Skip to content

build(deps): bump the minor-and-patch group with 12 updates #583

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Oct 28, 2024
Merged

build(deps): bump the minor-and-patch group with 12 updates #583

merged 1 commit into from
Oct 28, 2024

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 28, 2024

Bumps the minor-and-patch group with 12 updates:

Package From To
pystac-client 0.8.4 0.8.5
mypy 1.12.1 1.13.0
pyupgrade 3.18.0 3.19.0
safety 3.2.8 3.2.10
typeguard 4.3.0 4.4.0
orjson 3.10.9 3.10.10
pydantic 2.9.2 2.5.3
pydantic-core 2.23.4 2.14.6
rich 13.9.2 13.9.3
safety-schemas 0.0.5 0.0.8
starlette 0.41.0 0.41.2
tokenize-rt 6.0.0 6.1.0

Updates pystac-client from 0.8.4 to 0.8.5

Release notes

Sourced from pystac-client's releases.

v0.8.5

What's Changed

Full Changelog: stac-utils/pystac-client@v0.8.4...v0.8.5

Changelog

Sourced from pystac-client's changelog.

[v0.8.5] - 2024-10-23

Fixed

  • Use urljoin to build hrefs #746
Commits

Updates mypy from 1.12.1 to 1.13.0

Changelog

Sourced from mypy's changelog.

Mypy Release Notes

Next release

Mypy 1.13

We’ve just uploaded mypy 1.13 to the Python Package Index (PyPI). Mypy is a static type checker for Python. You can install it as follows:

python3 -m pip install -U mypy

You can read the full documentation for this release on Read the Docs.

Note that unlike typical releases, Mypy 1.13 does not have any changes to type checking semantics from 1.12.1.

Improved performance

Mypy 1.13 contains several performance improvements. Users can expect mypy to be 5-20% faster. In environments with long search paths (such as environments using many editable installs), mypy can be significantly faster, e.g. 2.2x faster in the use case targeted by these improvements.

Mypy 1.13 allows use of the orjson library for handling the cache instead of the stdlib json, for improved performance. You can ensure the presence of orjson using the faster-cache extra:

python3 -m pip install -U mypy[faster-cache]

Mypy may depend on orjson by default in the future.

These improvements were contributed by Shantanu.

List of changes:

  • Significantly speed up file handling error paths (Shantanu, PR 17920)
  • Use fast path in modulefinder more often (Shantanu, PR 17950)
  • Let mypyc optimise os.path.join (Shantanu, PR 17949)
  • Make is_sub_path faster (Shantanu, PR 17962)
  • Speed up stubs suggestions (Shantanu, PR 17965)
  • Use sha1 for hashing (Shantanu, PR 17953)
  • Use orjson instead of json, when available (Shantanu, PR 17955)
  • Add faster-cache extra, test in CI (Shantanu, PR 17978)

Acknowledgements

Thanks to all mypy contributors who contributed to this release:

  • Shantanu Jain
  • Jukka Lehtosalo

Mypy 1.12

We’ve just uploaded mypy 1.12 to the Python Package Index (PyPI). Mypy is a static type

... (truncated)

Commits

Updates pyupgrade from 3.18.0 to 3.19.0

Commits
  • 19364aa v3.19.0
  • 466dfb1 Merge pull request #980 from asottile/named-escapes-in-fstrings
  • aa12347 fix named escapes in FSTRING_MIDDLE
  • c29b8d6 Merge pull request #979 from asottile/directly-in-f-string-placeholder
  • b673db5 prevent dict/set rewrite directly in f-string placeholder
  • 4028fd1 Merge pull request #973 from asottile/py39-plus
  • 9827b4d py39+
  • See full diff in compare view

Updates safety from 3.2.8 to 3.2.10

Changelog

Sourced from safety's changelog.

[3.2.10] - 2024-10-25

  • Support for scanning pyproject.toml files (#625)
  • Update safety-schemas version used (#624)
  • Fix basic poloicy test (#622)

[3.2.9] - 2024-10-23

  • chore: deprection-message-for-license-command (4149b70)
  • feat: add-pull-request-template (#604) (61b2fe2)
  • fix: devcontainer fix (be42d8e)
  • fix: safety error when scan is run without being authed (5ec80dd)
  • feat: add-devcontainers-support (0591838)
  • fix: internal-server-error (04d7efb)
  • fix: clarify-vulnerabilities-found/ Fixed the issue where the vulnerabilities (07bc5b7)
  • chore: added check arg depreciation warning (78109e5)
  • feature: release-script: add release script (#602) (cc49542)
Commits
  • 9ee0b67 chore/release-3.2.10 (#626)
  • d8095a7 feature/pyproject-support (#625)
  • 8d610ff chore/update-safety-schemas-version (#624)
  • d77fec0 Merge pull request #617 from pyupio/chore/release-3.2.9
  • 2d6631c chore/release-3.2.9
  • 57023e0 Merge pull request #622 from pyupio/fix-new-parse-for-test
  • 5a8c181 fix: basic policy file test
  • 7b21f3a Merge pull request #616 from pyupio/fix/version-test
  • ba929db fix/removes hardcoded safety release version from
  • 212318c Merge pull request #614 from pyupio/chore/deprecation-message-for-license-com...
  • Additional commits viewable in compare view

Updates typeguard from 4.3.0 to 4.4.0

Release notes

Sourced from typeguard's releases.

4.4.0

  • Added proper checking for method signatures in protocol checks (#465)
  • Fixed basic support for intersection protocols (#490; PR by @​antonagestam)
  • Fixed protocol checks running against the class of an instance and not the instance itself (this produced wrong results for non-method member checks)
Changelog

Sourced from typeguard's changelog.

Version history

This library adheres to Semantic Versioning 2.0 <https://semver.org/#semantic-versioning-200>_.

4.4.0 (2024-10-27)

  • Added proper checking for method signatures in protocol checks ([#465](https://github.com/agronholm/typeguard/issues/465) <https://github.com/agronholm/typeguard/pull/465>_)
  • Fixed basic support for intersection protocols ([#490](https://github.com/agronholm/typeguard/issues/490) <https://github.com/agronholm/typeguard/pull/490>_; PR by @​antonagestam)
  • Fixed protocol checks running against the class of an instance and not the instance itself (this produced wrong results for non-method member checks)

4.3.0 (2024-05-27)

  • Added support for checking against static protocols
  • Fixed some compatibility problems when running on Python 3.13 ([#460](https://github.com/agronholm/typeguard/issues/460) <https://github.com/agronholm/typeguard/issues/460>_; PR by @​JelleZijlstra)
  • Fixed test suite incompatibility with pytest 8.2 ([#461](https://github.com/agronholm/typeguard/issues/461) <https://github.com/agronholm/typeguard/issues/461>_)
  • Fixed pytest plugin crashing on pytest version older than v7.0.0 (even if it's just present) ([#343](https://github.com/agronholm/typeguard/issues/343) <https://github.com/agronholm/typeguard/issues/343>_)

4.2.1 (2023-03-24)

  • Fixed missing typing_extensions dependency for Python 3.12 ([#444](https://github.com/agronholm/typeguard/issues/444) <https://github.com/agronholm/typeguard/issues/444>_)
  • Fixed deprecation warning in the test suite on Python 3.13 ([#444](https://github.com/agronholm/typeguard/issues/444) <https://github.com/agronholm/typeguard/issues/444>_)

4.2.0 (2023-03-23)

  • Added support for specifying options for the pytest plugin via pytest config files ([#440](https://github.com/agronholm/typeguard/issues/440) <https://github.com/agronholm/typeguard/issues/440>_)
  • Avoid creating reference cycles when type checking unions (PR by Shantanu)
  • Fixed Optional[...] being removed from the AST if it was located within a subscript ([#442](https://github.com/agronholm/typeguard/issues/442) <https://github.com/agronholm/typeguard/issues/442>_)
  • Fixed TypedDict from typing_extensions not being recognized as one ([#443](https://github.com/agronholm/typeguard/issues/443) <https://github.com/agronholm/typeguard/issues/443>_)
  • Fixed typing types (dict[str, int], List[str], etc.) not passing checks against type or Type ([#432](https://github.com/agronholm/typeguard/issues/432) <https://github.com/agronholm/typeguard/issues/432>_, PR by Yongxin Wang)
  • Fixed detection of optional fields (NotRequired[...]) in TypedDict when using forward references ([#424](https://github.com/agronholm/typeguard/issues/424) <https://github.com/agronholm/typeguard/issues/424>_)
  • Fixed mapping checks against Django's MultiValueDict ([#419](https://github.com/agronholm/typeguard/issues/419) <https://github.com/agronholm/typeguard/issues/419>_)

4.1.5 (2023-09-11)

... (truncated)

Commits
  • efa1166 Added release date
  • b72794d Added proper Protocol method signature checking (#496)
  • afad2c7 Sorted the Ruff rules alphabetically
  • d812f2e Migrated to native tox TOML configuration
  • 0c50de6 Declared Python 3.13 support
  • cf25d56 Fixed annotation for typeguard_ignore() to match one for typing.no_type_check...
  • 604b08d Use get_protocol_members in protocol checking (#490)
  • c72b675 [pre-commit.ci] pre-commit autoupdate (#471)
  • ac7ac34 Fixed the documentation build
  • 2c035b3 Assume that typing_extensions is always installed (#487)
  • Additional commits viewable in compare view

Updates orjson from 3.10.9 to 3.10.10

Release notes

Sourced from orjson's releases.

3.10.10

Fixed

  • Fix int serialization on s390x. This was introduced in 3.10.8.

Changed

  • Publish aarch64 manylinux_2_17 wheel for 3.13 to PyPI.
Changelog

Sourced from orjson's changelog.

3.10.10

Fixed

  • Fix int serialization on s390x. This was introduced in 3.10.8.

Changed

  • Publish aarch64 manylinux_2_17 wheel for 3.13 to PyPI.
Commits

Updates pydantic from 2.9.2 to 2.5.3

Changelog

Sourced from pydantic's changelog.

v2.9.2 (2024-09-17)

GitHub release

What's Changed

Fixes

v2.9.1 (2024-09-09)

GitHub release

What's Changed

Fixes

v2.9.0 (2024-09-05)

GitHub release

The code released in v2.9.0 is practically identical to that of v2.9.0b2.

What's Changed

Packaging

New Features

... (truncated)

Commits

Updates pydantic-core from 2.23.4 to 2.14.6

Commits

Updates rich from 13.9.2 to 13.9.3

Release notes

Sourced from rich's releases.

The irregular expression release

Fix a broken regex that resulted in the slow path being chosen for some operations. This fix should result in notable speedups for some operations, such as wrapping text.

[13.9.3] - 2024-10-22

Fixed

Changelog

Sourced from rich's changelog.

[13.9.3] - 2024-10-22

Fixed

Commits

Updates safety-schemas from 0.0.5 to 0.0.8

Commits

Updates starlette from 0.41.0 to 0.41.2

Release notes

Sourced from starlette's releases.

Version 0.41.2

What's Changed

Full Changelog: encode/starlette@0.41.1...0.41.2

Version 0.41.1

What's Changed

Full Changelog: encode/starlette@0.41.0...0.41.1

Changelog

Sourced from starlette's changelog.

0.41.2 (October 27, 2024)

Fixed

  • Revert bump on python-multipart on starlette[full] extras #2737.

0.41.1 (October 24, 2024)

Fixed

  • Bump minimum python-multipart version to 0.0.13 #2734.
  • Change python-multipart import to python_multipart #2733.
Commits

Updates tokenize-rt from 6.0.0 to 6.1.0

Commits
  • a3a7bed v6.1.0
  • 3686bae Merge pull request #192 from asottile/named-escapes
  • 32e6236 handle unicode named escapes in fstring components
  • 75de5c5 Merge pull request #190 from asottile/all-repos_autofix_all-repos-manual
  • 1ae6bf2 py39+
  • ac3b85e Merge pull request #189 from asottile/pre-commit-ci-update-config
  • e75318f [pre-commit.ci] pre-commit autoupdate
  • 7ee846b Merge pull request #188 from asottile/pre-commit-ci-update-config
  • 4083446 [pre-commit.ci] pre-commit autoupdate
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
build(deps): bump the minor-and-patch group with 12 updates
2a0f28d 
Bumps the minor-and-patch group with 12 updates:

| Package | From | To |
| --- | --- | --- |
| [pystac-client](https://github.com/stac-utils/pystac-client) | `0.8.4` | `0.8.5` |
| [mypy](https://github.com/python/mypy) | `1.12.1` | `1.13.0` |
| [pyupgrade](https://github.com/asottile/pyupgrade) | `3.18.0` | `3.19.0` |
| [safety](https://github.com/pyupio/safety) | `3.2.8` | `3.2.10` |
| [typeguard](https://github.com/agronholm/typeguard) | `4.3.0` | `4.4.0` |
| [orjson](https://github.com/ijl/orjson) | `3.10.9` | `3.10.10` |
| [pydantic](https://github.com/pydantic/pydantic) | `2.9.2` | `2.5.3` |
| [pydantic-core](https://github.com/pydantic/pydantic-core) | `2.23.4` | `2.14.6` |
| [rich](https://github.com/Textualize/rich) | `13.9.2` | `13.9.3` |
| [safety-schemas](https://github.com/pyupio/safety_schemas) | `0.0.5` | `0.0.8` |
| [starlette](https://github.com/encode/starlette) | `0.41.0` | `0.41.2` |
| [tokenize-rt](https://github.com/asottile/tokenize-rt) | `6.0.0` | `6.1.0` |


Updates `pystac-client` from 0.8.4 to 0.8.5
- [Release notes](https://github.com/stac-utils/pystac-client/releases)
- [Changelog](https://github.com/stac-utils/pystac-client/blob/main/CHANGELOG.md)
- [Commits](stac-utils/pystac-client@v0.8.4...v0.8.5)

Updates `mypy` from 1.12.1 to 1.13.0
- [Changelog](https://github.com/python/mypy/blob/master/CHANGELOG.md)
- [Commits](python/mypy@v1.12.1...v1.13.0)

Updates `pyupgrade` from 3.18.0 to 3.19.0
- [Commits](asottile/pyupgrade@v3.18.0...v3.19.0)

Updates `safety` from 3.2.8 to 3.2.10
- [Release notes](https://github.com/pyupio/safety/releases)
- [Changelog](https://github.com/pyupio/safety/blob/main/CHANGELOG.md)
- [Commits](pyupio/safety@3.2.8...3.2.10)

Updates `typeguard` from 4.3.0 to 4.4.0
- [Release notes](https://github.com/agronholm/typeguard/releases)
- [Changelog](https://github.com/agronholm/typeguard/blob/master/docs/versionhistory.rst)
- [Commits](agronholm/typeguard@4.3.0...4.4.0)

Updates `orjson` from 3.10.9 to 3.10.10
- [Release notes](https://github.com/ijl/orjson/releases)
- [Changelog](https://github.com/ijl/orjson/blob/master/CHANGELOG.md)
- [Commits](ijl/orjson@3.10.9...3.10.10)

Updates `pydantic` from 2.9.2 to 2.5.3
- [Release notes](https://github.com/pydantic/pydantic/releases)
- [Changelog](https://github.com/pydantic/pydantic/blob/main/HISTORY.md)
- [Commits](pydantic/pydantic@v2.9.2...v2.5.3)

Updates `pydantic-core` from 2.23.4 to 2.14.6
- [Release notes](https://github.com/pydantic/pydantic-core/releases)
- [Commits](pydantic/pydantic-core@v2.23.4...v2.14.6)

Updates `rich` from 13.9.2 to 13.9.3
- [Release notes](https://github.com/Textualize/rich/releases)
- [Changelog](https://github.com/Textualize/rich/blob/master/CHANGELOG.md)
- [Commits](Textualize/rich@v13.9.2...v13.9.3)

Updates `safety-schemas` from 0.0.5 to 0.0.8
- [Commits](https://github.com/pyupio/safety_schemas/commits)

Updates `starlette` from 0.41.0 to 0.41.2
- [Release notes](https://github.com/encode/starlette/releases)
- [Changelog](https://github.com/encode/starlette/blob/master/docs/release-notes.md)
- [Commits](encode/starlette@0.41.0...0.41.2)

Updates `tokenize-rt` from 6.0.0 to 6.1.0
- [Commits](asottile/tokenize-rt@v6.0.0...v6.1.0)

---
updated-dependencies:
- dependency-name: pystac-client
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: mypy
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: pyupgrade
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: safety
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: typeguard
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: orjson
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: pydantic
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: pydantic-core
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: rich
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: safety-schemas
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: starlette
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: tokenize-rt
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Oct 28, 2024
@gadomski gadomski merged commit d530486 into main Oct 28, 2024
8 checks passed
@gadomski gadomski deleted the dependabot/pip/minor-and-patch-ef56d5f8ff branch October 28, 2024 15:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@gadomski gadomski gadomski approved these changes

@github-actions github-actions[bot] github-actions[bot] approved these changes

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file python Pull requests that update Python code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@gadomski