scality / changelog-binder

Tooling to generate changelogs and release notes from snippets stored in a project Git repository, compatible with the GitWaterFlow branching model.
https://scality.github.io/changelog-binder/
Apache License 2.0
2 stars 1 forks source link

chore(deps): bump pip from 21.3.1 to 23.1.2 in /.github/workflows #284

Closed dependabot[bot] closed 1 year ago

dependabot[bot] commented 1 year ago

Bumps pip from 21.3.1 to 23.1.2.

Changelog

Sourced from pip's changelog.

23.1.2 (2023-04-26)

Vendored Libraries

  • Upgrade setuptools to 67.7.2

23.1.1 (2023-04-22)

Bug Fixes

  • Revert [#11487](https://github.com/pypa/pip/issues/11487) <https://github.com/pypa/pip/pull/11487>, as it causes issues with virtualenvs created by the Windows Store distribution of Python. ([#11987](https://github.com/pypa/pip/issues/11987) <https://github.com/pypa/pip/issues/11987>)

Vendored Libraries

  • Revert pkg_resources (via setuptools) back to 65.6.3

Improved Documentation

  • Update documentation to reflect the new behavior of using the cache of locally built wheels in hash-checking mode. ([#11967](https://github.com/pypa/pip/issues/11967) <https://github.com/pypa/pip/issues/11967>_)

23.1 (2023-04-15)

Deprecations and Removals

  • Remove support for the deprecated --install-options. ([#11358](https://github.com/pypa/pip/issues/11358) <https://github.com/pypa/pip/issues/11358>_)
  • --no-binary does not imply setup.py install anymore. Instead a wheel will be built locally and installed. ([#11451](https://github.com/pypa/pip/issues/11451) <https://github.com/pypa/pip/issues/11451>_)
  • --no-binary does not disable the cache of locally built wheels anymore. It only means "don't download wheels". ([#11453](https://github.com/pypa/pip/issues/11453) <https://github.com/pypa/pip/issues/11453>_)
  • Deprecate --build-option and --global-option. Users are invited to switch to --config-settings. ([#11859](https://github.com/pypa/pip/issues/11859) <https://github.com/pypa/pip/issues/11859>_)
  • Using --config-settings with projects that don't have a pyproject.toml now prints a deprecation warning. In the future the presence of config settings will automatically enable the default build backend for legacy projects and pass the setttings to it. ([#11915](https://github.com/pypa/pip/issues/11915) <https://github.com/pypa/pip/issues/11915>_)
  • Remove setup.py install fallback when building a wheel failed for projects without pyproject.toml. ([#8368](https://github.com/pypa/pip/issues/8368) <https://github.com/pypa/pip/issues/8368>_)
  • When the wheel package is not installed, pip now uses the default build backend instead of setup.py install and setup.py develop for project without pyproject.toml. ([#8559](https://github.com/pypa/pip/issues/8559) <https://github.com/pypa/pip/issues/8559>_)

... (truncated)

Commits


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 1 year ago

Superseded by #299.