Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

build(deps): bump coverage from 5.5 to 7.3.0 #75

Open
wants to merge 1 commit into
base: develop
Choose a base branch
from
Open

build(deps): bump coverage from 5.5 to 7.3.0 #75

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Aug 14, 2023

Bumps coverage from 5.5 to 7.3.0.

Release notes

Sourced from coverage's releases.

coverage-5.6b1

  • Third-party packages are now ignored in coverage reporting. This solves a few problems:
    • Coverage will no longer report about other people’s code (issue 876). This is true even when using --source=. with a venv in the current directory.
    • Coverage will no longer generate “Already imported a file that will be measured” warnings about coverage itself (issue 905).
  • The HTML report uses j/k to move up and down among the highlighted chunks of code. They used to highlight the current chunk, but 5.0 broke that behavior. Now the highlighting is working again.
  • The JSON report now includes percent_covered_display, a string with the total percentage, rounded to the same number of decimal places as the other reports’ totals.
Changelog

Sourced from coverage's changelog.

Version 7.3.0 — 2023-08-12

  • Added a :meth:.Coverage.collect context manager to start and stop coverage data collection.

  • Dropped support for Python 3.7.

  • Fix: in unusual circumstances, SQLite cannot be set to asynchronous mode. Coverage.py would fail with the error Safety level may not be changed inside a transaction. This is now avoided, closing issue 1646_. Thanks to Michael Bell for the detailed bug report.

  • Docs: examples of configuration files now include separate examples for the different syntaxes: .coveragerc, pyproject.toml, setup.cfg, and tox.ini.

  • Fix: added nosemgrep comments to our JavaScript code so that semgrep-based SAST security checks won't raise false alarms about security problems that aren't problems.

  • Added a CITATION.cff file, thanks to Ken Schackart <pull 1641_>_.

.. _pull 1641: nedbat/coveragepy#1641 .. _issue 1646: nedbat/coveragepy#1646

.. _changes_7-2-7:

Version 7.2.7 — 2023-05-29

  • Fix: reverted a change from 6.4.3 <pull 1347_>_ that helped Cython, but also increased the size of data files when using dynamic contexts, as described in the now-fixed issue 1586. The problem is now avoided due to a recent change (issue 1538). Thanks to Anders Kaseorg <pull 1629_>_ and David Szotten for persisting with problem reports and detailed diagnoses.

  • Wheels are now provided for CPython 3.12.

.. _issue 1586: nedbat/coveragepy#1586 .. _pull 1629: nedbat/coveragepy#1629

.. _changes_7-2-6:

Version 7.2.6 — 2023-05-23

  • Fix: the lcov command could raise an IndexError exception if a file is translated to Python but then executed under its own name. Jinja2 does this

... (truncated)

Commits
  • 9c2f924 docs: sample HTML for 7.3.0
  • 0421fdb docs: prep for 7.3.0
  • f2aa871 build: move pylint config into pyproject.toml
  • 1873ccb docs: drop a bunch of badges
  • 5937a62 feat: cov.collect() context manager
  • da7ee52 build(deps): bump sigstore/gh-action-sigstore-python from 2.0.0 to 2.0.1
  • d87f64a test: excluding NotImplementedError excluded too much
  • e51b1f7 test: ensure lines are properly ignored during metacov
  • b02de96 test(refactor): abstract method compatible with both pytest and mypy
  • ada3ade test(build): PytestCollectionWarning should be an error
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
build(deps): bump coverage from 5.5 to 7.3.0
c68e953 
Bumps [coverage](https://github.com/nedbat/coveragepy) from 5.5 to 7.3.0.
- [Release notes](https://github.com/nedbat/coveragepy/releases)
- [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst)
- [Commits](nedbat/coveragepy@coverage-5.5...7.3.0)

---
updated-dependencies:
- dependency-name: coverage
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Aug 14, 2023
@dependabot dependabot bot mentioned this pull request Aug 14, 2023
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
0 participants