Skip to content

build(deps): bump the minor-and-patch group with 10 updates #665

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
May 27, 2025
Merged

build(deps): bump the minor-and-patch group with 10 updates #665

merged 1 commit into from
May 27, 2025

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github May 26, 2025

Bumps the minor-and-patch group with 10 updates:

Package From To
click 8.2.0 8.2.1
coverage 7.8.0 7.8.2
pyupgrade 3.19.1 3.20.0
authlib 1.5.2 1.6.0
cryptography 45.0.2 45.0.3
identify 2.6.10 2.6.12
rpds-py 0.25.0 0.25.1
ruamel-yaml 0.18.10 0.18.11
setuptools 80.7.1 80.8.0
tokenize-rt 6.1.0 6.2.0

Updates click from 8.2.0 to 8.2.1

Release notes

Sourced from click's releases.

8.2.1

This is the Click 8.2.1 fix release, which fixes bugs but does not otherwise change behavior and should not result in breaking changes compared to the latest feature release.

PyPI: https://pypi.org/project/click/8.2.1/ Changes: https://click.palletsprojects.com/page/changes/#version-8-2-1 Milestone: https://github.com/pallets/click/milestone/24?closed=1

  • Fix flag value handling for flag options with a provided type. #2894 #2897
  • Fix shell completion for nested groups. #2906
  • Flush sys.stderr at the end of CliRunner.invoke. #2682
  • Fix EOF handling for stdin input in CliRunner. #2787
Changelog

Sourced from click's changelog.

Version 8.2.1

Released 2025-05-20

  • Fix flag value handling for flag options with a provided type. :issue:2894 :issue:2897 :pr:2930
  • Fix shell completion for nested groups. :issue:2906 :pr:2907
  • Flush sys.stderr at the end of CliRunner.invoke. :issue:2682
  • Fix EOF handling for stdin input in CliRunner. :issue:2787
Commits
  • fd183b2 release version 8.2.1
  • 262bdf0 Raise an exception on end of input in CliRunner (#2934)
  • 80efdf6 Raise an exception on end of input in CliRunner
  • cfa6f4a Flush sys.stderr when CliRunner finalizes (#2933)
  • f3a4363 flush sys.stderr when CliRunner.invoke finalizes
  • b7cf069 fix shell completion for nested groups (#2935)
  • 7c575d6 parametrize test
  • ac6a2ac Fix shell completion for nested groups
  • 884af5c Fix flag value set when is_flag=True and type is provided (#2930)
  • 4fd2fea Fix condition for setting flag value when type is provided
  • Additional commits viewable in compare view

Updates coverage from 7.8.0 to 7.8.2

Changelog

Sourced from coverage's changelog.

Version 7.8.2 — 2025-05-23

  • Wheels are provided for Windows ARM64 on Python 3.11, 3.12, and 3.13. Thanks, Finn Womack <pull 1972_>_.

.. _issue 1971: nedbat/coveragepy#1971 .. _pull 1972: nedbat/coveragepy#1972

.. _changes_7-8-1:

Version 7.8.1 — 2025-05-21

  • A number of EncodingWarnings were fixed that could appear if you've enabled PYTHONWARNDEFAULTENCODING, fixing issue 1966. Thanks, Henry Schreiner <pull 1967_>.

  • Fixed a race condition when using sys.monitoring with free-threading Python, closing issue 1970_.

.. _issue 1966: nedbat/coveragepy#1966 .. _pull 1967: nedbat/coveragepy#1967 .. _issue 1970: nedbat/coveragepy#1970

.. _changes_7-8-0:

Commits
  • 51ab2e5 build: have to keep expected dist counts in sync
  • be7bbf2 docs: sample HTML for 7.8.2
  • 3cee850 docs: prep for 7.8.2
  • 39bc6b0 docs: provide more details if the kit matrix is edited.
  • a608fb3 build: add support for Windows arm64 (#1972)
  • 2fe6225 build: run tox lint if actions have changed
  • 3d93a78 docs: docs need scriv for making github releases
  • 0c443a2 build: bump version to 7.8.2
  • ed98b87 docs: sample HTML for 7.8.1
  • b98bc9b docs: prep for 7.8.1
  • Additional commits viewable in compare view

Updates pyupgrade from 3.19.1 to 3.20.0

Commits
  • 37bfa06 v3.20.0
  • 40ed0a9 Merge pull request #1013 from asottile/py314
  • 6f8432d pyupgrade fixes for python 3.14
  • 99080c3 Merge pull request #1007 from asottile/pre-commit-ci-update-config
  • ca2eb6b [pre-commit.ci] auto fixes from pre-commit.com hooks
  • f0aa7a8 [pre-commit.ci] pre-commit autoupdate
  • 5955327 Merge pull request #1002 from asottile/pre-commit-ci-update-config
  • 780f392 [pre-commit.ci] pre-commit autoupdate
  • dbe967d Merge pull request #1000 from asottile/pre-commit-ci-update-config
  • b182521 [pre-commit.ci] pre-commit autoupdate
  • Additional commits viewable in compare view

Updates authlib from 1.5.2 to 1.6.0

Release notes

Sourced from authlib's releases.

Version 1.6.0

Changelog

Sourced from authlib's changelog.

Version 1.6.0

Released on May 22, 2025

  • Fix issue when :rfc:RFC9207 <9207> is enabled and the authorization endpoint response is not a redirection. :pr:733
  • Fix missing state parameter in authorization error responses. :issue:525
  • Support for acr and amr claims in id_token. :issue:734
  • Support for the none JWS algorithm.
  • Fix response_types strict order during dynamic client registration. :issue:760
  • Implement :rfc:RFC9101 The OAuth 2.0 Authorization Framework: JWT-Secured Authorization Request (JAR) <9101>. :issue:723
  • OIDC :class:UserInfo endpoint <authlib.oidc.core.userinfo.UserInfoEndpoint> support. :issue:459
Commits
  • fe87a11 chore: release version 1.6.0
  • 036a0b7 Merge pull request #774 from azmeuk/459-userinfo
  • 449a1a2 feat: OIDC userinfo endpoint support
  • d429c36 Merge pull request #749 from azmeuk/724-jar
  • a524d23 chore: move 1.7 deprecations to 1.8
  • f37e60e feat: implement rfc9101 JWT authorization request
  • 8a6c714 refactor: OAuth2 hook mechanism overhaul
  • ff1b66b refactor: extract OAuth2Payload from OAuth2Request
  • 98eebd1 refactor: remove uncovered code in OAuth2Request
  • 1b848e2 refactor: create_authorization_response can take an optional 'grant' arg
  • Additional commits viewable in compare view

Updates cryptography from 45.0.2 to 45.0.3

Changelog

Sourced from cryptography's changelog.

45.0.3 - 2025-05-25


* Fixed decrypting PKCS#8 files encrypted with long salts (this impacts keys
  encrypted by Bouncy Castle).
* Fixed decrypting PKCS#8 files encrypted with DES-CBC-MD5. While wildly
  insecure, this remains prevalent.

.. _v45-0-2:

Commits

Updates identify from 2.6.10 to 2.6.12

Commits

Updates rpds-py from 0.25.0 to 0.25.1

Release notes

Sourced from rpds-py's releases.

v0.25.1

What's Changed

New Contributors

Full Changelog: crate-py/rpds@v0.25.0...v0.25.1

Commits
  • 125b4b1 Release v0.25.1 for Windows ARM.
  • 996e50a Properly pin hashes in workflows.
  • d8e3e84 Merge pull request #133 from finnagin/arm64-wheel-build
  • e4f09f1 remove trailing whitespace
  • 403a90d fix indentation
  • 1571595 pin maturin-action steps to hash
  • 184a8e6 Merge branch 'crate-py:main' into arm64-wheel-build
  • 2531d3b remove trailing whitespace
  • bb9ba9e add windows-arm to release needs
  • f850162 Add windows arm64 builds
  • See full diff in compare view

Updates ruamel-yaml from 0.18.10 to 0.18.11

Updates setuptools from 80.7.1 to 80.8.0

Changelog

Sourced from setuptools's changelog.

v80.8.0

Features

  • Replaced more references to pkg_resources with importlib equivalents in wheel odule. (#3085)
  • Restore explicit LICENSE file. (#5001)
  • Removed no longer used build dependency on coherent.licensed. (#5003)
Commits
  • b3786cd Bump version: 80.7.1 → 80.8.0
  • 9179b75 Merge pull request #5003 from abravalheri/issue-5002
  • 6f937df Merge pull request #5004 from pypa/feature/remove-more-pkg_resources
  • 1bfd8db Add news fragment.
  • 0e19b82 Replace pkg_resources with importlib.metadata and packaging.requirements.
  • 95145dd Extract a method for converting requires.
  • 57d6fcd Add news fragment
  • 62e4793 Comment out unused build dependency
  • ae480ff Restore explicit LICENSE file
  • See full diff in compare view

Updates tokenize-rt from 6.1.0 to 6.2.0

Commits
  • 1582bcf v6.2.0
  • 07ad77b Merge pull request #201 from asottile/handle-tstring-tokens
  • 2cb9c40 handle tstring tokens
  • ed9a32c Merge pull request #200 from asottile/pre-commit-ci-update-config
  • 09148b3 [pre-commit.ci] auto fixes from pre-commit.com hooks
  • 9dd86b7 [pre-commit.ci] pre-commit autoupdate
  • 82fd4e1 Merge pull request #199 from asottile/pre-commit-ci-update-config
  • d3a7947 [pre-commit.ci] pre-commit autoupdate
  • 2052c59 Merge pull request #198 from asottile/pre-commit-ci-update-config
  • 7debf60 [pre-commit.ci] pre-commit autoupdate
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
build(deps): bump the minor-and-patch group with 10 updates
ddf8a7d 
Bumps the minor-and-patch group with 10 updates:

| Package | From | To |
| --- | --- | --- |
| [click](https://github.com/pallets/click) | `8.2.0` | `8.2.1` |
| [coverage](https://github.com/nedbat/coveragepy) | `7.8.0` | `7.8.2` |
| [pyupgrade](https://github.com/asottile/pyupgrade) | `3.19.1` | `3.20.0` |
| [authlib](https://github.com/authlib/authlib) | `1.5.2` | `1.6.0` |
| [cryptography](https://github.com/pyca/cryptography) | `45.0.2` | `45.0.3` |
| [identify](https://github.com/pre-commit/identify) | `2.6.10` | `2.6.12` |
| [rpds-py](https://github.com/crate-py/rpds) | `0.25.0` | `0.25.1` |
| ruamel-yaml | `0.18.10` | `0.18.11` |
| [setuptools](https://github.com/pypa/setuptools) | `80.7.1` | `80.8.0` |
| [tokenize-rt](https://github.com/asottile/tokenize-rt) | `6.1.0` | `6.2.0` |


Updates `click` from 8.2.0 to 8.2.1
- [Release notes](https://github.com/pallets/click/releases)
- [Changelog](https://github.com/pallets/click/blob/main/CHANGES.rst)
- [Commits](pallets/click@8.2.0...8.2.1)

Updates `coverage` from 7.8.0 to 7.8.2
- [Release notes](https://github.com/nedbat/coveragepy/releases)
- [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst)
- [Commits](nedbat/coveragepy@7.8.0...7.8.2)

Updates `pyupgrade` from 3.19.1 to 3.20.0
- [Commits](asottile/pyupgrade@v3.19.1...v3.20.0)

Updates `authlib` from 1.5.2 to 1.6.0
- [Release notes](https://github.com/authlib/authlib/releases)
- [Changelog](https://github.com/authlib/authlib/blob/main/docs/changelog.rst)
- [Commits](authlib/authlib@v1.5.2...v1.6.0)

Updates `cryptography` from 45.0.2 to 45.0.3
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst)
- [Commits](pyca/cryptography@45.0.2...45.0.3)

Updates `identify` from 2.6.10 to 2.6.12
- [Commits](pre-commit/identify@v2.6.10...v2.6.12)

Updates `rpds-py` from 0.25.0 to 0.25.1
- [Release notes](https://github.com/crate-py/rpds/releases)
- [Commits](crate-py/rpds@v0.25.0...v0.25.1)

Updates `ruamel-yaml` from 0.18.10 to 0.18.11

Updates `setuptools` from 80.7.1 to 80.8.0
- [Release notes](https://github.com/pypa/setuptools/releases)
- [Changelog](https://github.com/pypa/setuptools/blob/main/NEWS.rst)
- [Commits](pypa/setuptools@v80.7.1...v80.8.0)

Updates `tokenize-rt` from 6.1.0 to 6.2.0
- [Commits](asottile/tokenize-rt@v6.1.0...v6.2.0)

---
updated-dependencies:
- dependency-name: click
  dependency-version: 8.2.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: coverage
  dependency-version: 7.8.2
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: pyupgrade
  dependency-version: 3.20.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: authlib
  dependency-version: 1.6.0
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: cryptography
  dependency-version: 45.0.3
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: identify
  dependency-version: 2.6.12
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: rpds-py
  dependency-version: 0.25.1
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: ruamel-yaml
  dependency-version: 0.18.11
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: setuptools
  dependency-version: 80.8.0
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: tokenize-rt
  dependency-version: 6.2.0
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels May 26, 2025
@gadomski gadomski merged commit 7f46de7 into main May 27, 2025
8 checks passed
@gadomski gadomski deleted the dependabot/pip/minor-and-patch-2e5ae67f2c branch May 27, 2025 14:42
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@github-actions github-actions[bot] github-actions[bot] approved these changes

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file python Pull requests that update Python code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@gadomski