search

abatilo / actions-poetry

GitHub Actions for Python projects using poetry
MIT License
423 stars 40 forks source link

feat(deps): bump pip from 20.2 to 20.2.1 #31

Closed dependabot-preview[bot] closed 4 years ago

dependabot-preview[bot] commented 4 years ago

Bumps pip from 20.2 to 20.2.1.

Changelog

Sourced from pip's changelog.

20.2.1 (2020-08-04)

Features

  • Ignore require-virtualenv in pip list (#8603)

Bug Fixes

  • Correctly find already-installed distributions with dot (.) in the name and uninstall them when needed. (#8645)
  • Trace a better error message on installation failure due to invalid .data files in wheels. (#8654)
  • Fix SVN version detection for alternative SVN distributions. (#8665)
  • New resolver: Correctly include the base package when specified with extras in --no-deps mode. (#8677)
  • Use UTF-8 to handle ZIP archive entries on Python 2 according to PEP 427, so non-ASCII paths can be resolved as expected. (#8684)

Improved Documentation

  • Add details on old resolver deprecation and removal to migration documentation. (#8371)
  • Fix feature flag name in docs. (#8660)
Commits
  • fa2714f Bump for release
  • 02ad77d Merge pull request #8603 from tekumara/pip-list-ignore-require-venv
  • 6eea0d0 Merge pull request #8660 from brainwane/update-flag-in-docs
  • 22d67dc Merge pull request #8665 from uranusjr/svn-version-more-robust
  • 864e2ee Merge pull request #8659 from uranusjr/fix-get-distribution-dot-in-name
  • ed205bd Merge pull request #8656 from chrahunt/gracefully-handle-bad-data-paths
  • 552b837 Merge pull request #8678 from uranusjr/new-resolver-no-deps-extras-install-self
  • 4a39344 Merge pull request #8688 from brainwane/deprecation-opt-in-resolver
  • b29dd4e Merge pull request #8679 from pradyunsg/tweak-resolutionimpossible-message
  • 527b3e2 Merge pull request #8684 from uranusjr/zipfile-unicode-path-python2
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

If all status checks pass Dependabot will automatically merge this pull request.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in the `.dependabot/config.yml` file in this repo: - Update frequency - Automerge options (never/patch/minor, and dev/runtime dependencies) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired)
github-actions[bot] commented 4 years ago

:tada: This PR is included in version 1.10.0 :tada:

The release is available on GitHub release

Your semantic-release bot :package::rocket: