Closed dependabot[bot] closed 2 months ago
@alanking could this be merged please? This will also add support for redisjson which we would like to have.
We'll get it tested and merged - yes. Thanks.
We'll get it tested and merged - yes. Thanks.
Hey @trel, I've tested with redis 4.6.0 and it works as expected. See changes on my fork: https://github.com/irods/irods_capability_automated_ingest/compare/main...rmoreas:irods_capability_automated_ingest:bump-redis-version
Could the redis version be bumped? As mentioned above, it has been tested with 4.60.
Yes - getting iRODS 4.3.2 out at the moment.
Along with the changes made in https://github.com/irods/irods_capability_automated_ingest/pull/221, I watched all the tests pass with this bump so we can put this in soon.
We still have a conversation in our future regarding the interface changes before a release, though.
oh nice - so you're confirming that 4.4.4 worked? 4.6.0 was mentioned above...
let's plan to merge the dependabot first - and then go up from there...
I used the exact changes in this PR (which specifies 4.4.4), but I ran pip freeze
in the container while the tests were running and saw 4.6.0 was installed.
oh, even better.
Hmm... I tried to do a conflict resolution in GitHub and this is what I got. I'll force-push over it...
Okay, I think I rebased it successfully. For reference, here is the diff from before the rebase:
commit 7ff910dd5048c816d0110c1ce1f22083db1403f5
Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri Mar 31 14:35:46 2023 +0000
Bump redis from 2.10.6 to 4.4.4
Bumps [redis](https://github.com/redis/redis-py) from 2.10.6 to 4.4.4.
- [Release notes](https://github.com/redis/redis-py/releases)
- [Changelog](https://github.com/redis/redis-py/blob/master/CHANGES)
- [Commits](https://github.com/redis/redis-py/compare/2.10.6...v4.4.4)
---
updated-dependencies:
- dependency-name: redis
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
diff --git a/requirements.txt b/requirements.txt
index 8570795..293259b 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -19,7 +19,7 @@ python-irodsclient==0.8.1
python-redis-lock==3.2.0
python-utils==2.3.0
pytz==2018.7
-redis==2.10.6
+redis==4.4.4
scandir==1.9.0
six==1.12.0
structlog==18.2.0
diff --git a/setup.py b/setup.py
index 196934a..97141a6 100644
--- a/setup.py
+++ b/setup.py
@@ -44,7 +44,7 @@ setup(
'flask-restful',
'python-irodsclient>=1.1.1, <2.0.0',
'python-redis-lock>=3.2.0',
- 'redis>=3.4.1, <4.0.0',
+ 'redis>=3.4.1, <5.0.0',
'celery[redis]>=5.2.2, <5.3.0',
'scandir',
'structlog>=18.1.0',
looks good to me. can always tweak it afterwards if needed.
looks like once we merge a dependabot PR, it wakes up the bot again... and these will light up / update again.
Okey dokey. Merging...
Bumps redis from 2.10.6 to 4.4.4.
Release notes
Sourced from redis's releases.
... (truncated)
Changelog
Sourced from redis's changelog.
... (truncated)
Commits
49d9cb7
Version 4.4.4 (#2671)b3c89ac
AsyncIO Race Condition Fix (#2640)8592cac
version 4.4.2 (#2550)be84b93
Add support to BF.CARD (#2545)7dd73a3
add support for custom connection pool class in NodesManager (#2547)bae6385
allow replica to master promotion in nodes_cache (#2549)4a825bc
String cleanse (#2548)f46d7f3
Version 4.4.1 (#2544)c7600b4
add type checking for graph eq (#2531)decd1f6
ValueError must be AttributeError in init.py (#2542)You can trigger a rebase of this PR by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/irods/irods_capability_automated_ingest/network/alerts).