#372: Removed cast of path items in FastPath, not needed.
v4.11.2
#369: Fixed bug where EntryPoint.extras was returning
match objects and not the extras strings.
v4.11.1
#367: In Distribution.requires for egg-info, if requires.txt
is empty, return an empty list.
v4.11.0
bpo-46246: Added __slots__ to EntryPoints.
v4.10.2
#365 and bpo-46546: Avoid leaking method_name in
DeprecatedList.
v4.10.1
v2.1.3
#361: Avoid potential REDoS in EntryPoint.pattern.
v4.10.0
#354: Removed Distribution._local factory. This
functionality was created as a demonstration of the
possible implementation. Now, the
pep517 <https://pypi.org/project/pep517>_ package
provides this functionality directly through
pep517.meta.load <https://github.com/pypa/pep517/blob/a942316305395f8f757f210e2b16f738af73f8b8/pep517/meta.py#L63-L73>_.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot]
commented
2 years ago
Bumps importlib-metadata from 1.7.0 to 4.11.3.
Changelog
Sourced from importlib-metadata's changelog.
... (truncated)
Commits
99a2ec4Update changelog.dbe114cAdd docstring with tests for EntryPoint.matches. Ref #373.ee566d0Remove cast of path items to strings. Ref #372.14cce75Prefer re.findall, which returns materialized results. Fixes #369.b4661fdAdd test capturing missed expectation on extras. Ref #369.590e31dAdd 'migrations' to the docs. Ref #368.4360304Merge https://github.com/jaraco/skeleton04fe68aRan pre-commit autoupdate2ef893aMerge https://github.com/jaraco/skeleton97e0293In _read_egg_info_reqs, when requires.txt exists but is empty, return an empt...Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)