mozilla / wpt-api

Other
28 stars 12 forks source link

Bump pipenv from 2018.11.26 to 2021.5.29 #438

Open dependabot-preview[bot] opened 3 years ago

dependabot-preview[bot] commented 3 years ago

Bumps pipenv from 2018.11.26 to 2021.5.29.

Release notes

Sourced from pipenv's releases.

Release v2021.5.29

No release notes provided.

Release v2020.11.15

No release notes provided.

Release v2020.11.4

No release notes provided.

Release v2020.8.13

Bug Fixes

  • Fixed behaviour of pipenv uninstall --all-dev. From now on it does not uninstall regular packages. [#3722](https://github.com/pypa/pipenv/issues/3722) <https://github.com/pypa/pipenv/issues/3722>_
  • Fix a bug that incorrect Python path will be used when --system flag is on. [#4315](https://github.com/pypa/pipenv/issues/4315) <https://github.com/pypa/pipenv/issues/4315>_
  • Fix falsely flagging a Homebrew installed Python as a virtual environment [#4316](https://github.com/pypa/pipenv/issues/4316) <https://github.com/pypa/pipenv/issues/4316>_
  • Fix a bug that pipenv uninstall throws an exception that does not exist. [#4321](https://github.com/pypa/pipenv/issues/4321) <https://github.com/pypa/pipenv/issues/4321>_
  • Fix a bug that Pipenv can't locate the correct file of special directives in setup.cfg of an editable package. [#4335](https://github.com/pypa/pipenv/issues/4335) <https://github.com/pypa/pipenv/issues/4335>_
  • Fix a bug that setup.py can't be parsed correctly when the assignment is type-annotated. [#4342](https://github.com/pypa/pipenv/issues/4342) <https://github.com/pypa/pipenv/issues/4342>_
  • Fix a bug that pipenv graph throws an exception that PipenvCmdError(cmd_string, c.out, c.err, return_code). [#4388](https://github.com/pypa/pipenv/issues/4388) <https://github.com/pypa/pipenv/issues/4388>_
  • Do not copy the whole directory tree of local file package. [#4403](https://github.com/pypa/pipenv/issues/4403) <https://github.com/pypa/pipenv/issues/4403>_
  • Correctly detect whether Pipenv in run under an activated virtualenv. [#4412](https://github.com/pypa/pipenv/issues/4412) <https://github.com/pypa/pipenv/issues/4412>_

Vendored Libraries

  • Update requirementslib to 1.5.12. [#4385](https://github.com/pypa/pipenv/issues/4385) <https://github.com/pypa/pipenv/issues/4385>_
    • Update requirements to 1.5.13.
    • Update pip-shims to 0.5.3. [#4421](https://github.com/pypa/pipenv/issues/4421) <https://github.com/pypa/pipenv/issues/4421>_

Release v2020.6.2

2020.6.2 (2020-06-02)

Features & Improvements

  • Pipenv will now detect existing venv and virtualenv based virtual environments more robustly. #4276

Bug Fixes

  • + signs in URL authentication fragments will no longer be incorrectly replaced with space ( ) characters. #4271
  • Fixed a regression which caused Pipenv to fail when running under /. #4273
  • setup.py files with version variables read from os.environ are now able to be parsed successfully. #4274
  • Fixed a bug which caused Pipenv to fail to install packages in a virtual environment if those packages were already present in the system global environment. #4276
  • Fix a bug that caused non-specific versions to be pinned in Pipfile.lock. #4278
  • Corrected a missing exception import and invalid function call invocations in pipenv.cli.command. #4286
  • Fixed an issue with resolving packages with names defined by function calls in setup.py. #4292

... (truncated)

Changelog

Sourced from pipenv's changelog.

2021.5.29 (2021-05-29)

Bug Fixes

  • Fix a bug where passing --skip-lock when PIPFILE has no [SOURCE] section throws the error: "tomlkit.exceptions.NonExistentKey: 'Key "source" does not exist.'" #4141
  • Fix bug where environment wouldn't activate in paths containing & and $ symbols #4538
  • Fix a bug that importlib-metadata from the project's dependencies conflicts with that from pipenv's. #4549
  • Fix a bug where pep508checker.py did not expect double-digit Python minor versions (e.g. "3.10"). #4602
  • Fix bug where environment wouldn't activate in paths containing () and [] symbols #4615
  • Fix bug preventing use of pipenv lock --pre #4642

Vendored Libraries

  • Update packaging from 20.4 to 20.8. #4591

2020.11.15 (2020-11-15)

Features & Improvements

  • Support expanding environment variables in requirement URLs. #3516
  • Show warning message when a dependency is skipped in locking due to the mismatch of its markers. #4346

Bug Fixes

  • Fix a bug that executable scripts with leading backslash can't be executed via pipenv run. #4368
  • Fix a bug that VCS dependencies always satisfy even if the ref has changed. #4387
  • Restrict the acceptable hash type to SHA256 only. #4517
  • Fix the output of pipenv scripts under Windows platform. #4523
  • Fix a bug that the resolver takes wrong section to validate constraints. #4527

Vendored Libraries

Update vendored dependencies:

: - colorama from 0.4.3 to 0.4.4 - python-dotenv from 0.10.3 to 0.15.0 - first from 2.0.1 to 2.0.2 - iso8601 from 0.1.12 to 0.1.13 - parse from 1.15.0 to 1.18.0 - pipdeptree from 0.13.2 to 1.0.0 - requests from 2.23.0 to 2.25.0

... (truncated)

Commits


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Automerge options (never/patch/minor, and dev/runtime dependencies) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired)