Skip to content

Bump the pip group with 5 updates#690

Merged
ezio-melotti merged 1 commit intomainfrom
dependabot/pip/pip-1598bdf504
Apr 1, 2026
Merged

Bump the pip group with 5 updates#690
ezio-melotti merged 1 commit intomainfrom
dependabot/pip/pip-1598bdf504

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Apr 1, 2026

Bumps the pip group with 5 updates:

Package From To
cachetools 7.0.1 7.0.5
chardet 6.0.0 7.3.0
sentry-sdk 2.53.0 2.56.0
yarl 1.22.0 1.23.0
pytest-cov 7.0.0 7.1.0

Updates cachetools from 7.0.1 to 7.0.5

Changelog

Sourced from cachetools's changelog.

v7.0.5 (2026-03-09)

  • Minor @cachedmethod performance improvements.

v7.0.4 (2026-03-08)

  • Fix and properly document @cachedmethod.cache_key behavior.

  • Minor documentation improvements.

v7.0.3 (2026-03-05)

  • Fix DeprecationWarning when creating an autospec mock with @cachedmethod decorations.

v7.0.2 (2026-03-02)

  • Provide more efficient clear() implementation for all support Cache classes (courtesy Josep Pon Farreny).
Commits

Updates chardet from 6.0.0 to 7.3.0

Release notes

Sourced from chardet's releases.

7.3.0

License

  • 0BSD license — the project license has been changed from MIT to 0BSD, a maximally permissive license with no attribution requirement. All prior 7.x releases should also be considered 0BSD licensed as of this release.

Features

  • Added mime_type field to detection results — identifies file types for both binary (via magic number matching) and text content. Returned in all detect(), detect_all(), and UniversalDetector results. (#350)
  • New pipeline/magic.py module detects 40+ binary file formats including images, audio/video, archives, documents, executables, and fonts. ZIP-based formats (XLSX, DOCX, JAR, APK, EPUB, wheel, OpenDocument) are distinguished by entry filenames. (#350)

Bug Fixes

  • Fixed incorrect equivalence between UTF-16-LE and UTF-16-BE in accuracy testing — these are distinct encodings with different byte order, not interchangeable

Performance

  • Added 4 new modules to mypyc compilation (orchestrator, confusion, magic, ascii), bringing the total to 11 compiled modules
  • Capped statistical scoring at 16 KB — bigram models converge quickly, so large files no longer score the full 200 KB. Worst-case detection time dropped from 62ms to 26ms with no accuracy loss.
  • Replaced dataclasses.replace() with direct DetectionResult construction on hot paths, eliminating ~354k function calls per full test suite run

Build

  • Added riscv64 to the mypyc wheel build matrix — prebuilt wheels are now published for RISC-V Linux alongside existing architectures (#348, thanks @​gounthar)

chardet 7.2.0

Features

  • Added include_encodings and exclude_encodings parameters to detect(), detect_all(), and UniversalDetector — restrict or exclude specific encodings from the candidate set, with corresponding -i/--include-encodings and -x/--exclude-encodings CLI flags (#343)
  • Added no_match_encoding (default "cp1252") and empty_input_encoding (default "utf-8") parameters — control which encoding is returned when no candidate survives the pipeline or the input is empty, with corresponding CLI flags (#343)
  • Added -l/--language flag to chardetect CLI — shows the detected language (ISO 639-1 code and English name) alongside the encoding (#342)

Fixes

  • Fixed null-separated ASCII data being misdetected as UTF-16-BE (#346, #347)

Full changelog: https://chardet.readthedocs.io/en/latest/changelog.html

chardet 7.1.0

Features

  • Added PEP 263 encoding declaration detection — # -*- coding: ... -*- and # coding=... declarations on lines 1–2 of Python source files are now recognized with confidence 0.95 (#249)
  • Added chardet.universaldetector backward-compatibility stub so that from chardet.universaldetector import UniversalDetector works with a deprecation warning (#341)

Fixes

  • Fixed false UTF-7 detection of ASCII text containing ++ or +word patterns (#332)
  • Fixed 0.5s startup cost on first detect() call — model norms are now computed during loading instead of lazily iterating 21M entries (#333)
  • Fixed undocumented encoding name changes between chardet 5.x and 7.0 — detect() now returns chardet 5.x-compatible names by default (#338)
  • Improved ISO-2022-JP family detection — recognizes ESC sequences for ISO-2022-JP-2004 (JIS X 0213) and ISO-2022-JP-EXT (JIS X 0201 Kana)
  • Fixed silent truncation of corrupt model data (iter_unpack yielded fewer tuples instead of raising)

... (truncated)

Changelog

Sourced from chardet's changelog.

7.3.0 (2026-03-24)

License:

  • 0BSD license — the project license has been changed from MIT to 0BSD <https://opensource.org/license/0bsd>, a maximally permissive license with no attribution requirement. All prior 7.x releases should also be considered 0BSD licensed as of this release. (Dan Blanchard <https://github.com/dan-blanchard> via Claude)

Features:

  • Added mime_type field to detection results — identifies file types for both binary (via magic number matching) and text content. Returned in all detect(), detect_all(), and UniversalDetector results. (Dan Blanchard <https://github.com/dan-blanchard>_ via Claude, [#350](https://github.com/chardet/chardet/issues/350) <https://github.com/chardet/chardet/pull/350>_)
  • New pipeline/magic.py module detects 40+ binary file formats including images, audio/video, archives, documents, executables, and fonts. ZIP-based formats (XLSX, DOCX, JAR, APK, EPUB, wheel, OpenDocument) are distinguished by entry filenames. (Dan Blanchard <https://github.com/dan-blanchard>_ via Claude, [#350](https://github.com/chardet/chardet/issues/350) <https://github.com/chardet/chardet/pull/350>_)

Bug Fixes:

  • Fixed incorrect equivalence between UTF-16-LE and UTF-16-BE in accuracy testing — these are distinct encodings with different byte order, not interchangeable (Dan Blanchard <https://github.com/dan-blanchard>_ via Claude)

Performance:

  • Added 4 new modules to mypyc compilation (orchestrator, confusion, magic, ascii), bringing the total to 11 compiled modules (Dan Blanchard <https://github.com/dan-blanchard>_ via Claude)
  • Capped statistical scoring at 16 KB — bigram models converge quickly, so large files no longer score the full 200 KB. Worst-case detection time dropped from 62ms to 26ms with no accuracy loss. (Dan Blanchard <https://github.com/dan-blanchard>_ via Claude)
  • Replaced dataclasses.replace() with direct DetectionResult construction on hot paths, eliminating ~354k function calls per full test suite run (Dan Blanchard <https://github.com/dan-blanchard>_ via Claude)

Build:

  • Added riscv64 to the mypyc wheel build matrix — prebuilt wheels are now published for RISC-V Linux alongside existing architectures

... (truncated)

Commits
  • 9402975 docs: clarify that git tags have no v prefix in CLAUDE.md
  • 80f5d95 docs: explicitly list all performance.rst tables in update skill
  • 4ca09ed docs: single alphabetical table for supported MIME types
  • 78c3551 docs: add supported MIME types page with auto-generation script
  • d59bbba docs: fix stale numbers, add mime_type, update pipeline and mypyc lists
  • 601cde1 docs: add riscv64 wheels and UTF-16 endianness fix to 7.3.0 changelog
  • f00bd2d docs: finalize 7.3.0 changelog with 2026-03-24 release date
  • 3ed9b3e docs: remove EncodingEra from What's New (was added in 6.x)
  • dab6952 docs: update What's New section with mime_type and encoding filters
  • 3466c96 docs: say chardet 7, not 7.0, in README headers
  • Additional commits viewable in compare view

Updates sentry-sdk from 2.53.0 to 2.56.0

Release notes

Sourced from sentry-sdk's releases.

2.56.0

New Features ✨

Bug Fixes 🐛

Anthropic

Other

Documentation 📚

Internal Changes 🔧

Other

2.55.0

New Features ✨

Anthropic

Pydantic Ai

... (truncated)

Changelog

Sourced from sentry-sdk's changelog.

2.56.0

New Features ✨

Bug Fixes 🐛

Anthropic

Other

Documentation 📚

Internal Changes 🔧

Other

2.55.0

New Features ✨

Anthropic

Pydantic Ai

... (truncated)

Commits
  • f5e93ad release: 2.56.0
  • 4cd6752 chore: pin GitHub Actions to full-length commit SHAs (#5781)
  • c3eb19f test: fix flaky threading test (#5700)
  • b2b42df fix(starlette): Catch Jinja2Templates ImportError (#5741)
  • 48dc566 feat(asgi): Add option to disable suppressing chained exceptions (#5714)
  • f963475 tests: Add -latest alias for each integration test suite (#5706)
  • 715fd2b ci: Use date-based branch names for toxgen PRs (#5704)
  • 35fe9e4 ci: 🤖 Update test matrix with new releases (03/19) (#5703)
  • 8d56b30 fix(anthropic): Set exception info on streaming span when applicable (#5683)
  • e103926 feat: Make ASGI support span first (#5680)
  • Additional commits viewable in compare view

Updates yarl from 1.22.0 to 1.23.0

Release notes

Sourced from yarl's releases.

1.23.0

Features

  • Added support for pydantic, the :class:~yarl.URL could be used as a field type in pydantic models seamlessly.

    Related issues and pull requests on GitHub: #1607.

Packaging updates and notes for downstreams

  • The CI has been set up to notify Codecov about upload completion -- by :user:webknjaz.

    With this, Codecov no longer needs to guess whether it received all the intended coverage reports or not.

    Related issues and pull requests on GitHub: #1577.

  • The in-tree build backend allows the end-users appending CFLAGS and LDFLAGS by setting respective environment variables externally.

    It additionally sets up default compiler flags to perform building with maximum optimization in release mode. This makes the resulting artifacts shipped to PyPI smaller.

    When line tracing is requested, the compiler and linker flags are configured to include as much information as possible for debugging and coverage tracking. The development builds are therefore smaller.

    -- by :user:webknjaz

    Related issues and pull requests on GitHub: #1586.

  • The :pep:517 build backend now supports a new config setting for controlling whether to build the project in-tree or in a temporary directory. It only affects wheels and is set up to build in a temporary directory by default. It does not affect editable wheel builds — they will keep being built in-tree regardless.

    -- by :user:webknjaz

... (truncated)

Changelog

Sourced from yarl's changelog.

1.23.0

(2025-12-16)

Features

  • Added support for pydantic, the :class:~yarl.URL could be used as a field type in pydantic models seamlessly.

    Related issues and pull requests on GitHub: :issue:1607.

Packaging updates and notes for downstreams

  • The CI has been set up to notify Codecov about upload completion -- by :user:webknjaz.

    With this, Codecov no longer needs to guess whether it received all the intended coverage reports or not.

    Related issues and pull requests on GitHub: :issue:1577.

  • The in-tree build backend allows the end-users appending CFLAGS and LDFLAGS by setting respective environment variables externally.

    It additionally sets up default compiler flags to perform building with maximum optimization in release mode. This makes the resulting artifacts shipped to PyPI smaller.

    When line tracing is requested, the compiler and linker flags are configured to include as much information as possible for debugging and coverage tracking. The development builds are therefore smaller.

    -- by :user:webknjaz

    Related issues and pull requests on GitHub: :issue:1586.

  • The :pep:517 build backend now supports a new config setting for controlling whether to build the project in-tree or in a temporary directory. It only affects wheels and is set up to build in a temporary directory by default. It does

... (truncated)

Commits

Updates pytest-cov from 7.0.0 to 7.1.0

Changelog

Sourced from pytest-cov's changelog.

7.1.0 (2026-03-21)

  • Fixed total coverage computation to always be consistent, regardless of reporting settings. Previously some reports could produce different total counts, and consequently can make --cov-fail-under behave different depending on reporting options. See [#641](https://github.com/pytest-dev/pytest-cov/issues/641) <https://github.com/pytest-dev/pytest-cov/issues/641>_.

  • Improve handling of ResourceWarning from sqlite3.

    The plugin adds warning filter for sqlite3 ResourceWarning unclosed database (since 6.2.0). It checks if there is already existing plugin for this message by comparing filter regular expression. When filter is specified on command line the message is escaped and does not match an expected message. A check for an escaped regular expression is added to handle this case.

    With this fix one can suppress ResourceWarning from sqlite3 from command line::

    pytest -W "ignore:unclosed database in <sqlite3.Connection object at:ResourceWarning" ...

  • Various improvements to documentation. Contributed by Art Pelling in [#718](https://github.com/pytest-dev/pytest-cov/issues/718) <https://github.com/pytest-dev/pytest-cov/pull/718>_ and "vivodi" in [#738](https://github.com/pytest-dev/pytest-cov/issues/738) <https://github.com/pytest-dev/pytest-cov/pull/738>. Also closed [#736](https://github.com/pytest-dev/pytest-cov/issues/736) <https://github.com/pytest-dev/pytest-cov/issues/736>.

  • Fixed some assertions in tests. Contributed by in Markéta Machová in [#722](https://github.com/pytest-dev/pytest-cov/issues/722) <https://github.com/pytest-dev/pytest-cov/pull/722>_.

  • Removed unnecessary coverage configuration copying (meant as a backup because reporting commands had configuration side-effects before coverage 5.0).

Commits
  • 66c8a52 Bump version: 7.0.0 → 7.1.0
  • f707662 Make the examples use pypy 3.11.
  • 6049a78 Make context test use the old ctracer (seems the new sysmon tracer behaves di...
  • 8ebf20b Update changelog.
  • 861d30e Remove the backup context manager - shouldn't be needed since coverage 5.0, ...
  • fd4c956 Pass the precision on the nulled total (seems that there's some caching goion...
  • 78c9c4e Only run the 3.9 on older deps.
  • 4849a92 Punctuation.
  • 197c35e Update changelog and hopefully I don't forget to publish release again :))
  • 14dc1c9 Update examples to use 3.11 and make the adhoc layout example look a bit more...
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the pip group with 5 updates
10e6618 
Bumps the pip group with 5 updates:

| Package | From | To |
| --- | --- | --- |
| [cachetools](https://github.com/tkem/cachetools) | `7.0.1` | `7.0.5` |
| [chardet](https://github.com/chardet/chardet) | `6.0.0` | `7.3.0` |
| [sentry-sdk](https://github.com/getsentry/sentry-python) | `2.53.0` | `2.56.0` |
| [yarl](https://github.com/aio-libs/yarl) | `1.22.0` | `1.23.0` |
| [pytest-cov](https://github.com/pytest-dev/pytest-cov) | `7.0.0` | `7.1.0` |


Updates `cachetools` from 7.0.1 to 7.0.5
- [Changelog](https://github.com/tkem/cachetools/blob/master/CHANGELOG.rst)
- [Commits](tkem/cachetools@v7.0.1...v7.0.5)

Updates `chardet` from 6.0.0 to 7.3.0
- [Release notes](https://github.com/chardet/chardet/releases)
- [Changelog](https://github.com/chardet/chardet/blob/main/docs/changelog.rst)
- [Commits](chardet/chardet@6.0.0...7.3.0)

Updates `sentry-sdk` from 2.53.0 to 2.56.0
- [Release notes](https://github.com/getsentry/sentry-python/releases)
- [Changelog](https://github.com/getsentry/sentry-python/blob/master/CHANGELOG.md)
- [Commits](getsentry/sentry-python@2.53.0...2.56.0)

Updates `yarl` from 1.22.0 to 1.23.0
- [Release notes](https://github.com/aio-libs/yarl/releases)
- [Changelog](https://github.com/aio-libs/yarl/blob/master/CHANGES.rst)
- [Commits](aio-libs/yarl@v1.22.0...v1.23.0)

Updates `pytest-cov` from 7.0.0 to 7.1.0
- [Changelog](https://github.com/pytest-dev/pytest-cov/blob/master/CHANGELOG.rst)
- [Commits](pytest-dev/pytest-cov@v7.0.0...v7.1.0)

---
updated-dependencies:
- dependency-name: cachetools
  dependency-version: 7.0.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip
- dependency-name: chardet
  dependency-version: 7.3.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: pip
- dependency-name: sentry-sdk
  dependency-version: 2.56.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: pip
- dependency-name: yarl
  dependency-version: 1.23.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: pip
- dependency-name: pytest-cov
  dependency-version: 7.1.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: pip
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Apr 1, 2026
@codecov
Copy link
Copy Markdown

codecov bot commented Apr 1, 2026
edited
Loading

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 100.00%. Comparing base (1cbc277) to head (10e6618).
⚠️ Report is 2 commits behind head on main.

Impacted file tree graph

@@            Coverage Diff            @@
##              main      #690   +/-   ##
=========================================
  Coverage   100.00%   100.00%           
=========================================
  Files           18        18           
  Lines         2149      2149           
  Branches        97        97           
=========================================
  Hits          2149      2149
Flag Coverage Δ
Python_3.10.19 ?
Python_3.10.20 100.00% <ø> (?)
Python_3.11.14 ?
Python_3.11.15 100.00% <ø> (?)
Python_3.12.12 ?
Python_3.12.13 100.00% <ø> (?)
Python_3.13.12 100.00% <ø> (ø)
Python_3.14.3 100.00% <ø> (ø)
Python_3.15.0-alpha.5 ?
Python_3.15.0-alpha.7 100.00% <ø> (?)

Flags with carried forward coverage won't be shown. Click here to find out more.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

@ezio-melotti ezio-melotti merged commit 565d723 into main Apr 1, 2026
17 checks passed
@ezio-melotti ezio-melotti deleted the dependabot/pip/pip-1598bdf504 branch April 1, 2026 12:25
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@ezio-melotti ezio-melotti ezio-melotti approved these changes

Assignees

@ezio-melotti ezio-melotti

Labels

dependencies Pull requests that update a dependency file python Pull requests that update Python code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@ezio-melotti