Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump the dependencies group across 1 directory with 9 updates #553

Closed
wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Dec 1, 2024

Bumps the dependencies group with 9 updates in the / directory:

Package From To
django-import-export 4.2.0 4.3.1
drf-spectacular 0.27.2 0.28.0
ipython 8.29.0 8.30.0
black 23.9.1 24.10.0
bumpver 2023.1129 2024.1130
pyjwt 2.9.0 2.10.1
twine 5.1.1 6.0.1
sphinx-rtd-theme 3.0.1 3.0.2
pytest-cov 5.0.0 6.0.0

Updates django-import-export from 4.2.0 to 4.3.1

Release notes

Sourced from django-import-export's releases.

4.3.1

fix for issue in 4.3.0 when xlsx (openpyxl) dependencies are not installed.

4.3.0

Includes import / export management commands.

4.2.1

Changelog

Sourced from django-import-export's changelog.

4.3.1 (2024-11-19)

  • Fix imports for openpyxl (2005 <https://github.com/django-import-export/django-import-export/issues/2005>_)

4.3.0 (2024-11-19)

  • Addition of import & export management commands (1992 <https://github.com/django-import-export/django-import-export/issues/1992>_)
  • Handle IllegalCharacterError in xlsx exports (2001 <https://github.com/django-import-export/django-import-export/issues/2001>_)
  • Add __repr__ method to InvalidRow for improved debugging (2003 <https://github.com/django-import-export/django-import-export/issues/2003>_)

4.2.1 (2024-11-11)

  • Removed dependency files in favour of pyproject.toml (1982 <https://github.com/django-import-export/django-import-export/issues/1982>_)
  • Documentation updates (1989 <https://github.com/django-import-export/django-import-export/issues/1989>_)
  • Fix crash on export of tz-aware datetime to binary formats (1995 <https://github.com/django-import-export/django-import-export/issues/1995>_)
Commits

Updates drf-spectacular from 0.27.2 to 0.28.0

Release notes

Sourced from drf-spectacular's releases.

0.28.0

Important notes

  • Y-stream release due to the amount of small but important changes.
  • Pydantic users might see a slightly different schema due to the change in serialization method.

PRs

New Contributors

Full Changelog: tfranzel/drf-spectacular@0.27.2...0.28.0

Changelog

Sourced from drf-spectacular's changelog.

0.28.0 (2024-11-30)

  • Fix lazy_reverse bug in views ([#1339](https://github.com/tfranzel/drf-spectacular/issues/1339) <https://github.com/tfranzel/drf-spectacular/issues/1339>_)
  • Extend query params explosion of non-DRF serializer [#1315](https://github.com/tfranzel/drf-spectacular/issues/1315) <https://github.com/tfranzel/drf-spectacular/issues/1315>_
  • consider pk_field on PrimaryKeyRelatedField when set [#1335](https://github.com/tfranzel/drf-spectacular/issues/1335) <https://github.com/tfranzel/drf-spectacular/issues/1335>_
  • fix unused OAuth2 scopes override [#1319](https://github.com/tfranzel/drf-spectacular/issues/1319) <https://github.com/tfranzel/drf-spectacular/issues/1319>_
  • bugfix @​extend_schema_field raw schema already in OAS3.1
  • some minors (resolves [#1147](https://github.com/tfranzel/drf-spectacular/issues/1147) <https://github.com/tfranzel/drf-spectacular/issues/1147>_)
  • fix OAS3.1 validator omission [#1302](https://github.com/tfranzel/drf-spectacular/issues/1302) <https://github.com/tfranzel/drf-spectacular/issues/1302>_
  • guard against broken dir impl [#1296](https://github.com/tfranzel/drf-spectacular/issues/1296) <https://github.com/tfranzel/drf-spectacular/issues/1296>_
  • Add Django 5.1 as classifier [jelmert]
  • No extra items in the oneOf list [Vladimir]
  • parametrize component registry identity [#1288](https://github.com/tfranzel/drf-spectacular/issues/1288) <https://github.com/tfranzel/drf-spectacular/issues/1288>_
  • make operation_id action position configurable [#1264](https://github.com/tfranzel/drf-spectacular/issues/1264) <https://github.com/tfranzel/drf-spectacular/issues/1264>_
  • Fix for incorrect issubclass() check. [Mike Moore]
  • Correct the documentation of how to import extension snippets [Alan Crosswell]
  • Update OpenAPI docs links [Nils Van Zuijlen]
  • mitigate false positive in Django Debug Toolbar [#1159](https://github.com/tfranzel/drf-spectacular/issues/1159) <https://github.com/tfranzel/drf-spectacular/issues/1159>_
  • Additional testcase [Marti Raudsepp]
  • Fix ChoiceField schema type with empty choices=[] [Marti Raudsepp]
  • handle examples with nested properties pagination [François Rejeté]
  • add choice field display method handling [#1228](https://github.com/tfranzel/drf-spectacular/issues/1228) <https://github.com/tfranzel/drf-spectacular/issues/1228>_
  • Add support for stateless user authentication in SimpleJWT ([#1221](https://github.com/tfranzel/drf-spectacular/issues/1221) <https://github.com/tfranzel/drf-spectacular/issues/1221>_) [Willem Meints]
  • fix: set pydantic json mode to serialization [Eric Butler]
  • fix: extend_schema_field with dict param and oas 3.1 [Eric Butler]

Breaking changes / important additions:

  • Y-stream release due to the amount of small but important changes.
  • Pydantic users might see a slightly different schema due to the change in serialization method.
Commits

Updates ipython from 8.29.0 to 8.30.0

Commits

Updates black from 23.9.1 to 24.10.0

Release notes

Sourced from black's releases.

24.10.0

Highlights

  • Black is now officially tested with Python 3.13 and provides Python 3.13 mypyc-compiled wheels. (#4436) (#4449)
  • Black will issue an error when used with Python 3.12.5, due to an upstream memory safety issue in Python 3.12.5 that can cause Black's AST safety checks to fail. Please use Python 3.12.6 or Python 3.12.4 instead. (#4447)
  • Black no longer supports running with Python 3.8 (#4452)

Stable style

  • Fix crashes involving comments in parenthesised return types or X | Y style unions. (#4453)
  • Fix skipping Jupyter cells with unknown %% magic (#4462)

Preview style

  • Fix type annotation spacing between * and more complex type variable tuple (i.e. def fn(*args: *tuple[*Ts, T]) -> None: pass) (#4440)

Caching

  • Fix bug where the cache was shared between runs with and without --unstable (#4466)

Packaging

  • Upgrade version of mypyc used to 1.12 beta (#4450) (#4449)
  • blackd now requires a newer version of aiohttp. (#4451)

Output

  • Added Python target version information on parse error (#4378)
  • Add information about Black version to internal error messages (#4457)

24.8.0

Stable style

  • Fix crash when # fmt: off is used before a closing parenthesis or bracket. (#4363)

Packaging

  • Packaging metadata updated: docs are explictly linked, the issue tracker is now also linked. This improves the PyPI listing for Black. (#4345)

Parser

  • Fix regression where Black failed to parse a multiline f-string containing another multiline string (#4339)

... (truncated)

Changelog

Sourced from black's changelog.

24.10.0

Highlights

  • Black is now officially tested with Python 3.13 and provides Python 3.13 mypyc-compiled wheels. (#4436) (#4449)
  • Black will issue an error when used with Python 3.12.5, due to an upstream memory safety issue in Python 3.12.5 that can cause Black's AST safety checks to fail. Please use Python 3.12.6 or Python 3.12.4 instead. (#4447)
  • Black no longer supports running with Python 3.8 (#4452)

Stable style

  • Fix crashes involving comments in parenthesised return types or X | Y style unions. (#4453)
  • Fix skipping Jupyter cells with unknown %% magic (#4462)

Preview style

  • Fix type annotation spacing between * and more complex type variable tuple (i.e. def fn(*args: *tuple[*Ts, T]) -> None: pass) (#4440)

Caching

  • Fix bug where the cache was shared between runs with and without --unstable (#4466)

Packaging

  • Upgrade version of mypyc used to 1.12 beta (#4450) (#4449)
  • blackd now requires a newer version of aiohttp. (#4451)

Output

  • Added Python target version information on parse error (#4378)
  • Add information about Black version to internal error messages (#4457)

24.8.0

Stable style

  • Fix crash when # fmt: off is used before a closing parenthesis or bracket. (#4363)

Packaging

  • Packaging metadata updated: docs are explictly linked, the issue tracker is now also linked. This improves the PyPI listing for Black. (#4345)

Parser

  • Fix regression where Black failed to parse a multiline f-string containing another

... (truncated)

Commits

Updates bumpver from 2023.1129 to 2024.1130

Changelog

Sourced from bumpver's changelog.

BumpVer 2024.1130

This update adds the vendored module setuptools_v65_version.py from setuptools==v65.7.0. This was the last version with support for LegacyVersion.

  • Fix #242gh_i242: Fix incorrect parsing of versions with tags.
  • Fix #156gh_i156: Remove runtime dependency on setuptools and looseversion.

Thank you Andrew Mitchell and Tzu-Ting for your issue reports.

Commits

Updates pyjwt from 2.9.0 to 2.10.1

Release notes

Sourced from pyjwt's releases.

2.10.1

Fixed

Full Changelog: jpadilla/pyjwt@2.10.0...2.10.1

2.10.0

What's Changed

New Contributors

Full Changelog: jpadilla/pyjwt@2.9.0...2.10.0

Changelog

Sourced from pyjwt's changelog.

v2.10.1 <https://github.com/jpadilla/pyjwt/compare/2.10.0...2.10.1>__

Fixed


- Prevent partial matching of `iss` claim by @fabianbadoi in `GHSA-75c5-xw7c-p5pm <https://github.com/jpadilla/pyjwt/security/advisories/GHSA-75c5-xw7c-p5pm>`__

v2.10.0 &lt;https://github.com/jpadilla/pyjwt/compare/2.9.0...2.10.0&gt;__

Changed

  • Remove algorithm requirement from JWT API, instead relying on JWS API for enforcement, by @​luhn in [#975](https://github.com/jpadilla/pyjwt/issues/975) <https://github.com/jpadilla/pyjwt/pull/975>__

  • Use Sequence for parameter types rather than List where applicable by @​imnotjames in [#970](https://github.com/jpadilla/pyjwt/issues/970) <https://github.com/jpadilla/pyjwt/pull/970>__

  • Add JWK support to JWT encode by @​luhn in [#979](https://github.com/jpadilla/pyjwt/issues/979) <https://github.com/jpadilla/pyjwt/pull/979>__

  • Encoding and decoding payloads using the none algorithm by @​jpadilla in #c2629f6 <https://github.com/jpadilla/pyjwt/commit/c2629f66c593459e02616048443231ccbe18be16>

    Before:

    .. code-block:: pycon

    import jwt jwt.encode({"payload": "abc"}, key=None, algorithm=None)

    After:

    .. code-block:: pycon

    import jwt jwt.encode({"payload": "abc"}, key=None, algorithm="none")

  • Added validation for 'sub' (subject) and 'jti' (JWT ID) claims in tokens by @​Divan009 in [#1005](https://github.com/jpadilla/pyjwt/issues/1005) <https://github.com/jpadilla/pyjwt/pull/1005>__

  • Refactor project configuration files from setup.cfg to pyproject.toml by @​cleder in [#995](https://github.com/jpadilla/pyjwt/issues/995) <https://github.com/jpadilla/pyjwt/pull/995>__

  • Ruff linter and formatter changes by @​gagandeepp in [#1001](https://github.com/jpadilla/pyjwt/issues/1001) <https://github.com/jpadilla/pyjwt/pull/1001>__

  • Drop support for Python 3.8 (EOL) by @​kkirsche in [#1007](https://github.com/jpadilla/pyjwt/issues/1007) <https://github.com/jpadilla/pyjwt/pull/1007>__

Fixed


- Encode EC keys with a fixed bit length by @etianen in `[#990](https://github.com/jpadilla/pyjwt/issues/990) <https://github.com/jpadilla/pyjwt/pull/990>`__
- Add an RTD config file to resolve Read the Docs build failures by @kurtmckee in `[#977](https://github.com/jpadilla/pyjwt/issues/977) <https://github.com/jpadilla/pyjwt/pull/977>`__
- Docs: Update ``iat`` exception docs by @pachewise in `[#974](https://github.com/jpadilla/pyjwt/issues/974) <https://github.com/jpadilla/pyjwt/pull/974>`__
- Docs: Fix ``decode_complete`` scope and algorithms by @RbnRncn in `[#982](https://github.com/jpadilla/pyjwt/issues/982) <https://github.com/jpadilla/pyjwt/pull/982>`__
- Fix doctest for ``docs/usage.rst`` by @pachewise in `[#986](https://github.com/jpadilla/pyjwt/issues/986) <https://github.com/jpadilla/pyjwt/pull/986>`__
</tr></table> 

... (truncated)

Commits

Updates twine from 5.1.1 to 6.0.1

Changelog

Sourced from twine's changelog.

Twine 6.0.1 (2024-11-30)

Bugfixes ^^^^^^^^

  • Fixed a regression where twine check would fail to expand wildcards, e.g. twine check 'dist/*'. ([#1188](https://github.com/pypa/twine/issues/1188) <https://github.com/pypa/twine/issues/1188>_)

Misc ^^^^

  • [#1184](https://github.com/pypa/twine/issues/1184) <https://github.com/pypa/twine/issues/1184>_

Twine 6.0.0 (2024-11-29)

Bugfixes ^^^^^^^^

  • Restore support for pkginfo 1.11 ([#1116](https://github.com/pypa/twine/issues/1116) <https://github.com/pypa/twine/issues/1116>_)

Deprecations and Removals ^^^^^^^^^^^^^^^^^^^^^^^^^

  • Username for PyPI and Test PyPI now defaults to token but no longer overrides a username configured in the environment or supplied on the command line. Workflows still supplying anything other than token for the username when uploading to PyPI or Test PyPI will now fail. Either supply token or do not supply a username at all. ([#1121](https://github.com/pypa/twine/issues/1121) <https://github.com/pypa/twine/issues/1121>_)

Misc ^^^^

  • [#1024](https://github.com/pypa/twine/issues/1024) <https://github.com/pypa/twine/issues/1024>_
Commits
  • a723876 Merge pull request #1189 from pypa/release-6.0.1
  • 9a24828 Update changelog for 6.0.1
  • a017005 Merge pull request #1188 from pypa/ww/fix-twine-check-glob
  • e98f03b check: fix handling of non-shell-expanded globs
  • 873f33e build(deps): bump pypa/gh-action-pypi-publish from 1.11.0 to 1.12.2 (#1175)
  • 067412e Use brackets for the default value of option arguments (#1149)
  • f32dc35 Apply ruff/Perflint rule (#1136)
  • aa58273 Don't require importlib_metadata on Python 3.10+
  • 675565f changelog: record #1184
  • 80cc58c chore: mark 3.13 as explicitly supported
  • Additional commits viewable in compare view

Updates sphinx-rtd-theme from 3.0.1 to 3.0.2

Changelog

Sourced from sphinx-rtd-theme's changelog.

3.0.2

  • Show current translation when the flyout is attached
  • Fix JavaScript issue that didn't allow users to disable selectors

.. _release-3.0.1:

Commits

Updates pytest-cov from 5.0.0 to 6.0.0

Changelog

Sourced from pytest-cov's changelog.

6.0.0 (2024-10-29)

  • Updated various documentation inaccuracies, especially on subprocess handling.
  • Changed fail under checks to use the precision set in the coverage configuration. Now it will perform the check just like coverage report would.
  • Added a --cov-precision cli option that can override the value set in your coverage configuration.
  • Dropped support for now EOL Python 3.8.
Commits
  • 9540437 Bump version: 5.0.0 → 6.0.0
  • 9f81754 Further trim down envs and drop Python 3.8.
  • b12b5ec Update conf.
  • 23f4b27 Update changelog.
  • 291a04f Bump test deps and trim config.
  • 08f1101 Add --cov-precision option. Close #655.
  • 76fe2a7 Move the warnings/errors in a place that doesn't import anything.
  • a9ea7b7 Implement error/warning for the bad dynamic_context being set in config.
  • c299e01 Add explicit suffixing to make it easier to see the identify the sources/usag...
  • c87e546 Add reproducer for weird xdist dynamic_context interaction. Ref #604.
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the dependencies group with 9 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [django-import-export](https://github.com/django-import-export/django-import-export) | `4.2.0` | `4.3.1` |
| [drf-spectacular](https://github.com/tfranzel/drf-spectacular) | `0.27.2` | `0.28.0` |
| [ipython](https://github.com/ipython/ipython) | `8.29.0` | `8.30.0` |
| [black](https://github.com/psf/black) | `23.9.1` | `24.10.0` |
| [bumpver](https://github.com/mbarkhau/bumpver) | `2023.1129` | `2024.1130` |
| [pyjwt](https://github.com/jpadilla/pyjwt) | `2.9.0` | `2.10.1` |
| [twine](https://github.com/pypa/twine) | `5.1.1` | `6.0.1` |
| [sphinx-rtd-theme](https://github.com/readthedocs/sphinx_rtd_theme) | `3.0.1` | `3.0.2` |
| [pytest-cov](https://github.com/pytest-dev/pytest-cov) | `5.0.0` | `6.0.0` |



Updates `django-import-export` from 4.2.0 to 4.3.1
- [Release notes](https://github.com/django-import-export/django-import-export/releases)
- [Changelog](https://github.com/django-import-export/django-import-export/blob/main/docs/changelog.rst)
- [Commits](django-import-export/django-import-export@4.2.0...4.3.1)

Updates `drf-spectacular` from 0.27.2 to 0.28.0
- [Release notes](https://github.com/tfranzel/drf-spectacular/releases)
- [Changelog](https://github.com/tfranzel/drf-spectacular/blob/master/CHANGELOG.rst)
- [Commits](tfranzel/drf-spectacular@0.27.2...0.28.0)

Updates `ipython` from 8.29.0 to 8.30.0
- [Release notes](https://github.com/ipython/ipython/releases)
- [Commits](ipython/ipython@8.29.0...8.30.0)

Updates `black` from 23.9.1 to 24.10.0
- [Release notes](https://github.com/psf/black/releases)
- [Changelog](https://github.com/psf/black/blob/main/CHANGES.md)
- [Commits](psf/black@23.9.1...24.10.0)

Updates `bumpver` from 2023.1129 to 2024.1130
- [Changelog](https://github.com/mbarkhau/bumpver/blob/master/CHANGELOG.md)
- [Commits](mbarkhau/bumpver@2023.1129...2024.1130)

Updates `pyjwt` from 2.9.0 to 2.10.1
- [Release notes](https://github.com/jpadilla/pyjwt/releases)
- [Changelog](https://github.com/jpadilla/pyjwt/blob/master/CHANGELOG.rst)
- [Commits](jpadilla/pyjwt@2.9.0...2.10.1)

Updates `twine` from 5.1.1 to 6.0.1
- [Release notes](https://github.com/pypa/twine/releases)
- [Changelog](https://github.com/pypa/twine/blob/main/docs/changelog.rst)
- [Commits](pypa/twine@v5.1.1...6.0.1)

Updates `sphinx-rtd-theme` from 3.0.1 to 3.0.2
- [Changelog](https://github.com/readthedocs/sphinx_rtd_theme/blob/master/docs/changelog.rst)
- [Commits](readthedocs/sphinx_rtd_theme@3.0.1...3.0.2)

Updates `pytest-cov` from 5.0.0 to 6.0.0
- [Changelog](https://github.com/pytest-dev/pytest-cov/blob/master/CHANGELOG.rst)
- [Commits](pytest-dev/pytest-cov@v5.0.0...v6.0.0)

---
updated-dependencies:
- dependency-name: django-import-export
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: drf-spectacular
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: ipython
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: black
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: dependencies
- dependency-name: bumpver
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: dependencies
- dependency-name: pyjwt
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: twine
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: dependencies
- dependency-name: sphinx-rtd-theme
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: pytest-cov
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot requested a review from a team as a code owner December 1, 2024 05:46
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Dec 1, 2024
Copy link
Contributor Author

dependabot bot commented on behalf of github Jan 1, 2025

Superseded by #554.

@dependabot dependabot bot closed this Jan 1, 2025
@dependabot dependabot bot deleted the dependabot/pip/dependencies-9e2f824d49 branch January 1, 2025 05:41
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants