search

equinor / mercury

Mercury calculator - API and Webapp
https://mercury.app.radix.equinor.com
MIT License
1 stars 0 forks source link

chore(deps): bump the back-end group across 1 directory with 8 updates #555

Closed dependabot[bot] closed 1 month ago

dependabot[bot] commented 1 month ago

Bumps the back-end group with 8 updates in the /api directory:

Package From To
cachetools 5.3.2 5.3.3
fastapi 0.109.2 0.111.0
uvicorn 0.27.1 0.30.0
requests 2.31.0 2.32.3
urllib3 2.2.0 2.2.1
pydantic 1.10.14 1.10.15
pre-commit 3.6.1 3.7.1
httpx 0.26.0 0.27.0

Updates cachetools from 5.3.2 to 5.3.3

Changelog

Sourced from cachetools's changelog.

v5.3.3 (2024-02-26)

  • Documentation improvements.

  • Update CI environment.

Commits


Updates fastapi from 0.109.2 to 0.111.0

Release notes

Sourced from fastapi's releases.

0.111.0

Features

Try it out with:

$ pip install --upgrade fastapi

$ fastapi dev main.py


╭────────── FastAPI CLI - Development mode ───────────╮
│                                                     │
│  Serving at: http://127.0.0.1:8000                  │
│                                                     │
│  API docs: http://127.0.0.1:8000/docs               │
│                                                     │
│  Running in development mode, for production use:   │
│                                                     │
│  fastapi run                                        │
│                                                     │
╰─────────────────────────────────────────────────────╯


INFO:     Will watch for changes in these directories: ['/home/user/code/awesomeapp']
INFO:     Uvicorn running on http://127.0.0.1:8000 (Press CTRL+C to quit)
INFO:     Started reloader process [2248755] using WatchFiles
INFO:     Started server process [2248757]
INFO:     Waiting for application startup.
INFO:     Application startup complete.

Refactors

  • 🔧 Add configs and setup for fastapi-slim including optional extras fastapi-slim[standard], and fastapi including by default the same standard extras. PR #11503 by @​tiangolo.

0.110.3

Latest Changes

Docs

  • 📝 Update references to Python version, FastAPI supports all the current versions, no need to make the version explicit. PR #11496 by @​tiangolo.
  • ✏️ Fix typo in fastapi/security/api_key.py. PR #11481 by @​ch33zer.
  • ✏️ Fix typo in security/http.py. PR #11455 by @​omarmoo5.

Translations

  • 🌐 Add Traditional Chinese translation for docs/zh-hant/benchmarks.md. PR #11484 by @​KNChiu.

... (truncated)

Commits
  • 1c3e691 📝 Update release notes
  • ab8f557 📝 Update release notes
  • 67da3bb 🔖 Release version 0.111.0
  • 9ed94e4 📝 Update release notes
  • d71be59 ✨ Add FastAPI CLI, the new fastapi command (#11522)
  • a94ef33 📝 Update release notes
  • ea1f219 🔧 Add configs and setup for fastapi-slim including optional extras `fastapi...
  • 32be95d 🔖 Release version 0.110.3
  • 92b67b1 📝 Update release notes
  • e0a9692 📝 Update release notes
  • Additional commits viewable in compare view


Updates uvicorn from 0.27.1 to 0.30.0

Release notes

Sourced from uvicorn's releases.

Version 0.30.0

Added

  • New multiprocess manager (#2183)
  • Allow ConfigParser or a io.IO[Any] on log_config (#1976)

Fixed

  • Suppress side effects of signal propagation (#2317)
  • Send content-length header on 5xx (#2304)

Deprecated

  • Deprecate the uvicorn.workers module (#2302)

Full Changelog: https://github.com/encode/uvicorn/compare/0.29.0...0.30.0

Version 0.29.0

Added

Full Changelog: https://github.com/encode/uvicorn/compare/0.28.1...0.29.0

Version 0.28.1

Fixed

  • Revert raise ClientDisconnected on HTTP (#2276)

Full Changelog: https://github.com/encode/uvicorn/compare/0.28.0...0.28.1

Version 0.28.0

Added

  • Raise ClientDisconnected on send() when client disconnected (#2220) 12/02/24

Fixed

  • Except AttributeError on sys.stdin.fileno() for Windows IIS10 (#1947) 29/02/24
  • Use X-Forwarded-Proto for WebSockets scheme when the proxy provides it (#2258) 01/03/24

Full Changelog: https://github.com/encode/uvicorn/compare/0.27.1...0.28.0

Changelog

Sourced from uvicorn's changelog.

0.30.0 (2024-05-28)

Added

  • New multiprocess manager (#2183)
  • Allow ConfigParser or a io.IO[Any] on log_config (#1976)

Fixed

  • Suppress side-effects of signal propagation (#2317)
  • Send content-length header on 5xx (#2304)

Deprecated

  • Deprecate the uvicorn.workers module (#2302)

0.29.0 (2024-03-19)

Added

  • Cooperative signal handling (#1600)

0.28.1 (2024-03-19)

Fixed

  • Revert raise ClientDisconnected on HTTP (#2276)

0.28.0 (2024-03-09)

Added

  • Raise ClientDisconnected on send() when client disconnected (#2220)

Fixed

  • Except AttributeError on sys.stdin.fileno() for Windows IIS10 (#1947)
  • Use X-Forwarded-Proto for WebSockets scheme when the proxy provides it (#2258)
Commits


Updates requests from 2.31.0 to 2.32.3

Release notes

Sourced from requests's releases.

v2.32.3

2.32.3 (2024-05-29)

Bugfixes

  • Fixed bug breaking the ability to specify custom SSLContexts in sub-classes of HTTPAdapter. (#6716)
  • Fixed issue where Requests started failing to run on Python versions compiled without the ssl module. (#6724)

v2.32.2

2.32.2 (2024-05-21)

Deprecations

  • To provide a more stable migration for custom HTTPAdapters impacted by the CVE changes in 2.32.0, we've renamed _get_connection to a new public API, get_connection_with_tls_context. Existing custom HTTPAdapters will need to migrate their code to use this new API. get_connection is considered deprecated in all versions of Requests>=2.32.0.

    A minimal (2-line) example has been provided in the linked PR to ease migration, but we strongly urge users to evaluate if their custom adapter is subject to the same issue described in CVE-2024-35195. (#6710)

v2.32.1

2.32.1 (2024-05-20)

Bugfixes

  • Add missing test certs to the sdist distributed on PyPI.

v2.32.0

2.32.0 (2024-05-20)

🐍 PYCON US 2024 EDITION 🐍

Security

Improvements

  • verify=True now reuses a global SSLContext which should improve request time variance between first and subsequent requests. It should also minimize certificate load time on Windows systems when using a Python version built with OpenSSL 3.x. (#6667)
  • Requests now supports optional use of character detection (chardet or charset_normalizer) when repackaged or vendored.

... (truncated)

Changelog

Sourced from requests's changelog.

2.32.3 (2024-05-29)

Bugfixes

  • Fixed bug breaking the ability to specify custom SSLContexts in sub-classes of HTTPAdapter. (#6716)
  • Fixed issue where Requests started failing to run on Python versions compiled without the ssl module. (#6724)

2.32.2 (2024-05-21)

Deprecations

  • To provide a more stable migration for custom HTTPAdapters impacted by the CVE changes in 2.32.0, we've renamed _get_connection to a new public API, get_connection_with_tls_context. Existing custom HTTPAdapters will need to migrate their code to use this new API. get_connection is considered deprecated in all versions of Requests>=2.32.0.

    A minimal (2-line) example has been provided in the linked PR to ease migration, but we strongly urge users to evaluate if their custom adapter is subject to the same issue described in CVE-2024-35195. (#6710)

2.32.1 (2024-05-20)

Bugfixes

  • Add missing test certs to the sdist distributed on PyPI.

2.32.0 (2024-05-20)

Security

Improvements

  • verify=True now reuses a global SSLContext which should improve request time variance between first and subsequent requests. It should also minimize certificate load time on Windows systems when using a Python version built with OpenSSL 3.x. (#6667)
  • Requests now supports optional use of character detection (chardet or charset_normalizer) when repackaged or vendored. This enables pip and other projects to minimize their vendoring surface area. The Response.text() and apparent_encoding APIs will default to utf-8 if neither library is present. (#6702)

... (truncated)

Commits
  • 0e322af v2.32.3
  • e188799 Don't create default SSLContext if ssl module isn't present (#6724)
  • 145b539 Merge pull request #6716 from sigmavirus24/bug/6715
  • b1d73dd Don't use default SSLContext with custom poolmanager kwargs
  • 6badbac Update HISTORY.md
  • a62a2d3 Allow for overriding of specific pool key params
  • 88dce9d v2.32.2
  • c98e4d1 Merge pull request #6710 from nateprewitt/api_rename
  • 92075b3 Add deprecation warning
  • aa1461b Move _get_connection to get_connection_with_tls_context
  • Additional commits viewable in compare view


Updates urllib3 from 2.2.0 to 2.2.1

Release notes

Sourced from urllib3's releases.

2.2.1

🚀 urllib3 is fundraising for HTTP/2 support

urllib3 is raising ~$40,000 USD to release HTTP/2 support and ensure long-term sustainable maintenance of the project after a sharp decline in financial support for 2023. If your company or organization uses Python and would benefit from HTTP/2 support in Requests, pip, cloud SDKs, and thousands of other projects please consider contributing financially to ensure HTTP/2 support is developed sustainably and maintained for the long-haul.

Thank you for your support.

Changes

  • Fixed issue where InsecureRequestWarning was emitted for HTTPS connections when using Emscripten. (#3331)
  • Fixed HTTPConnectionPool.urlopen to stop automatically casting non-proxy headers to HTTPHeaderDict. This change was premature as it did not apply to proxy headers and HTTPHeaderDict does not handle byte header values correctly yet. (#3343)
  • Changed ProtocolError to InvalidChunkLength when response terminates before the chunk length is sent. (#2860)
  • Changed ProtocolError to be more verbose on incomplete reads with excess content. (#3261)
Changelog

Sourced from urllib3's changelog.

2.2.1 (2024-02-16)

  • Fixed issue where InsecureRequestWarning was emitted for HTTPS connections when using Emscripten. ([#3331](https://github.com/urllib3/urllib3/issues/3331) <https://github.com/urllib3/urllib3/issues/3331>__)
  • Fixed HTTPConnectionPool.urlopen to stop automatically casting non-proxy headers to HTTPHeaderDict. This change was premature as it did not apply to proxy headers and HTTPHeaderDict does not handle byte header values correctly yet. ([#3343](https://github.com/urllib3/urllib3/issues/3343) <https://github.com/urllib3/urllib3/issues/3343>__)
  • Changed InvalidChunkLength to ProtocolError when response terminates before the chunk length is sent. ([#2860](https://github.com/urllib3/urllib3/issues/2860) <https://github.com/urllib3/urllib3/issues/2860>__)
  • Changed ProtocolError to be more verbose on incomplete reads with excess content. ([#3261](https://github.com/urllib3/urllib3/issues/3261) <https://github.com/urllib3/urllib3/issues/3261>__)
Commits
  • 54d6edf Release 2.2.1
  • 49b2dda Stop casting request headers to HTTPHeaderDict (#3344)
  • e22f651 Fix docstring of retries parameter
  • fa54179 Distinguish between truncated and excess content in response (#3273)
  • cfe52f9 Fix InsecureRequestWarning for HTTPS Emscripten requests (#3333)
  • 25155d7 Ensure no remote connections during testing (#3328)
  • 12f9233 Bump cryptography to 42.0.2 and PyOpenSSL to 24.0.0 (#3340)
  • 9929d3c Add nox session to start local Pyodide console
  • aa8d3dd Fix ssl_version tests for upcoming migration to pytest 8
  • 23f2287 Remove TODO about informational responses (#3319)
  • Additional commits viewable in compare view


Updates pydantic from 1.10.14 to 1.10.15

Release notes

Sourced from pydantic's releases.

v1.10.15

What's Changed

Full Changelog: https://github.com/pydantic/pydantic/compare/v1.10.14...v1.10.15

Changelog

Sourced from pydantic's changelog.

v1.10.15 (2024-04-03)

Commits


Updates pre-commit from 3.6.1 to 3.7.1

Release notes

Sourced from pre-commit's releases.

pre-commit v3.7.1

Fixes

pre-commit v3.7.0

Features

  • Use a tty for docker and docker_image hooks when --color is specified.

Fixes

Updating

  • The per-hook behaviour of fail_fast was fixed. If you want the pre-3.7.0 behaviour, add fail_fast: true to all hooks before the last fail_fast hook.

pre-commit v3.6.2

Fixes

Changelog

Sourced from pre-commit's changelog.

3.7.1 - 2024-05-10

Fixes

3.7.0 - 2024-03-24

Features

  • Use a tty for docker and docker_image hooks when --color is specified.

Fixes

Updating

  • The per-hook behaviour of fail_fast was fixed. If you want the pre-3.7.0 behaviour, add fail_fast: true to all hooks before the last fail_fast hook.

3.6.2 - 2024-02-18

Fixes

Commits
  • 9ee0768 v3.7.1
  • eeac061 Merge pull request #3201 from pre-commit/rust-default-language-version
  • 296f592 determine rust default language version independent of rust-toolchain.toml
  • 1602328 Merge pull request #3193 from pre-commit/pre-commit-ci-update-config
  • 0142f45 [pre-commit.ci] pre-commit autoupdate
  • d7e21cd Merge pull request #3194 from pre-commit/handle-readonly-3-12
  • 5c3d006 use a simpler gem for testing additional_dependencies
  • 0d4c6da adjust _handle_readonly for typeshed updates
  • 85fe182 Merge pull request #3176 from pre-commit/pre-commit-ci-update-config
  • 74d05b4 [pre-commit.ci] pre-commit autoupdate
  • Additional commits viewable in compare view


Updates httpx from 0.26.0 to 0.27.0

Release notes

Sourced from httpx's releases.

Version 0.27.0

0.27.0 (21st February, 2024)

Deprecated

  • The app=... shortcut has been deprecated. Use the explicit style of transport=httpx.WSGITransport() or transport=httpx.ASGITransport() instead.

Fixed

  • Respect the http1 argument while configuring proxy transports. (#3023)
  • Fix RFC 2069 mode digest authentication. (#3045)
Changelog

Sourced from httpx's changelog.

0.27.0 (21st February, 2024)

Deprecated

  • The app=... shortcut has been deprecated. Use the explicit style of transport=httpx.WSGITransport() or transport=httpx.ASGITransport() instead.

Fixed

  • Respect the http1 argument while configuring proxy transports. (#3023)
  • Fix RFC 2069 mode digest authentication. (#3045)
Commits


Most Recent Ignore Conditions Applied to This Pull Request | Dependency Name | Ignore Conditions | | --- | --- | | pydantic | [>= 2.a, < 3] |

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
dependabot[bot] commented 1 month ago

Looks like these dependencies are updatable in another way, so this is no longer needed.