Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump the allpip group with 4 updates #510

Closed
wants to merge 1 commit into from
Closed

Bump the allpip group with 4 updates #510

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 10, 2025
edited
Loading

Bumps the allpip group with 4 updates: alembic, jinja2, ruff and setuptools.

Updates alembic from 1.14.1 to 1.15.1

Release notes

Sourced from alembic's releases.

1.15.1

Released: March 4, 2025

bug

  • [bug] [installation] Fixed an issue in the new PEP 621 pyproject.toml layout that prevented Alembic's template files from being included in the .whl file in the distribution.

    References: #1616

1.15.0

Released: March 4, 2025

changed

  • [changed] [general] Support for Python 3.8 is dropped as of Alembic 1.15.0; this version is now EOL so Python 3.9 or higher is required for Alembic 1.15.

  • [changed] [general] Support for SQLAlchemy 1.3, which was EOL as of 2021, is now dropped from Alembic as of version 1.15.0. SQLAlchemy version 1.4 or greater is required for use with Alembic 1.15.0.

  • [changed] [general] Installation has been converted to use PEP 621, e.g. pyproject.toml.

usecase

  • [usecase] [autogenerate] Index autogenerate will now render labels for expressions that use them. This is useful when applying operator classes in PostgreSQL that can be keyed on the label name.

    References: #1603

  • [usecase] [autogenerate] Add revision context to AutogenerateDiffsDetected so that command can be wrapped and diffs may be output in a different format. Pull request courtesy Louis-Amaury Chaib (@​lachaib).

    References: #1597

bug

  • [bug] [environment] Added a basic docstring to the migration template files so that the upgrade/downgrade methods pass the D103 linter check which requires a docstring for public functions. Pull request courtesy Peter Cock.

... (truncated)

Commits

Updates jinja2 from 3.1.5 to 3.1.6

Release notes

Sourced from jinja2's releases.

3.1.6

This is the Jinja 3.1.6 security release, which fixes security issues but does not otherwise change behavior and should not result in breaking changes compared to the latest feature release.

PyPI: https://pypi.org/project/Jinja2/3.1.6/ Changes: https://jinja.palletsprojects.com/en/stable/changes/#version-3-1-6

  • The |attr filter does not bypass the environment's attribute lookup, allowing the sandbox to apply its checks. GHSA-cpwx-vrp4-4pq7
Changelog

Sourced from jinja2's changelog.

Version 3.1.6

Released 2025-03-05

  • The |attr filter does not bypass the environment's attribute lookup, allowing the sandbox to apply its checks. :ghsa:cpwx-vrp4-4pq7
Commits

Updates ruff from 0.9.9 to 0.9.10

Release notes

Sourced from ruff's releases.

0.9.10

Release Notes

Preview features

  • [ruff] Add new rule RUF059: Unused unpacked assignment (#16449)
  • [syntax-errors] Detect assignment expressions before Python 3.8 (#16383)
  • [syntax-errors] Named expressions in decorators before Python 3.9 (#16386)
  • [syntax-errors] Parenthesized keyword argument names after Python 3.8 (#16482)
  • [syntax-errors] Positional-only parameters before Python 3.8 (#16481)
  • [syntax-errors] Tuple unpacking in return and yield before Python 3.8 (#16485)
  • [syntax-errors] Type parameter defaults before Python 3.13 (#16447)
  • [syntax-errors] Type parameter lists before Python 3.12 (#16479)
  • [syntax-errors] except* before Python 3.11 (#16446)
  • [syntax-errors] type statements before Python 3.12 (#16478)

Bug fixes

  • Escape template filenames in glob patterns in configuration (#16407)
  • [flake8-simplify] Exempt unittest context methods for SIM115 rule (#16439)
  • Formatter: Fix syntax error location in notebooks (#16499)
  • [pyupgrade] Do not offer fix when at least one target is global/nonlocal (UP028) (#16451)
  • [flake8-builtins] Ignore variables matching module attribute names (A001) (#16454)
  • [pylint] Convert code keyword argument to a positional argument in fix for (PLR1722) (#16424)

CLI

  • Move rule code from description to check_name in GitLab output serializer (#16437)

Documentation

  • [pydocstyle] Clarify that D417 only checks docstrings with an arguments section (#16494)

Contributors

... (truncated)

Changelog

Sourced from ruff's changelog.

0.9.10

Preview features

  • [ruff] Add new rule RUF059: Unused unpacked assignment (#16449)
  • [syntax-errors] Detect assignment expressions before Python 3.8 (#16383)
  • [syntax-errors] Named expressions in decorators before Python 3.9 (#16386)
  • [syntax-errors] Parenthesized keyword argument names after Python 3.8 (#16482)
  • [syntax-errors] Positional-only parameters before Python 3.8 (#16481)
  • [syntax-errors] Tuple unpacking in return and yield before Python 3.8 (#16485)
  • [syntax-errors] Type parameter defaults before Python 3.13 (#16447)
  • [syntax-errors] Type parameter lists before Python 3.12 (#16479)
  • [syntax-errors] except* before Python 3.11 (#16446)
  • [syntax-errors] type statements before Python 3.12 (#16478)

Bug fixes

  • Escape template filenames in glob patterns in configuration (#16407)
  • [flake8-simplify] Exempt unittest context methods for SIM115 rule (#16439)
  • Formatter: Fix syntax error location in notebooks (#16499)
  • [pyupgrade] Do not offer fix when at least one target is global/nonlocal (UP028) (#16451)
  • [flake8-builtins] Ignore variables matching module attribute names (A001) (#16454)
  • [pylint] Convert code keyword argument to a positional argument in fix for (PLR1722) (#16424)

CLI

  • Move rule code from description to check_name in GitLab output serializer (#16437)

Documentation

  • [pydocstyle] Clarify that D417 only checks docstrings with an arguments section (#16494)
Commits
  • 0dfa810 Bump 0.9.10 (#16556)
  • 9cd0cde Assert that formatted code doesn't introduce any new unsupported syntax error...
  • 05a4c29 print MDTEST_TEST_FILTER value in single-quotes (and escaped) (#16548)
  • b3c884f [syntax-errors] Parenthesized keyword argument names after Python 3.8 (#16482)
  • 6c14225 [syntax-errors] Tuple unpacking in return and yield before Python 3.8 (#1...
  • 0a627ef [red-knot] Never is callable and iterable. Arbitrary attributes can be access...
  • a25be46 Clarify that D417 only checks docstrings with an arguments section (#16494)
  • ce0018c Add OsSystem support to mdtests (#16518)
  • 48f906e Add tests for case-sensitive module resolution (#16517)
  • ebd172e [red-knot] Several failing tests for generics (#16509)
  • Additional commits viewable in compare view

Updates setuptools from 75.8.2 to 76.0.0

Changelog

Sourced from setuptools's changelog.

v76.0.0

Deprecations and Removals

v75.9.1

Bugfixes

  • Fix ImportError in distutils when configuring for linking. (#4866)

v75.9.0

Features

  • pypa/distutils#327#4852)
Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the allpip group with 4 updates
93856cd 
Bumps the allpip group with 4 updates: [alembic](https://github.com/sqlalchemy/alembic), [jinja2](https://github.com/pallets/jinja), [ruff](https://github.com/astral-sh/ruff) and [setuptools](https://github.com/pypa/setuptools).


Updates `alembic` from 1.14.1 to 1.15.1
- [Release notes](https://github.com/sqlalchemy/alembic/releases)
- [Changelog](https://github.com/sqlalchemy/alembic/blob/main/CHANGES)
- [Commits](https://github.com/sqlalchemy/alembic/commits)

Updates `jinja2` from 3.1.5 to 3.1.6
- [Release notes](https://github.com/pallets/jinja/releases)
- [Changelog](https://github.com/pallets/jinja/blob/main/CHANGES.rst)
- [Commits](pallets/jinja@3.1.5...3.1.6)

Updates `ruff` from 0.9.9 to 0.9.10
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@0.9.9...0.9.10)

Updates `setuptools` from 75.8.2 to 76.0.0
- [Release notes](https://github.com/pypa/setuptools/releases)
- [Changelog](https://github.com/pypa/setuptools/blob/main/NEWS.rst)
- [Commits](pypa/setuptools@v75.8.2...v76.0.0)

---
updated-dependencies:
- dependency-name: alembic
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: allpip
- dependency-name: jinja2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: allpip
- dependency-name: ruff
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: allpip
- dependency-name: setuptools
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: allpip
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Dependancy issue label Mar 10, 2025
@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Mar 17, 2025

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Mar 17, 2025
@dependabot dependabot bot deleted the dependabot/pip/allpip-178a67cdd6 branch March 17, 2025 07:50
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Dependancy issue
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants