Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump the pip-minor-patch group across 1 directory with 6 updates #182

Closed
wants to merge 1 commit into from
Closed

Bump the pip-minor-patch group across 1 directory with 6 updates #182

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github May 27, 2024
edited
Loading

Bumps the pip-minor-patch group with 6 updates in the / directory:

Package From To
sentry-sdk 2.0.1 2.3.1
jinja2 3.1.3 3.1.4
pytest 8.2.0 8.2.1
coverage 7.5.0 7.5.2
pytest-asyncio 0.23.6 0.23.7
ruff 0.4.2 0.4.5

Updates sentry-sdk from 2.0.1 to 2.3.1

Release notes

Sourced from sentry-sdk's releases.

2.3.1

Various fixes & improvements

2.3.0

Various fixes & improvements

2.2.1

Various fixes & improvements

2.2.0

New features

  • Celery integration now sends additional data to Sentry to enable new features to guage the health of your queues
  • Added a new integration for Cohere
  • Reintroduced the last_event_id function, which had been removed in 2.0.0

Other fixes & improvements

2.1.1

2.1.0

... (truncated)

Changelog

Sourced from sentry-sdk's changelog.

2.3.1

Various fixes & improvements

2.3.0

Various fixes & improvements

2.2.1

Various fixes & improvements

2.2.0

New features

  • Celery integration now sends additional data to Sentry to enable new features to guage the health of your queues
  • Added a new integration for Cohere
  • Reintroduced the last_event_id function, which had been removed in 2.0.0

Other fixes & improvements

2.1.1

2.1.0

... (truncated)

Commits

Updates jinja2 from 3.1.3 to 3.1.4

Release notes

Sourced from jinja2's releases.

3.1.4

This is the Jinja 3.1.4 security release, which fixes security issues and bugs but does not otherwise change behavior and should not result in breaking changes.

PyPI: https://pypi.org/project/Jinja2/3.1.4/ Changes: https://jinja.palletsprojects.com/en/3.1.x/changes/#version-3-1-4

  • The xmlattr filter does not allow keys with / solidus, > greater-than sign, or = equals sign, in addition to disallowing spaces. Regardless of any validation done by Jinja, user input should never be used as keys to this filter, or must be separately validated first. GHSA-h75v-3vvj-5mfj
Changelog

Sourced from jinja2's changelog.

Version 3.1.4

Released 2024-05-05

  • The xmlattr filter does not allow keys with / solidus, > greater-than sign, or = equals sign, in addition to disallowing spaces. Regardless of any validation done by Jinja, user input should never be used as keys to this filter, or must be separately validated first. :ghsa:h75v-3vvj-5mfj
Commits

Updates pytest from 8.2.0 to 8.2.1

Release notes

Sourced from pytest's releases.

8.2.1

pytest 8.2.1 (2024-05-19)

Improvements

  • #12334: Support for Python 3.13 (beta1 at the time of writing).

Bug Fixes

  • #12120: Fix [PermissionError]{.title-ref} crashes arising from directories which are not selected on the command-line.
  • #12191: Keyboard interrupts and system exits are now properly handled during the test collection.
  • #12300: Fixed handling of 'Function not implemented' error under squashfuse_ll, which is a different way to say that the mountpoint is read-only.
  • #12308: Fix a regression in pytest 8.2.0 where the permissions of automatically-created .pytest_cache directories became rwx------ instead of the expected rwxr-xr-x.

Trivial/Internal Changes

  • #12333: pytest releases are now attested using the recent Artifact Attestation support from GitHub, allowing users to verify the provenance of pytest's sdist and wheel artifacts.
Commits
  • 66ff8df Prepare release version 8.2.1
  • 3ffcfd1 Merge pull request #12340 from pytest-dev/backport-12334-to-8.2.x
  • 0b28313 [8.2.x] Add Python 3.13 (beta) support
  • f3dd93a [8.2.x] Attest package provenance (#12335)
  • bb5a125 [8.2.x] Spelling (#12331)
  • f179bf2 Merge pull request #12327 from pytest-dev/backport-12325-to-8.2.x
  • 2b671b5 [8.2.x] cacheprovider: fix .pytest_cache not being world-readable
  • 65ab7cb Merge pull request #12324 from pytest-dev/backport-12320-to-8.2.x
  • 4d5fb7d Merge pull request #12319 from pytest-dev/backport-12311-to-8.2.x
  • cbe5996 [8.2.x] changelog: document unittest 8.2 change as breaking
  • Additional commits viewable in compare view

Updates coverage from 7.5.0 to 7.5.2

Changelog

Sourced from coverage's changelog.

Version 7.5.2 — 2024-05-24

  • Fix: nested matches of exclude patterns could exclude too much code, as reported in issue 1779_. This is now fixed.

  • Changed: previously, coverage.py would consider a module docstring to be an executable statement if it appeared after line 1 in the file, but not executable if it was the first line. Now module docstrings are never counted as executable statements. This can change coverage.py's count of the number of statements in a file, which can slightly change the coverage percentage reported.

  • In the HTML report, the filter term and "hide covered" checkbox settings are remembered between viewings, thanks to Daniel Diniz <pull 1776_>_.

  • Python 3.13.0b1 is supported.

  • Fix: parsing error handling is improved to ensure bizarre source files are handled gracefully, and to unblock oss-fuzz fuzzing, thanks to Liam DeVoe <pull 1788_>. Closes issue 1787.

.. _pull 1776: nedbat/coveragepy#1776 .. _issue 1779: nedbat/coveragepy#1779 .. _issue 1787: nedbat/coveragepy#1787 .. _pull 1788: nedbat/coveragepy#1788

.. _changes_7-5-1:

Version 7.5.1 — 2024-05-04

  • Fix: a pragma comment on the continuation lines of a multi-line statement now excludes the statement and its body, the same as if the pragma is on the first line. This closes issue 754. The fix was contributed by Daniel Diniz <pull 1773_>.

  • Fix: very complex source files like this one <resolvent_lookup_>_ could cause a maximum recursion error when creating an HTML report. This is now fixed, closing issue 1774_.

  • HTML report improvements:

    • Support files (JavaScript and CSS) referenced by the HTML report now have hashes added to their names to ensure updated files are used instead of stale cached copies.

    • Missing branch coverage explanations that said "the condition was never false" now read "the condition was always true" because it's easier to

... (truncated)

Commits
  • 242adea build: don't claim pre-alpha-1 in classifiers
  • 7f33622 docs: sample HTML for 7.5.2
  • 946fa3a docs: prep for 7.5.2
  • 535ddc3 build: pylint can run in parallel
  • 60a5d65 docs: explain partial coverage reports on generator expressions (#1789)
  • 0700018 docs: changelog for #1788 #1787. Thanks Liam DeVoe
  • 364282e fix: catch TokenError on parse (#1788)
  • 81089de fix: module docstrings are never counted as statements
  • 96bd930 fix: rework exclusion parsing to fix #1779
  • 75f9d51 test(build): when running metacov, create json report
  • Additional commits viewable in compare view

Updates pytest-asyncio from 0.23.6 to 0.23.7

Release notes

Sourced from pytest-asyncio's releases.

pytest-asyncio 0.23.7

0.23.7 (2024-05-19)

  • Silence deprecation warnings about unclosed event loops that occurred with certain CPython patch releases #817

Known issues

As of v0.23, pytest-asyncio attaches an asyncio event loop to each item of the test suite (i.e. session, packages, modules, classes, functions) and allows tests to be run in those loops when marked accordingly. Pytest-asyncio currently assumes that async fixture scope is correlated with the new event loop scope. This prevents fixtures from being evaluated independently from the event loop scope and breaks some existing test suites (see #706). For example, a test suite may require all fixtures and tests to run in the same event loop, but have async fixtures that are set up and torn down for each module. If you're affected by this issue, please continue using the v0.21 release, until it is resolved.

Commits
  • eb63d5a docs: Prepared for release of v0.23.7.
  • da04a7a Build(deps): Bump exceptiongroup in /dependencies/default
  • 00c667a Build(deps): Bump pytest from 8.1.1 to 8.2.0 in /dependencies/default
  • 3bd9cd8 [docs] Add changelog entry.
  • 15544f0 Revert GitHub Actions and Tox changes.
  • 6316b28 Deduplicate simplefilter snippet.
  • 3ffdfc5 asyncio.run(port_afinalizer())
  • 0107fd7 Remove extra space.
  • 3bf700a Fix GH Action mapping.
  • d15dc31 Fix 3109/3108 typo.
  • Additional commits viewable in compare view

Updates ruff from 0.4.2 to 0.4.5

Release notes

Sourced from ruff's releases.

v0.4.5

Changes

Ruff's language server is now in Beta

v0.4.5 marks the official Beta release of ruff server, an integrated language server built into Ruff. ruff server supports the same feature set as ruff-lsp, powering linting, formatting, and code fixes in Ruff's editor integrations -- but with superior performance and no installation required. We'd love your feedback!

You can enable ruff server in the VS Code extension today.

To read more about this exciting milestone, check out our blog post!

Rule changes

  • [flake8-future-annotations] Reword future-rewritable-type-annotation (FA100) message (#11381)
  • [pycodestyle] Consider soft keywords for E27 rules (#11446)
  • [pyflakes] Recommend adding unused import bindings to __all__ (#11314)
  • [pyflakes] Update documentation and deprecate ignore_init_module_imports (#11436)
  • [pyupgrade] Mark quotes as unnecessary for non-evaluated annotations (#11485)

Formatter

  • Avoid multiline quotes warning with quote-style = preserve (#11490)

Server

  • Support Jupyter Notebook files (#11206)
  • Support noqa comment code actions (#11276)
  • Fix automatic configuration reloading (#11492)
  • Fix several issues with configuration in Neovim and Helix (#11497)

CLI

  • Add --output-format as a CLI option for ruff config (#11438)

Bug fixes

  • Avoid PLE0237 for property with setter (#11377)
  • Avoid TCH005 for if stmt with elif/else block (#11376)
  • Avoid flagging __future__ annotations as required for non-evaluated type annotations (#11414)
  • Check for ruff executable in 'bin' directory as installed by 'pip install --target'. (#11450)
  • Sort edits prior to deduplicating in quotation fix (#11452)
  • Treat escaped newline as valid sequence (#11465)
  • [flake8-pie] Preserve parentheses in unnecessary-dict-kwargs (#11372)
  • [pylint] Ignore __slots__ with dynamic values (#11488)
  • [pylint] Remove try body from branch counting (#11487)
  • [refurb] Respect operator precedence in FURB110 (#11464)

Documentation

  • Add --preview to the README (#11395)

... (truncated)

Changelog

Sourced from ruff's changelog.

0.4.5

Ruff's language server is now in Beta

v0.4.5 marks the official Beta release of ruff server, an integrated language server built into Ruff. ruff server supports the same feature set as ruff-lsp, powering linting, formatting, and code fixes in Ruff's editor integrations -- but with superior performance and no installation required. We'd love your feedback!

You can enable ruff server in the VS Code extension today.

To read more about this exciting milestone, check out our blog post!

Rule changes

  • [flake8-future-annotations] Reword future-rewritable-type-annotation (FA100) message (#11381)
  • [pycodestyle] Consider soft keywords for E27 rules (#11446)
  • [pyflakes] Recommend adding unused import bindings to __all__ (#11314)
  • [pyflakes] Update documentation and deprecate ignore_init_module_imports (#11436)
  • [pyupgrade] Mark quotes as unnecessary for non-evaluated annotations (#11485)

Formatter

  • Avoid multiline quotes warning with quote-style = preserve (#11490)

Server

  • Support Jupyter Notebook files (#11206)
  • Support noqa comment code actions (#11276)
  • Fix automatic configuration reloading (#11492)
  • Fix several issues with configuration in Neovim and Helix (#11497)

CLI

  • Add --output-format as a CLI option for ruff config (#11438)

Bug fixes

  • Avoid PLE0237 for property with setter (#11377)
  • Avoid TCH005 for if stmt with elif/else block (#11376)
  • Avoid flagging __future__ annotations as required for non-evaluated type annotations (#11414)
  • Check for ruff executable in 'bin' directory as installed by 'pip install --target'. (#11450)
  • Sort edits prior to deduplicating in quotation fix (#11452)
  • Treat escaped newline as valid sequence (#11465)
  • [flake8-pie] Preserve parentheses in unnecessary-dict-kwargs (#11372)
  • [pylint] Ignore __slots__ with dynamic values (#11488)
  • [pylint] Remove try body from branch counting (#11487)
  • [refurb] Respect operator precedence in FURB110 (#11464)

Documentation

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the pip-minor-patch group across 1 directory with 6 updates
5155b5f 
Bumps the pip-minor-patch group with 6 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [sentry-sdk](https://github.com/getsentry/sentry-python) | `2.0.1` | `2.3.1` |
| [jinja2](https://github.com/pallets/jinja) | `3.1.3` | `3.1.4` |
| [pytest](https://github.com/pytest-dev/pytest) | `8.2.0` | `8.2.1` |
| [coverage](https://github.com/nedbat/coveragepy) | `7.5.0` | `7.5.2` |
| [pytest-asyncio](https://github.com/pytest-dev/pytest-asyncio) | `0.23.6` | `0.23.7` |
| [ruff](https://github.com/astral-sh/ruff) | `0.4.2` | `0.4.5` |



Updates `sentry-sdk` from 2.0.1 to 2.3.1
- [Release notes](https://github.com/getsentry/sentry-python/releases)
- [Changelog](https://github.com/getsentry/sentry-python/blob/master/CHANGELOG.md)
- [Commits](getsentry/sentry-python@2.0.1...2.3.1)

Updates `jinja2` from 3.1.3 to 3.1.4
- [Release notes](https://github.com/pallets/jinja/releases)
- [Changelog](https://github.com/pallets/jinja/blob/main/CHANGES.rst)
- [Commits](pallets/jinja@3.1.3...3.1.4)

Updates `pytest` from 8.2.0 to 8.2.1
- [Release notes](https://github.com/pytest-dev/pytest/releases)
- [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst)
- [Commits](pytest-dev/pytest@8.2.0...8.2.1)

Updates `coverage` from 7.5.0 to 7.5.2
- [Release notes](https://github.com/nedbat/coveragepy/releases)
- [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst)
- [Commits](nedbat/coveragepy@7.5.0...7.5.2)

Updates `pytest-asyncio` from 0.23.6 to 0.23.7
- [Release notes](https://github.com/pytest-dev/pytest-asyncio/releases)
- [Commits](pytest-dev/pytest-asyncio@v0.23.6...v0.23.7)

Updates `ruff` from 0.4.2 to 0.4.5
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@v0.4.2...v0.4.5)

---
updated-dependencies:
- dependency-name: sentry-sdk
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: pip-minor-patch
- dependency-name: jinja2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip-minor-patch
- dependency-name: pytest
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: pip-minor-patch
- dependency-name: coverage
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: pip-minor-patch
- dependency-name: pytest-asyncio
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: pip-minor-patch
- dependency-name: ruff
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: pip-minor-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels May 27, 2024
@dependabot dependabot bot mentioned this pull request May 27, 2024
Closed
@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github May 28, 2024

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this May 28, 2024
@dependabot dependabot bot deleted the dependabot/pip/pip-minor-patch-4e1c726077 branch May 28, 2024 11:26
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file python Pull requests that update Python code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants