20:53
cgfixit pushed a commit that referenced this pull request Jun 20, 2026
…#2,#7,#12)

#2 — The soul scanner used a hardcoded 13-pattern OWASP list while the query
path uses the 31 curated config.yaml banned_patterns, including the entire
Memory/Persistence category ("HIGH PRIORITY for RAG + soul"). A proposal like
"update your soul" or "core instruction, never forget" passed the soul scan and
was written to soul.md — which is prepended to every LLM system prompt. Build
the scanner once from config banned_patterns UNIONED with the OWASP baseline
(the OWASP set is kept as a floor so a minimal/absent config still scans).
Compiled once in __init__; invalid regexes are skipped, not fatal.

#7 — restore_from_backup keeps scan=False (its documented trusted-restore
contract, asserted by test_scan_false_bypass_for_trusted_restore) but now
re-scans the .bak and audit-logs soul_restore_scan_flags on any match —
observability without blocking the restore.

#12 — Document the by-design decision that the retrieval-only MCP path skips
check_input (sampling=None => no LLM escalation target).

Tests: memory-pattern proposals are flagged + blocked when config provides them;
OWASP-only floor preserved when config is absent; restore emits scan flags yet
still applies. Full hermetic suite green (101 passed locally, py3.11).
Implements Phase 2 of docs/plans/PR99_PHASE2_injection_parity.md.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
Claude-Session: https://claude.ai/code/session_0158EQvXyp1eAQ1LXNgXip9t
cgfixit added a commit that referenced this pull request Jun 20, 2026
fix(personality): unify soul injection scanner with config filter (#99 #2, #7, #12)
@cgfixit cgfixit mentioned this pull request Jun 20, 2026
cgfixit pushed a commit that referenced this pull request Jun 20, 2026
Addresses the VALID findings from PR #118 (verified against current main):

- #1/#2/#5: build_index() now rejects chunk_size < 1 and
  chunk_overlap >= chunk_size with a ValueError, instead of silently
  building an index of empty chunks (chunk_size=0) or exploding a corpus
  into one chunk per word (overlap >= size). Fail-fast supersedes the
  silent max(1,...) clamp at the config boundary.
- #6: new tests/test_indexer.py covers chunk_document edge cases
  (empty text, exact-fit, overlap, no-overlap) and the new guards.
- #8: tests/test_graph.py now validates grok_fallback_node prompt
  structure (Source/Score headers + untrusted framing when context is
  forwarded, query-only otherwise, graceful grok=None degradation).

Dropped: #3 (RetrievedDoc is correctly defined at graph.py:55).
Out of scope: #4, #7 (cosmetic only).

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
cgfixit pushed a commit that referenced this pull request Jun 20, 2026
Addresses the VALID findings from PR #118 (verified against current main):

- #1/#2/#5: build_index() now rejects chunk_size < 1 and
  chunk_overlap >= chunk_size with a ValueError, instead of silently
  building an index of empty chunks (chunk_size=0) or exploding a corpus
  into one chunk per word (overlap >= size). Fail-fast supersedes the
  silent max(1,...) clamp at the config boundary.
- #6: new tests/test_indexer.py covers chunk_document edge cases
  (empty text, exact-fit, overlap, no-overlap) and the new guards.
- #8: tests/test_graph.py now validates grok_fallback_node prompt
  structure (Source/Score headers + untrusted framing when context is
  forwarded, query-only otherwise, graceful grok=None degradation).

Dropped: #3 (RetrievedDoc is correctly defined at graph.py:55).
Out of scope: #4, #7 (cosmetic only).

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
cgfixit pushed a commit that referenced this pull request Jun 20, 2026
Addresses the VALID findings from PR #118 (verified against current main):

- #1/#2/#5: build_index() now rejects chunk_size < 1 and
  chunk_overlap >= chunk_size with a ValueError, instead of silently
  building an index of empty chunks (chunk_size=0) or exploding a corpus
  into one chunk per word (overlap >= size). Fail-fast supersedes the
  silent max(1,...) clamp at the config boundary.
- #6: new tests/test_indexer.py covers chunk_document edge cases
  (empty text, exact-fit, overlap, no-overlap) and the new guards.
- #8: tests/test_graph.py now validates grok_fallback_node prompt
  structure (Source/Score headers + untrusted framing when context is
  forwarded, query-only otherwise, graceful grok=None degradation).

Dropped: #3 (RetrievedDoc is correctly defined at graph.py:55).
Out of scope: #4, #7 (cosmetic only).

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
cgfixit pushed a commit that referenced this pull request Jun 20, 2026
Addresses the VALID findings from PR #118 (verified against current main):

- #1/#2/#5: build_index() now rejects chunk_size < 1 and
  chunk_overlap >= chunk_size with a ValueError, instead of silently
  building an index of empty chunks (chunk_size=0) or exploding a corpus
  into one chunk per word (overlap >= size). Fail-fast supersedes the
  silent max(1,...) clamp at the config boundary.
- #6: new tests/test_indexer.py covers chunk_document edge cases
  (empty text, exact-fit, overlap, no-overlap) and the new guards.
- #8: tests/test_graph.py now validates grok_fallback_node prompt
  structure (Source/Score headers + untrusted framing when context is
  forwarded, query-only otherwise, graceful grok=None degradation).

Dropped: #3 (RetrievedDoc is correctly defined at graph.py:55).
Out of scope: #4, #7 (cosmetic only).

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
cgfixit pushed a commit that referenced this pull request Jun 21, 2026
Addresses the VALID findings from PR #118 (verified against current main):

- #1/#2/#5: build_index() now rejects chunk_size < 1 and
  chunk_overlap >= chunk_size with a ValueError, instead of silently
  building an index of empty chunks (chunk_size=0) or exploding a corpus
  into one chunk per word (overlap >= size). Fail-fast supersedes the
  silent max(1,...) clamp at the config boundary.
- #6: new tests/test_indexer.py covers chunk_document edge cases
  (empty text, exact-fit, overlap, no-overlap) and the new guards.
- #8: tests/test_graph.py now validates grok_fallback_node prompt
  structure (Source/Score headers + untrusted framing when context is
  forwarded, query-only otherwise, graceful grok=None degradation).

Dropped: #3 (RetrievedDoc is correctly defined at graph.py:55).
Out of scope: #4, #7 (cosmetic only).

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
cgfixit pushed a commit that referenced this pull request Jul 4, 2026
Follow-up to the config-driven prompt-filter refactor. Three fixes from
the code review of the cc optimization round:

1. Security regression (review #1): config.yaml banned_patterns had been
   reduced to literal single-space phrases, dropping the \s+ whitespace
   tolerance and the (previous|all|prior)/(you are|to be) alternations of
   the original hardcoded regexes. Inputs like 'ignore  previous
   instructions' (multi-space), 'ignore prior instructions', 'ignore all
   instructions', 'pretend to be ...', and newline-separated variants in
   corpus chunks silently bypassed both check_input and sanitize_chunk.
   Restored the original regex set in config (single-quoted so backslashes
   reach the regex engine); still compiled once with re.IGNORECASE.

2. Robustness (review #2): a present-but-empty 'policy:' or
   'prompt_filter:' key parses to None, so cfg.get('policy', {}).get(...)
   raised AttributeError on every /query and index build. Guard each level
   with 'or {}' to fall back to defaults.

3. Observability (review #3): warn when the filter is enabled but compiles
   zero patterns, instead of silently degrading to a length-only check.

Verified: existing 11 sanitizer/rate-limit tests pass; 8 previously
bypassing strings now blocked and 9 originals still blocked against the
real config.yaml; empty-config no longer crashes; warning emitted.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file python Pull requests that update python code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant