Closed dependabot[bot] closed 6 months ago
Issues
0 New issues
Measures
0 Security Hotspots
No data about Coverage
No data about Duplication
Dependabot can't parse your pyproject.toml. Because of this, Dependabot cannot update this pull request.
Looks like these dependencies are up-to-date now, so this is no longer needed.
Bumps the pip group with 2 updates in the / directory: fastapi and cryptography.
Updates
fastapi
from 0.105.0 to 0.109.1Release notes
Sourced from fastapi's releases.
... (truncated)
Commits
7633d15
🔖 Release version 0.109.1a4de147
📝 Update release notes9d34ad0
Merge pull request from GHSA-qf9m-vfgh-m389ebf9723
📝 Update release notes8590d0c
👥 Update FastAPI People (#11074)063d7ff
📝 Update release notes3c81e62
🌐 Add Spanish translation fordocs/es/docs/external-links.md
(#10933)6c4a143
📝 Update release notesd254e2f
🌐 Update Korean translation fordocs/ko/docs/tutorial/first-steps.md
, `docs...6f6e786
📝 Update release notesUpdates
cryptography
from 41.0.7 to 42.0.4Changelog
Sourced from cryptography's changelog.
... (truncated)
Commits
fe18470
Bump for 42.0.4 release (#10445)aaa2dd0
Fix ASN.1 issues in PKCS#7 and S/MIME signing (#10373) (#10442)7a4d012
Fixes #10422 -- don't crash when a PKCS#12 key and cert don't match (#10423) ...df314bb
backport actions m1 switch to 42.0.x (#10415)c49a7a5
changelog and version bump for 42.0.3 (#10396)396bcf6
fix provider loading take two (#10390) (#10395)0e0e46f
backport: initialize openssl's legacy provider in rust (#10323) (#10333)2202123
changelog and version bump 42.0.2 (#10268)f7032bd
bump openssl in CI (#10298) (#10299)002e886
Fixes #10294 -- correct accidental change to exchange kwarg (#10295) (#10296)Updates
starlette
from 0.27.0 to 0.35.1Release notes
Sourced from starlette's releases.
... (truncated)
Changelog
Sourced from starlette's changelog.
... (truncated)
Commits
c817605
Version 0.35.1 (#2410)6c4ffee
Maketyping-extensions
optional again (#2409)3734e85
♻️ Do not use the deprecatedmethod
parameter inFileResponse
inside of `...1081520
Version 0.35.0 (#2404)c3c6314
♻️ Refactor logic to handleroot_path
to keep compatibility with ASGI and c...8f2307d
Bump trio from 0.22.2 to 0.23.2 (#2395)d28d491
Bump ruff from 0.1.6 to 0.1.9 (#2396)5f9da0b
Bump coverage from 7.3.2 to 7.4.0 (#2397)04684c2
Bump typing-extensions from 4.8.0 to 4.9.0 (#2393)8924759
Bump importlib-metadata from 6.9.0 to 7.0.1 (#2394)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show