Skip to content

build(deps): bump the github-workflows group across 1 directory with 2 updates #575

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
dependabot wants to merge 1 commit into from
Closed

build(deps): bump the github-workflows group across 1 directory with 2 updates #575

dependabot wants to merge 1 commit into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Apr 7, 2025
edited
Loading

Bumps the github-workflows group with 2 updates in the /.github/workflows directory: aiohttp and yarl.

Updates aiohttp from 3.11.14 to 3.11.16

Release notes

Sourced from aiohttp's releases.

3.11.16

Bug fixes

  • Replaced deprecated asyncio.iscoroutinefunction with its counterpart from inspect -- by :user:layday.

    Related issues and pull requests on GitHub: #10634.

  • Fixed :class:multidict.CIMultiDict being mutated when passed to :class:aiohttp.web.Response -- by :user:bdraco.

    Related issues and pull requests on GitHub: #10672.

3.11.15

Bug fixes

  • Reverted explicitly closing sockets if an exception is raised during create_connection -- by :user:bdraco.

    This change originally appeared in aiohttp 3.11.13

    Related issues and pull requests on GitHub: #10464, #10617, #10656.

Miscellaneous internal changes

  • Improved performance of WebSocket buffer handling -- by :user:bdraco.

    Related issues and pull requests on GitHub: #10601.

... (truncated)

Changelog

Sourced from aiohttp's changelog.

3.11.16 (2025-04-01)

Bug fixes

  • Replaced deprecated asyncio.iscoroutinefunction with its counterpart from inspect -- by :user:layday.

    Related issues and pull requests on GitHub: :issue:10634.

  • Fixed :class:multidict.CIMultiDict being mutated when passed to :class:aiohttp.web.Response -- by :user:bdraco.

    Related issues and pull requests on GitHub: :issue:10672.

3.11.15 (2025-03-31)

Bug fixes

  • Reverted explicitly closing sockets if an exception is raised during create_connection -- by :user:bdraco.

    This change originally appeared in aiohttp 3.11.13

    Related issues and pull requests on GitHub: :issue:10464, :issue:10617, :issue:10656.

Miscellaneous internal changes

  • Improved performance of WebSocket buffer handling -- by :user:bdraco.

... (truncated)

Commits
  • c723b3c Release 3.11.16 (#10679)
  • 6a3d835 [PR #10675/048ef4c backport][3.11] Remove useless nonlocal statements in test...
  • be15472 [PR #10672/35c979b backport][3.11] Fix headers being mutated if passed to web...
  • b65000d Replace deprecated asyncio.iscoroutinefunction with its counterpart… (#10663)
  • 2082fba Increment version to 3.11.16.dev0 (#10661)
  • d2d3621 Release 3.11.15 (#10659)
  • 7f7d681 [PR #10656/06db052e backport][3.11] Revert: Close the socket if there's a fai...
  • b93993d [PR #10644/8c4e60b0 backport][3.11] Add benchmarks for streaming API (#10645)
  • bc813e6 [PR #10601/f7cac7e6 backport][3.11] Reduce WebSocket buffer slicing overhead ...
  • 34cb977 [PR #10638/caa5792a backport][3.11] Convert format calls to f-strings in WebS...
  • Additional commits viewable in compare view

Updates yarl from 1.18.3 to 1.19.0

Release notes

Sourced from yarl's releases.

1.19.0

Bug fixes

  • Fixed entire name being re-encoded when using :py:meth:yarl.URL.with_suffix -- by :user:NTFSvolume.

    Related issues and pull requests on GitHub: #1468.

Features

  • Started building armv7l wheels for manylinux -- by :user:bdraco.

    Related issues and pull requests on GitHub: #1495.

Contributor-facing changes

  • GitHub Actions CI/CD is now configured to manage caching pip-ecosystem dependencies using re-actors/cache-python-deps_ -- an action by :user:webknjaz that takes into account ABI stability and the exact version of Python runtime.

    .. _re-actors/cache-python-deps: https://github.com/marketplace/actions/cache-python-deps

    Related issues and pull requests on GitHub: #1471.

  • Increased minimum propcache_ version to 0.2.1 to fix failing tests -- by :user:bdraco.

    .. _propcache: https://github.com/aio-libs/propcache

    Related issues and pull requests on GitHub: #1479.

  • Added all hidden folders to pytest's norecursedirs to prevent it from trying to collect tests there -- by :user:lysnikolaou.

    Related issues and pull requests on GitHub: #1480.

Miscellaneous internal changes

... (truncated)

Changelog

Sourced from yarl's changelog.

1.19.0

(2025-04-05)

Bug fixes

  • Fixed entire name being re-encoded when using :py:meth:yarl.URL.with_suffix -- by :user:NTFSvolume.

    Related issues and pull requests on GitHub: :issue:1468.

Features

  • Started building armv7l wheels for manylinux -- by :user:bdraco.

    Related issues and pull requests on GitHub: :issue:1495.

Contributor-facing changes

  • GitHub Actions CI/CD is now configured to manage caching pip-ecosystem dependencies using re-actors/cache-python-deps_ -- an action by :user:webknjaz that takes into account ABI stability and the exact version of Python runtime.

    .. _re-actors/cache-python-deps: https://github.com/marketplace/actions/cache-python-deps

    Related issues and pull requests on GitHub: :issue:1471.

  • Increased minimum propcache_ version to 0.2.1 to fix failing tests -- by :user:bdraco.

    .. _propcache: https://github.com/aio-libs/propcache

    Related issues and pull requests on GitHub: :issue:1479.

  • Added all hidden folders to pytest's norecursedirs to prevent it from trying to collect tests there -- by :user:lysnikolaou.

    Related issues and pull requests on GitHub:

... (truncated)

Commits

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Apr 7, 2025
@dependabot
build(deps): bump the github-workflows group across 1 directory with …
7981ff9 
…2 updates

Bumps the github-workflows group with 2 updates in the /.github/workflows directory: [aiohttp](https://github.com/aio-libs/aiohttp) and [yarl](https://github.com/aio-libs/yarl).


Updates `aiohttp` from 3.11.14 to 3.11.16
- [Release notes](https://github.com/aio-libs/aiohttp/releases)
- [Changelog](https://github.com/aio-libs/aiohttp/blob/master/CHANGES.rst)
- [Commits](aio-libs/aiohttp@v3.11.14...v3.11.16)

Updates `yarl` from 1.18.3 to 1.19.0
- [Release notes](https://github.com/aio-libs/yarl/releases)
- [Changelog](https://github.com/aio-libs/yarl/blob/master/CHANGES.rst)
- [Commits](aio-libs/yarl@v1.18.3...v1.19.0)

---
updated-dependencies:
- dependency-name: aiohttp
  dependency-version: 3.11.16
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-workflows
- dependency-name: yarl
  dependency-version: 1.19.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-workflows
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/pip/dot-github/workflows/github-workflows-edb108a771 branch from 1a0566c to 7981ff9 Compare April 8, 2025 06:25
@phlax phlax mentioned this pull request Jun 16, 2025
Merged
@phlax
Copy link
Member

phlax commented Jun 16, 2025

resolved in #665

@phlax phlax closed this Jun 16, 2025
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Jun 16, 2025

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml

@dependabot dependabot bot deleted the dependabot/pip/dot-github/workflows/github-workflows-edb108a771 branch June 16, 2025 13:09
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python Pull requests that update Python code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@phlax