messense / nh3

Python binding to Ammonia HTML sanitizer Rust crate
https://nh3.readthedocs.io
MIT License
260 stars 8 forks source link

Bump pyo3 from 0.19.0 to 0.19.1 #19

Closed dependabot[bot] closed 1 year ago

dependabot[bot] commented 1 year ago

Bumps pyo3 from 0.19.0 to 0.19.1.

Release notes

Sourced from pyo3's releases.

PyO3 0.19.1

This release fixes a memory leak caused by a reference counting error which affected PySet::new, PyFrozenSet::new and conversions from Rust set types to Python's set.

There are several other notable quality-of-life changes in this release:

  • Support for PyPy 3.10.
  • Support for hashbrown 0.14 and indexmap 2.0.
  • Conversions for std::net::IpAddr have been added.
  • The num-bigint feature is now supported with the abi3 feature.
  • The num-complex feature with abi3 feature enabled will now correctly use __complex__ implementations (it always has without abi3 enabled).
  • #[new] methods can now return Py<Self> to return an existing object (e.g. for singleton classes).

There are also a handful of other additions and bugfixes included in this release.

Thank you to the following users for the improvements:

@​adamreichold @​adriangb @​alex @​CallMeMSL @​davidhewitt @​ijl @​jakelishman @​lucatrv @​mejrs @​mhils @​youknowone

Changelog

Sourced from pyo3's changelog.

[0.19.1] - 2023-07-03

Packaging

  • Extend range of supported versions of hashbrown optional dependency to include version 0.14 #3258
  • Extend range of supported versions of indexmap optional dependency to include version 2. #3277
  • Support PyPy 3.10. #3289

Added

  • Add pyo3::types::PyFrozenSetBuilder to allow building a PyFrozenSet item by item. #3156
  • Add support for converting to and from Python's ipaddress.IPv4Address/ipaddress.IPv6Address and std::net::IpAddr. #3197
  • Add support for num-bigint feature in combination with abi3. #3198
  • Add PyErr_GetRaisedException(), PyErr_SetRaisedException() to FFI definitions for Python 3.12 and later. #3248
  • Add Python::with_pool which is a safer but more limited alternative to Python::new_pool. #3263
  • Add PyDict::get_item_with_error on PyPy. #3270
  • Allow #[new] methods may to return Py<Self> in order to return existing instances. #3287

Fixed

  • Fix conversion of classes implementing __complex__ to Complex when using abi3 or PyPy. #3185
  • Stop suppressing unrelated exceptions in PyAny::hasattr. #3271
  • Fix memory leak when creating PySet or PyFrozenSet or returning types converted into these internally, e.g. HashSet or BTreeSet. #3286
Commits
  • dfe04e9 release: 0.19.1
  • 7b2d627 workaround msrv lint issue
  • 5fb41a4 fixup minimal package versions for msrv
  • 9151c96 support PyPy 3.10
  • 9f9be35 Allow #[new] to return existing instances
  • 1812274 Apparently, PySet_Add does not steal a reference, hence we should not forget ...
  • efea50b clarify ownership of opt_to_pyobj helper function
  • 710a2dc Fix typos and add punctuation recommended by grammarly in Class.md
  • 0ba07db use _run_cargo helper in noxfile
  • cd33b1c move pyo3-ffi-check into its own workspace
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 1 year ago

Looks like pyo3 is up-to-date now, so this is no longer needed.