Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump the production-dependencies group across 1 directory with 8 updates #933

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Aug 10, 2024

Bumps the production-dependencies group with 8 updates in the /config/requirements directory:

Package From To
boto3 1.34.145 1.34.158
botocore 1.34.145 1.34.158
coverage 7.6.0 7.6.1
django 5.0.7 5.1
django-allauth 0.63.6 64.0.0
kombu 5.3.7 5.4.0
pytest 8.2.2 8.3.2
redis 5.0.7 5.0.8

Updates boto3 from 1.34.145 to 1.34.158

Commits
  • b7e50f1 Merge branch 'release-1.34.158'
  • 70829fb Bumping version to 1.34.158
  • 6f0abd4 Add changelog entries from botocore
  • 7f4edea Merge branch 'release-1.34.157'
  • 4350319 Merge branch 'release-1.34.157' into develop
  • 541c1d3 Bumping version to 1.34.157
  • c2dd12d Add changelog entries from botocore
  • 6e52ab6 Merge branch 'release-1.34.156'
  • e0923a1 Merge branch 'release-1.34.156' into develop
  • d355703 Bumping version to 1.34.156
  • Additional commits viewable in compare view

Updates botocore from 1.34.145 to 1.34.158

Changelog

Sourced from botocore's changelog.

1.34.158

  • api-change:cognito-idp: Fixed a description of AdvancedSecurityAdditionalFlows in Amazon Cognito user pool configuration.
  • api-change:connect: This release supports adding RoutingCriteria via UpdateContactRoutingData public API.
  • api-change:ssm: Systems Manager doc-only updates for August 2024.

1.34.157

  • api-change:cognito-idp: Added support for threat protection for custom authentication in Amazon Cognito user pools.
  • api-change:connect: This release fixes a regression in number of access control tags that are allowed to be added to a security profile in Amazon Connect. You can now add up to four access control tags on a single security profile.
  • api-change:ec2: Launch of private IPv6 addressing for VPCs and Subnets. VPC IPAM supports the planning and monitoring of private IPv6 usage.
  • api-change:glue: This release adds support to retrieve the validation status when creating or updating Glue Data Catalog Views. Also added is support for BasicCatalogTarget partition keys.

1.34.156

  • api-change:appintegrations: Updated CreateDataIntegration and CreateDataIntegrationAssociation API to support bulk data export from Amazon Connect Customer Profiles to the customer S3 bucket.
  • api-change:glue: Introducing AWS Glue Data Quality anomaly detection, a new functionality that uses ML-based solutions to detect data anomalies users have not explicitly defined rules for.

1.34.155

  • api-change:bedrock-agent-runtime: Introduce model invocation output traces for orchestration traces, which contain the model's raw response and usage.
  • api-change:cognito-idp: Advanced security feature updates to include password history and log export for Cognito user pools.
  • api-change:cost-optimization-hub: This release adds savings percentage support to the ListRecommendationSummaries API.
  • api-change:workspaces: Added support for BYOL_GRAPHICS_G4DN_WSP IngestionProcess
  • enhancement:AWSCRT: Update awscrt version to 0.21.2

1.34.154

  • api-change:datazone: This releases Data Product feature. Data Products allow grouping data assets into cohesive, self-contained units for ease of publishing for data producers, and ease of finding and accessing for data consumers.
  • api-change:ecr: Released two new APIs along with documentation updates. The GetAccountSetting API is used to view the current basic scan type version setting for your registry, while the PutAccountSetting API is used to update the basic scan type version for your registry.
  • api-change:kinesis-video-webrtc-storage: Add JoinStorageSessionAsViewer API
  • api-change:pi: Added a description for the Dimension db.sql.tokenized_id on the DimensionGroup data type page.

1.34.153

  • api-change:cloudwatch: Add v2 smoke tests and smithy smokeTests trait for SDK testing.
  • api-change:kinesis: Add v2 smoke tests and smithy smokeTests trait for SDK testing.
  • api-change:resiliencehub: Customers are presented with the grouping recommendations and can determine if the recommendations are accurate and apply to their case. This feature simplifies onboarding by organizing resources into appropriate AppComponents.
  • api-change:route53: Add v2 smoke tests and smithy smokeTests trait for SDK testing.

... (truncated)

Commits
  • 1bba722 Merge branch 'release-1.34.158'
  • 60ee24a Bumping version to 1.34.158
  • 1a3e2ee Update endpoints model
  • 338353f Update to latest models
  • 894686f Merge branch 'release-1.34.157'
  • c13dc94 Merge branch 'release-1.34.157' into develop
  • 6853abf Bumping version to 1.34.157
  • 18a9479 Update to latest models
  • 0a2e478 Merge branch 'release-1.34.156'
  • 7f23afd Merge branch 'release-1.34.156' into develop
  • Additional commits viewable in compare view

Updates coverage from 7.6.0 to 7.6.1

Changelog

Sourced from coverage's changelog.

Version 7.6.1 — 2024-08-04

  • Fix: coverage used to fail when measuring code using :func:runpy.run_path <python:runpy.run_path> with a :class:Path <python:pathlib.Path> argument. This is now fixed, thanks to Ask Hjorth Larsen <pull 1819_>_.

  • Fix: backslashes preceding a multi-line backslashed string could confuse the HTML report. This is now fixed, thanks to LiuYinCarl <pull 1828_>_.

  • Now we publish wheels for Python 3.13, both regular and free-threaded.

.. _pull 1819: nedbat/coveragepy#1819 .. _pull 1828: nedbat/coveragepy#1828

.. _changes_7-6-0:

Commits
  • 29f5898 docs: sample HTML for 7.6.1
  • 9b829f1 docs: prep for 7.6.1
  • ebbb6a2 build: wheels for 3.13rc1
  • 3872525 chore: make upgrade
  • 7a27f40 test: fix a test on free-threading, use abiflags to get site-packages path co...
  • 2b53664 build: include gil/nogil in the version banner
  • da1682f docs: changelog and contributor for #1828
  • dc819ff test: two tests for #1828
  • 9aaa404 fix: properly handle backslash before multi-line string (#1828)
  • 9c50270 chore: make upgrade
  • Additional commits viewable in compare view

Updates django from 5.0.7 to 5.1

Commits

Updates django-allauth from 0.63.6 to 64.0.0

Changelog

Sourced from django-allauth's changelog.

64.0.0 (2024-07-31)


Note worthy changes

  • The 0.x.y version numbers really did not do justice to the state of the project, and we are way past the point where a version 1.0 would be applicable. Additionally, 64 is a nice round number. Therefore, the version numbering is changed from 0.x.y to x.y.z. We will use a loose form of semantic versioning. However, please be aware that feature releases may occasionally include minor documented backwards incompatibilities. Always read the release notes before upgrading.

  • Added support for WebAuthn based security keys and passkey login. Note that this is currently disabled by default.

  • Headless: The TOTP URI is now available in the MFA activation response.

  • Headless: When trying to sign up while a user is already logged in, you now get a 409.

  • Headless: You can now alter the user data payload by overriding the newly introduced serialize_user() adapter method.

  • Headless: The token strategy now allows for exposing refresh tokens and any other information you may need (such as e.g. expires_in).

  • Ensured that email address, given name and family name fields are stored in the SocialAccount instance. This information was not previously saved in Amazon Cognito, Edmodo, and MediaWiki SocialAccount instances.

  • When multiple third-party accounts of the same provider were connected, the third-party account connections overview did not always provide a clear recognizable distinction between those accounts. Now, the SocialAccount.__str__() has been altered to return the unique username or email address, rather than a non-unique display name.

Backwards incompatible changes

  • Dropped support for Django 3.2, 4.0 and 4.1 (which all reached end of life). As Django 3.2 was the last to support Python 3.7, support for Python 3.7 is now dropped as well.
Commits
  • 9440c0a chore: Release 64.0.0
  • 0667ff4 chore(i18n): Translated using Weblate (Spanish)
  • 7783955 chore(i18n): Sync .po
  • 9b929bd docs(mfa): WebAuthn
  • c638d8c docs(ChangeLog): Moved historic release notes
  • 1758bc6 fix(socialaccount): token str mixup at PayPal, Salesforce
  • 3c836f8 fix(amazon): access_token not handed over properly
  • 1bbdc8f docs(ChangeLog): Support for exposing refresh_token
  • e60d1ab feat(headless): Support for exposing refresh_token
  • 2cc8f19 Revert "fix(socialaccount): is_existing caused repeated db queries"
  • Additional commits viewable in compare view

Updates kombu from 5.3.7 to 5.4.0

Release notes

Sourced from kombu's releases.

v5.4.0

We want to add a special thanks to contribution celery/kombu#2007 by @​awmackowiak for fixing the Redis reconnection bug. Restoring Redis stability has been an essential improvement - thank you!

The rest of the changes are listed below.

What's Changed

Dependencies Updates

... (truncated)

Changelog

Sourced from kombu's changelog.

5.4.0

:release-date: 6 August, 2024 :release-by: Tomer Nosrati

We want to add a special thanks to contribution [#2007](https://github.com/celery/kombu/issues/2007) <https://github.com/celery/kombu/pull/2007>_ by @​awmackowiak for fixing the Redis reconnection bug. Restoring Redis stability has been an essential improvement - thank you!

The rest of the changes are listed below.

Changes

  • fix: Fanout exchange messages mixed across virtual databases in Redis sentinel (#1986)
  • Pin pymongo to latest version 4.7.2 (#1994)
  • enable/fix test_etcd.py (resolves #2001) (#2002)
  • Limit requests<2.32.0 due to docker-py issue 3256 (#2011)
  • enhance: allow users to disable broker heartbeats (#1998)
  • enhance: allow uses to disable broker heartbeats by not providing a timeout (#1997, #1998) (#2016)
  • chore(typing): annotate utils/debug.py (#1714)
  • ConnectionPool can't be used after .resize(..., reset=True) (resolves #2018) (#2024)
  • Fix Redis connections after reconnect - consumer starts consuming the tasks after crash (#2007)
  • Add support for mongodb+srv scheme (#1976)
  • Added Changelog for v5.4.0rc1 (#2033)
  • Fixed bumpversion bug with RC versions (#2034)
  • Fix typo in README.rst (#2036)
  • Reverted limiting requests<2.32.0 in requirements/default.txt but kept in tox.ini due to docker-py issue 3256 (#2041)
  • Redis transport - Redelivered messages should respect the original priority (#2026)
  • Exclude Unit 3.9 from CI (#2046)
  • Fixed CI error from excluding Python 3.9 unit tests (#2047)
  • Fixed flaky integration test: test_publish_requeue_consume() (#2048)
  • fix: don't crash on properties.body_encoding: utf-8 (#1690)
  • chore: handle kafka transport with confluentkafka ✨ (#1574)
  • Revert "Exclude Unit 3.9 from CI #2046" (#2054)
  • fix azure service bus isinstance checks when None (#2053)
  • Added Changelog for v5.4.0rc2 (#2056)
  • Fixed typo in Changelog for v5.4.0rc2 (#2057)
  • Use logging.Logger.warning (#2058)
  • SQS: add support for passing MessageAttributes (#2059)
  • Added Changelog for v5.4.0rc3 (#2064)
  • Prepare for release: v5.4.0 (#2095)

Dependencies Updates

  • Update mypy to 1.10.0 (#1988)
  • Update pytest to 8.2.0 (#1990)
  • Bump pytest from 8.2.0 to 8.2.1 (#2005)
  • Pin typing_extensions to latest version 4.12.1 (#2017)
  • Bump pytest from 8.2.1 to 8.2.2 (#2021)
  • Bump pymongo from 4.7.2 to 4.7.3 (#2022)
  • Update flake8 to 7.1.0 (#2028)

... (truncated)

Commits

Updates pytest from 8.2.2 to 8.3.2

Release notes

Sourced from pytest's releases.

8.3.2

pytest 8.3.2 (2024-07-24)

Bug fixes

  • #12652: Resolve regression [conda]{.title-ref} environments where no longer being automatically detected.

    -- by RonnyPfannschmidt{.interpreted-text role="user"}

8.3.1

pytest 8.3.1 (2024-07-20)

The 8.3.0 release failed to include the change notes and docs for the release. This patch release remedies this. There are no other changes.

8.3.0

pytest 8.3.0 (2024-07-20)

New features

  • #12231: Added [--xfail-tb]{.title-ref} flag, which turns on traceback output for XFAIL results.

    • If the [--xfail-tb]{.title-ref} flag is not given, tracebacks for XFAIL results are NOT shown.
    • The style of traceback for XFAIL is set with [--tb]{.title-ref}, and can be [auto|long|short|line|native|no]{.title-ref}.
    • Note: Even if you have [--xfail-tb]{.title-ref} set, you won't see them if [--tb=no]{.title-ref}.

    Some history:

    With pytest 8.0, [-rx]{.title-ref} or [-ra]{.title-ref} would not only turn on summary reports for xfail, but also report the tracebacks for xfail results. This caused issues with some projects that utilize xfail, but don't want to see all of the xfail tracebacks.

    This change detaches xfail tracebacks from [-rx]{.title-ref}, and now we turn on xfail tracebacks with [--xfail-tb]{.title-ref}. With this, the default [-rx]{.title-ref}/ [-ra]{.title-ref} behavior is identical to pre-8.0 with respect to xfail tracebacks. While this is a behavior change, it brings default behavior back to pre-8.0.0 behavior, which ultimately was considered the better course of action.

  • #12281: Added support for keyword matching in marker expressions.

    Now tests can be selected by marker keyword arguments. Supported values are int{.interpreted-text role="class"}, (unescaped) str{.interpreted-text role="class"}, bool{.interpreted-text role="class"} & None{.interpreted-text role="data"}.

    See marker examples <marker_keyword_expression_example>{.interpreted-text role="ref"} for more information.

    -- by lovetheguitar{.interpreted-text role="user"}

  • #12567: Added --no-fold-skipped command line option.

    If this option is set, then skipped tests in short summary are no longer grouped by reason but all tests are printed individually with their nodeid in the same way as other statuses.

    -- by pbrezina{.interpreted-text role="user"}

... (truncated)

Commits
  • bbcec9c Prepare release version 8.3.2
  • 78fe8b6 Merge pull request #12657 from pytest-dev/patchback/backports/8.3.x/6c806b499...
  • 238bad2 Merge pull request #12656 from RonnyPfannschmidt/fix-12652-detect-conda-env
  • ae6034a Merge pull request #12641 from pytest-dev/patchback/backports/8.3.x/c03989cee...
  • 31337ab Merge pull request #12640 from pytest-dev/update-user
  • ca3070b Merge pull request #12637 from pytest-dev/release-8.3.1
  • de98446 Prepare release version 8.3.1
  • bd0a042 Merge pull request #12636 from pytest-dev/update-release-notes
  • 664325b doc/changelog: update 8.3.0 notes
  • 19d225d Merge pull request #12635 from pytest-dev/release-8.3.0
  • Additional commits viewable in compare view

Updates redis from 5.0.7 to 5.0.8

Release notes

Sourced from redis's releases.

5.0.8

Changes

  • Resolve some docs warnings (#3322)
  • Add missing type hints for retry.py (#3250)

🔥 Breaking Changes

  • Timeseries insertion filters for close samples (#3228)

🚀 New Features

  • Hash field expiration commands (#3218)
  • Support the MAXAGE option for CLIENT KILL (#3187)
  • Support NOVALUES parameter for HSCAN (#3157)
  • Document XREAD of last message (+) (#3187)
  • Support missing/empty values in search (#3231)
  • Timeseries insertion filters for close samples (#3228)

🧰 Maintenance

  • Add extra tests for GEO search (#3244)
  • Test special characters escaping in search (#3276)

🐛 Bug Fixes

  • Decode search results at field level (#3309)
Commits
  • 6a2a636 Decode search results at field level (#3309)
  • e7ef54a Fix bug: client side caching causes unexpected disconnections (async version)...
  • 0cd0c5d Format connection errors in the same way everywhere (#3305)
  • 6fedfef Prepare for Redis 7.4 RC2 (#3303)
  • ed1680f Add details to the asyncio connection error message (#3211)
  • 511fda0 Add missing type hints for retry.py (#3250)
  • c1a6ff7 Bump rojopolis/spellcheck-github-actions from 0.37.0 to 0.38.0 (#3301)
  • 338cbfd Re-enable Graph tests (#3287)
  • 532bc02 Do not restrict pytest dependencies versions (#3286)
  • b6a0f96 Add CODECOV token to CI (#3285)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the production-dependencies group with 8 updates in the /config/requirements directory:

| Package | From | To |
| --- | --- | --- |
| [boto3](https://github.com/boto/boto3) | `1.34.145` | `1.34.158` |
| [botocore](https://github.com/boto/botocore) | `1.34.145` | `1.34.158` |
| [coverage](https://github.com/nedbat/coveragepy) | `7.6.0` | `7.6.1` |
| [django](https://github.com/django/django) | `5.0.7` | `5.1` |
| [django-allauth](https://github.com/pennersr/django-allauth) | `0.63.6` | `64.0.0` |
| [kombu](https://github.com/celery/kombu) | `5.3.7` | `5.4.0` |
| [pytest](https://github.com/pytest-dev/pytest) | `8.2.2` | `8.3.2` |
| [redis](https://github.com/redis/redis-py) | `5.0.7` | `5.0.8` |



Updates `boto3` from 1.34.145 to 1.34.158
- [Release notes](https://github.com/boto/boto3/releases)
- [Commits](boto/boto3@1.34.145...1.34.158)

Updates `botocore` from 1.34.145 to 1.34.158
- [Changelog](https://github.com/boto/botocore/blob/develop/CHANGELOG.rst)
- [Commits](boto/botocore@1.34.145...1.34.158)

Updates `coverage` from 7.6.0 to 7.6.1
- [Release notes](https://github.com/nedbat/coveragepy/releases)
- [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst)
- [Commits](nedbat/coveragepy@7.6.0...7.6.1)

Updates `django` from 5.0.7 to 5.1
- [Commits](django/django@5.0.7...5.1)

Updates `django-allauth` from 0.63.6 to 64.0.0
- [Changelog](https://github.com/pennersr/django-allauth/blob/main/ChangeLog.rst)
- [Commits](pennersr/django-allauth@0.63.6...64.0.0)

Updates `kombu` from 5.3.7 to 5.4.0
- [Release notes](https://github.com/celery/kombu/releases)
- [Changelog](https://github.com/celery/kombu/blob/main/Changelog.rst)
- [Commits](celery/kombu@v5.3.7...v5.4.0)

Updates `pytest` from 8.2.2 to 8.3.2
- [Release notes](https://github.com/pytest-dev/pytest/releases)
- [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst)
- [Commits](pytest-dev/pytest@8.2.2...8.3.2)

Updates `redis` from 5.0.7 to 5.0.8
- [Release notes](https://github.com/redis/redis-py/releases)
- [Changelog](https://github.com/redis/redis-py/blob/master/CHANGES)
- [Commits](redis/redis-py@v5.0.7...v5.0.8)

---
updated-dependencies:
- dependency-name: boto3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: botocore
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: coverage
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: django
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: django-allauth
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: production-dependencies
- dependency-name: kombu
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: pytest
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: redis
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Aug 10, 2024
Copy link
Contributor Author

dependabot bot commented on behalf of github Aug 10, 2024

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Aug 10, 2024
@dependabot dependabot bot deleted the dependabot/pip/config/requirements/production-dependencies-3dd38f9d20 branch August 10, 2024 21:16
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file python Pull requests that update Python code
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants