Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

chore(deps): bump the poetry group across 1 directory with 6 updates #28

Closed
wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Dec 20, 2024

Bumps the poetry group with 6 updates in the / directory:

Package From To
cryptography 43.0.3 44.0.0
fastapi 0.115.5 0.115.6
httpx 0.27.2 0.28.1
pydantic 2.9.2 2.10.4
ruff 0.7.4 0.8.4
uvicorn 0.32.0 0.34.0

Updates cryptography from 43.0.3 to 44.0.0

Changelog

Sourced from cryptography's changelog.

44.0.0 - 2024-11-27


* **BACKWARDS INCOMPATIBLE:** Dropped support for LibreSSL < 3.9.
* Deprecated Python 3.7 support. Python 3.7 is no longer supported by the
  Python core team. Support for Python 3.7 will be removed in a future
  ``cryptography`` release.
* Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.4.0.
* macOS wheels are now built against the macOS 10.13 SDK. Users on older
  versions of macOS should upgrade, or they will need to build
  ``cryptography`` themselves.
* Enforce the :rfc:`5280` requirement that extended key usage extensions must
  not be empty.
* Added support for timestamp extraction to the
  :class:`~cryptography.fernet.MultiFernet` class.
* Relax the Authority Key Identifier requirements on root CA certificates
  during X.509 verification to allow fields permitted by :rfc:`5280` but
  forbidden by the CA/Browser BRs.
* Added support for :class:`~cryptography.hazmat.primitives.kdf.argon2.Argon2id`
  when using OpenSSL 3.2.0+.
* Added support for the :class:`~cryptography.x509.Admissions` certificate extension.
* Added basic support for PKCS7 decryption (including S/MIME 3.2) via
  :func:`~cryptography.hazmat.primitives.serialization.pkcs7.pkcs7_decrypt_der`,
  :func:`~cryptography.hazmat.primitives.serialization.pkcs7.pkcs7_decrypt_pem`, and
  :func:`~cryptography.hazmat.primitives.serialization.pkcs7.pkcs7_decrypt_smime`.

.. _v43-0-3:

Commits

Updates fastapi from 0.115.5 to 0.115.6

Release notes

Sourced from fastapi's releases.

0.115.6

Fixes

  • 🐛 Preserve traceback when an exception is raised in sync dependency with yield. PR #5823 by @​sombek.

Refactors

  • ♻️ Update tests and internals for compatibility with Pydantic >=2.10. PR #12971 by @​tamird.

Docs

  • 📝 Update includes format in docs with an automated script. PR #12950 by @​tiangolo.
  • 📝 Update includes for docs/de/docs/advanced/using-request-directly.md. PR #12685 by @​alissadb.
  • 📝 Update includes for docs/de/docs/how-to/conditional-openapi.md. PR #12689 by @​alissadb.

Translations

  • 🌐 Add Traditional Chinese translation for docs/zh-hant/docs/async.md. PR #12990 by @​ILoveSorasakiHina.
  • 🌐 Add Traditional Chinese translation for docs/zh-hant/docs/tutorial/query-param-models.md. PR #12932 by @​Vincy1230.
  • 🌐 Add Korean translation for docs/ko/docs/advanced/testing-dependencies.md. PR #12992 by @​Limsunoh.
  • 🌐 Add Korean translation for docs/ko/docs/advanced/websockets.md. PR #12991 by @​kwang1215.
  • 🌐 Add Portuguese translation for docs/pt/docs/tutorial/response-model.md. PR #12933 by @​AndreBBM.
  • 🌐 Add Korean translation for docs/ko/docs/advanced/middlewares.md. PR #12753 by @​nahyunkeem.
  • 🌐 Add Korean translation for docs/ko/docs/advanced/openapi-webhooks.md. PR #12752 by @​saeye.
  • 🌐 Add Chinese translation for docs/zh/docs/tutorial/query-param-models.md. PR #12931 by @​Vincy1230.
  • 🌐 Add Russian translation for docs/ru/docs/tutorial/query-param-models.md. PR #12445 by @​gitgernit.
  • 🌐 Add Korean translation for docs/ko/docs/tutorial/query-param-models.md. PR #12940 by @​jts8257.
  • 🔥 Remove obsolete tutorial translation to Chinese for docs/zh/docs/tutorial/sql-databases.md, it references files that are no longer on the repo. PR #12949 by @​tiangolo.

Internal

Commits
  • bb8c2a6 🔖 Release version 0.115.6
  • 905ec1e 📝 Update release notes
  • 4f81575 🐛 Preserve traceback when exception is raised in sync dependency with yield...
  • 8255edf 📝 Update release notes
  • 53c8784 🌐 Add Traditional Chinese translation for docs/zh-hant/docs/async.md (#12990)
  • 2971352 📝 Update release notes
  • 8376228 🌐 Add Traditional Chinese translation for `docs/zh-hant/docs/tutorial/query-p...
  • 6c7873c 📝 Update release notes
  • d75b81c 🌐 Add Korean translation for docs/ko/docs/advanced/testing-dependencies.md ...
  • 206037c 📝 Update release notes
  • Additional commits viewable in compare view

Updates httpx from 0.27.2 to 0.28.1

Release notes

Sourced from httpx's releases.

Version 0.28.1

0.28.1 (6th December, 2024)

  • Fix SSL case where verify=False together with client side certificates.

Version 0.28.0

0.28.0 (28th November, 2024)

The 0.28 release includes a limited set of deprecations.

Deprecations:

We are working towards a simplified SSL configuration API.

For users of the standard verify=True or verify=False cases, or verify=<ssl_context> case this should require no changes. The following cases have been deprecated...

  • The verify argument as a string argument is now deprecated and will raise warnings.
  • The cert argument is now deprecated and will raise warnings.

Our revised SSL documentation covers how to implement the same behaviour with a more constrained API.

The following changes are also included:

  • The deprecated proxies argument has now been removed.
  • The deprecated app argument has now been removed.
  • JSON request bodies use a compact representation. (#3363)
  • Review URL percent escape sets, based on WHATWG spec. (#3371, #3373)
  • Ensure certifi and httpcore are only imported if required. (#3377)
  • Treat socks5h as a valid proxy scheme. (#3178)
  • Cleanup Request() method signature in line with client.request() and httpx.request(). (#3378)
Changelog

Sourced from httpx's changelog.

0.28.1 (6th December, 2024)

  • Fix SSL case where verify=False together with client side certificates.

0.28.0 (28th November, 2024)

The 0.28 release includes a limited set of deprecations.

Deprecations:

We are working towards a simplified SSL configuration API.

For users of the standard verify=True or verify=False cases, or verify=<ssl_context> case this should require no changes. The following cases have been deprecated...

  • The verify argument as a string argument is now deprecated and will raise warnings.
  • The cert argument is now deprecated and will raise warnings.

Our revised SSL documentation covers how to implement the same behaviour with a more constrained API.

The following changes are also included:

  • The deprecated proxies argument has now been removed.
  • The deprecated app argument has now been removed.
  • JSON request bodies use a compact representation. (#3363)
  • Review URL percent escape sets, based on WHATWG spec. (#3371, #3373)
  • Ensure certifi and httpcore are only imported if required. (#3377)
  • Treat socks5h as a valid proxy scheme. (#3178)
  • Cleanup Request() method signature in line with client.request() and httpx.request(). (#3378)
  • Bugfix: When passing params={}, always strictly update rather than merge with an existing querystring. (#3364)
Commits

Updates pydantic from 2.9.2 to 2.10.4

Release notes

Sourced from pydantic's releases.

v2.10.4 2024-12-18

What's Changed

Packaging

Fixes

New Contributors

Full Changelog: pydantic/pydantic@v2.10.3...v2.10.4

v2.10.3 2024-12-03

What's Changed

Fixes

  • Set fields when defer_build is set on Pydantic dataclasses by @​Viicos in #10984
  • Do not resolve the JSON Schema reference for dict core schema keys by @​Viicos in #10989
  • Use the globals of the function when evaluating the return type for PlainSerializer and WrapSerializer functions by @​Viicos in #11008
  • Fix host required enforcement for urls to be compatible with v2.9 behavior by @​sydney-runkle in #11027
  • Add a default_factory_takes_validated_data property to FieldInfo by @​Viicos in #11034
  • Fix url json schema in serialization mode by @​sydney-runkle in #11035

Full Changelog: pydantic/pydantic@v2.10.2...v2.10.3

v2.10.2 2024-11-26

What's Changed

Fixes

Full Changelog: pydantic/pydantic@v2.10.1...v2.10.2

... (truncated)

Changelog

Sourced from pydantic's changelog.

v2.10.4 (2024-12-18)

GitHub release

What's Changed

Packaging

Fixes

New Contributors

v2.10.3 (2024-12-03)

GitHub release

What's Changed

Fixes

  • Set fields when defer_build is set on Pydantic dataclasses by @​Viicos in #10984
  • Do not resolve the JSON Schema reference for dict core schema keys by @​Viicos in #10989
  • Use the globals of the function when evaluating the return type for PlainSerializer and WrapSerializer functions by @​Viicos in #11008
  • Fix host required enforcement for urls to be compatible with v2.9 behavior by @​sydney-runkle in #11027
  • Add a default_factory_takes_validated_data property to FieldInfo by @​Viicos in #11034
  • Fix url json schema in serialization mode by @​sydney-runkle in #11035

v2.10.2 (2024-11-25)

GitHub release

What's Changed

Fixes

  • Only evaluate FieldInfo annotations if required during schema building by @​Viicos in #10769

... (truncated)

Commits

Updates ruff from 0.7.4 to 0.8.4

Release notes

Sourced from ruff's releases.

0.8.4

Release Notes

Preview features

  • [airflow] Extend AIR302 with additional functions and classes (#15015)
  • [airflow] Implement moved-to-provider-in-3 for modules that has been moved to Airflow providers (AIR303) (#14764)
  • [flake8-use-pathlib] Extend check for invalid path suffix to include the case "." (PTH210) (#14902)
  • [perflint] Fix panic in PERF401 when list variable is after the for loop (#14971)
  • [perflint] Simplify finding the loop target in PERF401 (#15025)
  • [pylint] Preserve original value format (PLR6104) (#14978)
  • [ruff] Avoid false positives for RUF027 for typing context bindings (#15037)
  • [ruff] Check for ambiguous pattern passed to pytest.raises() (RUF043) (#14966)

Rule changes

  • [flake8-bandit] Check S105 for annotated assignment (#15059)
  • [flake8-pyi] More autofixes for redundant-none-literal (PYI061) (#14872)
  • [pydocstyle] Skip leading whitespace for D403 (#14963)
  • [ruff] Skip SQLModel base classes for mutable-class-default (RUF012) (#14949)

Bug

  • [perflint] Parenthesize walrus expressions in autofix for manual-list-comprehension (PERF401) (#15050)

Server

  • Check diagnostic refresh support from client capability which enables dynamic configuration for various editors (#15014)

Contributors

... (truncated)

Changelog

Sourced from ruff's changelog.

0.8.4

Preview features

  • [airflow] Extend AIR302 with additional functions and classes (#15015)
  • [airflow] Implement moved-to-provider-in-3 for modules that has been moved to Airflow providers (AIR303) (#14764)
  • [flake8-use-pathlib] Extend check for invalid path suffix to include the case "." (PTH210) (#14902)
  • [perflint] Fix panic in PERF401 when list variable is after the for loop (#14971)
  • [perflint] Simplify finding the loop target in PERF401 (#15025)
  • [pylint] Preserve original value format (PLR6104) (#14978)
  • [ruff] Avoid false positives for RUF027 for typing context bindings (#15037)
  • [ruff] Check for ambiguous pattern passed to pytest.raises() (RUF043) (#14966)

Rule changes

  • [flake8-bandit] Check S105 for annotated assignment (#15059)
  • [flake8-pyi] More autofixes for redundant-none-literal (PYI061) (#14872)
  • [pydocstyle] Skip leading whitespace for D403 (#14963)
  • [ruff] Skip SQLModel base classes for mutable-class-default (RUF012) (#14949)

Bug

  • [perflint] Parenthesize walrus expressions in autofix for manual-list-comprehension (PERF401) (#15050)

Server

  • Check diagnostic refresh support from client capability which enables dynamic configuration for various editors (#15014)

0.8.3

Preview features

  • Fix fstring formatting removing overlong implicit concatenated string in expression part (#14811)
  • [airflow] Add fix to remove deprecated keyword arguments (AIR302) (#14887)
  • [airflow]: Extend rule to include deprecated names for Airflow 3.0 (AIR302) (#14765 and #14804)
  • [flake8-bugbear] Improve error messages for except* (B025, B029, B030, B904) (#14815)
  • [flake8-bugbear] itertools.batched() without explicit strict (B911) (#14408)
  • [flake8-use-pathlib] Dotless suffix passed to Path.with_suffix() (PTH210) (#14779)
  • [pylint] Include parentheses and multiple comparators in check for boolean-chained-comparison (PLR1716) (#14781)
  • [ruff] Do not simplify round() calls (RUF046) (#14832)
  • [ruff] Don't emit used-dummy-variable on function parameters (RUF052) (#14818)
  • [ruff] Implement if-key-in-dict-del (RUF051) (#14553)
  • [ruff] Mark autofix for RUF052 as always unsafe (#14824)
  • [ruff] Teach autofix for used-dummy-variable about TypeVars etc. (RUF052) (#14819)

Rule changes

  • [flake8-bugbear] Offer unsafe autofix for no-explicit-stacklevel (B028) (#14829)
  • [flake8-pyi] Skip all type definitions in string-or-bytes-too-long (PYI053) (#14797)
  • [pyupgrade] Do not report when a UTF-8 comment is followed by a non-UTF-8 one (UP009) (#14728)

... (truncated)

Commits
  • 3bb0dac Bump version to 0.8.4 (#15064)
  • 40cba5d [red-knot] Cleanup various todo_type!() messages (#15063)
  • 596d80c [perflint] Parenthesize walrus expressions in autofix for `manual-list-comp...
  • d8b9a36 Disable actionlint hook by default when running pre-commit locally (#15061)
  • 85e71ba [flake8-bandit] Check S105 for annotated assignment (#15059)
  • 2802cbd Don't special-case class instances in unary expression inference (#15045)
  • ed2bce6 [red-knot] Report invalid exceptions (#15042)
  • f0012df Fix typos in RUF043.py (#15044)
  • 0fc4e8f Introduce InferContext (#14956)
  • ac81c72 [ruff] Ambiguous pattern passed to pytest.raises() (RUF043) (#14966)
  • Additional commits viewable in compare view

Updates uvicorn from 0.32.0 to 0.34.0

Release notes

Sourced from uvicorn's releases.

Version 0.34.0

What's Changed


Full Changelog: encode/uvicorn@0.33.0...0.34.0

Version 0.33.0

What's Changed

New Contributors

Full Changelog: encode/uvicorn@0.32.1...0.33.0

Version 0.32.1

What's Changed


Full Changelog: encode/uvicorn@0.32.0...0.32.1

Changelog

Sourced from uvicorn's changelog.

0.34.0 (2024-12-15)

Added

  • Add content-length to 500 response in wsproto implementation (#2542)

Removed

  • Drop support for Python 3.8 (#2543)

0.33.0 (2024-12-14)

Removed

  • Remove WatchGod support for --reload (#2536)

0.32.1 (2024-11-20)

Fixed

  • Drop ASGI spec version to 2.3 on HTTP scope (#2513)
  • Enable httptools lenient data on httptools >= 0.6.3 (#2488)
Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the poetry group with 6 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [cryptography](https://github.com/pyca/cryptography) | `43.0.3` | `44.0.0` |
| [fastapi](https://github.com/fastapi/fastapi) | `0.115.5` | `0.115.6` |
| [httpx](https://github.com/encode/httpx) | `0.27.2` | `0.28.1` |
| [pydantic](https://github.com/pydantic/pydantic) | `2.9.2` | `2.10.4` |
| [ruff](https://github.com/astral-sh/ruff) | `0.7.4` | `0.8.4` |
| [uvicorn](https://github.com/encode/uvicorn) | `0.32.0` | `0.34.0` |



Updates `cryptography` from 43.0.3 to 44.0.0
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst)
- [Commits](pyca/cryptography@43.0.3...44.0.0)

Updates `fastapi` from 0.115.5 to 0.115.6
- [Release notes](https://github.com/fastapi/fastapi/releases)
- [Commits](fastapi/fastapi@0.115.5...0.115.6)

Updates `httpx` from 0.27.2 to 0.28.1
- [Release notes](https://github.com/encode/httpx/releases)
- [Changelog](https://github.com/encode/httpx/blob/master/CHANGELOG.md)
- [Commits](encode/httpx@0.27.2...0.28.1)

Updates `pydantic` from 2.9.2 to 2.10.4
- [Release notes](https://github.com/pydantic/pydantic/releases)
- [Changelog](https://github.com/pydantic/pydantic/blob/main/HISTORY.md)
- [Commits](pydantic/pydantic@v2.9.2...v2.10.4)

Updates `ruff` from 0.7.4 to 0.8.4
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@0.7.4...0.8.4)

Updates `uvicorn` from 0.32.0 to 0.34.0
- [Release notes](https://github.com/encode/uvicorn/releases)
- [Changelog](https://github.com/encode/uvicorn/blob/master/CHANGELOG.md)
- [Commits](encode/uvicorn@0.32.0...0.34.0)

---
updated-dependencies:
- dependency-name: cryptography
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: poetry
- dependency-name: fastapi
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: poetry
- dependency-name: httpx
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: poetry
- dependency-name: pydantic
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: poetry
- dependency-name: ruff
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: poetry
- dependency-name: uvicorn
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: poetry
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Dec 20, 2024
Copy link
Contributor Author

dependabot bot commented on behalf of github Dec 23, 2024

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Dec 23, 2024
@dependabot dependabot bot deleted the dependabot/pip/poetry-4abf2fbb55 branch December 23, 2024 07:27
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file python Pull requests that update Python code
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants