search

mozilla / FoxPuppet

Other
17 stars 14 forks source link

Bump pipenv from 2018.11.26 to 2020.6.2 #290

Closed dependabot-preview[bot] closed 4 years ago

dependabot-preview[bot] commented 4 years ago

Bumps pipenv from 2018.11.26 to 2020.6.2.

Release notes

Sourced from pipenv's releases.

Release v2020.6.2

2020.6.2 (2020-06-02)

Features & Improvements

  • Pipenv will now detect existing venv and virtualenv based virtual environments more robustly. #4276

Bug Fixes

  • + signs in URL authentication fragments will no longer be incorrectly replaced with space ( ) characters. #4271
  • Fixed a regression which caused Pipenv to fail when running under /. #4273
  • setup.py files with version variables read from os.environ are now able to be parsed successfully. #4274
  • Fixed a bug which caused Pipenv to fail to install packages in a virtual environment if those packages were already present in the system global environment. #4276
  • Fix a bug that caused non-specific versions to be pinned in Pipfile.lock. #4278
  • Corrected a missing exception import and invalid function call invocations in pipenv.cli.command. #4286
  • Fixed an issue with resolving packages with names defined by function calls in setup.py. #4292
  • Fixed a regression with installing the current directory, or ., inside a venv based virtual environment. #4295
  • Fixed a bug with the discovery of python paths on Windows which could prevent installation of environments during pipenv install. #4296
  • Fixed an issue in the requirementslib AST parser which prevented parsing of setup.py files for dependency metadata. #4298
  • Fix a bug where Pipenv doesn't realize the session is interactive #4305

Vendored Libraries

  • Updated requirementslib to version 1.5.11. #4292
  • Updated vendored dependencies:
    • pythonfinder: 1.2.2 => 1.2.4
    • requirementslib: 1.5.9 => 1.5.10 #4302

Release v2020.5.28

2020.5.28 (2020-05-28)

Features & Improvements

  • pipenv install and pipenv sync will no longer attempt to install satisfied dependencies during installation. #3057, #3506
  • Added support for resolution of direct-url dependencies in setup.py files to respect PEP-508 style URL dependencies. #3148
  • Added full support for resolution of all dependency types including direct URLs, zip archives, tarballs, etc.
    • Improved error handling and formatting.
    • Introduced improved cross platform stream wrappers for better stdout and stderr consistency. #3298
  • For consistency with other commands and the --dev option description, pipenv lock --requirements --dev now emits both default and development dependencies. The new --dev-only option requests the previous behaviour (e.g. to generate a dev-requirements.txt file). #3316
  • Pipenv will now successfully recursively lock VCS sub-dependencies. #3328
  • Added support for --verbose output to pipenv run. #3348
  • Pipenv will now discover and resolve the intrinsic dependencies of all VCS dependencies, whether they are editable or not, to prevent resolution conflicts. #3368
  • Added a new environment variable, PIPENV_RESOLVE_VCS, to toggle dependency resolution off for non-editable VCS, file, and URL based dependencies. #3577
  • Added the ability for Windows users to enable emojis by setting PIPENV_HIDE_EMOJIS=0. #3595
Changelog

Sourced from pipenv's changelog.

2020.6.2 (2020-06-02)

Features & Improvements

  • Pipenv will now detect existing venv and virtualenv based virtual environments more robustly. #4276

Bug Fixes

  • + signs in URL authentication fragments will no longer be incorrectly replaced with space ( `` ) characters. #4271
  • Fixed a regression which caused Pipenv to fail when running under /. #4273
  • setup.py files with version variables read from os.environ are now able to be parsed successfully. #4274
  • Fixed a bug which caused Pipenv to fail to install packages in a virtual environment if those packages were already present in the system global environment. #4276
  • Fix a bug that caused non-specific versions to be pinned in Pipfile.lock. #4278
  • Corrected a missing exception import and invalid function call invocations in pipenv.cli.command. #4286
  • Fixed an issue with resolving packages with names defined by function calls in setup.py. #4292
  • Fixed a regression with installing the current directory, or ., inside a venv based virtual environment. #4295
  • Fixed a bug with the discovery of python paths on Windows which could prevent installation of environments during pipenv install. #4296
  • Fixed an issue in the requirementslib AST parser which prevented parsing of setup.py files for dependency metadata. #4298
  • Fix a bug where Pipenv doesn't realize the session is interactive #4305

Vendored Libraries

  • Updated requirementslib to version 1.5.11. #4292
Updated vendored dependencies:

:   -   pythonfinder: 1.2.2 => 1.2.4
-   requirementslib: 1.5.9 => 1.5.10 #4302

2020.5.28 (2020-05-28)

Features & Improvements

  • pipenv install and pipenv sync will no longer attempt to install satisfied dependencies during installation. #3057, #3506

  • Added support for resolution of direct-url dependencies in setup.py files to respect PEP-508 style URL dependencies. #3148

  • Added full support for resolution of all dependency types including direct URLs, zip archives, tarballs, etc.

    • Improved error handling and formatting.

    • Introduced improved cross platform stream wrappers for better stdout and stderr consistency. #3298

  • For consistency with other commands and the --dev option description, pipenv lock --requirements --dev now emits both default and development dependencies. The new --dev-only option requests the previous behaviour (e.g. to generate a dev-requirements.txt file). #3316

  • Pipenv will now successfully recursively lock VCS sub-dependencies. #3328

  • Added support for --verbose output to pipenv run. #3348

Commits
  • a44b982 Release v2020.6.2
  • c8a29ac Merge pull request #4306 from philjc/issue-4305
  • 1689485 Print installer class name instead of object reference
  • 3de5df3 Fix bug where _isatty doesn't work on fileno()
  • 5549ee8 Merge pull request #4304 from pypa/feature/linting-cleanup
  • e065e3c Update makefile with repatching scripts
  • aacc638 Update news fragments
  • 331c54a Clean up linter errors and add missing news items
  • d69198c Merge pull request #4303 from pypa/bugfix/4292
  • d58f578 Parse package names from functions in setup.py
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Automerge options (never/patch/minor, and dev/runtime dependencies) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired)
dependabot-preview[bot] commented 4 years ago

Superseded by #292.