Use external pip if available instead of installing, speeds up environment setup with virtualenv slightly and venv significantly. (PR #736)
Stopped injecting wheel as a build dependency automatically, in the case of missing pyproject.toml -- by @​webknjaz. (PR #716)
Use importlib_metadata on Python <3.10.2 for bugfixes not present in those CPython standard libraries (not required when bootstrapping) -- by @​GianlucaFicarelli. (PR #693, fixes issue #692)
Fixed invoking outer pip from user site packages
(PR :pr:746, fixes issue :issue:745)
Corrected the minimum pip version required to use an outer pip
(PR :pr:746, fixes issue :issue:745)
1.1.0 (2024-02-29)
Use external pip if available instead of installing, speeds up environment
setup with virtualenv slightly and venv significantly.
(PR :pr:736)
Stopped injecting wheel as a build dependency automatically, in the
case of missing pyproject.toml -- by :user:webknjaz.
(PR :pr:716)
Use importlib_metadata on Python <3.10.2 for bugfixes not present in
those CPython standard libraries (not required when bootstrapping) -- by
:user:GianlucaFicarelli.
(PR :pr:693, fixes issue :issue:692)
Use email.message instead of cgi as cgi has been deprecated ([#969](https://github.com/pypa/twine/issues/969) <https://github.com/pypa/twine/issues/969>_)
Fix: setting COVERAGE_CORE=sysmon no longer errors on 3.11 and lower, thanks Hugo van Kemenade. It now issues a warning that sys.monitoring is not available and falls back to the default core instead.
Fix: setting COVERAGE_CORE=sysmon no longer errors on 3.11 and lower,
thanks Hugo van Kemenade <pull 1747_>_. It now issues a warning that
sys.monitoring is not available and falls back to the default core instead.
* Limit the number of name constraint checks that will be performed in
:mod:`X.509 path validation <cryptography.x509.verification>` to protect
against denial of service attacks.
* Upgrade ``pyo3`` version, which fixes building on PowerPC.
#11895: Fix collection on Windows where initial paths contain the short version of a path (for example c:\PROGRA~1\tests).
#11953: Fix an IndexError crash raising from getstatementrange_ast.
#12021: Reverted a fix to [--maxfail]{.title-ref} handling in pytest 8.0.0 because it caused a regression in pytest-xdist whereby session fixture teardowns may get executed multiple times when the max-fails is reached.
8.0.1
pytest 8.0.1 (2024-02-16)
Bug Fixes
#11875: Correctly handle errors from getpass.getuser{.interpreted-text role="func"} in Python 3.13.
#11879: Fix an edge case where ExceptionInfo._stringify_exception could crash pytest.raises{.interpreted-text role="func"}.
#11906: Fix regression with pytest.warns{.interpreted-text role="func"} using custom warning subclasses which have more than one parameter in their [__init__]{.title-ref}.
#11907: Fix a regression in pytest 8.0.0 whereby calling pytest.skip{.interpreted-text role="func"} and similar control-flow exceptions within a pytest.warns(){.interpreted-text role="func"} block would get suppressed instead of propagating.
#11929: Fix a regression in pytest 8.0.0 whereby autouse fixtures defined in a module get ignored by the doctests in the module.
#11937: Fix a regression in pytest 8.0.0 whereby items would be collected in reverse order in some circumstances.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
- `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
- `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency
- `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
Bumps the python-packages group with 8 updates:
9.5.6
9.5.12
1.0.3
1.1.1
4.0.2
5.0.0
7.4.1
7.4.3
42.0.4
42.0.5
8.0.0
8.0.2
0.1.15
0.3.0
0.27.0.post1
0.27.1
Updates
mkdocs-material
from 9.5.6 to 9.5.12Release notes
Sourced from mkdocs-material's releases.
Changelog
Sourced from mkdocs-material's changelog.
... (truncated)
Commits
5108432
Updated changelogd366a45
Fixed instant navigation removing color theme tags6219f3d
Merge branch 'master' of github.com:squidfunk/mkdocs-materialc7bde2d
Formattingde46c41
Fixed document observable not emitting current document7b83b57
Updated contributing guide (#6843)6c2e029
Updated Premium sponsorsb5a5fde
Updated dependenciesc3a1e79
Merge branch 'master' of github.com:squidfunk/mkdocs-materialca7e952
Fixed privacy plugin not handling URL-encoded pathnamesUpdates
build
from 1.0.3 to 1.1.1Release notes
Sourced from build's releases.
Changelog
Sourced from build's changelog.
Commits
b36126a
release 1.1.19588222
env: fix global pip (#746)da06973
chore: prepare for 1.1.0 (#744)42231a7
compat: create separate importlib, tarfile and tomllib shims894998a
chore: address feedbackaa0aa04
fix(types): make the passthrough generalaf5ff53
feat: use external pip if available9ceb49d
build(deps): bump the actions group with 1 update (#739)ac57b94
refactor: pull out pip checks (#735)e6969d1
pre-commit: bump repositories (#734)Updates
twine
from 4.0.2 to 5.0.0Changelog
Sourced from twine's changelog.
Commits
94f810c
Merge pull request #1047 from pypa/new-release09d993a
Update linkcheck_ignore setting for docsab0ed19
Apply 2024 black format407e6cc
Build changelog for 5.0.06644b86
Add missing changelog entriesfe1885f
Merge pull request #1034 from DimitriPapadopoulos/codespell694bdcf
Fix typos found by codespell89ec78c
Merge pull request #1040 from woodruffw-forks/ww/pypi-mandatory-api-tokensb3b363a
tests: lintage6e94d20
tests: more non-PyPI testsUpdates
coverage[toml]
from 7.4.1 to 7.4.3Release notes
Sourced from coverage[toml]'s releases.
Changelog
Sourced from coverage[toml]'s changelog.
Commits
1af3624
docs: sample HTML for 7.4.3f06c5e4
docs: prep for 7.4.308fc997
fix: get atomic copies of iterables when flushing data. #17334e34571
build: put a time limit on the Python nightly testsa1d8d29
build: make targets should use underscores not dashesf7d40a0
build: tweak the release instructions0f19b82
build: bump version5d69334
test: if a test fails randomly, let it retry with@​flaky
65d686c
docs: sample HTML for 7.4.2026dca7
docs: prep for 7.4.2Updates
cryptography
from 42.0.4 to 42.0.5Changelog
Sourced from cryptography's changelog.
Commits
33833f0
Release 42.0.5 (#10470)4be53bf
Added a budget for NC checks to protect against DoS (#10467) (#10468)8e9de30
Bump pyo3 from 0.20.2 to 0.20.3 in /src/rust (#10462) (#10465)Updates
pytest
from 8.0.0 to 8.0.2Release notes
Sourced from pytest's releases.
Commits
31afeeb
Prepare release version 8.0.21b00a2f
Merge pull request #12025 from pytest-dev/backport-12022-to-8.0.xff2f66d
[8.0.x] Revert "Fix teardown error reporting when--maxfail=1
(#11721)"8a8eed6
[8.0.x] Fix collection of short paths on Windows (#12024)74346f0
[8.0.x] Allow Sphinx 7.x (#12005)b7657b4
[8.0.x] Disallow Sphinx 6 and 7 (#12001)feb7c5e
Merge pull request #11999 from pytest-dev/backport-11996-to-8.0.x0909655
[8.0.x] code: fixIndexError
crash ingetstatementrange_ast
68524d4
Merge pull request #11993 from pytest-dev/release-8.0.1d7d320a
Prepare release version 8.0.1Updates
ruff
from 0.1.15 to 0.3.0Release notes
Sourced from ruff's releases.
... (truncated)
Changelog
Sourced from ruff's changelog.
... (truncated)
Commits
b53118e
Bump version to v0.3.0 (#10151)52f4c1e
Remove deprecated CLI option--format
(#10170)eceffe7
Deprecateruff \<path>
ruff --explain
,ruff --clean
and `ruff --generate...c73c497
[pydocstyle
] Trim whitespace when removing blank lines after section (`D413...c9c98c4
Fix mkdocs local link (#10167)72ccb34
Fix ecosystem check for indico (#10164)dcc92f5
Update black tests (#10166)a6f32dd
Ruff 2024.2 style (#9639)0293908
Implement RUF028 to detect useless formatter suppression comments (#9899)36bc725
[flake8-bugbear
] Avoid adding default initializers to stubs (B006
) (#10152)Updates
uvicorn
from 0.27.0.post1 to 0.27.1Release notes
Sourced from uvicorn's releases.
Changelog
Sourced from uvicorn's changelog.
Commits
bd552df
Version 0.27.1 (#2250)2ff704b
Fix spurious LocalProtocolError errors when processing pipelined requests (#2...4f74ed1
Bump the python-packages group with 5 updates (#2241)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show