build: Add "--no-cache-dir" to pip commands in Dockerfile
This would not leave cache files in the built docker image.
Additionally, also only build the wheel in the build phase.
On my machine, before this PR, size is 74845395; after this PR, size is
72617713. (4ef94c8)
Chore
chore(deps): update all non-major dependencies (4f338ae)
chore(deps): update gitlab/gitlab-ee docker tag to v16.11.2-ee.0 (9be48f0)
chore(deps): update dependency myst-parser to v3 (9289189)
chore(deps): update all non-major dependencies (65d0e65)
chore(deps): update dependency jinja2 to v3.1.4 [security] (8ea10c3)
chore(deps): update all non-major dependencies (1f0343c)
chore(deps): update gitlab/gitlab-ee docker tag to v16.11.1-ee.0 (1ed8d6c)
chore(deps): update all non-major dependencies (0e9f4da)
chore(deps): update gitlab/gitlab-ee docker tag to v16 (ea8c4c2)
chore(deps): update all non-major dependencies (d5b5fb0)
chore(deps): update dependency pytest-cov to v5 (db32000)
chore: update mypy to 1.9.0 and resolve one issue
mypy 1.9.0 flagged one issue in the code. Resolve the issue. Current
unit tests already check that a None value returns text/plain. So
function is still working as expected. (dd00bfc)
chore(deps): update dependency black to v24.3.0 [security] (f6e8692)
chore(deps): update all non-major dependencies (14a3ffe)
chore(deps): update all non-major dependencies (3c4dcca)
chore(deps): update all non-major dependencies (04c569a)
build: Add "--no-cache-dir" to pip commands in Dockerfile
This would not leave cache files in the built docker image.
Additionally, also only build the wheel in the build phase.
On my machine, before this PR, size is 74845395; after this PR, size is
72617713. (4ef94c8)
Chore
chore(deps): update all non-major dependencies (4f338ae)
chore(deps): update gitlab/gitlab-ee docker tag to v16.11.2-ee.0 (9be48f0)
chore(deps): update dependency myst-parser to v3 (9289189)
chore(deps): update all non-major dependencies (65d0e65)
chore(deps): update dependency jinja2 to v3.1.4 [security] (8ea10c3)
chore(deps): update all non-major dependencies (1f0343c)
chore(deps): update gitlab/gitlab-ee docker tag to v16.11.1-ee.0 (1ed8d6c)
chore(deps): update all non-major dependencies (0e9f4da)
chore(deps): update gitlab/gitlab-ee docker tag to v16 (ea8c4c2)
chore(deps): update all non-major dependencies (d5b5fb0)
chore(deps): update dependency pytest-cov to v5 (db32000)
chore: update mypy to 1.9.0 and resolve one issue
mypy 1.9.0 flagged one issue in the code. Resolve the issue. Current
unit tests already check that a None value returns text/plain. So
function is still working as expected. (dd00bfc)
chore(deps): update dependency black to v24.3.0 [security] (f6e8692)
chore(deps): update all non-major dependencies (14a3ffe)
chore(deps): update all non-major dependencies (3c4dcca)
chore(deps): update all non-major dependencies (04c569a)
Fixes a 1.30.0 regression in openapi descriptions of imagePullSecrets and hostAliases fields to mark the fields used as keys in those lists as either defaulted or required. (kubernetes/kubernetes#124553, @pmalek) [SIG API Machinery]
Fixes a 1.30.0 regression in openapi descriptions of imagePullSecrets and hostAliases fields to mark the fields used as keys in those lists as either defaulted or required. (kubernetes/kubernetes#124694, @pmalek) [SIG API Machinery]
Added (alpha) support for the managedBy field on Jobs. Jobs with a custom value of this field - any value other than kubernetes.io/job-controller - were skipped by the job controller, and their reconciliation was delegated to an external controller, indicated by the value of the field. Jobs that didn't have this field at all, or where the field value was the reserved string kubernetes.io/job-controller, were reconciled by the built-in job controller.
(kubernetes/kubernetes#123273, @mimowo)
Dynamic Resource Allocation: DRA drivers can now use "structured parameters" to let the scheduler handle claim allocation.
(kubernetes/kubernetes#123516, @pohly)
Fixed accidental enablement of the new alpha optionalOldSelf API field in CustomResourceDefinition validation rules, which should only have been allowed to be set when the CRDValidationRatcheting feature gate is enabled.
(kubernetes/kubernetes#122329, @jpbetz)
Implemented the prescore extension point for the volumeBinding plugin. It now returns skip if it doesn't do anything in Score.
(kubernetes/kubernetes#115768, @AxeZhan)
Structured Authentication Configuration now supports DiscoveryURL. If specified, discoveryURL overrides the URL used to fetch discovery information. This is for scenarios where the well-known and jwks endpoints are hosted at a different location than the issuer (such as locally in the cluster).
(kubernetes/kubernetes#123527, @aramase)
The StorageVersionMigration API, previously available as a Custom Resource Definition (CRD), is now a built-in API in Kubernetes.
(kubernetes/kubernetes#123344, @nilekhc)
When configuring a JWT authenticator:
If username.expression used 'claims.email', then 'claims.email_verified' must have been used in username.expression or extra[*].valueExpression or claimValidationRules[*].expression. An example claim validation rule expression that matches the validation automatically applied when username.claim is set to 'email' is 'claims.?email_verified.orValue(true)'.
(kubernetes/kubernetes#123737, @enj)
kube-apiserver: the AuthenticationConfiguration type accepted in --authentication-config files has been promoted to apiserver.config.k8s.io/v1beta1.
(kubernetes/kubernetes#123696, @aramase)
kubelet allowed specifying a custom root directory for pod logs (instead of the default /var/log/pods) using the podLogsDir key in kubelet configuration.
(kubernetes/kubernetes#112957, @mxpv)
resource.k8s.io/ResourceClaim (alpha API): The strategic merge patch strategy for the status.reservedFor array was changed so that a strategic-merge-patch can now add individual entries. This change may break clients using strategic merge patch to update status, which rely on the previous behavior (replacing the entire array).
(kubernetes/kubernetes#122276, @pohly)
Added a CBOR implementation of runtime.Serializer. Until CBOR graduates to Alpha, API servers will refuse to start if configured with CBOR support. (kubernetes/kubernetes#122881, @benluddy)
Added a alpha feature, behind the RelaxedEnvironmentVariableValidation feature gate.
... (truncated)
Commits
6b6201d Merge pull request #2244 from yliaog/automated-release-of-30.1.0-upstream-rel...
58e29d0 updated compatibility matrix and maintenance status
Fixed bug breaking the ability to specify custom SSLContexts in sub-classes of
HTTPAdapter. (#6716)
Fixed issue where Requests started failing to run on Python versions compiled
without the ssl module. (#6724)
v2.32.2
2.32.2 (2024-05-21)
Deprecations
To provide a more stable migration for custom HTTPAdapters impacted
by the CVE changes in 2.32.0, we've renamed _get_connection to
a new public API, get_connection_with_tls_context. Existing custom
HTTPAdapters will need to migrate their code to use this new API.
get_connection is considered deprecated in all versions of Requests>=2.32.0.
A minimal (2-line) example has been provided in the linked PR to ease
migration, but we strongly urge users to evaluate if their custom adapter
is subject to the same issue described in CVE-2024-35195. (#6710)
v2.32.1
2.32.1 (2024-05-20)
Bugfixes
Add missing test certs to the sdist distributed on PyPI.
verify=True now reuses a global SSLContext which should improve
request time variance between first and subsequent requests. It should
also minimize certificate load time on Windows systems when using a Python
version built with OpenSSL 3.x. (#6667)
Requests now supports optional use of character detection
(chardet or charset_normalizer) when repackaged or vendored.
Fixed bug breaking the ability to specify custom SSLContexts in sub-classes of
HTTPAdapter. (#6716)
Fixed issue where Requests started failing to run on Python versions compiled
without the ssl module. (#6724)
2.32.2 (2024-05-21)
Deprecations
To provide a more stable migration for custom HTTPAdapters impacted
by the CVE changes in 2.32.0, we've renamed _get_connection to
a new public API, get_connection_with_tls_context. Existing custom
HTTPAdapters will need to migrate their code to use this new API.
get_connection is considered deprecated in all versions of Requests>=2.32.0.
A minimal (2-line) example has been provided in the linked PR to ease
migration, but we strongly urge users to evaluate if their custom adapter
is subject to the same issue described in CVE-2024-35195. (#6710)
2.32.1 (2024-05-20)
Bugfixes
Add missing test certs to the sdist distributed on PyPI.
verify=True now reuses a global SSLContext which should improve
request time variance between first and subsequent requests. It should
also minimize certificate load time on Windows systems when using a Python
version built with OpenSSL 3.x. (#6667)
Requests now supports optional use of character detection
(chardet or charset_normalizer) when repackaged or vendored.
This enables pip and other projects to minimize their vendoring
surface area. The Response.text() and apparent_encoding APIs
will default to utf-8 if neither library is present. (#6702)
urllib3 is raising ~$40,000 USD to release HTTP/2 support and ensure long-term sustainable maintenance of the project after a sharp decline in financial support for 2023. If your company or organization uses Python and would benefit from HTTP/2 support in Requests, pip, cloud SDKs, and thousands of other projects please consider contributing financially to ensure HTTP/2 support is developed sustainably and maintained for the long-haul.
Thank you for your support.
Changes
Added the Proxy-Authorization header to the list of headers to strip from requests when redirecting to a different host. As before, different headers can be set via Retry.remove_headers_on_redirect.
Allowed passing negative integers as amt to read methods of http.client.HTTPResponse as an alternative to None. (#3122)
Fixed return types representing copying actions to use typing.Self. (#3363)
Added the Proxy-Authorization header to the list of headers to strip from requests when redirecting to a different host. As before, different headers can be set via Retry.remove_headers_on_redirect.
Allowed passing negative integers as amt to read methods of http.client.HTTPResponse as an alternative to None. ([#3122](https://github.com/urllib3/urllib3/issues/3122) <https://github.com/urllib3/urllib3/issues/3122>__)
Fixed return types representing copying actions to use typing.Self. ([#3363](https://github.com/urllib3/urllib3/issues/3363) <https://github.com/urllib3/urllib3/issues/3363>__)
This change fixes a regression in our cron monitoring feature, which caused cron checkins not to be sent. The regression appears to have been introduced in version 2.4.0.
We recommend that all users, who use Cron monitoring and are currently running sentry-python ≥2.4.0, upgrade to this release as soon as possible!
Allow to configure status codes to report to Sentry in Starlette and FastAPI (#3008) by @sentrivana
By passing a new option to the FastAPI and Starlette integrations, you're now able to configure what
status codes should be sent as events to Sentry. Here's how it works:
from sentry_sdk.integrations.starlette import StarletteIntegration
from sentry_sdk.integrations.fastapi import FastApiIntegration
failed_request_status_codes expects a list of integers or containers (objects that allow membership checks via in)
of integers. Examples of valid failed_request_status_codes:
[500] will only send events on HTTP 500.
[400, range(500, 599)] will send events on HTTP 400 as well as the 500-599 range.
[500, 503] will send events on HTTP 500 and 503.
The default is [range(500, 599)].
See the FastAPI and Starlette integration docs for more details.
This change fixes a regression in our cron monitoring feature, which caused cron checkins not to be sent. The regression appears to have been introduced in version 2.4.0.
We recommend that all users, who use Cron monitoring and are currently running sentry-python ≥2.4.0, upgrade to this release as soon as possible!
Allow to configure status codes to report to Sentry in Starlette and FastAPI (#3008) by @sentrivana
By passing a new option to the FastAPI and Starlette integrations, you're now able to configure what
status codes should be sent as events to Sentry. Here's how it works:
from sentry_sdk.integrations.starlette import StarletteIntegration
from sentry_sdk.integrations.fastapi import FastApiIntegration
failed_request_status_codes expects a list of integers or containers (objects that allow membership checks via in)
of integers. Examples of valid failed_request_status_codes:
[500] will only send events on HTTP 500.
[400, range(500, 599)] will send events on HTTP 400 as well as the 500-599 range.
[500, 503] will send events on HTTP 500 and 503.
The default is [range(500, 599)].
See the FastAPI and Starlette integration docs for more details.
Use stricter validation when a ULID value from user input. When using ULID.from_str() we will check if the characters match the base32 alphabet. In general, it is ensured that the timestamp part of the ULID is not out of range.
2.5.0
Changed
Generate a more accurate JSON schema with Pydantic’s BaseModel.model_json_schema(). This includes a specification for string and byte representations.
2.4.0
Added
ULID objects are now properly serialized when used as Pydantic types @Avihais12344#21
Bumps the python group with 14 updates in the / directory:
7.0.07.1.04.4.04.5.029.0.030.1.02.31.02.32.32.2.12.2.22.1.12.5.13.21.23.21.32.5.03.2.01.1.02.7.08.2.08.2.23.7.03.7.14.11.04.12.20.4.30.4.90.25.00.25.3Bumps the python group with 11 updates in the /git_services directory:
2.2.53.0.321.2.022.0.01.26.181.26.191.45.02.5.123.9.124.2.13.21.23.21.33.1.03.2.07.4.48.0.24.1.05.0.04.11.04.12.20.4.30.4.9Updates
dockerfrom 7.0.0 to 7.1.0Release notes
Sourced from docker's releases.
Commits
a365202Merge pull request #3264 from krissetto/rename-env-var-in-release-pipeline1ab40c8Fix env var name in release pipeline to match hatch expectationsb33088eMerge pull request #3263 from krissetto/fix-release-pipeline45488acFix env var name in release pipeline20879ecMerge pull request #3262 from krissetto/changelog-7.1.04f2a26dAdded 7.1.0 changelog7785ad9Merge pull request #3257 from felixfontein/requests-hotfixd8e9bcbrequests 2.32.0 and 2.32.1 have been yanked.2a059a9Extend fix to requests 2.32.2+.e33e0a4Hotfix for requests 2.32.0.Updates
python-gitlabfrom 4.4.0 to 4.5.0Release notes
Sourced from python-gitlab's releases.
... (truncated)
Changelog
Sourced from python-gitlab's changelog.
... (truncated)
Commits
58d50f2chore: release v4.5.02d1b749feat(job_token_scope): support Groups in job token allowlist API (#2816)c5d0404fix: Considerscopean ArrayAttribute in PipelineJobManagerc23e6bdfix(test): use different ids for merge request, approval rule, projectb8b3849fix(api): fix saving merge request approval rules4f338aechore(deps): update all non-major dependencies9be48f0chore(deps): update gitlab/gitlab-ee docker tag to v16.11.2-ee.09289189chore(deps): update dependency myst-parser to v365d0e65chore(deps): update all non-major dependencies8ea10c3chore(deps): update dependency jinja2 to v3.1.4 [security]Updates
kubernetesfrom 29.0.0 to 30.1.0Release notes
Sourced from kubernetes's releases.
... (truncated)
Changelog
Sourced from kubernetes's changelog.
... (truncated)
Commits
6b6201dMerge pull request #2244 from yliaog/automated-release-of-30.1.0-upstream-rel...58e29d0updated compatibility matrix and maintenance status9ca7bbegenerated client change2fb261cupdate changelogbf4e931update version constants for 30.1.0 releasebc977b4Merge pull request #2241 from yliaog/automated-release-of-30.1.0b1-upstream-r...f1322afupdated compatibility matrix in README5c5d700generated client change9dabf68update changelog8870b6aupdate version constants for 30.1.0b1 releaseUpdates
requestsfrom 2.31.0 to 2.32.3Release notes
Sourced from requests's releases.
... (truncated)
Changelog
Sourced from requests's changelog.
... (truncated)
Commits
0e322afv2.32.3e188799Don't create default SSLContext if ssl module isn't present (#6724)145b539Merge pull request #6716 from sigmavirus24/bug/6715b1d73ddDon't use default SSLContext with custom poolmanager kwargs6badbacUpdate HISTORY.mda62a2d3Allow for overriding of specific pool key params88dce9dv2.32.2c98e4d1Merge pull request #6710 from nateprewitt/api_rename92075b3Add deprecation warningaa1461bMove _get_connection to get_connection_with_tls_contextUpdates
urllib3from 2.2.1 to 2.2.2Release notes
Sourced from urllib3's releases.
Changelog
Sourced from urllib3's changelog.
Commits
27e2a5cRelease 2.2.2 (#3406)accff72Merge pull request from GHSA-34jh-p97f-mpxf34be4a5Pin CFFI to a new release candidate instead of a Git commit (#3398)da41058Bump browser-actions/setup-chrome from 1.6.0 to 1.7.1 (#3399)b07a669Bump github/codeql-action from 2.13.4 to 3.25.6 (#3396)b8589ecMeasure coverage with v4 of artifact actions (#3394)f3bdc55Allow triggering CI manually (#3391)5239265Fix HTTP version in debug log (#3316)b34619fBump actions/checkout to 4.1.4 (#3387)9961d14Bump browser-actions/setup-chrome from 1.5.0 to 1.6.0 (#3386)Updates
sentry-sdkfrom 2.1.1 to 2.5.1Release notes
Sourced from sentry-sdk's releases.
... (truncated)
Changelog
Sourced from sentry-sdk's changelog.
... (truncated)
Commits
411b1d4Update CHANGELOG.mdd18ff4drelease: 2.5.1d818e8fRevert "Refactor the Celery Beat integration (#3105)" (#3144)c2af1b0feat(tracing): Warn if not-started transaction entered (#3003)7674bf2test(scope): Ensurelast_event_idcleareddd15d32fix(scope): Clear last_event_id on scope clear239cca2Merge branch 'release/2.5.0'504e05eUpdate CHANGELOG.mddbc02e6release: 2.5.09227968feat(starlette): Allow to configure status codes to report to Sentry (#3008)Updates
marshmallowfrom 3.21.2 to 3.21.3Changelog
Sourced from marshmallow's changelog.
Commits
b9646e3Bump version and update changelog99103a6Remove leaky lru_cache (#2277)47205b5[pre-commit.ci] pre-commit autoupdate (#2276)aaecd5b[pre-commit.ci] pre-commit autoupdatec592536[pre-commit.ci] pre-commit autoupdate (#2269)ee0c903[pre-commit.ci] pre-commit autoupdated4fd5a4[pre-commit.ci] pre-commit autoupdateUpdates
dataconffrom 2.5.0 to 3.2.0Release notes
Sourced from dataconf's releases.
Changelog
Sourced from dataconf's changelog.
Commits
c87bebebump: version 3.2.0 (#160)421a36ctest: undo workaround for chimpler/pyhocon#324 (#159)98d9f94build(deps-dev): bump jinja2 from 3.1.3 to 3.1.4 (#158)4a15f93build(deps-dev): bump werkzeug from 3.0.1 to 3.0.3 (#157)03a255cbuild(deps-dev): bump pytest from 8.1.1 to 8.2.0 (#156)ac69432build(deps-dev): bump commitizen from 3.21.3 to 3.25.0 (#155)8469993build(deps-dev): bump ruff from 0.3.4 to 0.4.2 (#154)a4b3e4dbump: version 3.1.0 (#153)1a5c567feat: add support for tuples (#152)fd982f2build(deps-dev): bump commitizen from 3.16.0 to 3.21.3 (#151)Updates
python-ulidfrom 1.1.0 to 2.7.0Release notes
Sourced from python-ulid's releases.