search

containerbuildsystem / cachi2

GNU General Public License v3.0
5 stars 20 forks source link

build(deps): bump the minor-and-patch group across 1 directory with 13 updates #563

Closed dependabot[bot] closed 1 week ago

dependabot[bot] commented 2 weeks ago

Bumps the minor-and-patch group with 13 updates in the / directory:

Package From To
certifi 2024.2.2 2024.6.2
packageurl-python 0.15.0 0.15.1
packaging 24.0 24.1
pydantic 2.7.2 2.7.4
pydantic-core 2.18.3 2.20.0
typing-extensions 4.12.0 4.12.2
setuptools 70.0.0 70.1.1
bandit 1.7.8 1.7.9
coverage[toml] 7.5.3 7.5.4
flake8 7.0.0 7.1.0
mypy 1.10.0 1.10.1
pycodestyle 2.11.1 2.12.0
pytest 8.2.1 8.2.2

Updates certifi from 2024.2.2 to 2024.6.2

Commits
  • 124f4ad 2024.06.02 (#291)
  • c2196ce --- (#290)
  • fefdeec Bump actions/checkout from 4.1.4 to 4.1.5 (#289)
  • 3c5fb15 Bump actions/download-artifact from 4.1.6 to 4.1.7 (#286)
  • 4a9569a Bump actions/checkout from 4.1.2 to 4.1.4 (#287)
  • 1fc8086 Bump peter-evans/create-pull-request from 6.0.4 to 6.0.5 (#288)
  • ad52dce Bump peter-evans/create-pull-request from 6.0.3 to 6.0.4 (#283)
  • 651904f Bump actions/upload-artifact from 4.3.1 to 4.3.3 (#284)
  • 84fcfba Bump actions/download-artifact from 4.1.4 to 4.1.6 (#285)
  • 46b8057 Bump peter-evans/create-pull-request from 6.0.2 to 6.0.3 (#282)
  • Additional commits viewable in compare view


Updates packageurl-python from 0.15.0 to 0.15.1

Changelog

Sourced from packageurl-python's changelog.

0.15.1 (2024-06-13)

Commits


Updates packaging from 24.0 to 24.1

Release notes

Sourced from packaging's releases.

24.1

What's Changed

New Contributors

Full Changelog: https://github.com/pypa/packaging/compare/24.0...24.1

Changelog

Sourced from packaging's changelog.

24.1 - 2024-06-10


No unreleased changes.
Commits
  • 85442b8 Bump for release
  • 3e67fc7 Work around platform.python_version() returning non PEP 440 compliant versi...
  • 32deafe Bump the github-actions group with 3 updates (#789)
  • e0dda88 Document markers.default_environment() (#753)
  • cc938f9 Modernise type annotations using FA rules from ruff (#785)
  • 757f559 Fix typo in _parser docstring (#784)
  • ec9f203 Bump the github-actions group with 4 updates (#782)
  • 5cbe1e4 Add support for Python 3.13 and drop EOL 3.7 (#783)
  • cb8fd38 pyupgrade/black/isort/flake8 → ruff (#769)
  • e8002b1 Bump for development
  • See full diff in compare view


Updates pydantic from 2.7.2 to 2.7.4

Release notes

Sourced from pydantic's releases.

v2.7.4 (2024-06-12)

What's Changed

Packaging

Fixes

  • Specify recursive_guard as kwarg in FutureRef._evaluate by @​vfazio in #9612

Full Changelog: https://github.com/pydantic/pydantic/compare/v2.7.3...v2.7.4

v2.7.3 (2024-06-03)

What's Changed

Packaging

Fixes

Full Changelog: https://github.com/pydantic/pydantic/compare/v2.7.2...v2.7.3/*

Changelog

Sourced from pydantic's changelog.

v2.7.4 (2024-06-12)

Github release

What's Changed

Packaging

Fixes

  • Specify recursive_guard as kwarg in FutureRef._evaluate by @​vfazio in #9612

v2.7.3 (2024-06-03)

GitHub release

What's Changed

Packaging

Fixes

Commits


Updates pydantic-core from 2.18.3 to 2.20.0

Release notes

Sourced from pydantic-core's releases.

v2.20.0 2024-06-24

What's Changed

New Contributors

Full Changelog: https://github.com/pydantic/pydantic-core/compare/v2.19.0...v2.20.0

v2.19.0 2024-06-11

What's Changed

Packaging

Fixes

Features

New Contributors

Full Changelog: https://github.com/pydantic/pydantic-core/compare/v2.18.4...v2.19.0

v2.18.4 2024-06-03

What's Changed

Packaging

Fixes

... (truncated)

Commits


Updates typing-extensions from 4.12.0 to 4.12.2

Release notes

Sourced from typing-extensions's releases.

4.12.2

  • Fix regression in v4.12.0 where specialization of certain generics with an overridden __eq__ method would raise errors. Patch by Jelle Zijlstra.
  • Fix tests so they pass on 3.13.0b2

4.12.1

  • Preliminary changes for compatibility with the draft implementation of PEP 649 in Python 3.14. Patch by Jelle Zijlstra.
  • Fix regression in v4.12.0 where nested Annotated types would cause TypeError to be raised if the nested Annotated type had unhashable metadata. Patch by Alex Waygood.
Changelog

Sourced from typing-extensions's changelog.

Release 4.12.2 (June 7, 2024)

  • Fix regression in v4.12.0 where specialization of certain generics with an overridden __eq__ method would raise errors. Patch by Jelle Zijlstra.
  • Fix tests so they pass on 3.13.0b2

Release 4.12.1 (June 1, 2024)

  • Preliminary changes for compatibility with the draft implementation of PEP 649 in Python 3.14. Patch by Jelle Zijlstra.
  • Fix regression in v4.12.0 where nested Annotated types would cause TypeError to be raised if the nested Annotated type had unhashable metadata. Patch by Alex Waygood.
Commits


Updates setuptools from 70.0.0 to 70.1.1

Changelog

Sourced from setuptools's changelog.

v70.1.1

Misc

v70.1.0

Features

  • Adopted the bdist_wheel command from the wheel project -- by :user:agronholm (#1386)

  • Improve error message when pkg_resources.ZipProvider tries to extract resources with a missing Egg -- by :user:Avasam

    Added variables and parameter type annotations to pkg_resources to be nearly on par with typeshed.* -- by :user:Avasam * Excluding TypeVar and overload. Return types are currently inferred. (#4246)

  • Migrated Setuptools' own config to pyproject.toml (#4310)

Bugfixes

  • Prevent a TypeError: 'NoneType' object is not callable when shutil_rmtree is called without an onexc parameter on Python<=3.11 -- by :user:Avasam (#4382)
  • Replace use of mktemp with can_symlink from the stdlib test suite. (#4403)
  • Improvement for attr: directives in configuration to handle more edge cases related to complex package_dir. (#4405)
  • Fix accidental implicit string concatenation. (#4411)

Misc

Commits


Updates bandit from 1.7.8 to 1.7.9

Release notes

Sourced from bandit's releases.

1.7.9

What's Changed

New Contributors

Full Changelog: https://github.com/PyCQA/bandit/compare/1.7.8...1.7.9

Commits


Updates coverage[toml] from 7.5.3 to 7.5.4

Release notes

Sourced from coverage[toml]'s releases.

7.5.4

  • If you attempt to combine statement coverage data with branch coverage data, coverage.py used to fail with the message "Can't combine arc data with line data" or its reverse, "Can't combine line data with arc data." These messages used internal terminology, making it hard for people to understand the problem. They are now changed to mention "branch coverage data" and "statement coverage data."
  • Fixed a minor branch coverage problem with wildcard match/case cases using names or guard clauses.
  • Started testing on 3.13 free-threading (nogil) builds of Python. I'm not claiming full support yet. Closes issue 1799.

:arrow_right:  PyPI page: coverage 7.5.4. :arrow_right:  To install: python3 -m pip install coverage==7.5.4

Changelog

Sourced from coverage[toml]'s changelog.

Version 7.5.4 — 2024-06-22

  • If you attempt to combine statement coverage data with branch coverage data, coverage.py used to fail with the message "Can't combine arc data with line data" or its reverse, "Can't combine line data with arc data." These messages used internal terminology, making it hard for people to understand the problem. They are now changed to mention "branch coverage data" and "statement coverage data."

  • Fixed a minor branch coverage problem with wildcard match/case cases using names or guard clauses.

  • Started testing on 3.13 free-threading (nogil) builds of Python. I'm not claiming full support yet. Closes issue 1799_.

.. _issue 1799: nedbat/coveragepy#1799

.. _changes_7-5-3:

Commits
  • 22c09c6 docs: sample HTML for 7.5.4
  • 9e16381 docs: prep for 7.5.4
  • fba9b9e docs: link issue 1799 from the changelog
  • f124de8 build: no longer download kits to upload them
  • 9516cf6 build: hash-pin all actions
  • c6e0985 build: finish up the publish action
  • 4a49458 build: get the latest dist run id for publishing
  • fb15efa build: pin hashes for publishing actions
  • c20af95 build: use the correct item: github.event.action
  • ccbab15 build: dump all the github actions data
  • Additional commits viewable in compare view


Updates flake8 from 7.0.0 to 7.1.0

Commits


Updates mypy from 1.10.0 to 1.10.1

Changelog

Sourced from mypy's changelog.

Mypy 1.10.1

  • Fix error reporting on cached run after uninstallation of third party library (Shantanu, PR 17420)

Acknowledgements

Thanks to all mypy contributors who contributed to this release:

  • Alex Waygood
  • Ali Hamdan
  • Edward Paget
  • Evgeniy Slobodkin
  • Hashem
  • hesam
  • Hugo van Kemenade
  • Ihor
  • James Braza
  • Jelle Zijlstra
  • jhance
  • Jukka Lehtosalo
  • Loïc Simon
  • Marc Mueller
  • Matthieu Devlin
  • Michael R. Crusoe
  • Nikita Sobolev
  • Oskari Lehto
  • Riccardo Di Maio
  • Richard Si
  • roberfi
  • Roman Solomatin
  • Sam Xifaras
  • Shantanu
  • Spencer Brown
  • Srinivas Lade
  • Tamir Duberstein
  • youkaichao

I’d also like to thank my employer, Dropbox, for supporting mypy development.

Mypy 1.9

We’ve just uploaded mypy 1.9 to the Python Package Index (PyPI). Mypy is a static type checker for Python. This release includes new features, performance improvements and bug fixes. You can install it as follows:

python3 -m pip install -U mypy

You can read the full documentation for this release on Read the Docs.

Breaking Changes

Because the version of typeshed we use in mypy 1.9 doesn't support 3.7, neither does mypy 1.9. (Jared Hance, PR 16883)

... (truncated)

Commits
  • c28b525 [1.10 backport] Fix error reporting on cached run after uninstallation of thi...
  • See full diff in compare view


Updates pycodestyle from 2.11.1 to 2.12.0

Changelog

Sourced from pycodestyle's changelog.

2.12.0 (2024-06-15)

Changes:

  • E721: Fix false positive of the form x.type(...) ==. PR #1228.
  • E502: Fix false-negative with a backslash escape in a comment. PR #1234.
  • E204: New lint forbidding whitespace after decorator @. PR #1247.
Commits
  • 6f60985 Release 2.12.0
  • 5246b9e Merge pull request #1247 from PyCQA/space-after-decorator
  • 3cedd4c add new error E204 for whitespace after decorator @
  • d343c39 Merge pull request #1246 from PyCQA/pre-commit-ci-update-config
  • 5be6ca1 [pre-commit.ci] pre-commit autoupdate
  • d2b2756 Merge pull request #1245 from PyCQA/pre-commit-ci-update-config
  • 53591a5 [pre-commit.ci] pre-commit autoupdate
  • 710363b Merge pull request #1239 from PyCQA/pre-commit-ci-update-config
  • 04f579d [pre-commit.ci] pre-commit autoupdate
  • 2b90803 Merge pull request #1238 from PyCQA/pre-commit-ci-update-config
  • Additional commits viewable in compare view


Updates pytest from 8.2.1 to 8.2.2

Release notes

Sourced from pytest's releases.

8.2.2

pytest 8.2.2 (2024-06-04)

Bug Fixes

  • #12355: Fix possible catastrophic performance slowdown on a certain parametrization pattern involving many higher-scoped parameters.
  • #12367: Fix a regression in pytest 8.2.0 where unittest class instances (a fresh one is created for each test) were not released promptly on test teardown but only on session teardown.
  • #12381: Fix possible "Directory not empty" crashes arising from concurent cache dir (.pytest_cache) creation. Regressed in pytest 8.2.0.

Improved Documentation

  • #12290: Updated Sphinx theme to use Furo instead of Flask, enabling Dark mode theme.
  • #12356: Added a subsection to the documentation for debugging flaky tests to mention lack of thread safety in pytest as a possible source of flakyness.
  • #12363: The documentation webpages now links to a canonical version to reduce outdated documentation in search engine results.
Commits
  • 329d371 Prepare release version 8.2.2
  • 214d098 Merge pull request #12414 from bluetech/backport-12409
  • 153a436 [8.2.x] fixtures: fix catastrophic performance problem in reorder_items
  • b41d5a5 Merge pull request #12412 from pytest-dev/backport-12408-to-8.2.x
  • 9bb73d7 [8.2.x] cacheprovider: fix "Directory not empty" crash from cache directory c...
  • 4569a01 [8.2.x] doc: Update trainings/events (#12402)
  • 1d103e5 [8.2.x] Clarify pytest_ignore_collect docs (#12386)
  • 240a252 [8.2.x] Add html_baseurl to sphinx conf.py (#12372)
  • a5ee3c4 Merge pull request #12370 from pytest-dev/backport-12368-to-8.2.x
  • f7358ae [8.2.x] unittest: fix class instances no longer released on test teardown sin...
  • Additional commits viewable in compare view


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
eskultety commented 2 weeks ago

Pydantic hasn't caught up with pydantic-core yet (still pre-release: https://github.com/pydantic/pydantic/releases/tag/v2.8.0b1), the conflict should resolve on its own in a few days when pydantic v2.8.0 is out.

dependabot[bot] commented 1 week ago

Looks like these dependencies are updatable in another way, so this is no longer needed.