This repository was archived by the owner on Jul 5, 2026. It is now read-only.
chore(deps): bump the python-dependencies group across 1 directory with 11 updates#148
Closed
dependabot[bot] wants to merge 1 commit into
Closed
chore(deps): bump the python-dependencies group across 1 directory with 11 updates#148dependabot[bot] wants to merge 1 commit into
dependabot[bot] wants to merge 1 commit into
Conversation
…th 11 updates Updates the requirements on [cryptography](https://github.com/pyca/cryptography), [fastapi](https://github.com/fastapi/fastapi), [fastapi-swagger](https://github.com/dantetemplar/fastapi-swagger), [icalendar](https://github.com/collective/icalendar), [prometheus-fastapi-instrumentator](https://github.com/trallnag/prometheus-fastapi-instrumentator), [python-multipart](https://github.com/Kludex/python-multipart), [ruff](https://github.com/astral-sh/ruff), [sqlalchemy](https://github.com/sqlalchemy/sqlalchemy), [uvicorn](https://github.com/Kludex/uvicorn), [prek](https://github.com/j178/prek) and [joserfc](https://github.com/authlib/joserfc) to permit the latest version. Updates `cryptography` to 49.0.0 - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](pyca/cryptography@48.0.0...49.0.0) Updates `fastapi` to 0.136.3 - [Release notes](https://github.com/fastapi/fastapi/releases) - [Commits](fastapi/fastapi@0.136.1...0.136.3) Updates `fastapi-swagger` to 0.4.50 - [Release notes](https://github.com/dantetemplar/fastapi-swagger/releases) - [Commits](dantetemplar/fastapi-swagger@v0.4.49...v0.4.50) Updates `icalendar` to 7.1.2 - [Release notes](https://github.com/collective/icalendar/releases) - [Changelog](https://github.com/collective/icalendar/blob/main/CHANGES.rst) - [Commits](collective/icalendar@v7.1.0...v7.1.2) Updates `prometheus-fastapi-instrumentator` to 8.0.0 - [Release notes](https://github.com/trallnag/prometheus-fastapi-instrumentator/releases) - [Changelog](https://github.com/trallnag/prometheus-fastapi-instrumentator/blob/master/CHANGELOG.md) - [Commits](trallnag/prometheus-fastapi-instrumentator@v7.1.0...v8.0.0) Updates `python-multipart` to 0.0.32 - [Release notes](https://github.com/Kludex/python-multipart/releases) - [Changelog](https://github.com/Kludex/python-multipart/blob/main/CHANGELOG.md) - [Commits](Kludex/python-multipart@0.0.27...0.0.32) Updates `ruff` to 0.15.17 - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](astral-sh/ruff@0.15.12...0.15.17) Updates `sqlalchemy` to 2.0.50 - [Release notes](https://github.com/sqlalchemy/sqlalchemy/releases) - [Changelog](https://github.com/sqlalchemy/sqlalchemy/blob/main/CHANGES.rst) - [Commits](https://github.com/sqlalchemy/sqlalchemy/commits) Updates `uvicorn` to 0.49.0 - [Release notes](https://github.com/Kludex/uvicorn/releases) - [Changelog](https://github.com/Kludex/uvicorn/blob/main/docs/release-notes.md) - [Commits](Kludex/uvicorn@0.46.0...0.49.0) Updates `prek` to 0.4.4 - [Release notes](https://github.com/j178/prek/releases) - [Changelog](https://github.com/j178/prek/blob/master/CHANGELOG.md) - [Commits](j178/prek@v0.3.13...v0.4.4) Updates `joserfc` to 1.7.1 - [Release notes](https://github.com/authlib/joserfc/releases) - [Changelog](https://github.com/authlib/joserfc/blob/main/docs/changelog.rst) - [Commits](authlib/joserfc@1.6.5...1.7.1) --- updated-dependencies: - dependency-name: cryptography dependency-version: 49.0.0 dependency-type: direct:production dependency-group: python-dependencies - dependency-name: fastapi dependency-version: 0.136.3 dependency-type: direct:production dependency-group: python-dependencies - dependency-name: fastapi-swagger dependency-version: 0.4.50 dependency-type: direct:production dependency-group: python-dependencies - dependency-name: icalendar dependency-version: 7.1.2 dependency-type: direct:production dependency-group: python-dependencies - dependency-name: prometheus-fastapi-instrumentator dependency-version: 8.0.0 dependency-type: direct:production dependency-group: python-dependencies - dependency-name: python-multipart dependency-version: 0.0.32 dependency-type: direct:production dependency-group: python-dependencies - dependency-name: ruff dependency-version: 0.15.17 dependency-type: direct:production dependency-group: python-dependencies - dependency-name: sqlalchemy dependency-version: 2.0.50 dependency-type: direct:production dependency-group: python-dependencies - dependency-name: uvicorn dependency-version: 0.49.0 dependency-type: direct:production dependency-group: python-dependencies - dependency-name: prek dependency-version: 0.4.4 dependency-type: direct:production dependency-group: python-dependencies - dependency-name: joserfc dependency-version: 1.7.1 dependency-type: direct:production dependency-group: python-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>
Contributor
Author
|
Looks like these dependencies are updatable in another way, so this is no longer needed. |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Updates the requirements on cryptography, fastapi, fastapi-swagger, icalendar, prometheus-fastapi-instrumentator, python-multipart, ruff, sqlalchemy, uvicorn, prek and joserfc to permit the latest version.
Updates
cryptographyto 49.0.0Changelog
Sourced from cryptography's changelog.
... (truncated)
Commits
e300bbebump version and changelog for 49.0.0 (#15030)fa74cd8Add external mu (message representative) support for ML-DSA (#14979)f594db3chore(deps): bump openssl from 0.10.80 to 0.10.81 (#15029)608e011chore(deps): bump openssl-sys from 0.9.116 to 0.9.117 (#15028)a322bc4chore(deps): bump cc from 1.2.63 to 1.2.64 (#15027)33181a7Reject critical nameConstraints extensions containing directoryName constrain...6080dc7Bump dependencies that dependabot isn't (#15026)121faa3chore(deps): bump virtualenv from 21.4.2 to 21.4.3 (#15023)829520bAdd more robust processing for DH parameters. (#15016)0f05001Bump downstream dependencies in CI (#15025)Updates
fastapito 0.136.3Release notes
Sourced from fastapi's releases.
Commits
8206485🔖 Release version 0.136.3c910e01📝 Update release notes063b5bf♻️ Do not accept underscore headers when usingconvert_underscores=True(th...22b02e2🔖 Release version 0.136.23b252a2📝 Update release notesc7fb785♻️ Validate Server Sent Event fields to avoid applications from sending broke...cb83b83📝 Update release notes00f805c✅ Update tests, don't double dispose the engine (#15587)3675137📝 Update release notes7b57e42📝 Document--entrypointCLI option (#15464)Updates
fastapi-swaggerto 0.4.50Release notes
Sourced from fastapi-swagger's releases.
Commits
9103d25chore: bump version to 0.4.50a89f9dcchore: update Swagger UI to v5.32.6Updates
icalendarto 7.1.2Release notes
Sourced from icalendar's releases.
Changelog
Sourced from icalendar's changelog.
... (truncated)
Commits
f5494e3Merge branch 'main' into 7.x6ddbd95version 7.1.26efe639Update maintenance docs and fix version switcher for "stable" (#1393)67d6ab9Fix RecursionError in Component.repr on deeply nested calendars (Closes #...8705729Restore version warning banner for 'latest' on Read the Docs8fccb3aUpdate version switcher for 7.1.179ddc3eMerge branch 'main' into 7.x465936bversion 7.1.139b8db8Update release process (#1350)c343662Switch to towncrier to automatically manage the change log (#1389)Updates
prometheus-fastapi-instrumentatorto 8.0.0Release notes
Sourced from prometheus-fastapi-instrumentator's releases.
Changelog
Sourced from prometheus-fastapi-instrumentator's changelog.
... (truncated)
Commits
2f84152chore: Prepare release v8.0.05950ed2build(deps): bump actions/checkout from 4 to 63a212ccbuild(deps): bump pre-commit-ci/lite-action from 1.0.1 to 1.1.0631c86dRemove codecov1f7b5e8fix(test): Adjust mp for httpx2d7ea56dRevert "ci: Bump lower Python version to 3.12"7668645ci: Bump lower Python version to 3.127f47420chore: Bump dev dependencies1a9c52aci: Adjust Python and Poetry versions91a5a66chore: Apply pre-commit fixesUpdates
python-multipartto 0.0.32Release notes
Sourced from python-multipart's releases.
Changelog
Sourced from python-multipart's changelog.
... (truncated)
Commits
238ead6Version 0.0.32 (#302)8672979Replace per-byte partial-boundary scan with rfind lookbehind (#300)8190779Bump the python-packages group with 7 updates (#301)0d3c086Use uv package ecosystem for Dependabot (#299)4cffc68Version 0.0.31 (#298)c814948Reject negativeContent-Lengthinparse_form(#297)6b837d4Bound header field name size before validating (#296)e0c4f9dBump the github-actions group with 3 updates (#294)b8a01bbBump the python-packages group with 3 updates (#293)6732164Speed up multipart header parsing and callback dispatch (#295)Updates
ruffto 0.15.17Release notes
Sourced from ruff's releases.
... (truncated)
Changelog
Sourced from ruff's changelog.
... (truncated)
Commits
7c645a9Bump 0.15.17 (#25872)f381eb1Prioritize human-readable names in CLI output (#25869)b9b4546Minor workflow simplification (#25870)1e77ba0[ty] MovePreformattedBlockScannerto format-agnostic location. (#25856)6f2b772[ty] Preserve nominal type of enum.property instances (#25849)be4777c[ty] Fix site-package error when multiple versions of pythons are installed i...53f6ff7Allow human-readable names in suppression comments (#25614)6740325[ty] Restrict uncached raw signature access (#25866)970b1bfAuto-update snapshots when syncing typeshed (#25841)0785793Fix handling ofignorecomments within adisable/enablepair (#25845)Updates
sqlalchemyto 2.0.50Release notes
Sourced from sqlalchemy's releases.
... (truncated)
Commits
Updates
uvicornto 0.49.0Release notes
Sourced from uvicorn's releases.
Changelog
Sourced from uvicorn's changelog.
... (truncated)
Commits
3ef2e3eVersion 0.49.0 (#2973)eeb64b1Consume duplicate forwarding headers in ProxyHeadersMiddleware (#2971)630f4acMake the watchfiles reload tests deterministic (#2972)9154922chore(deps): bump the github-actions group across 1 directory with 6 updates ...739727aMigrate docs deploy from Cloudflare Pages to Workers (#2967)be4a240Gate docs preview deploy on Cloudflare token presence (#2966)c489d7eBump httptools minimum version to 0.8.0 (#2962)9f547bdSkip docs preview deploy for Dependabot PRs (#2961)44446b8Migrate documentation from MkDocs Material to Zensical (#2959)cfd659cBump pymdown-extensions to 10.21.3 (#2958)Updates
prekto 0.4.4Release notes
Sourced from prek's releases.
... (truncated)
Changelog
Sourced from prek's changelog.
... (truncated)
Commits
f44270eBump version 0.4.4 (#2148)da457c5Document hook stage file input (#2147)0fa2929Add hook group filters toprek run(#2141)9b0047fFix intent-to-add stash restore (#2143)00b2520Delay hook output preview rendering (#2140)a54fdf0Simplify hook output preview rendering (#2139)ab7165dStream hook output in progress UI (#2136)f609584Remove unpinned dotnet test (#2137)ce0d8b3Update Rust to 1.96 (#2134)1815fc5Update PyPI Downloads badge to dynamic JSONUpdates
joserfcto 1.7.1Release notes
Sourced from joserfc's releases.
Changelog
Sourced from joserfc's changelog.
... (truncated)
Commits
51aef50chore: release 1.7.1d6a3d15fix(jwe): when decrypt, use the original aad base64 value3c9efedchore: release 1.7.0da5dba1Merge pull request #100 from authlib/export-public382b39dfix(jwk): as_dict, as_pem, as_der export public key by default955aaa0Merge commit from forkc133016fix(typing): use Iterator for _filter_keys_by_parameters return valuedbb26fcReject empty oct key material and empty HMAC keys at sign/verify entry1ddca8ffix(typing): update type hints for dropping python 3.9fe1d746chore: drop python 3.9Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>will remove the ignore condition of the specified dependency and ignore conditions