Skip to content

build(deps): bump maturin from 1.10.0 to 1.12.6 in /requirements#226

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/pip/requirements/maturin-1.12.6
Open

build(deps): bump maturin from 1.10.0 to 1.12.6 in /requirements#226
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/pip/requirements/maturin-1.12.6

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 9, 2026

Bumps maturin from 1.10.0 to 1.12.6.

Release notes

Sourced from maturin's releases.

v1.12.6

What's Changed

  • Sync legacy_py.rs with upstream PyPI warehouse legacy.py (#3053)
  • Keep cargo build artifact at original path after staging (#3054)

Full Changelog: PyO3/maturin@v1.12.5...v1.12.6

v1.12.5

What's Changed

New Contributors

Full Changelog: PyO3/maturin@v1.12.4...v1.12.5

v1.12.4

What's Changed

New Contributors

Full Changelog: PyO3/maturin@v1.12.3...v1.12.4

v1.12.3

What's Changed

... (truncated)

Changelog

Sourced from maturin's changelog.

1.12.6

  • Sync legacy_py.rs with upstream PyPI warehouse legacy.py (#3053)
  • Keep cargo build artifact at original path after staging (#3054)

1.12.5

  • Feat: include debug info files (.pdb, .dSYM, .dwp) in wheels (#3024)
  • Fix wrong abi3 tag for conditional cargo features enabled pyo3 abi3 feature (#3029)
  • Fix: maturin build --sdist wheel name/layout for excluded workspace crates (#3031)
  • Fix: preserve wheel output dir when building from unpacked sdist (#3036)
  • Feat: add python-implementation condition to conditional features (#3038)
  • Update zip to 8.1 (#3039)
  • Use the latest version of github actions (#3040)
  • Use renovate and pinned hashes for GitHub Actions (#3043)
  • Chore(deps): update taiki-e/install-action digest to 7410117 (#3046)
  • Chore(deps): update dtolnay/rust-toolchain digest to efa25f7 (#3045)
  • Chore(deps): update actions/attest-build-provenance action to v4 (#3047)
  • Use mmap for faster warn_missing_py_init (#2950)

1.12.4

  • Upgrade memmap2 version (#3021)
  • Fix: platform tag detection for Android targets (#3023)
  • Fix: only ignore maturin-generated native libraries on all platforms (#3025)
  • Fix: ignore develop artifacts for all binding types during build (#3026)
  • Feat: support conditional cargo features based on Python version (#3027)

1.12.3

  • Ci: set crt-static for riscv64 and loongarch64 musl targets (#3009)
  • Fix: support maturin develop on Windows ARM with x86 Python (#3011)
  • Fix: exclude external_packages bindings from uniffi wheels (#3013)
  • Update cargo-zigbuild to 0.22.1 (#3015)
  • Feat: build wheels from sdist with --sdist flag (#3014)
  • Feat: add include-import-lib option to bundle Windows import libraries in wheels (#3017)
  • Fix: auditwheel external lib check respects musllinux and reports symbol versions (#3019)

1.12.2

  • Fix: allow absolute paths for --sbom-include (#3004)

1.12.1

  • Fix crates.io trusted publishing
  • Replace addnab/docker-run-action with direct docker run command
  • Document SBOM support in user guide
  • Add --sbom-include CLI argument for additional SBOM files (#2999)
  • Fix: resolve include patterns relative to python-source for sdist and wheel (#3000)
  • Feat: log external shared libraries and their dependents before patchelf

... (truncated)

Commits
  • b61a28e Release v1.12.6
  • 92d919f Keep cargo build artifact at original path after staging
  • 7c69ef6 Sync legacy_py.rs with upstream PyPI warehouse legacy.py (#3053)
  • 90091c8 Fix Windows binary placed in subdirectory inside zip archive
  • 917fa7f Release v1.12.5
  • 1bfaa8c Use mmap for faster warn_missing_py_init (#2950)
  • 569b5f5 chore(deps): update actions/attest-build-provenance action to v4 (#3047)
  • 00580be chore(deps): update dtolnay/rust-toolchain digest to efa25f7 (#3045)
  • e4fa36d Fix non-existent comment tag (#3044)
  • 8870594 chore(deps): update taiki-e/install-action digest to 7410117 (#3046)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
build(deps): bump maturin from 1.10.0 to 1.12.6 in /requirements
bd4f329 
Bumps [maturin](https://github.com/pyo3/maturin) from 1.10.0 to 1.12.6.
- [Release notes](https://github.com/pyo3/maturin/releases)
- [Changelog](https://github.com/PyO3/maturin/blob/main/Changelog.md)
- [Commits](PyO3/maturin@v1.10.0...v1.12.6)

---
updated-dependencies:
- dependency-name: maturin
  dependency-version: 1.12.6
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update python code labels Mar 9, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python Pull requests that update python code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants