pyslackers / website

PySlackers website for invites and learning resources
https://pyslackers.com
MIT License
62 stars 96 forks source link

Scheduled biweekly dependency update for week 14 #458

Closed pyup-bot closed 3 years ago

pyup-bot commented 3 years ago

Update aiohttp from 3.7.3 to 3.7.4.post0.

Changelog ### 3.7.4.post0 ``` ======================== Misc ---- - Bumped upper bound of the ``chardet`` runtime dependency to allow their v4.0 version stream. `5366 <https://github.com/aio-libs/aiohttp/issues/5366>`_ ---- ``` ### 3.7.4 ``` ================== Bugfixes -------- - **(SECURITY BUG)** Started preventing open redirects in the ``aiohttp.web.normalize_path_middleware`` middleware. For more details, see https://github.com/aio-libs/aiohttp/security/advisories/GHSA-v6wp-4m6f-gcjg. Thanks to `Beast Glatisant <https://github.com/g147>`__ for finding the first instance of this issue and `Jelmer Vernooij <https://jelmer.uk/>`__ for reporting and tracking it down in aiohttp. `5497 <https://github.com/aio-libs/aiohttp/issues/5497>`_ - Fix interpretation difference of the pure-Python and the Cython-based HTTP parsers construct a ``yarl.URL`` object for HTTP request-target. Before this fix, the Python parser would turn the URI's absolute-path for ``//some-path`` into ``/`` while the Cython code preserved it as ``//some-path``. Now, both do the latter. `5498 <https://github.com/aio-libs/aiohttp/issues/5498>`_ ---- ```
Links - PyPI: https://pypi.org/project/aiohttp - Changelog: https://pyup.io/changelogs/aiohttp/ - Repo: https://github.com/aio-libs/aiohttp

Update alembic from 1.5.3 to 1.5.8.

Changelog ### 1.5.8 ``` :released: March 23, 2021 .. change:: :tags: bug, environment :tickets: 816 Fixed regression caused by SQLAlchemy 1.4 where the "alembic current" command would fail due to changes in the ``URL`` object. .. changelog:: ``` ### 1.5.7 ``` :released: March 11, 2021 .. change:: :tags: bug, autogenerate :tickets: 813 Adjusted the recently added :paramref:`.EnvironmentContext.configure.include_name` hook to accommodate for additional object types such as "views" that don't have a parent table, to support third party recipes and extensions. Pull request courtesy Oliver Rice. .. changelog:: ``` ### 1.5.6 ``` :released: March 5, 2021 .. change:: :tags: bug, mssql, operations :tickets: 812 Fixed bug where the "existing_type" parameter, which the MSSQL dialect requires in order to change the nullability of a column in the absence of also changing the column type, would cause an ALTER COLUMN operation to incorrectly render a second ALTER statement without the nullability if a new type were also present, as the MSSQL-specific contract did not anticipate all three of "nullability", "type_" and "existing_type" being sent at the same time. .. change:: :tags: template :ticket: 805 Add async template to Alembic to bootstrap environments that use async DBAPI. Updated the cookbook to include a migration guide on how to adapt an existing enviroment for use with DBAPI drivers. .. changelog:: ``` ### 1.5.5 ``` :released: February 20, 2021 .. change:: :tags: bug Adjusted the use of SQLAlchemy's ".copy()" internals to use "._copy()" for version 1.4.0, as this method is being renamed. .. change:: :tags: bug, environment :tickets: 797 Added new config file option ``prepend_sys_path``, which is a series of paths that will be prepended to sys.path; the default value in newly generated alembic.ini files is ".". This fixes a long-standing issue where for some reason running the alembic command line would not place the local "." path in sys.path, meaning an application locally present in "." and importable through normal channels, e.g. python interpreter, pytest, etc. would not be located by Alembic, even though the ``env.py`` file is loaded relative to the current path when ``alembic.ini`` contains a relative path. To enable for existing installations, add the option to the alembic.ini file as follows:: sys.path path, will be prepended to sys.path if present. defaults to the current working directory. prepend_sys_path = . .. seealso:: :ref:`installation` - updated documentation reflecting that local installation of the project is not necessary if running the Alembic cli from the local path. .. changelog:: ``` ### 1.5.4 ``` :released: February 3, 2021 .. change:: :tags: bug, versioning :tickets: 789 Fixed bug in versioning model where a downgrade across a revision with a dependency on another branch, yet an ancestor is also dependent on that branch, would produce an erroneous state in the alembic_version table, making upgrades impossible without manually repairing the table. .. changelog:: ```
Links - PyPI: https://pypi.org/project/alembic - Changelog: https://pyup.io/changelogs/alembic/ - Homepage: https://alembic.sqlalchemy.org - Docs: https://pythonhosted.org/alembic/

Update asyncpgsa from 0.26.3 to 0.27.1.

The bot wasn't able to find a changelog for this release. Got an idea?

Links - PyPI: https://pypi.org/project/asyncpgsa - Changelog: https://pyup.io/changelogs/asyncpgsa/ - Repo: https://github.com/canopytax/asyncpgsa

Update gunicorn from 20.0.4 to 20.1.0.

Changelog ### 20.1.0 ``` =================== - document WEB_CONCURRENCY is set by, at least, Heroku - capture peername from accept: Avoid calls to getpeername by capturing the peer name returned by accept - log a warning when a worker was terminated due to a signal - fix tornado usage with latest versions of Django - add support for python -m gunicorn - fix systemd socket activation example - allows to set wsgi application in configg file using `wsgi_app` - document `--timeout = 0` - always close a connection when the number of requests exceeds the max requests - Disable keepalive during graceful shutdown - kill tasks in the gthread workers during upgrade - fix latency in gevent worker when accepting new requests - fix file watcher: handle errors when new worker reboot and ensure the list of files is kept - document the default name and path of the configuration file - document how variable impact configuration - document the `$PORT` environment variable - added milliseconds option to request_time in access_log - added PIP requirements to be used for example - remove version from the Server header - fix sendfile: use `socket.sendfile` instead of `os.sendfile` - reloader: use absolute path to prevent empty to prevent0 `InotifyError` when a file is added to the working directory - Add --print-config option to print the resolved settings at startup. - remove the `--log-dict-config` CLI flag because it never had a working format (the `logconfig_dict` setting in configuration files continues to work) ** Breaking changes ** - minimum version is Python 3.5 - remove version from the Server header ** Documentation ** ** Others ** - miscellaneous changes in the code base to be a better citizen with Python 3 - remove dead code - fix documentation generation ```
Links - PyPI: https://pypi.org/project/gunicorn - Changelog: https://pyup.io/changelogs/gunicorn/ - Homepage: https://gunicorn.org

Update marshmallow from 3.10.0 to 3.11.1.

Changelog ### 3.11.1 ``` ******************* Bug fixes: - Fix treatment of dotted keys when unknown=INCLUDE (:issue:`1506`). Thanks :user:`rbu` for reporting and thanks :user:`sirosen` for the fix (:pr:`1745`). ``` ### 3.11.0 ``` ******************* Features: - Add ``fields.IPInterface``, ``fields.IPv4Interface``, and ``IPv6Interface`` (:issue:`1733`). Thanks :user:`madeinoz67` for the suggestion and the PR. - Raise ``AttributeError`` for missing methods when using ``fields.Method`` (:pr:`1675`). Thanks :user:`lassandroan`. Other changes: - Remove unnecessary ``hasattr`` and ``getattr`` checks in ``Field`` (:pr:`1770`). ```
Links - PyPI: https://pypi.org/project/marshmallow - Changelog: https://pyup.io/changelogs/marshmallow/ - Repo: https://github.com/marshmallow-code/marshmallow

Update sentry-sdk from 0.19.5 to 1.0.0.

The bot wasn't able to find a changelog for this release. Got an idea?

Links - PyPI: https://pypi.org/project/sentry-sdk - Repo: https://github.com/getsentry/sentry-python

Update uvloop from 0.14.0 to 0.15.2.

Changelog ### 0.15.2 ``` Bug Fixes * Add `python_requires` in `setup.py` to fix dependency resolution issues (by graingert in c808a663) ``` ### 0.15.1 ``` Bug Fixes * Fix a segfault issue when a Cython protocol is de-referencing itself from `Context.run()` callbacks (by fantix in 70cafc82) ``` ### 0.15.0 ``` New Features * Add name keyword argument to `loop.create_task()` (by fantix in d51ce367 for 309) * Add typing support (by bryanforbes in 9426e2b1, for 358) Bug Fixes * SSL: many improvements (by fantix in 6476aad6, 8beacd26, 98e113ee, ae44ec2d, asvetlov in 9bc4a204) * Fix `KeyboardInterrupt` handling logic (by 1st1 in c32c7039 for 295, jack1142 in 8c471f82 for 337) * Python 3.8/3.9 compatibility fixes, drop support for 3.5/3.6 (by jack1142 in 28702195 for 314, achimnol in 0d14ec64 for 328, aeros in 6ef69a79 for 349, shadchin in 1fd90665, fantix in 465717fd, 200e1404, afc3ee8f, cdd2218f, b7048b94) * UDP: multiple bug fixes (by fantix in 1d9267af for 319, 9e017e6e for 304, 506a2aa1) * Pipe: a critical crash fix that affects subprocess, pipe and socketpair (by fantix in 5d41af80 and tardyp in c3929720 for 311 312 317) * Restore context on protocol callbacks (by versusvoid in 7b202ccf for 305, fantix in f691212b) * Subprocess: stdio bug fixes (by fantix in 8cdb3002 for 136, lovasoa in 68db1a23 for 363) * Sock: fix issue in `sock_connect()` for large concurrency (by fantix in fe3d0281 for 378) * Misc fixes about docs URL, test typo, and CI compatibility (by asfaltboy in 38105305, felixonmars in fcb37350, fantix in 6596685a) Build * Check Cython version semantically (by YoSTEALTH in 5dc299b7) * Add `.flake8` to distribution tarball (by jlaine in e8eb5026 for 330) * Switch to Github actions (by elprans in 3be8967e, e21ceea0, fantix in 311997ed) * Bump libuv to v1.40.0 (by fantix in 998c19ec) ```
Links - PyPI: https://pypi.org/project/uvloop - Changelog: https://pyup.io/changelogs/uvloop/ - Repo: http://github.com/MagicStack/uvloop

Update ipython from 7.19.0 to 7.22.0.

The bot wasn't able to find a changelog for this release. Got an idea?

Links - PyPI: https://pypi.org/project/ipython - Changelog: https://pyup.io/changelogs/ipython/ - Homepage: https://ipython.org

Update pylint from 2.6.0 to 2.7.4.

Changelog ### 2.7.4 ``` =========================== Release date: 2021-03-30 * Fix a problem with disabled msgid not being ignored Closes 4265 * Fix issue with annotated class constants * Closes 4264 ``` ### 2.7.3 ``` =========================== Release date: 2021-03-29 * Introduce logic for checking deprecated attributes in DeprecationMixin. * Reduce usage of blacklist/whitelist terminology. Notably, ``extension-pkg-allow-list`` is an alternative to ``extension-pkg-whitelist`` and the message ``blacklisted-name`` is now emitted as ``disallowed-name``. The previous names are accepted to maintain backward compatibility. * Move deprecated checker to ``DeprecatedMixin`` Closes 4086 * Bump ``astroid`` version to ``2.5.2`` * Fix false positive for ``method-hidden`` when using private attribute and method Closes 3936 * ``use-symbolic-message-instead`` now also works on legacy messages like ``C0111`` (``missing-docstring``). * Remove unwanted print to stdout from ``_emit_no_member`` * Introduce a command-line option to specify pyreverse output directory Closes 4159 * Fix issue with Enums and ``class-attribute-naming-style=snake_case`` Closes 4149 * Add ``allowed-redefined-builtins`` option for fine tuning ``redefined-builtin`` check. Close 3263 * Fix issue when executing with ``python -m pylint`` Closes 4161 * Exempt ``typing.TypedDict`` from ``too-few-public-methods`` check. Closes 4180 * Fix false-positive ``no-member`` for typed annotations without default value. Closes 3167 * Add ``--class-const-naming-style`` for Enum constants and class variables annotated with ``typing.ClassVar`` Closes 4181 * Fix astroid.Inference error for undefined-variables with ``len() Closes 4215 * Fix column index on FIXME warning messages Closes 4218 * Improve handling of assignment expressions, better edge case handling Closes 3763, 4238 * Improve check if class is subscriptable PEP585 * Fix documentation and filename handling of --import-graph * Fix false-positive for ``unused-import`` on class keyword arguments Closes 3202 * Fix regression with plugins on PYTHONPATH if latter is cwd Closes 4252 ``` ### 2.7.2 ``` =========================== Release date: 2021-02-28 * Fix False Positive on ``Enum.__members__.items()``, ``Enum.__members__.values``, and ``Enum.__members__.keys`` Closes 4123 * Properly strip dangerous sys.path entries (not just the first one) Closes 3636 * Workflow and packaging improvements ``` ### 2.7.1 ``` =========================== Release date: 2021-02-23 * Expose ``UnittestLinter`` in pylint.testutils * Don't check directories starting with '.' when using register_plugins Closes 4119 ``` ### 2.7.0 ``` =========================== Release date: 2021-02-21 * Introduce DeprecationMixin for reusable deprecation checks. Closes 4049 * Fix false positive for ``builtin-not-iterating`` when ``map`` receives iterable Closes 4078 * Python 3.6+ is now required. * Fix false positive for ``builtin-not-iterating`` when ``zip`` receives iterable * Add ``nan-comparison`` check for NaN comparisons * Bug fix for empty-comment message line number. Closes 4009 * Only emit ``bad-reversed-sequence`` on dictionaries if below py3.8 Closes 3940 * Handle class decorators applied to function. Closes 3882 * Add check for empty comments * Fix minor documentation issue in contribute.rst * Enums are now required to be named in UPPER_CASE by ``invalid-name``. Close 3834 * Add missing checks for deprecated functions. * Postponed evaluation of annotations are now recognized by default if python version is above 3.10 Closes 3992 * Fix column metadata for anomalous backslash lints * Drop support for Python 3.5 * Add support for pep585 with postponed evaluation Closes 3320 * Check alternative union syntax - PEP 604 Closes 4065 * Fix multiple false positives with assignment expressions Closes 3347, 3953, 3865, 3275 * Fix TypedDict inherit-non-class false-positive Python 3.9+ Closes 1927 * Fix issue with nested PEP 585 syntax * Fix issue with nested PEP 604 syntax * Fix a crash in ``undefined-variable`` caused by chained attributes in metaclass Close 3742 * Fix false positive for ``not-async-context-manager`` when ``contextlib.asynccontextmanager`` is used Close 3862 * Fix linter multiprocessing pool shutdown (triggered warnings when runned in parallels with other pytest plugins) Closes 3779 * Fix a false-positive emission of ``no-self-use`` and ``unused-argument`` for methods of generic structural types (`Protocol[T]`) Closes 3885 * Fix bug that lead to duplicate messages when using ``--jobs 2`` or more. Close 3584 * Adds option ``check-protected-access-in-special-methods`` in the ClassChecker to activate/deactivate ``protected-access`` message emission for single underscore prefixed attribute in special methods. Close 3120 * Fix vulnerable regular expressions in ``pyreverse`` Close 3811 * ``inconsistent-return-statements`` message is now emitted if one of ``try/except`` statement is not returning explicitly while the other do. Closes 3468 * Fix ``useless-super-delegation`` false positive when default keyword argument is a dictionnary. Close 3773 * Fix a crash when a specified config file does not exist * Add support to ``ignored-argument-names`` in DocstringParameterChecker and adds ``useless-param-doc`` and ``useless-type-doc`` messages. Close 3800 * Enforce docparams consistently when docstring is not present Close 2738 * Fix ``duplicate-code`` false positive when lines only contain whitespace and non-alphanumeric characters (e.g. parentheses, bracket, comman, etc.) * Improve lint message for ``singleton-comparison`` with bools * Fix spell-checker crash on indented docstring lines that look like comments Close 3786 * Fix AttributeError in checkers/refactoring.py * Improve sphinx directives spelling filter * Fix a bug with postponed evaluation when using aliases for annotations. Close 3798 * Fix minor documentation issues * Improve the performance of the line length check. * Removed incorrect deprecation of ``inspect.getfullargspec`` * Fix ``signature-differs`` false positive for functions with variadics Close 3737 * Fix a crash in ``consider-using-enumerate`` when encountering ``range()`` without arguments Close 3735 * ``len-as-conditions`` is now triggered only for classes that are inheriting directly from list, dict, or set and not implementing the ``__bool__`` function, or from generators like range or list/dict/set comprehension. This should reduce the false positives for other classes, like pandas's DataFrame or numpy's Array. Close 1879 * Fixes duplicate-errors not working with -j2+ Close 3314 * ``generated-members`` now matches the qualified name of members Close 2498 * Add check for bool function to ``len-as-condition`` * Add ``simplifiable-condition`` check for extraneous constants in conditionals using and/or. * Add ``condition-evals-to-constant`` check for conditionals using and/or that evaluate to a constant. Close 3407 * Changed setup.py to work with [distlib](https://pypi.org/project/distlib) Close 3555 * New check: ``consider-using-generator`` This check warns when a comprehension is used inside an ``any`` or ``all`` function, since it is unnecessary and should be replaced by a generator instead. Using a generator would be less code and way faster. Close 3165 * Add Github Actions to replace Travis and AppVeyor in the future ``` ### 2.6.1 ``` =========================== * Astroid version has been set as < 2.5 Close 4093 ```
Links - PyPI: https://pypi.org/project/pylint - Changelog: https://pyup.io/changelogs/pylint/ - Repo: https://github.com/PyCQA/pylint

Update pytest from 6.2.2 to 6.2.3.

The bot wasn't able to find a changelog for this release. Got an idea?

Links - PyPI: https://pypi.org/project/pytest - Changelog: https://pyup.io/changelogs/pytest/ - Homepage: https://docs.pytest.org/en/latest/

Update tox from 3.21.3 to 3.23.0.

Changelog ### 3.22.0 ``` -------------------- Features ^^^^^^^^ - The value of the :conf:`requires` configuration option is now exposed via the :class:`tox.config.Config` object - by :user:`hroncok` `1918 <https://github.com/tox-dev/tox/issues/1918>`_ ``` ### 3.21.4 ``` -------------------- Bugfixes ^^^^^^^^ - Adapt tests not to assume the ``easy_install`` command exists, as it was removed from ``setuptools`` 52.0.0+ - by :user:`hroncok` `1893 <https://github.com/tox-dev/tox/issues/1893>`_ ```
Links - PyPI: https://pypi.org/project/tox - Changelog: https://pyup.io/changelogs/tox/ - Docs: http://tox.readthedocs.org

Update mypy from 0.800 to 0.812.

The bot wasn't able to find a changelog for this release. Got an idea?

Links - PyPI: https://pypi.org/project/mypy - Homepage: http://www.mypy-lang.org/

Update virtualenv from 20.4.1 to 20.4.3.

Changelog ### 20.4.3 ``` ~~~~~~~~~~~~~~~~~ - Bump embeded setuptools from ``52.0.0`` to ``54.1.2`` - by :user:`gaborbernat` (`2069 <https://github.com/pypa/virtualenv/issues/2069>`_) - Fix PyPy3 stdlib on Windows is incorrect - by :user:`gaborbernat`. (`2071 <https://github.com/pypa/virtualenv/issues/2071>`_) ``` ### 20.4.2 ``` ~~~~~~~~~~~~~~~~~ - Running virtualenv ``--upgrade-embed-wheels`` crashes - by :user:`gaborbernat`. (`2058 <https://github.com/pypa/virtualenv/issues/2058>`_) ```
Links - PyPI: https://pypi.org/project/virtualenv - Changelog: https://pyup.io/changelogs/virtualenv/ - Homepage: https://virtualenv.pypa.io/
pyup-bot commented 3 years ago

Closing this in favor of #459