release: 2.3.3-rc1 #250
Merged
release: 2.3.3-rc1 #250
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
![pullrequest[bot]](https://avatars.githubusercontent.com/in/3434?s=60&v=4){kind=small}
There was a problem hiding this comment.
HackerOne Code Security Review
🟢 Scan Complete: 2 Issue(s)
Here's how the code changes were interpreted and info about the tools used for scanning.
📖 Summary of Changes
The project underwent a minor version update from 2.3.2 to 2.3.3, primarily focusing on updating the httpx-aiohttp dependency to version 0.1.9. Additionally, the Ruff linter configuration was modified to include a new rule for detecting missing future annotations. Version numbers were consistently updated across configuration and source files.| File | Summary |
|---|---|
| .release-please-manifest.json | The version number in the JSON file has been incremented from 2.3.2 to 2.3.3, indicating a minor version update. |
| CHANGELOG.md | Version bump to 2.3.3 with dependency updates, including bumping httpx-aiohttp to 0.1.9 and adding ruff configuration for detecting missing future annotations. |
| pyproject.toml | Version updated from 2.3.2 to 2.3.3. Optional dependency httpx_aiohttp version bumped from >=0.1.8 to >=0.1.9. Ruff linter configuration updated with new select rule FA102 for missing future annotations. |
| requirements-dev.lock | The only change is in the httpx-aiohttp package version, which was updated from 0.1.8 to 0.1.9, indicating a minor version increment. |
| requirements.lock | The only change is the version of httpx-aiohttp, which was updated from 0.1.8 to 0.1.9. All other dependencies and their versions remain the same. |
| src/writerai/_version.py | The version number has been incremented from 2.3.2 to 2.3.3 in the file, indicating a minor version update. |
ℹ️ Issues Detected
NOTE: These may not require action!
Below are unvalidated results from the Analysis Tools that ran during the latest scan for transparency. We investigate each of these for accuracy and relevance before surfacing them as a potential problem.
How will I know if something is a problem?
When validation completes, any concerns that warrant attention prior to merge will be posted as inline comments. These will show up in 2 ways:
- Expert review (most cases): Issues will be posted by experts who manually reviewed and validated them. These are real HackerOne engineers (not bots) reviewing through an integrated IDE-like tool. You can communicate with them like any other reviewer. They'll stay assigned and get notified with commit & comment updates.
- Automatically: In cases where our validation checks have highest confidence the problem is legitimate and urgent. These will include a description of contextual reasoning why & actionable next steps.
| File & Line | Issue |
|---|---|
CHANGELOG.md Line 9 |
The file is a changelog documenting version history and changes. It contains no security vulnerabilities in the changed lines. |
pyproject.toml Line 231 |
Added a new linting rule 'FA102' to check for missing future annotations and configured it as a safe fix. This could potentially lead to type annotation issues if not properly implemented across the codebase. |
🧰 Analysis tools
- [ ✅ ] HackerOne AI Code Analysis
- [ ✅ ] HackerOne AI Code Validation
- [ ✅ ] semgrep
- [ ✅ ] rubocop
- [ ✅ ] bandit
⏱️ Latest scan covered changes up to commit 10e11b4 (latest)
stainless-app
bot
force-pushed
the
release-please--branches--main--changes--next
branch
from
3dc471b to
10e11b4
Compare
stainless-app
bot
force-pushed
the
release-please--branches--main--changes--next
branch
from
10e11b4 to
4554668
Compare
stainless-app
bot
force-pushed
the
release-please--branches--main--changes--next
branch
from
4554668 to
da87809
Compare
There was a problem hiding this comment.
Due to inactivity, PullRequest has cancelled this review job. You can reactivate the code review job from the PullRequest dashboard.
stainless-app
bot
force-pushed
the
release-please--branches--main--changes--next
branch
from
da87809 to
205ff6d
Compare
stainless-app
bot
force-pushed
the
release-please--branches--main--changes--next
branch
from
205ff6d to
bb90bcf
Compare
stainless-app
bot
force-pushed
the
release-please--branches--main--changes--next
branch
from
bb90bcf to
932fbc2
Compare
stainless-app
bot
force-pushed
the
release-please--branches--main--changes--next
branch
from
932fbc2 to
555d57f
Compare
stainless-app
bot
force-pushed
the
release-please--branches--main--changes--next
branch
from
555d57f to
95ae244
Compare
stainless-app
bot
force-pushed
the
release-please--branches--main--changes--next
branch
from
95ae244 to
2e7e941
Compare
stainless-app
bot
force-pushed
the
release-please--branches--main--changes--next
branch
from
2e7e941 to
8156440
Compare
stainless-app
bot
force-pushed
the
release-please--branches--main--changes--next
branch
from
8156440 to
c5faea3
Compare
Contributor
Author
Release version edited manuallyThe Pull Request version has been manually set to If you instead want to use the version number |
stainless-app
bot
force-pushed
the
release-please--branches--main--changes--next
branch
from
c5faea3 to
e11db91
Compare
stainless-app
bot
force-pushed
the
release-please--branches--main--changes--next
branch
from
e11db91 to
de7ffa2
Compare
Contributor
Author
|
🤖 Release is at https://github.com/writer/writer-python/releases/tag/v2.3.3-rc1 🌻 |
stainless-app
bot
added
autorelease: pre-release
autorelease: tagged
and removed
autorelease: pending
labels
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Automated Release PR
2.3.3-rc1 (2025-12-01)
Full Changelog: v2.3.2...v2.3.3-rc1
Bug Fixes
model_dumpandmodel_dump_jsonfor Pydantic v1 (1fb3322)Chores
httpx-aiohttpversion to 0.1.9 (f2ef07d)Documentation
This pull request is managed by Stainless's GitHub App.
The semver version number is based on included commit messages. Alternatively, you can manually set the version number in the title of this pull request.
For a better experience, it is recommended to use either rebase-merge or squash-merge when merging this pull request.
🔗 Stainless website
📚 Read the docs
🙋 Reach out for help or questions