Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

build(deps): bump the patch-and-minor-updates group with 6 updates #1029

Closed
wants to merge 1 commit into from
Closed

build(deps): bump the patch-and-minor-updates group with 6 updates #1029

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Aug 12, 2024
edited
Loading

Bumps the patch-and-minor-updates group with 6 updates:

Package From To
pytest-asyncio 0.23.7 0.23.8
pyyaml 6.0.1 6.0.2
prometheus-flask-exporter 0.23.0 0.23.1
sqlalchemy 2.0.31 2.0.32
aiohttp 3.9.5 3.10.3
kombu 5.3.7 5.4.0

Updates pytest-asyncio from 0.23.7 to 0.23.8

Release notes

Sourced from pytest-asyncio's releases.

pytest-asyncio 0.23.8

0.23.8 (2024-07-17)

  • Fixes a bug that caused duplicate markers in async tests #813

Known issues

As of v0.23, pytest-asyncio attaches an asyncio event loop to each item of the test suite (i.e. session, packages, modules, classes, functions) and allows tests to be run in those loops when marked accordingly. Pytest-asyncio currently assumes that async fixture scope is correlated with the new event loop scope. This prevents fixtures from being evaluated independently from the event loop scope and breaks some existing test suites (see #706). For example, a test suite may require all fixtures and tests to run in the same event loop, but have async fixtures that are set up and torn down for each module. If you're affected by this issue, please continue using the v0.21 release, until it is resolved.

Commits
  • 4be86a5 docs: Prepare release of v0.23.8.
  • 74b3a0a Build(deps): Bump exceptiongroup in /dependencies/default
  • b0009ca [build] Declare support for Python 3.13.
  • c747c7d Build(deps): Bump coverage from 7.5.4 to 7.6.0 in /dependencies/default
  • 5c40a1c Build(deps): Bump hypothesis in /dependencies/default
  • b735e8a build: Remove development dependency on Docker.
  • 91171b4 ci: Test with CPython 3.13.
  • d572138 Build(deps): Bump hypothesis in /dependencies/default
  • a89e4d7 Build(deps): Bump certifi in /dependencies/docs
  • b646cc1 [fix] Fixed a bug that causes markers to be duplicated for async test functions.
  • Additional commits viewable in compare view

Updates pyyaml from 6.0.1 to 6.0.2

Release notes

Sourced from pyyaml's releases.

6.0.2

What's Changed

  • Support for Cython 3.x and Python 3.13.

Full Changelog: yaml/pyyaml@6.0.1...6.0.2

6.0.2rc1

  • Support for extension build with Cython 3.x
  • Support for Python 3.13
  • Added PyPI wheels for musllinux on aarch64
Changelog

Sourced from pyyaml's changelog.

6.0.2 (2024-08-06)

Commits

Updates prometheus-flask-exporter from 0.23.0 to 0.23.1

Commits
  • 13ca7df Merge pull request #178 from rycus86/snyk-fix-c2eb9185033dfaf0e02b10c311d6b04b
  • 5a0a1c6 Bump version
  • 3e93715 Disable pydantic tests
  • 1bc4ffa fix: requirements.txt to reduce vulnerabilities
  • See full diff in compare view

Updates sqlalchemy from 2.0.31 to 2.0.32

Release notes

Sourced from sqlalchemy's releases.

2.0.32

Released: August 5, 2024

general

  • [general] [bug] [regression] Restored legacy class names removed from sqlalalchemy.orm.collections.*, including _orm.MappedCollection, _orm.mapped_collection(), _orm.column_mapped_collection(), _orm.attribute_mapped_collection(). Pull request courtesy Takashi Kajinami.

    References: #11435

orm

  • [orm] [usecase] The _orm.aliased.name parameter to _orm.aliased() may now be combined with the _orm.aliased.flat parameter, producing per-table names based on a name-prefixed naming convention. Pull request courtesy Eric Atkin.

    References: #11575

  • [orm] [bug] [regression] Fixed regression going back to 1.4 where accessing a collection using the "dynamic" strategy on a transient object and attempting to query would raise an internal error rather than the expected NoResultFound that occurred in 1.3.

    This change is also backported to: 1.4.53

    References: #11562

  • [orm] [bug] Fixed issue where using the _orm.Query.enable_eagerloads() and _orm.Query.yield_per() methods at the same time, in order to disable eager loading that's configured on the mapper directly, would be silently ignored, leading to errors or unexpected eager population of attributes.

    References: #10834

  • [orm] [bug] [regression] Fixed regression appearing in 2.0.21 caused by #10279 where using a _sql.delete() or _sql.update() against an ORM class that is the base of an inheritance hierarchy, while also specifying that subclasses should be loaded polymorphically, would leak the polymorphic joins into the UPDATE or DELETE statement as well creating incorrect SQL.

    References: #11625

  • [orm] [bug] [regression] Fixed regression from version 1.4 in

... (truncated)

Commits

Updates aiohttp from 3.9.5 to 3.10.3

Release notes

Sourced from aiohttp's releases.

3.10.3

Bug fixes

  • Fixed multipart reading when stream buffer splits the boundary over several read() calls -- by :user:Dreamsorcerer.

    Related issues and pull requests on GitHub: #8653.

  • Fixed :py:class:aiohttp.TCPConnector doing blocking I/O in the event loop to create the SSLContext -- by :user:bdraco.

    The blocking I/O would only happen once per verify mode. However, it could cause the event loop to block for a long time if the SSLContext creation is slow, which is more likely during startup when the disk cache is not yet present.

    Related issues and pull requests on GitHub: #8672.

Miscellaneous internal changes

  • Improved performance of :py:meth:~aiohttp.ClientWebSocketResponse.receive and :py:meth:~aiohttp.web.WebSocketResponse.receive when there is no timeout. -- by :user:bdraco.

    The timeout context manager is now avoided when there is no timeout as it accounted for up to 50% of the time spent in the :py:meth:~aiohttp.ClientWebSocketResponse.receive and :py:meth:~aiohttp.web.WebSocketResponse.receive methods.

    Related issues and pull requests on GitHub: #8660.

  • Improved performance of starting request handlers with Python 3.12+ -- by :user:bdraco.

    Related issues and pull requests on GitHub: #8661.

  • Improved performance of HTTP keep-alive checks -- by :user:bdraco.

    Previously, when processing a request for a keep-alive connection, the keep-alive check would happen every second; the check is now rescheduled if it fires too early instead.

    Related issues and pull requests on GitHub:

... (truncated)

Changelog

Sourced from aiohttp's changelog.

3.10.3 (2024-08-10)

Bug fixes

  • Fixed multipart reading when stream buffer splits the boundary over several read() calls -- by :user:Dreamsorcerer.

    Related issues and pull requests on GitHub: :issue:8653.

  • Fixed :py:class:aiohttp.TCPConnector doing blocking I/O in the event loop to create the SSLContext -- by :user:bdraco.

    The blocking I/O would only happen once per verify mode. However, it could cause the event loop to block for a long time if the SSLContext creation is slow, which is more likely during startup when the disk cache is not yet present.

    Related issues and pull requests on GitHub: :issue:8672.

Miscellaneous internal changes

  • Improved performance of :py:meth:~aiohttp.ClientWebSocketResponse.receive and :py:meth:~aiohttp.web.WebSocketResponse.receive when there is no timeout. -- by :user:bdraco.

    The timeout context manager is now avoided when there is no timeout as it accounted for up to 50% of the time spent in the :py:meth:~aiohttp.ClientWebSocketResponse.receive and :py:meth:~aiohttp.web.WebSocketResponse.receive methods.

    Related issues and pull requests on GitHub: :issue:8660.

  • Improved performance of starting request handlers with Python 3.12+ -- by :user:bdraco.

    Related issues and pull requests on GitHub: :issue:8661.

  • Improved performance of HTTP keep-alive checks -- by :user:bdraco.

    Previously, when processing a request for a keep-alive connection, the keep-alive check would happen every second; the check is now rescheduled if it fires too early instead.

... (truncated)

Commits
  • ef20502 Release 3.10.3 (#8675)
  • 73d17d4 [PR #8676/2915102 backport][3.10] Fix type ignore in SSLContext creation conn...
  • f3fcba4 [PR #8672/c3219bf backport][3.10] Fix TCPConnector doing blocking I/O in the ...
  • f96182a [PR #8662/be23d16f backport][3.10] Improve performance of keepalive reschedul...
  • dbcdb16 [PR #8667/406cd2c7 backport][3.10] Improve performance of generating random W...
  • b4ad882 [PR #8661/4d604ea backport][3.10] Improve performance of starting request han...
  • 3a9de0c [PR #8660/14d5295 backport][3.10] Improve performance of WebSockets when ther...
  • 1bc8d53 [PR #8657/6c6ecfaf backport][3.10] Fix multipart reading with split boundary ...
  • 491106e Release 3.10.2 (#8655)
  • ce2e975 [PR #8652/b0536ae6 backport][3.10] Do not follow symlinks for compressed file...
  • Additional commits viewable in compare view

Updates kombu from 5.3.7 to 5.4.0

Release notes

Sourced from kombu's releases.

v5.4.0

We want to add a special thanks to contribution celery/kombu#2007 by @​awmackowiak for fixing the Redis reconnection bug. Restoring Redis stability has been an essential improvement - thank you!

The rest of the changes are listed below.

What's Changed

Dependencies Updates

... (truncated)

Changelog

Sourced from kombu's changelog.

5.4.0

:release-date: 6 August, 2024 :release-by: Tomer Nosrati

We want to add a special thanks to contribution [#2007](https://github.com/celery/kombu/issues/2007) <https://github.com/celery/kombu/pull/2007>_ by @​awmackowiak for fixing the Redis reconnection bug. Restoring Redis stability has been an essential improvement - thank you!

The rest of the changes are listed below.

Changes

  • fix: Fanout exchange messages mixed across virtual databases in Redis sentinel (#1986)
  • Pin pymongo to latest version 4.7.2 (#1994)
  • enable/fix test_etcd.py (resolves #2001) (#2002)
  • Limit requests<2.32.0 due to docker-py issue 3256 (#2011)
  • enhance: allow users to disable broker heartbeats (#1998)
  • enhance: allow uses to disable broker heartbeats by not providing a timeout (#1997, #1998) (#2016)
  • chore(typing): annotate utils/debug.py (#1714)
  • ConnectionPool can't be used after .resize(..., reset=True) (resolves #2018) (#2024)
  • Fix Redis connections after reconnect - consumer starts consuming the tasks after crash (#2007)
  • Add support for mongodb+srv scheme (#1976)
  • Added Changelog for v5.4.0rc1 (#2033)
  • Fixed bumpversion bug with RC versions (#2034)
  • Fix typo in README.rst (#2036)
  • Reverted limiting requests<2.32.0 in requirements/default.txt but kept in tox.ini due to docker-py issue 3256 (#2041)
  • Redis transport - Redelivered messages should respect the original priority (#2026)
  • Exclude Unit 3.9 from CI (#2046)
  • Fixed CI error from excluding Python 3.9 unit tests (#2047)
  • Fixed flaky integration test: test_publish_requeue_consume() (#2048)
  • fix: don't crash on properties.body_encoding: utf-8 (#1690)
  • chore: handle kafka transport with confluentkafka ✨ (#1574)
  • Revert "Exclude Unit 3.9 from CI #2046" (#2054)
  • fix azure service bus isinstance checks when None (#2053)
  • Added Changelog for v5.4.0rc2 (#2056)
  • Fixed typo in Changelog for v5.4.0rc2 (#2057)
  • Use logging.Logger.warning (#2058)
  • SQS: add support for passing MessageAttributes (#2059)
  • Added Changelog for v5.4.0rc3 (#2064)
  • Prepare for release: v5.4.0 (#2095)

Dependencies Updates

  • Update mypy to 1.10.0 (#1988)
  • Update pytest to 8.2.0 (#1990)
  • Bump pytest from 8.2.0 to 8.2.1 (#2005)
  • Pin typing_extensions to latest version 4.12.1 (#2017)
  • Bump pytest from 8.2.1 to 8.2.2 (#2021)
  • Bump pymongo from 4.7.2 to 4.7.3 (#2022)
  • Update flake8 to 7.1.0 (#2028)

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
build(deps): bump the patch-and-minor-updates group with 6 updates
53eaa1f 
Bumps the patch-and-minor-updates group with 6 updates:

| Package | From | To |
| --- | --- | --- |
| [pytest-asyncio](https://github.com/pytest-dev/pytest-asyncio) | `0.23.7` | `0.23.8` |
| [pyyaml](https://github.com/yaml/pyyaml) | `6.0.1` | `6.0.2` |
| [prometheus-flask-exporter](https://github.com/rycus86/prometheus_flask_exporter) | `0.23.0` | `0.23.1` |
| [sqlalchemy](https://github.com/sqlalchemy/sqlalchemy) | `2.0.31` | `2.0.32` |
| [aiohttp](https://github.com/aio-libs/aiohttp) | `3.9.5` | `3.10.3` |
| [kombu](https://github.com/celery/kombu) | `5.3.7` | `5.4.0` |


Updates `pytest-asyncio` from 0.23.7 to 0.23.8
- [Release notes](https://github.com/pytest-dev/pytest-asyncio/releases)
- [Commits](pytest-dev/pytest-asyncio@v0.23.7...v0.23.8)

Updates `pyyaml` from 6.0.1 to 6.0.2
- [Release notes](https://github.com/yaml/pyyaml/releases)
- [Changelog](https://github.com/yaml/pyyaml/blob/main/CHANGES)
- [Commits](yaml/pyyaml@6.0.1...6.0.2)

Updates `prometheus-flask-exporter` from 0.23.0 to 0.23.1
- [Commits](rycus86/prometheus_flask_exporter@0.23.0...0.23.1)

Updates `sqlalchemy` from 2.0.31 to 2.0.32
- [Release notes](https://github.com/sqlalchemy/sqlalchemy/releases)
- [Changelog](https://github.com/sqlalchemy/sqlalchemy/blob/main/CHANGES.rst)
- [Commits](https://github.com/sqlalchemy/sqlalchemy/commits)

Updates `aiohttp` from 3.9.5 to 3.10.3
- [Release notes](https://github.com/aio-libs/aiohttp/releases)
- [Changelog](https://github.com/aio-libs/aiohttp/blob/master/CHANGES.rst)
- [Commits](aio-libs/aiohttp@v3.9.5...v3.10.3)

Updates `kombu` from 5.3.7 to 5.4.0
- [Release notes](https://github.com/celery/kombu/releases)
- [Changelog](https://github.com/celery/kombu/blob/main/Changelog.rst)
- [Commits](celery/kombu@v5.3.7...v5.4.0)

---
updated-dependencies:
- dependency-name: pytest-asyncio
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patch-and-minor-updates
- dependency-name: pyyaml
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patch-and-minor-updates
- dependency-name: prometheus-flask-exporter
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patch-and-minor-updates
- dependency-name: sqlalchemy
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patch-and-minor-updates
- dependency-name: aiohttp
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: patch-and-minor-updates
- dependency-name: kombu
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: patch-and-minor-updates
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Aug 12, 2024
@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Aug 19, 2024

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Aug 19, 2024
@dependabot dependabot bot deleted the dependabot/pip/patch-and-minor-updates-b237756f24 branch August 19, 2024 20:23
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file python Pull requests that update Python code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants