⬆(deps): Bump channels-redis from 4.0.0 to 4.1.0

[dependabot[bot]]

Bumps channels-redis from 4.0.0 to 4.1.0.

Changelog

Sourced from channels-redis's changelog.

4.1.0 (2023-03-28)

• Adjusted the way Redis connections are handled:

  • Connection handling is now shared between the two, core and pub-sub, layers.

  • Both layers now ensure that connections are closed when an event loop shuts down.

    In particular, redis-py 4.x requires that connections are manually closed. In 4.0 that wasn't done by the core layer, which led to warnings for people using async_to_sync(), without closing connections when updating from 3.x.

• Updated the minimum redis-py version to 4.5.3 because of a security release there. Note that this is not a security issue in channels-redis: installing an earlier version will still use the latest redis-py, but by bumping the dependency we make sure you'll get redis-py too, when you install the update here.

Commits

• 8b4ed2d Bumped version and change notes for v4.1.0 release.
• 093471f Refs #348 -- Skip PY311 tests until redis-py fixes compatibility. (#358)
• 6124749 Updated GHA workflow action versions. (#357)
• 4bc3154 Fix prefix default in docs (#338)
• 62e8fe2 Refactored Redis connection utilities to share between layers. (#352)
• 0c89a97 Assured pools are closed on loop close in core (#347)
• dbf4f30 Update redis-py dependency to >=4.5.3.
• 422d735 Refs #348 -- Marked problem test cases as xfail.
• 89b29ad Pinned redis py to 4.3.5 (#349)
• ffe3566 Clarified that README ref to Redis version is for Redis server. (#351)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov[bot]]

Codecov Report

Merging #621 (af89e18) into dev (15f4525) will not change coverage. The diff coverage is n/a.

@@           Coverage Diff           @@
##              dev     #621   +/-   ##
=======================================
  Coverage   87.27%   87.27%           
=======================================
  Files         135      135           
  Lines        5672     5672           
=======================================
  Hits         4950     4950           
  Misses        722      722