agrc / forklift

:tractor::package::sparkles: Slinging data all over the place :tractor::package::sparkles:
MIT License
28 stars 3 forks source link

deps: bump the major-dependencies group with 2 updates #366

Closed dependabot[bot] closed 6 months ago

dependabot[bot] commented 6 months ago

Updates the requirements on pyopenssl and xxhash to permit the latest version. Updates pyopenssl to 24.1.0

Changelog

Sourced from pyopenssl's changelog.

24.1.0 (2024-03-09)

Backward-incompatible changes: ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^

  • Removed the deprecated OpenSSL.crypto.PKCS12 and OpenSSL.crypto.NetscapeSPKI. OpenSSL.crypto.PKCS12 may be replaced by the PKCS#12 APIs in the cryptography package.

Deprecations: ^^^^^^^^^^^^^

Changes: ^^^^^^^^

24.0.0 (2024-01-22)

Backward-incompatible changes: ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^

Deprecations: ^^^^^^^^^^^^^

Changes: ^^^^^^^^

  • Added OpenSSL.SSL.Connection.get_selected_srtp_profile to determine which SRTP profile was negotiated. [#1279](https://github.com/pyca/pyopenssl/issues/1279) <https://github.com/pyca/pyopenssl/pull/1279>_.

23.3.0 (2023-10-25)

Backward-incompatible changes: ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^

  • Dropped support for Python 3.6.
  • The minimum cryptography version is now 41.0.5.
  • Removed OpenSSL.crypto.load_pkcs7 and OpenSSL.crypto.load_pkcs12 which had been deprecated for 3 years.
  • Added OpenSSL.SSL.OP_LEGACY_SERVER_CONNECT to allow legacy insecure renegotiation between OpenSSL and unpatched servers. [#1234](https://github.com/pyca/pyopenssl/issues/1234) <https://github.com/pyca/pyopenssl/pull/1234>_.

Deprecations: ^^^^^^^^^^^^^

  • Deprecated OpenSSL.crypto.PKCS12 (which was intended to have been deprecated at the same time as OpenSSL.crypto.load_pkcs12).
  • Deprecated OpenSSL.crypto.NetscapeSPKI.
  • Deprecated OpenSSL.crypto.CRL
  • Deprecated OpenSSL.crypto.Revoked

... (truncated)

Commits


Updates xxhash to 3.4.1

Release notes

Sourced from xxhash's releases.

v3.4.1

  • Build wheels for Python 3.12
  • Remove setuptools_scm

Full list of changes: https://github.com/ifduyue/python-xxhash/compare/v3.3.0...v3.4.1

Changelog

Sourced from xxhash's changelog.

v3.4.1 2023-10-05


- Build wheels for Python 3.12
- Remove setuptools_scm

v3.4.0 2023-10-05

Yanked due to wheels building problem.

v3.3.0 2023-07-29


- Upgrade xxHash to v0.8.2
- Drop support for Python 3.6

v3.2.0 2022-12-28

This is the last version to support Python 3.6

  • Build Python 3.11 wheels.
  • Remove setup.py test_suites, call unittest directly

v3.1.0 2022-10-19


- Type annotations.
- Enabled muslinux wheels building.

v3.0.0 2022-02-25

  • New set algorithms_available lists all implemented algorithms in xxhash package.
  • Upgrade xxHash to v0.8.1.
  • Drop support for EOL Python versions, require python >= 3.6 from now on.
  • Migrate to github actions and build arm64 wheels for macOS.
  • Always release GIL.

v2.0.2 2021-04-15


- Fix Travis CI OSX dpl python2.7 get-pip.py error

v2.0.1 2021-04-15

... (truncated)

Commits


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
dependabot[bot] commented 6 months ago

Looks like these dependencies are no longer updatable, so this is no longer needed.