search

OpenTTD / bananas-frontend-web

Front-end to the BaNaNaS API
GNU General Public License v2.0
3 stars 7 forks source link

Upgrade: Bump the dependencies-pip group with 7 updates #226

Closed dependabot[bot] closed 10 months ago

dependabot[bot] commented 1 year ago

Bumps the dependencies-pip group with 7 updates:

Package From To
charset-normalizer 3.2.0 3.3.0
click 8.1.6 8.1.7
flask 2.3.2 3.0.0
sentry-sdk 1.28.1 1.31.0
urllib3 2.0.4 2.0.5
werkzeug 2.3.6 3.0.0
zipp 3.16.2 3.17.0

Updates charset-normalizer from 3.2.0 to 3.3.0

Release notes

Sourced from charset-normalizer's releases.

Release 3.3.0

3.3.0 (2023-09-30)

Added

  • Allow to execute the CLI (e.g. normalizer) through python -m charset_normalizer.cli or python -m charset_normalizer
  • Support for 9 forgotten encodings that are supported by Python but unlisted in encoding.aliases as they have no alias (#323)

Removed

  • (internal) Redundant utils.is_ascii function and unused function is_private_use_only
  • (internal) charset_normalizer.assets is moved inside charset_normalizer.constant

Changed

  • (internal) Unicode code blocks in constants are updated using the latest v15.0.0 definition to improve detection
  • Optional mypyc compilation upgraded to version 1.5.1 for Python >= 3.8

Fixed

  • Unable to properly sort CharsetMatch when both chaos/noise and coherence were close due to an unreachable condition in __lt__ (#350)
Changelog

Sourced from charset-normalizer's changelog.

3.3.0 (2023-09-30)

Added

  • Allow to execute the CLI (e.g. normalizer) through python -m charset_normalizer.cli or python -m charset_normalizer
  • Support for 9 forgotten encoding that are supported by Python but unlisted in encoding.aliases as they have no alias (#323)

Removed

  • (internal) Redundant utils.is_ascii function and unused function is_private_use_only
  • (internal) charset_normalizer.assets is moved inside charset_normalizer.constant

Changed

  • (internal) Unicode code blocks in constants are updated using the latest v15.0.0 definition to improve detection
  • Optional mypyc compilation upgraded to version 1.5.1 for Python >= 3.7

Fixed

  • Unable to properly sort CharsetMatch when both chaos/noise and coherence were close due to an unreachable condition in __lt__ (#350)
Commits
  • 165211a :bookmark: Release 3.3.0 (#353)
  • 5aed9a4 :bug: Fix unreachable code in the sorting algorithm of CharsetMatch (#352)
  • 061a71b :arrow_up: Bump actions/checkout from 4.0.0 to 4.1.0 (#348)
  • 88df580 :arrow_up: Bump github/codeql-action from 2.21.7 to 2.21.9 (#351)
  • aa0234b :arrow_up: Bump pypa/cibuildwheel from 2.15.0 to 2.16.0 (#349)
  • 58f69f7 :arrow_up: Bump github/codeql-action from 2.21.5 to 2.21.7 (#345)
  • e7c2d8e :arrow_up: Bump docker/setup-qemu-action from 2.2.0 to 3.0.0 (#346)
  • 5abf47f :arrow_up: Bump pytest from 7.4.1 to 7.4.2 (#342)
  • 50a138e :arrow_up: Bump actions/checkout from 3.6.0 to 4.0.0 (#343)
  • 5da7047 :arrow_up: Bump actions/upload-artifact from 3.1.2 to 3.1.3 (#344)
  • Additional commits viewable in compare view


Updates click from 8.1.6 to 8.1.7

Release notes

Sourced from click's releases.

8.1.7

This is a fix release for the 8.1.x feature branch.

Changelog

Sourced from click's changelog.

Version 8.1.7

Released 2023-08-17

  • Fix issue with regex flags in shell completion. :issue:2581
  • Bash version detection issues a warning instead of an error. :issue:2574
  • Fix issue with completion script for Fish shell. :issue:2567
Commits
  • 874ca2b release version 8.1.7
  • 6e1f6d3 completion(fish): add back ; as line endings in fish script (#2570)
  • a955c77 update fish enabling script
  • 3c1529e add back semicolons in fish script
  • a260ca6 Replace bash shell completion version error with warning (#2576)
  • d9db70c bash version support shows warning instead of error
  • 22b9b1c Fix incorrect passing of flags to re.sub (#2581)
  • d69d210 fix flake8 finding
  • af2da1e Fix incorrect passing of flags to re.sub
  • bb6a872 start version 8.1.7
  • Additional commits viewable in compare view


Updates flask from 2.3.2 to 3.0.0

Release notes

Sourced from flask's releases.

3.0.0

This is a feature release, which includes new features, removes previously deprecated code, and adds new deprecations. The 3.0.x branch is now the supported fix branch, the 2.3.x branch will become a tag marking the end of support for that branch. We encourage everyone to upgrade, and to use a tool such as pip-tools to pin all dependencies and control upgrades. Test with warnings treated as errors to be able to adapt to deprecation warnings early.

2.3.3

This is a fix release for the 2.3.x feature branch.

Changelog

Sourced from flask's changelog.

Version 3.0.0

Released 2023-09-30

  • Remove previously deprecated code. :pr:5223
  • Deprecate the __version__ attribute. Use feature detection, or importlib.metadata.version("flask"), instead. :issue:5230
  • Restructure the code such that the Flask (app) and Blueprint classes have Sans-IO bases. :pr:5127
  • Allow self as an argument to url_for. :pr:5264
  • Require Werkzeug >= 3.0.0.

Version 2.3.3

Released 2023-08-21

  • Python 3.12 compatibility.
  • Require Werkzeug >= 2.3.7.
  • Use flit_core instead of setuptools as build backend.
  • Refactor how an app's root and instance paths are determined. :issue:5160
Commits
  • 735a470 Release version 3.0.0
  • efe39ae Bump Werkzeug 3.0.0
  • 438edcd Allow self as an argument to url_for
  • b7c1290 Fix wrong spelling of JS method .innerHTML
  • 8037487 Bump pypa/gh-action-pypi-publish from 1.8.8 to 1.8.10 (#5248)
  • e8076d9 Bump slsa-framework/slsa-github-generator from 1.7.0 to 1.9.0 (#5247)
  • ecc4a38 Bump actions/checkout from 3.5.3 to 3.6.0 (#5246)
  • 24c6508 Bump pypa/gh-action-pypi-publish from 1.8.8 to 1.8.10
  • 98cef9f Bump slsa-framework/slsa-github-generator from 1.7.0 to 1.9.0
  • 0c97a41 Bump actions/checkout from 3.5.3 to 3.6.0
  • Additional commits viewable in compare view


Updates sentry-sdk from 1.28.1 to 1.31.0

Release notes

Sourced from sentry-sdk's releases.

1.31.0

Various fixes & improvements

  • New: Add integration for clickhouse-driver (#2167) by @​mimre25

    For more information, see the documentation for clickhouse-driver for more information.

    Usage:

      import sentry_sdk
  from sentry_sdk.integrations.clickhouse_driver import ClickhouseDriverIntegration

    sentry_sdk.init(
dsn='PUBLIC_DSN',
integrations=[
ClickhouseDriverIntegration(),
],
)

  • New: Add integration for asyncpg (#2314) by @​mimre25

    For more information, see the documentation for asyncpg for more information.

    Usage:

      import sentry_sdk
  from sentry_sdk.integrations.asyncpg import AsyncPGIntegration

    sentry_sdk.init(
dsn='PUBLIC_DSN',
integrations=[
AsyncPGIntegration(),
],
)

  • New: Allow to override propagate_traces in Celery per task (#2331) by @​jan-auer

    For more information, see the documentation for Celery for more information.

    Usage:

      import sentry_sdk
  from sentry_sdk.integrations.celery import CeleryIntegration

    Enable global distributed traces (this is the default, just to be explicit.)
    

    sentry_sdk.init(

... (truncated)

Changelog

Sourced from sentry-sdk's changelog.

1.31.0

Various fixes & improvements

  • New: Add integration for clickhouse-driver (#2167) by @​mimre25

    For more information, see the documentation for clickhouse-driver for more information.

    Usage:

      import sentry_sdk
  from sentry_sdk.integrations.clickhouse_driver import ClickhouseDriverIntegration

    sentry_sdk.init(
dsn='PUBLIC_DSN',
integrations=[
ClickhouseDriverIntegration(),
],
)

  • New: Add integration for asyncpg (#2314) by @​mimre25

    For more information, see the documentation for asyncpg for more information.

    Usage:

      import sentry_sdk
  from sentry_sdk.integrations.asyncpg import AsyncPGIntegration

    sentry_sdk.init(
dsn='PUBLIC_DSN',
integrations=[
AsyncPGIntegration(),
],
)

  • New: Allow to override propagate_traces in Celery per task (#2331) by @​jan-auer

    For more information, see the documentation for Celery for more information.

    Usage:

      import sentry_sdk
  from sentry_sdk.integrations.celery import CeleryIntegration

    Enable global distributed traces (this is the default, just to be explicit.)

... (truncated)

Commits


Updates urllib3 from 2.0.4 to 2.0.5

Release notes

Sourced from urllib3's releases.

2.0.5

  • Allowed pyOpenSSL third-party module without any deprecation warning. #3126
  • Fixed default blocksize of HTTPConnection classes to match high-level classes. Previously was 8KiB, now 16KiB. #3066
Changelog

Sourced from urllib3's changelog.

2.0.5 (2023-09-20)

  • Allowed pyOpenSSL third-party module without any deprecation warning. ([#3126](https://github.com/urllib3/urllib3/issues/3126) <https://github.com/urllib3/urllib3/issues/3126>__)
  • Fixed default blocksize of HTTPConnection classes to match high-level classes. Previously was 8KiB, now 16KiB. ([#3066](https://github.com/urllib3/urllib3/issues/3066) <https://github.com/urllib3/urllib3/issues/3066>__)
Commits


Updates werkzeug from 2.3.6 to 3.0.0

Release notes

Sourced from werkzeug's releases.

3.0.0

This is a feature release, which includes new features, removes previously deprecated code, and adds new deprecations. The 3.0.x branch is now the supported fix branch, the 2.3.x branch will become a tag marking the end of support for that branch. We encourage everyone to upgrade, and to use a tool such as pip-tools to pin all dependencies and control upgrades. Test with warnings treated as errors to be able to adapt to deprecation warnings early.

2.3.7

This is a fix release for the 2.3.x feature branch.

Changelog

Sourced from werkzeug's changelog.

Version 3.0.0

Released 2023-09-30

  • Remove previously deprecated code. :pr:2768
  • Deprecate the __version__ attribute. Use feature detection, or importlib.metadata.version("werkzeug"), instead. :issue:2770
  • generate_password_hash uses scrypt by default. :issue:2769
  • Add the "werkzeug.profiler" item to the WSGI environ dictionary passed to ProfilerMiddleware's filename_format function. It contains the elapsed and time values for the profiled request. :issue:2775
  • Explicitly marked the PathConverter as non path isolating. :pr:2784

Version 2.3.8

Unreleased

Version 2.3.7

Released 2023-08-14

  • Use flit_core instead of setuptools as build backend.
  • Fix parsing of multipart bodies. :issue:2734 Adjust index of last newline in data start. :issue:2761
  • Parsing ints from header values strips spacing first. :issue:2734
  • Fix empty file streaming when testing. :issue:2740
  • Clearer error message when URL rule does not start with slash. :pr:2750
  • Accept q value can be a float without a decimal part. :issue:2751
Commits
  • aa5088f Release version 3.0.0
  • 6427542 Default the PathConverter (and descendants) to be non part isolating
  • 4820d8c Provide elapsed and timestamp info to filename_format
  • 599993d Bump pypa/gh-action-pypi-publish from 1.8.8 to 1.8.10 (#2780)
  • a2394ed Bump slsa-framework/slsa-github-generator from 1.7.0 to 1.9.0 (#2779)
  • 1efd6f3 Bump actions/checkout from 3.5.3 to 3.6.0 (#2778)
  • 76a5419 Bump pypa/gh-action-pypi-publish from 1.8.8 to 1.8.10
  • ce8cfe7 Bump slsa-framework/slsa-github-generator from 1.7.0 to 1.9.0
  • 2b172cb Bump actions/checkout from 3.5.3 to 3.6.0
  • 3f9c1be Update helpful error message about AirPlay collision on macOS (#2776)
  • Additional commits viewable in compare view


Updates zipp from 3.16.2 to 3.17.0

Changelog

Sourced from zipp's changelog.

v3.17.0

Features

  • Added CompleteDirs.inject classmethod to make available for use elsewhere.

Bugfixes

  • Avoid matching path separators for '?' in glob.
Commits


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
dependabot[bot] commented 10 months ago

Looks like these dependencies are updatable in another way, so this is no longer needed.