Skip to content

[PIP] Bump the pip group with 2 updates#141

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/pip/pip-8e3d7e30ab
Closed

[PIP] Bump the pip group with 2 updates#141
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/pip/pip-8e3d7e30ab

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 8, 2025

Bumps the pip group with 2 updates: setuptools and virtualenv.

Updates setuptools from 78.1 to 80.3.1

Changelog

Sourced from setuptools's changelog.

v80.3.1

Bugfixes

  • Restored select attributes in easy_install for temporary pbr compatibility. (#4976)

v80.3.0

Features

v80.2.0

Features

  • Restored support for install_scripts --executable (and classic behavior for the executable for those invocations). Instead, build_editable provides the portable form of the executables for downstream installers to rewrite. (#4934)

v80.1.0

Features

  • Added a deadline of Oct 31 to the setup.py install deprecation.

Bugfixes

  • With setup.py install --prefix=..., fall back to distutils install rather than failing. Note that running setup.py install is deprecated. (#3143)

v80.0.1

Bugfixes

  • Fixed index_url logic in develop compatibility shim. (#4966)

... (truncated)

Commits
  • f37845b Bump version: 80.3.0 → 80.3.1
  • a6f8db0 Merge pull request #4980 from pypa/debt/4976-pbr-compat
  • 05cf544 Add news fragment.
  • 5b39e4e Add the deprecation warning to attribute access.
  • 30c0038 Render the attributes dynamically.
  • d622935 Restore ScriptWriter and sys_executable properties.
  • 88bd892 Add a failing integration test. Ref #4976
  • 9dccfa4 Moved pbr setup into a fixture.
  • af8b322 Bump version: 80.2.0 → 80.3.0
  • e7b8084 Merge pull request #4963 from pypa/debt/remove-easy-install
  • Additional commits viewable in compare view

Updates virtualenv from 20.30 to 20.31.2

Release notes

Sourced from virtualenv's releases.

20.31.2

What's Changed

Full Changelog: pypa/virtualenv@20.31.1...20.31.2

20.31.1

What's Changed

Full Changelog: pypa/virtualenv@20.31.0...20.31.1

20.31.0

What's Changed

New Contributors

Full Changelog: pypa/virtualenv@20.30.0...20.31.0

Changelog

Sourced from virtualenv's changelog.

v20.31.2 (2025-05-08)

No significant changes.

v20.31.1 (2025-05-05)

Bugfixes - 20.31.1

- Upgrade embedded wheels:

    

  • pip to 25.1.1 from 25.1
    • 

  • setuptools to 80.3.1 from 78.1.0 (:issue:2880)
    • 



v20.31.0 (2025-05-05)


Features - 20.31.0

  • No longer bundle wheel wheels (except on Python 3.8), setuptools includes native bdist_wheel support. Update pip to 25.1. (:issue:2868)

Bugfixes - 20.31.0

- ``get_embed_wheel()`` no longer fails with a :exc:`TypeError` when it is
  called with an unknown *distribution*. (:issue:`2877`)
- Fix ``HelpFormatter`` error with Python 3.14.0b1. (:issue:`2878`)

v20.30.0 (2025-03-31)


Features - 20.30.0

  • Add support for GraalPy <https://github.com/oracle/graalpython>_. (:issue:2832)

Bugfixes - 20.30.0

- Upgrade embedded wheels:

    

  • setuptools to 78.1.0 from 75.3.2 (:issue:2863)
    • 



v20.29.3 (2025-03-06)


Bugfixes - 20.29.3

  • Ignore unreadable directories in PATH. (:issue:2794)

v20.29.2 (2025-02-10)

... (truncated)

Commits

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
[PIP] Bump the pip group with 2 updates
91d9985 
Bumps the pip group with 2 updates: [setuptools](https://github.com/pypa/setuptools) and [virtualenv](https://github.com/pypa/virtualenv).


Updates `setuptools` from 78.1 to 80.3.1
- [Release notes](https://github.com/pypa/setuptools/releases)
- [Changelog](https://github.com/pypa/setuptools/blob/main/NEWS.rst)
- [Commits](pypa/setuptools@v78.1.0...v80.3.1)

Updates `virtualenv` from 20.30 to 20.31.2
- [Release notes](https://github.com/pypa/virtualenv/releases)
- [Changelog](https://github.com/pypa/virtualenv/blob/main/docs/changelog.rst)
- [Commits](pypa/virtualenv@20.30.0...20.31.2)

---
updated-dependencies:
- dependency-name: setuptools
  dependency-version: 80.3.1
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: pip
- dependency-name: virtualenv
  dependency-version: 20.31.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: pip
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python Pull requests that update python code labels May 8, 2025
@dependabot dependabot Bot requested a review from a team as a code owner May 8, 2025 19:51
@dependabot dependabot Bot requested a review from tagdots-owner May 8, 2025 19:51
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python Pull requests that update python code labels May 8, 2025
@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot Bot commented on behalf of github May 8, 2025

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml

@dependabot dependabot Bot deleted the dependabot/pip/pip-8e3d7e30ab branch May 8, 2025 19:58
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@tagdots-owner tagdots-owner Awaiting requested review from tagdots-owner tagdots-owner is a code owner automatically assigned from tagdots-dev/admins

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python Pull requests that update python code

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@tagdots-owner