search

Kinto / kinto

A generic JSON document store with sharing and synchronisation capabilities.
http://docs.kinto-storage.org/
Other
4.32k stars 421 forks source link

Bump the minor-patch group with 5 updates #3437

Closed dependabot[bot] closed 1 month ago

dependabot[bot] commented 1 month ago

Bumps the minor-patch group with 5 updates:

Package From To
sqlalchemy 2.0.31 2.0.32
newrelic 9.12.0 9.13.0
playwright 1.45.1 1.46.0
ruff 0.5.6 0.5.7
sphinx-github-changelog 1.3.0 1.4.0

Updates sqlalchemy from 2.0.31 to 2.0.32

Release notes

Sourced from sqlalchemy's releases.

2.0.32

Released: August 5, 2024

general

  • [general] [bug] [regression] Restored legacy class names removed from sqlalalchemy.orm.collections.*, including _orm.MappedCollection, _orm.mapped_collection(), _orm.column_mapped_collection(), _orm.attribute_mapped_collection(). Pull request courtesy Takashi Kajinami.

    References: #11435

orm

  • [orm] [usecase] The _orm.aliased.name parameter to _orm.aliased() may now be combined with the _orm.aliased.flat parameter, producing per-table names based on a name-prefixed naming convention. Pull request courtesy Eric Atkin.

    References: #11575

  • [orm] [bug] [regression] Fixed regression going back to 1.4 where accessing a collection using the "dynamic" strategy on a transient object and attempting to query would raise an internal error rather than the expected NoResultFound that occurred in 1.3.

    This change is also backported to: 1.4.53

    References: #11562

  • [orm] [bug] Fixed issue where using the _orm.Query.enable_eagerloads() and _orm.Query.yield_per() methods at the same time, in order to disable eager loading that's configured on the mapper directly, would be silently ignored, leading to errors or unexpected eager population of attributes.

    References: #10834

  • [orm] [bug] [regression] Fixed regression appearing in 2.0.21 caused by #10279 where using a _sql.delete() or _sql.update() against an ORM class that is the base of an inheritance hierarchy, while also specifying that subclasses should be loaded polymorphically, would leak the polymorphic joins into the UPDATE or DELETE statement as well creating incorrect SQL.

    References: #11625

  • [orm] [bug] [regression] Fixed regression from version 1.4 in

... (truncated)

Commits


Updates newrelic from 9.12.0 to 9.13.0

Release notes

Sourced from newrelic's releases.

v9.13.0

Notes

This release of the Python agent adds the following:

  • support for boto3's upload_file command
  • support for newly added Redis commands
  • AWS SQS information on spans
  • server.address attribute on RabbitMQ

This release also fixes an issue with OpenAI's client instrumentation and missing parameters in Botocore SQS.

Install the agent using easy_install/pip/distribute via the Python Package Index or download it directly from the New Relic download site.

New features

  • Add instrumentation for upload_file in boto3

    • Add support for the s3transfer BoundExecutor submit function, allowing the agent to support the upload_file operation in boto3.

  • Add support for new Redis commands

    • Add instrumentation for the following commands in Redis:
      • hexpire
      • hexpireat
      • hexpiretime
      • hpersist
      • hpexpire
      • hpexpireat
      • hpexpiretime
      • hpttl
      • httl

  • Capture AWS SQS information on message spans:

    • The Python Agent now captures the following AWS SQS information on message spans allowing the UI to link AWS information with AWS SQS:
      • messaging.system - aws_sqs
      • cloud.region - AWS region
      • cloud.account.id - AWS account ID
      • messaging.destination.name - AWS queue name

  • Add server.address attribute to RabbitMQ:

    • Add server.address attribute to RabbitMQ, allowing the UI to link AWS information with AWS MQ.

Bug fixes

  • Fix TypeError in OpenAI instrumentation:

    • Newer versions of OpenAI include an additional argument, resulting in an error with the base client instrumentation. This has been fixed.

... (truncated)

Commits
  • 70e98a5 Fix params not getting passed bug (#1193)
  • 2909603 Botocore SQS Code Cleanup (#1187)
  • 4e2dd16 Add server.address attribute to RabbitMQ (#1186)
  • 6c870ec Instrument s3transfer BoundExecutor submit function. (#1185)
  • 234bd74 Merge pull request #1191 from newrelic/fix-failing-aiothttp-test
  • 08a512a Move connector instantiation inside event loop
  • 772adec Merge pull request #1190 from newrelic/add-new-redis-methods
  • 10de1d5 Merge branch 'main' into add-new-redis-methods
  • 6350bd3 Merge pull request #1189 from newrelic/fix-failing-openai
  • ee15710 Add new redis commands
  • Additional commits viewable in compare view


Updates playwright from 1.45.1 to 1.46.0

Release notes

Sourced from playwright's releases.

v1.46.0

TLS Client Certificates

Playwright now allows to supply client-side certificates, so that server can verify them, as specified by TLS Client Authentication.

You can provide client certificates as a parameter of browser.new_context() and api_request.new_context(). The following snippet sets up a client certificate for https://example.com:

context = browser.new_context(
    client_certificates=[
        {
            "origin": "https://example.com",
            "certPath": "client-certificates/cert.pem",
            "keyPath": "client-certificates/key.pem",
        }
    ],
)

When using the Pytest plugin, it can be added like this:

@pytest.fixture(scope="session")
def browser_context_args(browser_context_args):
    return {
        **browser_context_args,
        "client_certificates": [
            {
                "origin": "https://example.com",
                "certPath": "client-certificates/cert.pem",
                "keyPath": "client-certificates/key.pem",
            }
        ],
    }

Trace Viewer Updates

  • Content of text attachments is now rendered inline in the attachments pane.
  • New setting to show/hide routing actions like route.continue_().
  • Request method and status are shown in the network details tab.
  • New button to copy source file location to clipboard.
  • Metadata pane now displays the base_url.

Miscellaneous

Browser Versions

  • Chromium 128.0.6613.18
  • Mozilla Firefox 128.0
  • WebKit 18.0

... (truncated)

Commits
  • 8b9bcdc chore(roll): roll Playwright to v1.46.0 (#2519)
  • e71bbeb build(deps): bump mypy from 1.11.0 to 1.11.1 (#2516)
  • 11cb324 build(deps): bump black from 24.4.2 to 24.8.0 (#2512)
  • 1b12403 fix(Nuitka): Python single executable bundler support (#2518)
  • 86c0191 test: client-certificate follow-ups (#2508)
  • 6565810 chore(roll): roll Playwright to v1.46 (#2499)
  • c13cd03 build(deps): bump pyopenssl from 24.1.0 to 24.2.1 (#2493)
  • 2ba0188 build(deps): bump setuptools from 70.3.0 to 72.1.0 (#2501)
  • 0c30570 build(deps): bump mypy from 1.10.1 to 1.11.0 (#2490)
  • ead662a build(deps): bump types-pyopenssl from 24.1.0.20240425 to 24.1.0.20240722 (#2...
  • Additional commits viewable in compare view


Updates ruff from 0.5.6 to 0.5.7

Release notes

Sourced from ruff's releases.

0.5.7

Release Notes

Preview features

  • [flake8-comprehensions] Account for list and set comprehensions in unnecessary-literal-within-tuple-call (C409) (#12657)
  • [flake8-pyi] Add autofix for future-annotations-in-stub (PYI044) (#12676)
  • [flake8-return] Avoid syntax error when auto-fixing RET505 with mixed indentation (space and tabs) (#12740)
  • [pydoclint] Add docstring-missing-yields (DOC402) and docstring-extraneous-yields (DOC403) (#12538)
  • [pydoclint] Avoid DOC201 if docstring begins with "Return", "Returns", "Yield", or "Yields" (#12675)
  • [pydoclint] Deduplicate collected exceptions after traversing function bodies (DOC501) (#12642)
  • [pydoclint] Ignore DOC errors for stub functions (#12651)
  • [pydoclint] Teach rules to understand reraised exceptions as being explicitly raised (DOC501, DOC502) (#12639)
  • [ruff] Implement incorrectly-parenthesized-tuple-in-subscript (RUF031) (#12480)
  • [ruff] Mark RUF023 fix as unsafe if __slots__ is not a set and the binding is used elsewhere (#12692)

Rule changes

  • [refurb] Add autofix for implicit-cwd (FURB177) (#12708)
  • [ruff] Add autofix for zip-instead-of-pairwise (RUF007) (#12663)
  • [tryceratops] Add BaseException to raise-vanilla-class rule (TRY002) (#12620)

Server

  • Ignore non-file workspace URL; Ruff will display a warning notification in this case (#12725)

CLI

  • Fix cache invalidation for nested pyproject.toml files (#12727)

Bug fixes

  • [flake8-async] Fix false positives with multiple async with items (ASYNC100) (#12643)
  • [flake8-bandit] Avoid false-positives for list concatenations in SQL construction (S608) (#12720)
  • [flake8-bugbear] Treat return as equivalent to break (B909) (#12646)
  • [flake8-comprehensions] Set comprehensions not a violation for sum in unnecessary-comprehension-in-call (C419) (#12691)
  • [flake8-simplify] Parenthesize conditions based on precedence when merging if arms (SIM114) (#12737)
  • [pydoclint] Try both 'Raises' section styles when convention is unspecified (DOC501) (#12649)

Contributors

... (truncated)

Changelog

Sourced from ruff's changelog.

0.5.7

Preview features

  • [flake8-comprehensions] Account for list and set comprehensions in unnecessary-literal-within-tuple-call (C409) (#12657)
  • [flake8-pyi] Add autofix for future-annotations-in-stub (PYI044) (#12676)
  • [flake8-return] Avoid syntax error when auto-fixing RET505 with mixed indentation (space and tabs) (#12740)
  • [pydoclint] Add docstring-missing-yields (DOC402) and docstring-extraneous-yields (DOC403) (#12538)
  • [pydoclint] Avoid DOC201 if docstring begins with "Return", "Returns", "Yield", or "Yields" (#12675)
  • [pydoclint] Deduplicate collected exceptions after traversing function bodies (DOC501) (#12642)
  • [pydoclint] Ignore DOC errors for stub functions (#12651)
  • [pydoclint] Teach rules to understand reraised exceptions as being explicitly raised (DOC501, DOC502) (#12639)
  • [ruff] Implement incorrectly-parenthesized-tuple-in-subscript (RUF031) (#12480)
  • [ruff] Mark RUF023 fix as unsafe if __slots__ is not a set and the binding is used elsewhere (#12692)

Rule changes

  • [refurb] Add autofix for implicit-cwd (FURB177) (#12708)
  • [ruff] Add autofix for zip-instead-of-pairwise (RUF007) (#12663)
  • [tryceratops] Add BaseException to raise-vanilla-class rule (TRY002) (#12620)

Server

  • Ignore non-file workspace URL; Ruff will display a warning notification in this case (#12725)

CLI

  • Fix cache invalidation for nested pyproject.toml files (#12727)

Bug fixes

  • [flake8-async] Fix false positives with multiple async with items (ASYNC100) (#12643)
  • [flake8-bandit] Avoid false-positives for list concatenations in SQL construction (S608) (#12720)
  • [flake8-bugbear] Treat return as equivalent to break (B909) (#12646)
  • [flake8-comprehensions] Set comprehensions not a violation for sum in unnecessary-comprehension-in-call (C419) (#12691)
  • [flake8-simplify] Parenthesize conditions based on precedence when merging if arms (SIM114) (#12737)
  • [pydoclint] Try both 'Raises' section styles when convention is unspecified (DOC501) (#12649)
Commits
  • 221ea66 Bump version to 0.5.7 (#12756)
  • d28c5af [red-knot] Remove mentions of Ruff from the CLI help (#12752)
  • f1de08c [red-knot] Merge the semantic and module-resolver crates (#12751)
  • 33e9a6a SIM110: any() is ~3x slower than the code it replaces (#12746)
  • f577e03 [ruff] Ignore empty tuples for `incorrectly-parenthesized-tuple-in-subscript ...
  • f537335 Remove all useEffect usages (#12659)
  • 2daa914 Gracefully handle errors in CLI (#12747)
  • 6d9205e [ruff_linter] - Use LibCST in adjust_indentation for mixed whitespace (#1...
  • df7345e Exit with an error if there are check failures (#12735)
  • dc6aafe Setup tracing and document tracing usage (#12730)
  • Additional commits viewable in compare view


Updates sphinx-github-changelog from 1.3.0 to 1.4.0

Release notes

Sourced from sphinx-github-changelog's releases.

1.4.0

What's Changed

New Contributors

Full Changelog: https://github.com/ewjoachim/sphinx-github-changelog/compare/1.3.0...1.4.0

Commits
  • 72a564a Merge pull request #139 from dzuev2/main
  • c248b0d Update ci.yml
  • b67e605 Support self hosted git repo
  • 1694015 Merge pull request #135 from ewjoachim/dependabot/pip/zipp-3.19.1
  • 6ba7bea Bump zipp from 3.16.2 to 3.19.1
  • 4e8f2b2 Merge pull request #133 from ewjoachim/pre-commit-ci-update-config
  • da7f9b5 Merge pull request #134 from ewjoachim/dependabot/pip/certifi-2024.7.4
  • 4152d04 Bump certifi from 2023.7.22 to 2024.7.4
  • 147978a [pre-commit.ci] auto fixes from pre-commit.com hooks
  • 7e3e602 [pre-commit.ci] pre-commit autoupdate
  • Additional commits viewable in compare view


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions