Skip to content

build(deps): bump the minor-and-patch group with 7 updates #600

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Dec 16, 2024
Merged

build(deps): bump the minor-and-patch group with 7 updates #600

merged 1 commit into from
Dec 16, 2024

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Dec 16, 2024

Bumps the minor-and-patch group with 7 updates:

Package From To
certifi 2024.8.30 2024.12.14
flake8-bugbear 24.10.31 24.12.12
safety 3.2.11 3.2.13
attrs 24.2.0 24.3.0
starlette 0.41.3 0.42.0
uvicorn 0.32.1 0.34.0
watchfiles 1.0.0 1.0.3

Updates certifi from 2024.8.30 to 2024.12.14

Commits
  • 4ba3900 2024.12.14 (#329)
  • 9164660 Bump pypa/gh-action-pypi-publish from 1.12.2 to 1.12.3 (#331)
  • 3dc3651 Bump pypa/gh-action-pypi-publish from 1.11.0 to 1.12.2 (#328)
  • c5bf18d Bump pypa/gh-action-pypi-publish from 1.10.3 to 1.11.0 (#327)
  • b908391 Bump actions/setup-python from 5.2.0 to 5.3.0 (#326)
  • bc26b41 Bump actions/checkout from 4.2.1 to 4.2.2 (#325)
  • 57afc22 Bump actions/upload-artifact from 4.4.1 to 4.4.3 (#323)
  • a495091 test against 3.13 final
  • 62f8144 Added 3.13 classifier (#322)
  • 94d23a0 Bump pypa/gh-action-pypi-publish from 1.10.2 to 1.10.3 (#321)
  • Additional commits viewable in compare view

Updates flake8-bugbear from 24.10.31 to 24.12.12

Release notes

Sourced from flake8-bugbear's releases.

24.12.12

  • B012 and B025 now also handle try/except* (#500)
  • Skip B028 if warnings.warn is called with *args or **kwargs (#501)
  • Add B911: itertools.batched without strict= (#502)
  • Readme has anchors per check (they do not seem to render on GitHub tho)
Commits
  • 3a14037 Update CHANGES + move to version 24.12.12 to release
  • 761dbe2 Make rstcheck pass again sadly ignoring anchor links
  • 7ee1976 README: Add anchors for rules and config options (#491)
  • b960272 add except* support to B012&B025 (#500)
  • 4fed293 Skip B028 if warnings.warn is called with *args or **kwargs (#501)
  • 994f3dd Add B911: itertools.batched without strict= (#502)
  • See full diff in compare view

Updates safety from 3.2.11 to 3.2.13

Changelog

Sourced from safety's changelog.

[3.2.13] - 2024-12-10

  • Remove email verification for running scans (#645)

[3.2.12] - 2024-12-10

  • Add CVE Details and Single-Key Filtering for JSON Output in safety scan (#643)
  • feature/add-branch-name (#641)
  • feat/add --headless to --help (#636)
Commits
  • 1b5a104 Merge pull request #646 from pyupio/feat/update-version
  • 24e86d9 feat(changelog): update version
  • 8435529 Merge pull request #645 from pyupio/feat(utils.py)-remove-email-verification
  • c2ca852 feat(utils.py): remove email verification
  • 728c7c1 chore/release-3.2.12 (#644)
  • 25abf95 feature/cve-data-filter-flag (#643)
  • 7654596 Merge pull request #618 from pyupio/chore/use-specific-safety-schemas-release
  • b87d13f chore:Use specific safety schema version
  • 4b18043 feature/add-branch-name (#641)
  • 223ad60 feat/add --headless to --help (#636)
  • See full diff in compare view

Updates attrs from 24.2.0 to 24.3.0

Commits

Updates starlette from 0.41.3 to 0.42.0

Release notes

Sourced from starlette's releases.

0.42.0

Added

  • Raise ClientDisconnect on StreamingResponse #2732.

Fixed

  • Use ETag from headers when parsing If-Range in FileResponse #2761.
  • Follow directory symlinks in StaticFiles when follow_symlinks=True #2711.
  • Bump minimum python-multipart version to 0.0.18 0ba8395.
  • Bump minimum httpx version to 0.27.0 #2773.

New Contributors

Full Changelog: Kludex/starlette@0.41.3...0.42.0

Changelog

Sourced from starlette's changelog.

0.42.0 (December 14, 2024)

Added

  • Raise ClientDisconnect on StreamingResponse #2732.

Fixed

  • Use ETag from headers when parsing If-Range in FileResponse #2761.
  • Follow directory symlinks in StaticFiles when follow_symlinks=True #2711.
  • Bump minimum python-multipart version to 0.0.18 0ba8395.
  • Bump minimum httpx version to 0.27.0 #2773.
Commits
  • 28991b7 Version 0.42.0 (#2786)
  • 672cd42 Add pragma: no branch in middleware/exceptions.py
  • 5000c9f tests: Add skipped coverages for websockets.py and templating.py using `b...
  • f57b083 docs: Update description for third-party package Apitally (#2794)
  • 8a99adf docs: use transport instead of directly pass the app to AsyncClient (#2784)
  • d40bc9e Update documentation link for python-multipart (#2782)
  • db5063c Bump the python-packages group with 5 updates (#2779)
  • ca1f45d Use ETag from headers when parsing If-Range in FileResponse (#2761)
  • eee4cdc Fix: Resolve the issue where the directory itself being a symlink does not wo...
  • b68a142 Replace mkautodoc by mkdocstrings (#2776)
  • Additional commits viewable in compare view

Updates uvicorn from 0.32.1 to 0.34.0

Release notes

Sourced from uvicorn's releases.

Version 0.34.0

What's Changed

Full Changelog: Kludex/uvicorn@0.33.0...0.34.0

Version 0.33.0

What's Changed

New Contributors

Full Changelog: Kludex/uvicorn@0.32.1...0.33.0

Changelog

Sourced from uvicorn's changelog.

0.34.0 (2024-12-15)

Added

  • Add content-length to 500 response in wsproto implementation (#2542)

Removed

  • Drop support for Python 3.8 (#2543)

0.33.0 (2024-12-14)

Removed

  • Remove WatchGod support for --reload (#2536)
Commits

Updates watchfiles from 1.0.0 to 1.0.3

Release notes

Sourced from watchfiles's releases.

v1.0.3 2024-12-10

try to fix docs deploy

946a29616ef555b313249b51038ff1b51e2e97ec

Full Changelog: samuelcolvin/watchfiles@v1.0.2...v1.0.3

v1.0.2 2024-12-10

Fix PyPI asset upload from v1.0.1.

Full Changelog: samuelcolvin/watchfiles@v1.0.1...v1.0.2

v1.0.1 2024-12-10

What's Changed

New Contributors

Full Changelog: samuelcolvin/watchfiles@v1.0.0...v1.0.1

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
build(deps): bump the minor-and-patch group with 7 updates
0c19f4c 
Bumps the minor-and-patch group with 7 updates:

| Package | From | To |
| --- | --- | --- |
| [certifi](https://github.com/certifi/python-certifi) | `2024.8.30` | `2024.12.14` |
| [flake8-bugbear](https://github.com/PyCQA/flake8-bugbear) | `24.10.31` | `24.12.12` |
| [safety](https://github.com/pyupio/safety) | `3.2.11` | `3.2.13` |
| [attrs](https://github.com/sponsors/hynek) | `24.2.0` | `24.3.0` |
| [starlette](https://github.com/encode/starlette) | `0.41.3` | `0.42.0` |
| [uvicorn](https://github.com/encode/uvicorn) | `0.32.1` | `0.34.0` |
| [watchfiles](https://github.com/samuelcolvin/watchfiles) | `1.0.0` | `1.0.3` |


Updates `certifi` from 2024.8.30 to 2024.12.14
- [Commits](certifi/python-certifi@2024.08.30...2024.12.14)

Updates `flake8-bugbear` from 24.10.31 to 24.12.12
- [Release notes](https://github.com/PyCQA/flake8-bugbear/releases)
- [Commits](PyCQA/flake8-bugbear@24.10.31...24.12.12)

Updates `safety` from 3.2.11 to 3.2.13
- [Release notes](https://github.com/pyupio/safety/releases)
- [Changelog](https://github.com/pyupio/safety/blob/main/CHANGELOG.md)
- [Commits](pyupio/safety@3.2.11...3.2.13)

Updates `attrs` from 24.2.0 to 24.3.0
- [Commits](https://github.com/sponsors/hynek/commits)

Updates `starlette` from 0.41.3 to 0.42.0
- [Release notes](https://github.com/encode/starlette/releases)
- [Changelog](https://github.com/encode/starlette/blob/master/docs/release-notes.md)
- [Commits](Kludex/starlette@0.41.3...0.42.0)

Updates `uvicorn` from 0.32.1 to 0.34.0
- [Release notes](https://github.com/encode/uvicorn/releases)
- [Changelog](https://github.com/encode/uvicorn/blob/master/CHANGELOG.md)
- [Commits](Kludex/uvicorn@0.32.1...0.34.0)

Updates `watchfiles` from 1.0.0 to 1.0.3
- [Release notes](https://github.com/samuelcolvin/watchfiles/releases)
- [Commits](samuelcolvin/watchfiles@v1.0.0...v1.0.3)

---
updated-dependencies:
- dependency-name: certifi
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: flake8-bugbear
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: safety
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: attrs
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: starlette
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: uvicorn
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: watchfiles
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Dec 16, 2024
@gadomski gadomski merged commit 8ec29e1 into main Dec 16, 2024
8 checks passed
@gadomski gadomski deleted the dependabot/pip/minor-and-patch-5bcf52fc41 branch December 16, 2024 12:58
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@github-actions github-actions[bot] github-actions[bot] approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python Pull requests that update Python code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@gadomski