Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Deps: Bump the python-packages group across 1 directory with 9 updates #121

Closed
wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Sep 23, 2024

Bumps the python-packages group with 8 updates in the / directory:

Package From To
pontos 24.3.2 24.9.0
anyio 4.4.0 4.6.0
astroid 3.2.4 3.3.3
certifi 2024.7.4 2024.8.30
httpx 0.27.0 0.27.2
idna 3.8 3.10
platformdirs 4.2.2 4.3.6
rich 13.7.1 13.8.1

Updates pontos from 24.3.2 to 24.9.0

Release notes

Sourced from pontos's releases.

pontos 24.9.0

24.9.0 - 2024-09-03

Added

  • single-year flag to command pontos-update-header b7a3bd0
  • ts/tsx to supported files 98e573c
  • Test Scoreboard on one of our public repositories 1ce44fe

Bug Fixes

  • Linting in CI via ruff check 9fc463c

Dependencies

  • Bump the python-packages group with 5 updates (#1041) 04eeac5
  • Bump the python-packages group with 4 updates (#1040) 0a58495
  • Bump the actions group with 2 updates (#1038) 4fdbe3d
  • Bump the python-packages group with 7 updates (#1037) 14bf6c4
  • Bump the actions group with 2 updates c3f80a8
  • Bump the python-packages group with 5 updates 527ddd9
  • Bump the python-packages group with 8 updates 2a4254f
  • Bump the python-packages group with 8 updates 19d9165
  • Bump the python-packages group across 1 directory with 6 updates 45eb696
  • Bump certifi from 2024.6.2 to 2024.7.4 8bf91e9
  • Bump urllib3 from 2.2.1 to 2.2.2 de84c74
  • Bump ruff from 0.4.8 to 0.4.9 in the python-packages group b4a0c81
  • Bump the python-packages group with 4 updates 28d0b2d
  • Bump the python-packages group with 8 updates 99ceaee
  • Bump the python-packages group with 6 updates 72b0391
  • Bump the python-packages group with 3 updates b59331c
  • Bump the python-packages group with 4 updates 84d6ba1
  • Bump the python-packages group with 5 updates 250ebd2
  • Bump the python-packages group with 8 updates 8bce799
  • Bump the python-packages group with 4 updates ca050ba
  • Bump the python-packages group with 3 updates 7447c30
  • Bump idna from 3.6 to 3.7 5a17b04
  • Bump the python-packages group with 3 updates 09b8c1d
  • Bump the python-packages group with 2 updates 87be4a8
  • Bump the python-packages group with 3 updates 8d460a7
Commits
  • 12d5f63 Automatic release to 24.9.0
  • 213e94f Fix loading of NVD API results when there are none (#1039)
  • 04eeac5 Deps: Bump the python-packages group with 5 updates (#1041)
  • 0a58495 Deps: Bump the python-packages group with 4 updates (#1040)
  • 8ceb855 Apply linter formatting
  • e2a3689 Compare years as ints
  • 3f37803 Enable updating existing multi-year license headers with single_year
  • b7a3bd0 Add: single-year flag to command pontos-update-header
  • 139faba Change check for excluded first when updating a file
  • 66efb6d Fix handle IndexError exception
  • Additional commits viewable in compare view

Updates anyio from 4.4.0 to 4.6.0

Release notes

Sourced from anyio's releases.

4.6.0

  • Dropped support for Python 3.8 (as #698 cannot be resolved without cancel message support)
  • Fixed 100% CPU use on asyncio while waiting for an exiting task group to finish while said task group is within a cancelled cancel scope (#695)
  • Fixed cancel scopes on asyncio not propagating CancelledError on exit when the enclosing cancel scope has been effectively cancelled (#698)
  • Fixed asyncio task groups not yielding control to the event loop at exit if there were no child tasks to wait on
  • Fixed inconsistent task uncancellation with asyncio cancel scopes belonging to a task group when said task group has child tasks running

4.5.0

  • Improved the performance of anyio.Lock and anyio.Semaphore on asyncio (even up to 50 %)
  • Added the fast_acquire parameter to anyio.Lock and anyio.Semaphore to further boost performance at the expense of safety (acquire() will not yield control back if there is no contention)
  • Added support for the from_uri(), full_match(), parser methods/properties in anyio.Path, newly added in Python 3.13 (#737)
  • Added support for more keyword arguments for run_process() and open_process(): startupinfo, creationflags, pass_fds, user, group, extra_groups and umask (#742)
  • Improved the type annotations and support for PathLike in run_process() and open_process() to allow for path-like arguments, just like subprocess.Popen
  • Changed the ResourceWarning from an unclosed memory object stream to include its address for easier identification
  • Changed start_blocking_portal() to always use daemonic threads, to accommodate the "loitering event loop" use case
  • Bumped the minimum version of Trio to v0.26.1
  • Fixed __repr__() of MemoryObjectItemReceiver, when item is not defined (#767; PR by @​Danipulok)
  • Fixed to_process.run_sync() failing to initialize if __main__.__file__ pointed to a file in a nonexistent directory (#696)
  • Fixed AssertionError: feed_data after feed_eof on asyncio when a subprocess is closed early, before its output has been read (#490)
  • Fixed TaskInfo.has_pending_cancellation() on asyncio not respecting shielded scopes (#771; PR by @​gschaffner)
  • Fixed SocketStream.receive() returning bytearray instead of bytes when using asyncio with ProactorEventLoop (Windows) (#776)
  • Fixed quitting the debugger in a pytest test session while in an active task group failing the test instead of exiting the test session (because the exit exception arrives in an exception group)
  • Fixed support for Linux abstract namespaces in UNIX sockets that was broken in v4.2 (#781 <agronholm/anyio#781>_; PR by @​tapetersen)
  • Fixed KeyboardInterrupt (ctrl+c) hanging the asyncio pytest runner
Changelog

Sourced from anyio's changelog.

Version history

This library adheres to Semantic Versioning 2.0 <http://semver.org/>_.

4.6.0

  • Dropped support for Python 3.8 (as [#698](https://github.com/agronholm/anyio/issues/698) <https://github.com/agronholm/anyio/issues/698>_ cannot be resolved without cancel message support)
  • Fixed 100% CPU use on asyncio while waiting for an exiting task group to finish while said task group is within a cancelled cancel scope ([#695](https://github.com/agronholm/anyio/issues/695) <https://github.com/agronholm/anyio/issues/695>_)
  • Fixed cancel scopes on asyncio not propagating CancelledError on exit when the enclosing cancel scope has been effectively cancelled ([#698](https://github.com/agronholm/anyio/issues/698) <https://github.com/agronholm/anyio/issues/698>_)
  • Fixed asyncio task groups not yielding control to the event loop at exit if there were no child tasks to wait on
  • Fixed inconsistent task uncancellation with asyncio cancel scopes belonging to a task group when said task group has child tasks running

4.5.0

  • Improved the performance of anyio.Lock and anyio.Semaphore on asyncio (even up to 50 %)
  • Added the fast_acquire parameter to anyio.Lock and anyio.Semaphore to further boost performance at the expense of safety (acquire() will not yield control back if there is no contention)
  • Added support for the from_uri(), full_match(), parser methods/properties in anyio.Path, newly added in Python 3.13 ([#737](https://github.com/agronholm/anyio/issues/737) <https://github.com/agronholm/anyio/issues/737>_)
  • Added support for more keyword arguments for run_process() and open_process(): startupinfo, creationflags, pass_fds, user, group, extra_groups and umask ([#742](https://github.com/agronholm/anyio/issues/742) <https://github.com/agronholm/anyio/issues/742>_)
  • Improved the type annotations and support for PathLike in run_process() and open_process() to allow for path-like arguments, just like subprocess.Popen
  • Changed the ResourceWarning from an unclosed memory object stream to include its address for easier identification
  • Changed start_blocking_portal() to always use daemonic threads, to accommodate the "loitering event loop" use case
  • Bumped the minimum version of Trio to v0.26.1
  • Fixed __repr__() of MemoryObjectItemReceiver, when item is not defined ([#767](https://github.com/agronholm/anyio/issues/767) <https://github.com/agronholm/anyio/pulls/767>_; PR by @​Danipulok)
  • Fixed to_process.run_sync() failing to initialize if __main__.__file__ pointed to a file in a nonexistent directory ([#696](https://github.com/agronholm/anyio/issues/696) <https://github.com/agronholm/anyio/issues/696>_)
  • Fixed AssertionError: feed_data after feed_eof on asyncio when a subprocess is closed early, before its output has been read ([#490](https://github.com/agronholm/anyio/issues/490) <https://github.com/agronholm/anyio/issues/490>_)

... (truncated)

Commits
  • 8cce749 Bumped up the version
  • 01a37c6 Fixed TaskGroup and CancelScope exit issues on asyncio (#774)
  • 7f35ce7 Bumped up the version
  • 108cc83 [pre-commit.ci] pre-commit autoupdate (#788)
  • d1aea98 Fixed KeyboardInterrupt hanging the asyncio test runner (#779)
  • c1aff53 [pre-commit.ci] pre-commit autoupdate (#785)
  • 89d8b4c Use sphinx_rtd_theme also as an extension
  • 4e9f18d Enabled uvloop to be used in the test suite on Python 3.13
  • 7de6441 Pin Sphinx to a compatible version with sphinx-rtd-theme
  • 41647f4 Fixed feed_data after feed_eof assertion errors on asyncio (#752)
  • Additional commits viewable in compare view

Updates astroid from 3.2.4 to 3.3.3

Changelog

Sourced from astroid's changelog.

What's New in astroid 3.3.3?

Release date: 2024-09-20

  • Fix inference regression with property setters.

    Closes pylint-dev/pylint#9811

  • Add annotation-only instance attributes to attrs classes to fix no-member false positives.

    Closes #2514

What's New in astroid 3.3.2?

Release date: 2024-08-11

  • Restore support for soft-deprecated members of the typing module with python 3.13.

    Refs pylint-dev/pylint#9852

What's New in astroid 3.3.1?

Release date: 2024-08-06

  • Fix a crash introduced in 3.3.0 involving invalid format strings.

    Closes #2492

What's New in astroid 3.3.0?

Release date: 2024-08-04

  • Add support for Python 3.13.

  • Remove support for Python 3.8 (and constants PY38, PY39_PLUS, and PYPY_7_3_11_PLUS).

    Refs #2443

  • Add the __annotations__ attribute to the ClassDef object model.

    Closes pylint-dev/pylint#7126

  • Implement inference for JoinedStr and FormattedValue

  • Add support for ssl.OP_LEGACY_SERVER_CONNECT (new in Python 3.12).

    Closes pylint-dev/pylint#9849

Commits
  • a01a9c9 Bump astroid to 3.3.3, update changelog
  • 3840ff6 Fix inference regression with property setters (#2567) (#2568)
  • 5eae215 brain_attrs: Support annotation-only members (#2515)
  • 4ae4617 Bump astroid to 3.3.2, update changelog
  • b00b86c [PY313] Add stubs for soft-deprecated typing members (#2503)
  • de58003 Bump astroid to 3.3.1, update changelog
  • 8357bd3 Fix pylint regression with invalid format strings (#2496) (#2497)
  • 47030b1 Bump astroid to 3.3.0, update changelog
  • f37549e Fix release tests
  • 92baf78 [pre-commit.ci] auto fixes from pre-commit.com hooks
  • Additional commits viewable in compare view

Updates certifi from 2024.7.4 to 2024.8.30

Commits

Updates httpx from 0.27.0 to 0.27.2

Release notes

Sourced from httpx's releases.

Version 0.27.2

0.27.2 (27th August, 2024)

Fixed

  • Reintroduced supposedly-private URLTypes shortcut. (#2673)

Version 0.27.1

0.27.1 (27th August, 2024)

Added

  • Support for zstd content decoding using the python zstandard package is added. Installable using httpx[zstd]. (#3139)

Fixed

  • Improved error messaging for InvalidURL exceptions. (#3250)
  • Fix app type signature in ASGITransport. (#3109)
Changelog

Sourced from httpx's changelog.

0.27.2 (27th August, 2024)

Fixed

  • Reintroduced supposedly-private URLTypes shortcut. (#2673)

0.27.1 (27th August, 2024)

Added

  • Support for zstd content decoding using the python zstandard package is added. Installable using httpx[zstd]. (#3139)

Fixed

  • Improved error messaging for InvalidURL exceptions. (#3250)
  • Fix app type signature in ASGITransport. (#3109)
Commits

Updates idna from 3.8 to 3.10

Changelog

Sourced from idna's changelog.

3.10 (2024-09-15) +++++++++++++++++

  • Reverted to Unicode 15.1.0 data. Unicode 16 has some significant changes to UTS46 processing that will require more work to properly implement.

3.9 (2024-09-13) ++++++++++++++++

  • Update to Unicode 16.0.0
  • Deprecate setup.cfg in favour of pyproject.toml
  • Use ruff for code formatting

Thanks to Waket Zheng for contributions to this release.

Commits

Updates platformdirs from 4.2.2 to 4.3.6

Release notes

Sourced from platformdirs's releases.

4.3.6

What's Changed

Full Changelog: tox-dev/platformdirs@4.3.5...4.3.6

4.3.5

What's Changed

Full Changelog: tox-dev/platformdirs@4.3.4...4.3.5

4.3.4

What's Changed

Full Changelog: tox-dev/platformdirs@4.3.3...4.3.4

4.3.3

What's Changed

New Contributors

Full Changelog: tox-dev/platformdirs@4.3.2...4.3.3

4.3.2

What's Changed

New Contributors

Full Changelog: tox-dev/platformdirs@4.3.1...4.3.2

... (truncated)

Commits

Updates pylint from 3.2.6 to 3.3.0

Commits
  • 6350dfa Bump pylint to 3.3.0, update changelog
  • 78f3dfa Bump astroid to 3.3.3 (#9939)
  • b28c1f6 Add check for unnecessary-default-type-args (#9938)
  • bd97b93 [doc framework] Assert that the good and bad example exists in the doc (#9936)
  • 7aa4436 Fix duplicate workflow step ids (#9934)
  • 0950916 [pre-commit] Add codespell, and fix some existing typos (#9912)
  • 3b4a7f9 Add details.rst for c-extension-no-member (#9933)
  • 7d60c27 Explicitly save cache in primer jobs
  • 67acc96 Add additional stdlib deprecations (mostly 3.13) (#9853)
  • 0adf671 Remove old-style classes code, remove check for new-style class (#9925)
  • Additional commits viewable in compare view

Updates rich from 13.7.1 to 13.8.1

Release notes

Sourced from rich's releases.

The Python 3.13 release

[13.8.1] - 2024-09-10

Fixed

The Thanks for your patience Release

This is a fairly large update. Mostly an accumulation of small fixes and enhancements. Nothing qualifies as a *breaking change (for some definition), but there may be some subtly changes to output. Check below for anything that might affect you!

[13.8.0] - 2024-08-26

Fixed

Changed

  • RichHandler errors and warnings will now use different colors (red and yellow) Textualize/rich#2825
  • Removed the empty line printed in jupyter while using Progress Textualize/rich#2616
  • Running tests in environment with FORCE_COLOR or NO_COLOR environment variables
  • ansi decoder will now strip problematic private escape sequences (like \x1b7) Textualize/rich#3278
  • Tree's ASCII_GUIDES and TREE_GUIDES constants promoted to class attributes

Added

  • Adds a case_sensitive parameter to prompt.Prompt. This determines if the response is treated as case-sensitive. Defaults to True.
  • Added Console.on_broken_pipe Textualize/rich#3468
Changelog

Sourced from rich's changelog.

[13.8.1] - 2024-09-10

Fixed

[13.8.0] - 2024-08-26

Fixed

Changed

  • RichHandler errors and warnings will now use different colors (red and yellow) Textualize/rich#2825
  • Removed the empty line printed in jupyter while using Progress Textualize/rich#2616
  • Running tests in environment with FORCE_COLOR or NO_COLOR environment variables
  • ansi decoder will now strip problematic private escape sequences (like \x1b7) Textualize/rich#3278
  • Tree's ASCII_GUIDES and TREE_GUIDES constants promoted to class attributes

Added

  • Adds a case_sensitive parameter to prompt.Prompt. This determines if the response is treated as case-sensitive. Defaults to True.
  • Added Console.on_broken_pipe Textualize/rich#3468
Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the python-packages group with 8 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [pontos](https://github.com/greenbone/pontos) | `24.3.2` | `24.9.0` |
| [anyio](https://github.com/agronholm/anyio) | `4.4.0` | `4.6.0` |
| [astroid](https://github.com/pylint-dev/astroid) | `3.2.4` | `3.3.3` |
| [certifi](https://github.com/certifi/python-certifi) | `2024.7.4` | `2024.8.30` |
| [httpx](https://github.com/encode/httpx) | `0.27.0` | `0.27.2` |
| [idna](https://github.com/kjd/idna) | `3.8` | `3.10` |
| [platformdirs](https://github.com/tox-dev/platformdirs) | `4.2.2` | `4.3.6` |
| [rich](https://github.com/Textualize/rich) | `13.7.1` | `13.8.1` |



Updates `pontos` from 24.3.2 to 24.9.0
- [Release notes](https://github.com/greenbone/pontos/releases)
- [Commits](greenbone/pontos@v24.3.2...v24.9.0)

Updates `anyio` from 4.4.0 to 4.6.0
- [Release notes](https://github.com/agronholm/anyio/releases)
- [Changelog](https://github.com/agronholm/anyio/blob/master/docs/versionhistory.rst)
- [Commits](agronholm/anyio@4.4.0...4.6.0)

Updates `astroid` from 3.2.4 to 3.3.3
- [Release notes](https://github.com/pylint-dev/astroid/releases)
- [Changelog](https://github.com/pylint-dev/astroid/blob/main/ChangeLog)
- [Commits](pylint-dev/astroid@v3.2.4...v3.3.3)

Updates `certifi` from 2024.7.4 to 2024.8.30
- [Commits](certifi/python-certifi@2024.07.04...2024.08.30)

Updates `httpx` from 0.27.0 to 0.27.2
- [Release notes](https://github.com/encode/httpx/releases)
- [Changelog](https://github.com/encode/httpx/blob/master/CHANGELOG.md)
- [Commits](encode/httpx@0.27.0...0.27.2)

Updates `idna` from 3.8 to 3.10
- [Release notes](https://github.com/kjd/idna/releases)
- [Changelog](https://github.com/kjd/idna/blob/master/HISTORY.rst)
- [Commits](kjd/idna@v3.8...v3.10)

Updates `platformdirs` from 4.2.2 to 4.3.6
- [Release notes](https://github.com/tox-dev/platformdirs/releases)
- [Changelog](https://github.com/tox-dev/platformdirs/blob/main/CHANGES.rst)
- [Commits](tox-dev/platformdirs@4.2.2...4.3.6)

Updates `pylint` from 3.2.6 to 3.3.0
- [Release notes](https://github.com/pylint-dev/pylint/releases)
- [Commits](pylint-dev/pylint@v3.2.6...v3.3.0)

Updates `rich` from 13.7.1 to 13.8.1
- [Release notes](https://github.com/Textualize/rich/releases)
- [Changelog](https://github.com/Textualize/rich/blob/master/CHANGELOG.md)
- [Commits](Textualize/rich@v13.7.1...v13.8.1)

---
updated-dependencies:
- dependency-name: pontos
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: python-packages
- dependency-name: anyio
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: python-packages
- dependency-name: astroid
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: python-packages
- dependency-name: certifi
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: python-packages
- dependency-name: httpx
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: python-packages
- dependency-name: idna
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: python-packages
- dependency-name: platformdirs
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: python-packages
- dependency-name: pylint
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: python-packages
- dependency-name: rich
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: python-packages
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot requested a review from a team as a code owner September 23, 2024 04:09
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Sep 23, 2024
@greenbonebot greenbonebot enabled auto-merge (rebase) September 23, 2024 04:09
Copy link

Conventional Commits Report

Type Number
Dependencies 1

🚀 Conventional commits found.

Copy link
Contributor Author

dependabot bot commented on behalf of github Sep 30, 2024

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Sep 30, 2024
auto-merge was automatically disabled September 30, 2024 04:58

Pull request was closed

@dependabot dependabot bot deleted the dependabot/pip/python-packages-6300821b11 branch September 30, 2024 04:58
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file python Pull requests that update Python code
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants