Skip to content

Bump the pip group with 14 updates #89

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

Bump the pip group with 14 updates #89

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 17, 2025

Bumps the pip group with 14 updates:

Package From To
fastapi 0.115.0 0.115.8
pyjwt 2.9.0 2.10.1
sentry-sdk 2.14.0 2.21.0
humanize 4.10.0 4.12.0
httpx 0.27.2 0.28.1
ipython 8.27.0 8.32.0
saritasa-invocations 1.2.3 1.3.1
uvicorn 0.31.0 0.34.0
mypy 1.11.2 1.15.0
pytest 8.3.3 8.3.4
coverage 7.6.1 7.6.12
pytest-lazy-fixtures 1.1.1 1.1.2
asyncpg 0.29.0 0.30.0
factory-boy 3.3.1 3.3.3

Updates fastapi from 0.115.0 to 0.115.8

Release notes

Sourced from fastapi's releases.

0.115.8

Fixes

  • 🐛 Fix OAuth2PasswordRequestForm and OAuth2PasswordRequestFormStrict fixed grant_type "password" RegEx. PR #9783 by @​skarfie123.

Refactors

Docs

Translations

  • 🌐 Add Japanese translation for docs/ja/docs/environment-variables.md. PR #13226 by @​k94-ishi.
  • 🌐 Add Russian translation for docs/ru/docs/advanced/async-tests.md. PR #13227 by @​Rishat-F.
  • 🌐 Update Russian translation for docs/ru/docs/tutorial/dependencies/dependencies-in-path-operation-decorators.md. PR #13252 by @​Rishat-F.
  • 🌐 Add Russian translation for docs/ru/docs/tutorial/bigger-applications.md. PR #13154 by @​alv2017.

Internal

  • ⬆️ Add support for Python 3.13. PR #13274 by @​tiangolo.
  • ⬆️ Upgrade AnyIO max version for tests, new range: >=3.2.1,<5.0.0. PR #13273 by @​tiangolo.
  • 🔧 Update Sponsors badges. PR #13271 by @​tiangolo.
  • ♻️ Fix notify_translations.py empty env var handling for PR label events vs workflow_dispatch. PR #13272 by @​tiangolo.
  • ♻️ Refactor and move scripts/notify_translations.py, no need for a custom GitHub Action. PR #13270 by @​tiangolo.
  • 🔨 Update FastAPI People Experts script, refactor and optimize data fetching to handle rate limits. PR #13267 by @​tiangolo.
  • ⬆ Bump pypa/gh-action-pypi-publish from 1.12.3 to 1.12.4. PR #13251 by @​dependabot[bot].

0.115.7

Upgrades

Refactors

... (truncated)

Commits
  • 7128971 🔖 Release version 0.115.8
  • 55f8a44 📝 Update release notes
  • 83ab6ac 📝 Change the word "unwrap" to "unpack" in `docs/en/docs/tutorial/extra-models...
  • 3d02a92 📝 Update release notes
  • 1b00f8a ✅ Simplify tests for body_multiple_params (#13237)
  • d97647f 📝 Update release notes
  • 9667ce8 📝 Update Request Body's tutorial002 to deal with tax=0 case (#13230)
  • 0541693 📝 Update release notes
  • 041b2e1 📝 Update release notes
  • 30b270b ♻️ Move duplicated code portion to a static method in the APIKeyBase super ...
  • Additional commits viewable in compare view

Updates pyjwt from 2.9.0 to 2.10.1

Release notes

Sourced from pyjwt's releases.

2.10.1

Fixed

Full Changelog: jpadilla/pyjwt@2.10.0...2.10.1

2.10.0

What's Changed

New Contributors

Full Changelog: jpadilla/pyjwt@2.9.0...2.10.0

Changelog

Sourced from pyjwt's changelog.

v2.10.1 <https://github.com/jpadilla/pyjwt/compare/2.10.0...2.10.1>__

Fixed


- Prevent partial matching of `iss` claim by @fabianbadoi in `GHSA-75c5-xw7c-p5pm <https://github.com/jpadilla/pyjwt/security/advisories/GHSA-75c5-xw7c-p5pm>`__

v2.10.0 &lt;https://github.com/jpadilla/pyjwt/compare/2.9.0...2.10.0&gt;__


Changed

  • Remove algorithm requirement from JWT API, instead relying on JWS API for enforcement, by @​luhn in [#975](https://github.com/jpadilla/pyjwt/issues/975) <https://github.com/jpadilla/pyjwt/pull/975>__

  • Use Sequence for parameter types rather than List where applicable by @​imnotjames in [#970](https://github.com/jpadilla/pyjwt/issues/970) <https://github.com/jpadilla/pyjwt/pull/970>__

  • Add JWK support to JWT encode by @​luhn in [#979](https://github.com/jpadilla/pyjwt/issues/979) <https://github.com/jpadilla/pyjwt/pull/979>__

  • Encoding and decoding payloads using the none algorithm by @​jpadilla in #c2629f6 <https://github.com/jpadilla/pyjwt/commit/c2629f66c593459e02616048443231ccbe18be16>

    Before:

    .. code-block:: pycon

    import jwt jwt.encode({"payload": "abc"}, key=None, algorithm=None)

    After:

    .. code-block:: pycon

    import jwt jwt.encode({"payload": "abc"}, key=None, algorithm="none")

  • Added validation for 'sub' (subject) and 'jti' (JWT ID) claims in tokens by @​Divan009 in [#1005](https://github.com/jpadilla/pyjwt/issues/1005) <https://github.com/jpadilla/pyjwt/pull/1005>__

  • Refactor project configuration files from setup.cfg to pyproject.toml by @​cleder in [#995](https://github.com/jpadilla/pyjwt/issues/995) <https://github.com/jpadilla/pyjwt/pull/995>__

  • Ruff linter and formatter changes by @​gagandeepp in [#1001](https://github.com/jpadilla/pyjwt/issues/1001) <https://github.com/jpadilla/pyjwt/pull/1001>__

  • Drop support for Python 3.8 (EOL) by @​kkirsche in [#1007](https://github.com/jpadilla/pyjwt/issues/1007) <https://github.com/jpadilla/pyjwt/pull/1007>__

Fixed


- Encode EC keys with a fixed bit length by @etianen in `[#990](https://github.com/jpadilla/pyjwt/issues/990) <https://github.com/jpadilla/pyjwt/pull/990>`__
- Add an RTD config file to resolve Read the Docs build failures by @kurtmckee in `[#977](https://github.com/jpadilla/pyjwt/issues/977) <https://github.com/jpadilla/pyjwt/pull/977>`__
- Docs: Update ``iat`` exception docs by @pachewise in `[#974](https://github.com/jpadilla/pyjwt/issues/974) <https://github.com/jpadilla/pyjwt/pull/974>`__
- Docs: Fix ``decode_complete`` scope and algorithms by @RbnRncn in `[#982](https://github.com/jpadilla/pyjwt/issues/982) <https://github.com/jpadilla/pyjwt/pull/982>`__
- Fix doctest for ``docs/usage.rst`` by @pachewise in `[#986](https://github.com/jpadilla/pyjwt/issues/986) <https://github.com/jpadilla/pyjwt/pull/986>`__
</tr></table>

... (truncated)

Commits

Updates sentry-sdk from 2.14.0 to 2.21.0

Release notes

Sourced from sentry-sdk's releases.

2.21.0

Various fixes & improvements

2.20.0

... (truncated)

Changelog

Sourced from sentry-sdk's changelog.

2.21.0

Various fixes & improvements

2.20.0

... (truncated)

Commits
  • dc1460a Update CHANGELOG.md
  • d7dff6d release: 2.21.0
  • 2f51db7 feat(tracing): Add __repr__ to Baggage (#4043)
  • c227e11 ref(utils): Explicitly use None default when checking metadata (#4039)
  • d937272 fix(flags): Fix bug where concurrent accesses to the flags property could rai...
  • 3217cca fix(integrations): Do not patch execute (#4026)
  • 0cda7d9 test: Fix typo in test name (#4036)
  • 2ebaa7c ref(integrations): Add more min versions of frameworks (#3973)
  • f995d8c [1] Add tox generation script, but don't use it yet (#3971)
  • c1cf0fe Set level based on status code for HTTP client breadcrumbs (#4004)
  • Additional commits viewable in compare view

Updates humanize from 4.10.0 to 4.12.0

Release notes

Sourced from humanize's releases.

4.12.0

Added

Changed

Fixed

4.11.0

Added

Changed

  • Drop support for Python 3.8 (#202) @​hugovk
  • Defer fractions.Fraction import to save 5ms (#201) @​hugovk
  • Speedup x 1.85: Generate __version__ at build to avoid slow importlib.metadata import (#200) @​hugovk

Fixed

Commits
  • a0602c7 Defer imports for faster overall import time: 5 ms -> 3 ms (#238)
  • aaef964 Defer importing datetime to improve startup speed
  • a85c171 Defer importing math to improve startup speed
  • bad1093 Replace deprecated classifier with licence expression (PEP 639) (#236)
  • 6427174 Replace deprecated classifier with licence expression (PEP 639)
  • 4762bdd Add support for Python 3.14 and test PyPy3.11 (#235)
  • 13f71a3 Defer imports for faster overall import time: 19 ms -> 5 ms (#234)
  • ec33490 yamllint
  • c7188d3 Add support for Python 3.14 and test PyPy3.11
  • 147cbbc Defer other imports for faster overall import
  • Additional commits viewable in compare view

Updates httpx from 0.27.2 to 0.28.1

Release notes

Sourced from httpx's releases.

Version 0.28.1

0.28.1 (6th December, 2024)

  • Fix SSL case where verify=False together with client side certificates.

Version 0.28.0

0.28.0 (28th November, 2024)

The 0.28 release includes a limited set of deprecations.

Deprecations:

We are working towards a simplified SSL configuration API.

For users of the standard verify=True or verify=False cases, or verify=<ssl_context> case this should require no changes. The following cases have been deprecated...

  • The verify argument as a string argument is now deprecated and will raise warnings.
  • The cert argument is now deprecated and will raise warnings.

Our revised SSL documentation covers how to implement the same behaviour with a more constrained API.

The following changes are also included:

  • The deprecated proxies argument has now been removed.
  • The deprecated app argument has now been removed.
  • JSON request bodies use a compact representation. (#3363)
  • Review URL percent escape sets, based on WHATWG spec. (#3371, #3373)
  • Ensure certifi and httpcore are only imported if required. (#3377)
  • Treat socks5h as a valid proxy scheme. (#3178)
  • Cleanup Request() method signature in line with client.request() and httpx.request(). (#3378)
  • Bugfix: When passing params={}, always strictly update rather than merge with an existing querystring. (#3364)
Changelog

Sourced from httpx's changelog.

0.28.1 (6th December, 2024)

  • Fix SSL case where verify=False together with client side certificates.

0.28.0 (28th November, 2024)

Be aware that the default JSON request bodies now use a more compact representation. This is generally considered a prefered style, tho may require updates to test suites.

The 0.28 release includes a limited set of deprecations...

Deprecations:

We are working towards a simplified SSL configuration API.

For users of the standard verify=True or verify=False cases, or verify=<ssl_context> case this should require no changes. The following cases have been deprecated...

  • The verify argument as a string argument is now deprecated and will raise warnings.
  • The cert argument is now deprecated and will raise warnings.

Our revised SSL documentation covers how to implement the same behaviour with a more constrained API.

The following changes are also included:

  • The deprecated proxies argument has now been removed.
  • The deprecated app argument has now been removed.
  • JSON request bodies use a compact representation. (#3363)
  • Review URL percent escape sets, based on WHATWG spec. (#3371, #3373)
  • Ensure certifi and httpcore are only imported if required. (#3377)
  • Treat socks5h as a valid proxy scheme. (#3178)
  • Cleanup Request() method signature in line with client.request() and httpx.request(). (#3378)
  • Bugfix: When passing params={}, always strictly update rather than merge with an existing querystring. (#3364)
Commits

Updates ipython from 8.27.0 to 8.32.0

Commits

Updates saritasa-invocations from 1.2.3 to 1.3.1

Release notes

Sourced from saritasa-invocations's releases.

1.3.1

  • Fix git.blame-copy merging without conflicts

What's Changed

New Contributors

Full Changelog: saritasa-nest/saritasa-invocations@1.3.0...1.3.1

1.3.0

  • Add params for system.chown(owner and path)
  • Add ability to set dump_dir for K8SDBSettings
  • Confirm support for python 3.13

What's Changed

@dependabot
Bump the pip group with 14 updates
6c697a5 
Bumps the pip group with 14 updates:

| Package | From | To |
| --- | --- | --- |
| [fastapi](https://github.com/fastapi/fastapi) | `0.115.0` | `0.115.8` |
| [pyjwt](https://github.com/jpadilla/pyjwt) | `2.9.0` | `2.10.1` |
| [sentry-sdk](https://github.com/getsentry/sentry-python) | `2.14.0` | `2.21.0` |
| [humanize](https://github.com/python-humanize/humanize) | `4.10.0` | `4.12.0` |
| [httpx](https://github.com/encode/httpx) | `0.27.2` | `0.28.1` |
| [ipython](https://github.com/ipython/ipython) | `8.27.0` | `8.32.0` |
| [saritasa-invocations](https://github.com/saritasa-nest/saritasa-invocations) | `1.2.3` | `1.3.1` |
| [uvicorn](https://github.com/encode/uvicorn) | `0.31.0` | `0.34.0` |
| [mypy](https://github.com/python/mypy) | `1.11.2` | `1.15.0` |
| [pytest](https://github.com/pytest-dev/pytest) | `8.3.3` | `8.3.4` |
| [coverage](https://github.com/nedbat/coveragepy) | `7.6.1` | `7.6.12` |
| [pytest-lazy-fixtures](https://github.com/dev-petrov/pytest-lazy-fixtures) | `1.1.1` | `1.1.2` |
| [asyncpg](https://github.com/MagicStack/asyncpg) | `0.29.0` | `0.30.0` |
| [factory-boy](https://github.com/FactoryBoy/factory_boy) | `3.3.1` | `3.3.3` |


Updates `fastapi` from 0.115.0 to 0.115.8
- [Release notes](https://github.com/fastapi/fastapi/releases)
- [Commits](fastapi/fastapi@0.115.0...0.115.8)

Updates `pyjwt` from 2.9.0 to 2.10.1
- [Release notes](https://github.com/jpadilla/pyjwt/releases)
- [Changelog](https://github.com/jpadilla/pyjwt/blob/master/CHANGELOG.rst)
- [Commits](jpadilla/pyjwt@2.9.0...2.10.1)

Updates `sentry-sdk` from 2.14.0 to 2.21.0
- [Release notes](https://github.com/getsentry/sentry-python/releases)
- [Changelog](https://github.com/getsentry/sentry-python/blob/master/CHANGELOG.md)
- [Commits](getsentry/sentry-python@2.14.0...2.21.0)

Updates `humanize` from 4.10.0 to 4.12.0
- [Release notes](https://github.com/python-humanize/humanize/releases)
- [Commits](python-humanize/humanize@4.10.0...4.12.0)

Updates `httpx` from 0.27.2 to 0.28.1
- [Release notes](https://github.com/encode/httpx/releases)
- [Changelog](https://github.com/encode/httpx/blob/master/CHANGELOG.md)
- [Commits](encode/httpx@0.27.2...0.28.1)

Updates `ipython` from 8.27.0 to 8.32.0
- [Release notes](https://github.com/ipython/ipython/releases)
- [Commits](ipython/ipython@8.27.0...8.32.0)

Updates `saritasa-invocations` from 1.2.3 to 1.3.1
- [Release notes](https://github.com/saritasa-nest/saritasa-invocations/releases)
- [Changelog](https://github.com/saritasa-nest/saritasa-invocations/blob/main/CHANGELOG.md)
- [Commits](saritasa-nest/saritasa-invocations@1.2.3...1.3.1)

Updates `uvicorn` from 0.31.0 to 0.34.0
- [Release notes](https://github.com/encode/uvicorn/releases)
- [Changelog](https://github.com/encode/uvicorn/blob/master/docs/release-notes.md)
- [Commits](encode/uvicorn@0.31.0...0.34.0)

Updates `mypy` from 1.11.2 to 1.15.0
- [Changelog](https://github.com/python/mypy/blob/master/CHANGELOG.md)
- [Commits](python/mypy@v1.11.2...v1.15.0)

Updates `pytest` from 8.3.3 to 8.3.4
- [Release notes](https://github.com/pytest-dev/pytest/releases)
- [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst)
- [Commits](pytest-dev/pytest@8.3.3...8.3.4)

Updates `coverage` from 7.6.1 to 7.6.12
- [Release notes](https://github.com/nedbat/coveragepy/releases)
- [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst)
- [Commits](nedbat/coveragepy@7.6.1...7.6.12)

Updates `pytest-lazy-fixtures` from 1.1.1 to 1.1.2
- [Release notes](https://github.com/dev-petrov/pytest-lazy-fixtures/releases)
- [Commits](dev-petrov/pytest-lazy-fixtures@1.1.1...1.1.2)

Updates `asyncpg` from 0.29.0 to 0.30.0
- [Release notes](https://github.com/MagicStack/asyncpg/releases)
- [Commits](MagicStack/asyncpg@v0.29.0...v0.30.0)

Updates `factory-boy` from 3.3.1 to 3.3.3
- [Changelog](https://github.com/FactoryBoy/factory_boy/blob/master/docs/changelog.rst)
- [Commits](FactoryBoy/factory_boy@3.3.1...3.3.3)

---
updated-dependencies:
- dependency-name: fastapi
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip
- dependency-name: pyjwt
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: pip
- dependency-name: sentry-sdk
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: pip
- dependency-name: humanize
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: pip
- dependency-name: httpx
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: pip
- dependency-name: ipython
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: pip
- dependency-name: saritasa-invocations
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: pip
- dependency-name: uvicorn
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: pip
- dependency-name: mypy
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: pip
- dependency-name: pytest
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: pip
- dependency-name: coverage
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: pip
- dependency-name: pytest-lazy-fixtures
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: pip
- dependency-name: asyncpg
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: pip
- dependency-name: factory-boy
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: pip
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Feb 17, 2025

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml

@dependabot dependabot bot deleted the dependabot/pip/pip-14e3bdac6a branch February 17, 2025 02:08
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@TheSuperiorStanislav TheSuperiorStanislav Awaiting requested review from TheSuperiorStanislav TheSuperiorStanislav is a code owner

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@TheSuperiorStanislav