renovate[bot]
commented
3 months ago Edited/Blocked Notification
Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.
You can manually request rebase by checking the rebase/retry box above.
⚠ Warning: custom changes will be lost.
kernicPanel
jbpenrath
This PR contains the following updates:
==1.34.79->==1.34.85==5.4.0->==5.4.1==0.3.5->==0.3.7==2.8.1->==3.0.0==21.2.0->==22.0.0==2.8.2->==2.9.0.post0==1.44.1->==1.45.0Release Notes
boto/boto3 (boto3)
### [`v1.34.85`](https://togithub.com/boto/boto3/blob/HEAD/CHANGELOG.rst#13485) [Compare Source](https://togithub.com/boto/boto3/compare/1.34.84...1.34.85) \======= - api-change:`bedrock-agent`: \[`botocore`] For Create Agent API, the agentResourceRoleArn parameter is no longer required. - api-change:`emr-serverless`: \[`botocore`] This release adds support for shuffle optimized disks that allow larger disk sizes and higher IOPS to efficiently run shuffle heavy workloads. - api-change:`entityresolution`: \[`botocore`] Cross Account Resource Support . - api-change:`iotwireless`: \[`botocore`] Add PublicGateways in the GetWirelessStatistics call response, indicating the LoRaWAN public network accessed by the device. - api-change:`lakeformation`: \[`botocore`] This release adds Lake Formation managed RAM support for the 4 APIs - "DescribeLakeFormationIdentityCenterConfiguration", "CreateLakeFormationIdentityCenterConfiguration", "DescribeLakeFormationIdentityCenterConfiguration", and "DeleteLakeFormationIdentityCenterConfiguration" - api-change:`m2`: \[`botocore`] Adding new ListBatchJobRestartPoints API and support for restart batch job. - api-change:`mediapackagev2`: \[`botocore`] Dash v2 is a MediaPackage V2 feature to support egressing on DASH manifest format. - api-change:`outposts`: \[`botocore`] This release adds new APIs to allow customers to configure their Outpost capacity at order-time. - api-change:`wellarchitected`: \[`botocore`] AWS Well-Architected now has a Connector for Jira to allow customers to efficiently track workload risks and improvement efforts and create closed-loop mechanisms. - enhancement:AWSCRT: \[`botocore`] Update awscrt version to 0.20.9 ### [`v1.34.84`](https://togithub.com/boto/boto3/blob/HEAD/CHANGELOG.rst#13484) [Compare Source](https://togithub.com/boto/boto3/compare/1.34.83...1.34.84) \======= - api-change:`cloudformation`: \[`botocore`] Adding support for the new parameter "IncludePropertyValues" in the CloudFormation DescribeChangeSet API. When this parameter is included, the DescribeChangeSet response will include more detailed information such as before and after values for the resource properties that will change. - api-change:`config`: \[`botocore`] Updates documentation for AWS Config - api-change:`glue`: \[`botocore`] Modifying request for GetUnfilteredTableMetadata for view-related fields. - api-change:`healthlake`: \[`botocore`] Added new CREATE_FAILED status for data stores. Added new errorCause to DescribeFHIRDatastore API and ListFHIRDatastores API response for additional insights into data store creation and deletion workflows. - api-change:`iotfleethub`: \[`botocore`] Documentation updates for AWS IoT Fleet Hub to clarify that Fleet Hub supports organization instance of IAM Identity Center. - api-change:`kms`: \[`botocore`] This feature supports the ability to specify a custom rotation period for automatic key rotations, the ability to perform on-demand key rotations, and visibility into your key material rotations. - api-change:`mediatailor`: \[`botocore`] Added InsertionMode to PlaybackConfigurations. This setting controls whether players can use stitched or guided ad insertion. The default for players that do not specify an insertion mode is stitched. - api-change:`neptune-graph`: \[`botocore`] Update to API documentation to resolve customer reported issues. - api-change:`outposts`: \[`botocore`] This release adds EXPEDITORS as a valid shipment carrier. - api-change:`redshift`: \[`botocore`] Adds support for Amazon Redshift DescribeClusterSnapshots API to include Snapshot ARN response field. - api-change:`transfer`: \[`botocore`] This change releases support for importing self signed certificates to the Transfer Family for sending outbound file transfers over TLS/HTTPS. ### [`v1.34.83`](https://togithub.com/boto/boto3/blob/HEAD/CHANGELOG.rst#13483) [Compare Source](https://togithub.com/boto/boto3/compare/1.34.82...1.34.83) \======= - api-change:`batch`: \[`botocore`] This release adds the task properties field to attempt details and the name field on EKS container detail. - api-change:`cloudfront`: \[`botocore`] CloudFront origin access control extends support to AWS Lambda function URLs and AWS Elemental MediaPackage v2 origins. - api-change:`cloudwatch`: \[`botocore`] This release adds support for Metric Characteristics for CloudWatch Anomaly Detection. Anomaly Detector now takes Metric Characteristics object with Periodic Spikes boolean field that tells Anomaly Detection that spikes that repeat at the same time every week are part of the expected pattern. - api-change:`codebuild`: \[`botocore`] Support access tokens for Bitbucket sources - api-change:`iam`: \[`botocore`] For CreateOpenIDConnectProvider API, the ThumbprintList parameter is no longer required. - api-change:`medialive`: \[`botocore`] AWS Elemental MediaLive introduces workflow monitor, a new feature that enables the visualization and monitoring of your media workflows. Create signal maps of your existing workflows and monitor them by creating notification and monitoring template groups. - api-change:`omics`: \[`botocore`] This release adds support for retrieval of S3 direct access metadata on sequence stores and read sets, and adds support for SHA256up and SHA512up HealthOmics ETags. - api-change:`pipes`: \[`botocore`] LogConfiguration ARN validation fixes - api-change:`rds`: \[`botocore`] Updates Amazon RDS documentation for Standard Edition 2 support in RDS Custom for Oracle. - api-change:`s3control`: \[`botocore`] Documentation updates for Amazon S3-control. ### [`v1.34.82`](https://togithub.com/boto/boto3/blob/HEAD/CHANGELOG.rst#13482) [Compare Source](https://togithub.com/boto/boto3/compare/1.34.81...1.34.82) \======= - api-change:`cleanrooms`: \[`botocore`] AWS Clean Rooms Differential Privacy is now fully available. Differential privacy protects against user-identification attempts. - api-change:`connect`: \[`botocore`] This release adds new Submit Auto Evaluation Action for Amazon Connect Rules. - api-change:`networkmonitor`: \[`botocore`] Examples were added to CloudWatch Network Monitor commands. - api-change:`qconnect`: \[`botocore`] This release adds a new QiC public API updateSession and updates an existing QiC public API createSession - api-change:`rekognition`: \[`botocore`] Added support for ContentType to content moderation detections. - api-change:`supplychain`: \[`botocore`] This release includes API SendDataIntegrationEvent for AWS Supply Chain - api-change:`workspaces-thin-client`: \[`botocore`] Adding tags field to SoftwareSet. Removing tags fields from Summary objects. Changing the list of exceptions in tagging APIs. Fixing an issue where the SDK returns empty tags in Get APIs. ### [`v1.34.81`](https://togithub.com/boto/boto3/blob/HEAD/CHANGELOG.rst#13481) [Compare Source](https://togithub.com/boto/boto3/compare/1.34.80...1.34.81) \======= - api-change:`codebuild`: \[`botocore`] Add new webhook filter types for GitHub webhooks - api-change:`mediaconvert`: \[`botocore`] This release includes support for bringing your own fonts to use for burn-in or DVB-Sub captioning workflows. - api-change:`pinpoint`: \[`botocore`] The OrchestrationSendingRoleArn has been added to the email channel and is used to send emails from campaigns or journeys. - api-change:`rds`: \[`botocore`] This release adds support for specifying the CA certificate to use for the new db instance when restoring from db snapshot, restoring from s3, restoring to point in time, and creating a db instance read replica. ### [`v1.34.80`](https://togithub.com/boto/boto3/blob/HEAD/CHANGELOG.rst#13480) [Compare Source](https://togithub.com/boto/boto3/compare/1.34.79...1.34.80) \======= - api-change:`controlcatalog`: \[`botocore`] This is the initial SDK release for AWS Control Catalog, a central catalog for AWS managed controls. This release includes 3 new APIs - ListDomains, ListObjectives, and ListCommonControls - that vend high-level data to categorize controls across the AWS platform. - api-change:`mgn`: \[`botocore`] Added USE_SOURCE as default option to LaunchConfigurationTemplate bootMode parameter. - api-change:`networkmonitor`: \[`botocore`] Updated the allowed monitorName length for CloudWatch Network Monitor.pytest-dev/pyfakefs (dev/pyfakefs)
### [`v5.4.1`](https://togithub.com/pytest-dev/pyfakefs/blob/HEAD/CHANGES.md#Version-541-2024-04-11) [Compare Source](https://togithub.com/pytest-dev/pyfakefs/compare/v5.4.0...v5.4.1) Fixes a regression. ##### Fixes - fixed a regression from version 5.4.0 that incorrectly handled files opened twice via file descriptor (see [#997](../../issues/997))astral-sh/ruff (dev/ruff)
### [`v0.3.7`](https://togithub.com/astral-sh/ruff/blob/HEAD/CHANGELOG.md#037) [Compare Source](https://togithub.com/astral-sh/ruff/compare/v0.3.6...v0.3.7) ##### Preview features - \[`flake8-bugbear`] Implement `loop-iterator-mutation` (`B909`) ([#9578](https://togithub.com/astral-sh/ruff/pull/9578)) - \[`pylint`] Implement rule to prefer augmented assignment (`PLR6104`) ([#9932](https://togithub.com/astral-sh/ruff/pull/9932)) ##### Bug fixes - Avoid TOCTOU errors in cache initialization ([#10884](https://togithub.com/astral-sh/ruff/pull/10884)) - \[`pylint`] Recode `nan-comparison` rule to `W0177` ([#10894](https://togithub.com/astral-sh/ruff/pull/10894)) - \[`pylint`] Reverse min-max logic in `if-stmt-min-max` ([#10890](https://togithub.com/astral-sh/ruff/pull/10890)) ### [`v0.3.6`](https://togithub.com/astral-sh/ruff/blob/HEAD/CHANGELOG.md#036) [Compare Source](https://togithub.com/astral-sh/ruff/compare/v0.3.5...v0.3.6) ##### Preview features - \[`pylint`] Implement `bad-staticmethod-argument` (`PLW0211`) ([#10781](https://togithub.com/astral-sh/ruff/pull/10781)) - \[`pylint`] Implement `if-stmt-min-max` (`PLR1730`, `PLR1731`) ([#10002](https://togithub.com/astral-sh/ruff/pull/10002)) - \[`pyupgrade`] Replace `str,Enum` multiple inheritance with `StrEnum` `UP042` ([#10713](https://togithub.com/astral-sh/ruff/pull/10713)) - \[`refurb`] Implement `if-expr-instead-of-or-operator` (`FURB110`) ([#10687](https://togithub.com/astral-sh/ruff/pull/10687)) - \[`refurb`] Implement `int-on-sliced-str` (`FURB166`) ([#10650](https://togithub.com/astral-sh/ruff/pull/10650)) - \[`refurb`] Implement `write-whole-file` (`FURB103`) ([#10802](https://togithub.com/astral-sh/ruff/pull/10802)) - \[`refurb`] Support `itemgetter` in `reimplemented-operator` (`FURB118`) ([#10526](https://togithub.com/astral-sh/ruff/pull/10526)) - \[`flake8_comprehensions`] Add `sum`/`min`/`max` to unnecessary comprehension check (`C419`) ([#10759](https://togithub.com/astral-sh/ruff/pull/10759)) ##### Rule changes - \[`pydocstyle`] Require capitalizing docstrings where the first sentence is a single word (`D403`) ([#10776](https://togithub.com/astral-sh/ruff/pull/10776)) - \[`pycodestyle`] Ignore annotated lambdas in class scopes (`E731`) ([#10720](https://togithub.com/astral-sh/ruff/pull/10720)) - \[`flake8-pyi`] Various improvements to PYI034 ([#10807](https://togithub.com/astral-sh/ruff/pull/10807)) - \[`flake8-slots`] Flag subclasses of call-based `typing.NamedTuple`s as well as subclasses of `collections.namedtuple()` (`SLOT002`) ([#10808](https://togithub.com/astral-sh/ruff/pull/10808)) - \[`pyflakes`] Allow forward references in class bases in stub files (`F821`) ([#10779](https://togithub.com/astral-sh/ruff/pull/10779)) - \[`pygrep-hooks`] Improve `blanket-noqa` error message (`PGH004`) ([#10851](https://togithub.com/astral-sh/ruff/pull/10851)) ##### CLI - Support `FORCE_COLOR` env var ([#10839](https://togithub.com/astral-sh/ruff/pull/10839)) ##### Configuration - Support negated patterns in `[extend-]per-file-ignores` ([#10852](https://togithub.com/astral-sh/ruff/pull/10852)) ##### Bug fixes - \[`flake8-import-conventions`] Accept non-aliased (but correct) import in `unconventional-import-alias` (`ICN001`) ([#10729](https://togithub.com/astral-sh/ruff/pull/10729)) - \[`flake8-quotes`] Add semantic model flag when inside f-string replacement field ([#10766](https://togithub.com/astral-sh/ruff/pull/10766)) - \[`pep8-naming`] Recursively resolve `TypeDicts` for N815 violations ([#10719](https://togithub.com/astral-sh/ruff/pull/10719)) - \[`flake8-quotes`] Respect `Q00*` ignores in `flake8-quotes` rules ([#10728](https://togithub.com/astral-sh/ruff/pull/10728)) - \[`flake8-simplify`] Show negated condition in `needless-bool` diagnostics (`SIM103`) ([#10854](https://togithub.com/astral-sh/ruff/pull/10854)) - \[`ruff`] Use within-scope shadowed bindings in `asyncio-dangling-task` (`RUF006`) ([#10793](https://togithub.com/astral-sh/ruff/pull/10793)) - \[`flake8-pytest-style`] Fix single-tuple conversion in `pytest-parametrize-values-wrong-type` (`PT007`) ([#10862](https://togithub.com/astral-sh/ruff/pull/10862)) - \[`flake8-return`] Ignore assignments to annotated variables in `unnecessary-assign` (`RET504`) ([#10741](https://togithub.com/astral-sh/ruff/pull/10741)) - \[`refurb`] Do not allow any keyword arguments for `read-whole-file` in `rb` mode (`FURB101`) ([#10803](https://togithub.com/astral-sh/ruff/pull/10803)) - \[`pylint`] Don't recommend decorating staticmethods with `@singledispatch` (`PLE1519`, `PLE1520`) ([#10637](https://togithub.com/astral-sh/ruff/pull/10637)) - \[`pydocstyle`] Use section name range for all section-related docstring diagnostics ([#10740](https://togithub.com/astral-sh/ruff/pull/10740)) - Respect `# noqa` directives on `__all__` openers ([#10798](https://togithub.com/astral-sh/ruff/pull/10798))kmmbvnr/django-fsm (django-fsm)
### [`v3.0.0`](https://togithub.com/viewflow/django-fsm/releases/tag/3.0.0) [Compare Source](https://togithub.com/kmmbvnr/django-fsm/compare/2.8.2...3.0.0) #### Integration of django-fsm into viewflow ##### Major Changes - The `django-fsm` package has now been fully integrated into `viewflow` as the `viewflow.fsm` package starting from version 3.0. ##### Deprecation Notice - **Attention**: The standalone version of `django-fsm` will no longer be maintained nor receive any further updates. This transition marks a significant milestone in our efforts to streamline development workflows and enhance functionality. ##### Action Required - Users requiring the new functionalities introduced in `django-fsm` version 3.0 or later are strongly encouraged to migrate to `viewflow.fsm`. - To facilitate a smooth transition, detailed instructions on the migration process, as well as information on accessing new features, have been provided. ##### Resources - **Migration Guide & Documentation**: For comprehensive guidelines and further details on the migration process, please visit our official documentation atbenoitc/gunicorn (gunicorn)
### [`v22.0.0`](https://togithub.com/benoitc/gunicorn/releases/tag/22.0.0): Gunicorn 22.0 has been released [Compare Source](https://togithub.com/benoitc/gunicorn/compare/21.2.0...22.0.0) **Gunicorn 22.0.0 has been released.** This version fix the numerous security vulnerabilities. You're invited to upgrade asap your own installation. Changes: 22.0.0 - 2024-04-17 =================== - use `utime` to notify workers liveness - migrate setup to pyproject.toml - fix numerous security vulnerabilities in HTTP parser (closing some request smuggling vectors) - parsing additional requests is no longer attempted past unsupported request framing - on HTTP versions < 1.1 support for chunked transfer is refused (only used in exploits) - requests conflicting configured or passed SCRIPT_NAME now produce a verbose error - Trailer fields are no longer inspected for headers indicating secure scheme - support Python 3.12 ** Breaking changes ** - minimum version is Python 3.7 - the limitations on valid characters in the HTTP method have been bounded to Internet Standards - requests specifying unsupported transfer coding (order) are refused by default (rare) - HTTP methods are no longer casefolded by default (IANA method registry contains none affected) - HTTP methods containing the number sign (#) are no longer accepted by default (rare) - HTTP versions < 1.0 or >= 2.0 are no longer accepted by default (rare, only HTTP/1.1 is supported) - HTTP versions consisting of multiple digits or containing a prefix/suffix are no longer accepted - HTTP header field names Gunicorn cannot safely map to variables are silently dropped, as in other software - HTTP headers with empty field name are refused by default (no legitimate use cases, used in exploits) - requests with both Transfer-Encoding and Content-Length are refused by default (such a message might indicate an attempt to perform request smuggling) - empty transfer codings are no longer permitted (reportedly seen with really old & broken proxies) ** SECURITY ** - fix CVE-2024-1135 1. Documentation is available there: https://docs.gunicorn.org/en/stable/news.html 2. Packages: https://pypi.org/project/gunicorn/dateutil/dateutil (python-dateutil)
### [`v2.9.0.post0`](https://togithub.com/dateutil/dateutil/releases/tag/2.9.0.post0) [Compare Source](https://togithub.com/dateutil/dateutil/compare/2.9.0...2.9.0.post0) ### Version 2.9.0.post0 (2024-03-01) #### Bugfixes - Pinned `setuptools_scm` to `<8`, which should make the generated `_version.py` file compatible with all supported versions of Python. ### [`v2.9.0`](https://togithub.com/dateutil/dateutil/releases/tag/2.9.0) [Compare Source](https://togithub.com/dateutil/dateutil/compare/2.8.2...2.9.0) ### Version 2.9.0 (2024-02-29) #### Data updates - Updated tzdata version to 2024a. (gh pr [#1342](https://togithub.com/dateutil/dateutil/issues/1342)) #### Features - Made all `dateutil` submodules lazily imported using [PEP 562](https://www.python.org/dev/peps/pep-0562/). On Python 3.7+, things like `import dateutil; dateutil.tz.gettz("America/New_York")` will now work without explicitly importing `dateutil.tz`, with the import occurring behind the scenes on first use. The old behavior remains on Python 3.6 and earlier. Fixed by Orson Adams. (gh issue [#771](https://togithub.com/dateutil/dateutil/issues/771), gh pr [#1007](https://togithub.com/dateutil/dateutil/issues/1007)) #### Bugfixes - Removed a call to `datetime.utcfromtimestamp`, which is deprecated as of Python 3.12. Reported by Hugo van Kemenade (gh pr [#1284](https://togithub.com/dateutil/dateutil/issues/1284)), fixed by Thomas Grainger (gh pr [#1285](https://togithub.com/dateutil/dateutil/issues/1285)). #### Documentation changes - Added note into docs and tests where relativedelta would return last day of the month only if the same day on a different month resolves to a date that doesn't exist. Reported by [@hawkEye-01](https://togithub.com/hawkEye-01) (gh issue [#1167](https://togithub.com/dateutil/dateutil/issues/1167)). Fixed by [@Mifrill](https://togithub.com/Mifrill) (gh pr [#1168](https://togithub.com/dateutil/dateutil/issues/1168))getsentry/sentry-python (sentry-sdk)
### [`v1.45.0`](https://togithub.com/getsentry/sentry-python/blob/HEAD/CHANGELOG.md#1450) [Compare Source](https://togithub.com/getsentry/sentry-python/compare/1.44.1...1.45.0) This is the final 1.x release for the forseeable future. Development will continue on the 2.x release line. The first 2.x version will be available in the next few weeks. ##### Various fixes & improvements - Allow to upsert monitors ([#2929](https://togithub.com/getsentry/sentry-python/issues/2929)) by [@sentrivana](https://togithub.com/sentrivana) It's now possible to provide `monitor_config` to the `monitor` decorator/context manager directly: ```python from sentry_sdk.crons import monitor ```Configuration
📅 Schedule: Branch creation - "before 7am on monday" (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.
👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.
This PR has been generated by Mend Renovate. View repository job log here.