Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump the production-dependencies group across 1 directory with 5 updates #948

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Aug 31, 2024

Bumps the production-dependencies group with 5 updates in the /config/requirements directory:

Package From To
boto3 1.34.158 1.35.10
botocore 1.34.158 1.35.10
django-alive 1.2.1 2.0.0
django-allauth 64.0.0 64.2.0
marshmallow 3.21.3 3.22.0

Updates boto3 from 1.34.158 to 1.35.10

Commits
  • 85cba10 Merge branch 'release-1.35.10'
  • 7264985 Bumping version to 1.35.10
  • 4e8bc10 Add changelog entries from botocore
  • 6f961e2 Merge branch 'release-1.35.9'
  • 25ebb36 Merge branch 'release-1.35.9' into develop
  • ed635b5 Bumping version to 1.35.9
  • 3a06379 Add changelog entries from botocore
  • 0733f58 Merge branch 'release-1.35.8'
  • 1cbfeec Merge branch 'release-1.35.8' into develop
  • 79f7f2c Bumping version to 1.35.8
  • Additional commits viewable in compare view

Updates botocore from 1.34.158 to 1.35.10

Changelog

Sourced from botocore's changelog.

1.35.10

  • api-change:backup: The latest update introduces two new attributes, VaultType and VaultState, to the DescribeBackupVault and ListBackupVaults APIs. The VaultState attribute reflects the current status of the vault, while the VaultType attribute indicates the specific category of the vault.
  • api-change:datazone: Amazon DataZone now adds new governance capabilities of Domain Units for organization within your Data Domains, and Authorization Policies for tighter controls.
  • api-change:logs: This release introduces a new optional parameter: Entity, in PutLogEvents request
  • api-change:redshift-data: The release include the new Redshift DataAPI feature for session use, customer execute query with --session-keep-alive-seconds parameter and can submit follow-up queries to same sessions with returnedsession-id

1.35.9

  • api-change:bedrock-agent-runtime: Lifting the maximum length on Bedrock KnowledgeBase RetrievalFilter array
  • api-change:bedrock-runtime: Add support for imported-model in invokeModel and InvokeModelWithResponseStream.
  • api-change:personalize: This releases ability to update automatic training scheduler for customer solutions
  • api-change:quicksight: Increased Character Limit for Dataset Calculation Field expressions
  • api-change:stepfunctions: This release adds support for static analysis to ValidateStateMachineDefinition API, which can now return optional WARNING diagnostics for semantic errors on the definition of an Amazon States Language (ASL) state machine.
  • api-change:wafv2: The minimum request rate for a rate-based rule is now 10. Before this, it was 100.

1.35.8

  • api-change:appconfig: This release adds support for deletion protection, which is a safety guardrail to prevent the unintentional deletion of a recently used AWS AppConfig Configuration Profile or Environment. This also includes a change to increase the maximum length of the Name parameter in UpdateConfigurationProfile.
  • api-change:datazone: Update regex to include dot character to be consistent with IAM role creation in the authorized principal field for create and update subscription target.
  • api-change:devicefarm: This release removed support for Calabash, UI Automation, Built-in Explorer, remote access record, remote access replay, and web performance profile framework in ScheduleRun API.
  • api-change:ec2: Amazon VPC IP Address Manager (IPAM) now allows customers to provision IPv4 CIDR blocks and allocate Elastic IP Addresses directly from IPAM pools with public IPv4 space
  • api-change:internetmonitor: Adds new querying types to show overall traffic suggestion information for monitors
  • api-change:pcs: Introducing AWS Parallel Computing Service (AWS PCS), a new service makes it easy to setup and manage high performance computing (HPC) clusters, and build scientific and engineering models at virtually any scale on AWS.
  • api-change:workspaces: Documentation-only update that clarifies the StartWorkspaces and StopWorkspaces actions, and a few other minor edits.

1.35.7

  • api-change:bedrock: Amazon Bedrock SDK updates for Inference Profile.
  • api-change:bedrock-runtime: Amazon Bedrock SDK updates for Inference Profile.
  • api-change:chatbot: Update documentation to be consistent with the API docs
  • api-change:omics: Adds data provenance to import jobs from read sets and references
  • api-change:polly: Amazon Polly adds 2 new voices: Jitka (cs-CZ) and Sabrina (de-CH).

1.35.6

  • api-change:iotsitewise: AWS IoT SiteWise now supports versioning for asset models. It enables users to retrieve active version of their asset model and perform asset model writes with optimistic lock.
  • api-change:workspaces: This release adds support for creating and managing directories that use AWS IAM Identity Center as user identity source. Such directories can be used to create non-Active Directory domain joined WorkSpaces Personal.Updated RegisterWorkspaceDirectory and DescribeWorkspaceDirectories APIs.

1.35.5

... (truncated)

Commits
  • 6e846e8 Merge branch 'release-1.35.10'
  • 6cb9ba2 Bumping version to 1.35.10
  • 8c5e3e5 Update endpoints model
  • 5b5356f Update to latest models
  • 3428c19 Merge branch 'release-1.35.9' into develop
  • 606af07 Merge branch 'release-1.35.9'
  • 764d893 Bumping version to 1.35.9
  • 9a37f04 Update to latest models
  • c294152 Merge branch 'release-1.35.8' into develop
  • fbd8b1e Merge branch 'release-1.35.8'
  • Additional commits viewable in compare view

Updates django-alive from 1.2.1 to 2.0.0

Release notes

Sourced from django-alive's releases.

2.0.0

What's Changed

New Contributors

Full Changelog: lincolnloop/django-alive@1.2.2...2.0.0

1.2.2

What's Changed

New Contributors

Full Changelog: lincolnloop/django-alive@1.2.1...1.2.2

Changelog

Sourced from django-alive's changelog.

2.0.0 (2024-08-30)

  • Allow executing checks multiple times with different parameters; ALIVE_CHECKS should now be a list of tuples (setting it to a dictionary results in a deprecation warning).

1.2.2 (2024-08-14)

  • Add GitHub Action for running tests against supported versions
  • Release from GitHub Actions
Commits
  • 15f1e39 add a little more detail to entry in CHANGELOG.md
  • 63c4a48 change version in CHANGELOG.md for recent changes
  • dda177e update CHANGELOG.md with recent changes
  • 8ef28e9 Merge pull request #12 from PetrDlouhy/multi_test
  • 5b6b7a5 Merge pull request #15 from lincolnloop/test-publish
  • 6d66a60 allow to execute one test multiple times with different parameters
  • a4640e5 add an unreleased section to CHANGELOG.md
  • 24f8466 add work to release from GitHub Actions to CHANGELOG.md
  • d8b769f add a GitHub Action for publishing to PyPI and GitHub
  • 450a6e4 update CHANGELOG with recent changes
  • Additional commits viewable in compare view

Updates django-allauth from 64.0.0 to 64.2.0

Changelog

Sourced from django-allauth's changelog.

64.2.0 (2024-08-30)


Note worthy changes

  • Verifying email addresses by means of a code (instead of a link) is now supported. See settings.ACCOUNT_EMAIL_VERIFICATION_BY_CODE_ENABLED.

  • Added support for requiring logging in by code, so that every user logging in is required to input a login confirmation code sent by email. See settings.ACCOUNT_LOGIN_BY_CODE_REQUIRED.

Security notice

  • In case an ID token is used for authentication, the JTI is now respected to prevent the possibility of replays instead of solely relying on the expiration time.

64.1.0 (2024-08-15)


Note worthy changes

  • Headless: When trying to login while a user is already logged in, you now get a 409.

  • Limited the maximum allowed time for a login to go through the various login stages. This limits, for example, the time span that the 2FA stage remains available. See settings.ACCOUNT_LOGIN_TIMEOUT.

Security notice

  • Headless: When a user was not fully logged in, for example, because (s)he was in the process of completing the 2FA process, calling logout would not wipe the session containing the partially logged in user.
Commits
  • 87edc03 chore: Release 64.2.0
  • 1d7f9e9 chore(i18n): Sync .po
  • 58ba217 chore(i18n): Sync weblate
  • 58db2be fix(socialaccount): Pass email to populate_user()
  • 7e99f3e chore(i18n/cs): Fix misplaced characters in cs localization
  • 20ab03c docs: update CERN provider
  • dd1412e chore(i18n/ko): fix typo and translation
  • 0304b1b fix(socialaccount): JWT: Prevent replay using JTI
  • d30b641 tests(headless): Verify email of other user while signed in
  • 560cb24 refactor(account): Email verification login & stage
  • Additional commits viewable in compare view

Updates marshmallow from 3.21.3 to 3.22.0

Changelog

Sourced from marshmallow's changelog.

3.22.0 (2024-08-20)


Features:

  • Add many Meta option to Schema so it expects a collection by default (:issue:2270). Thanks :user:himalczyk for reporting and :user:deckar01 for the PR.
  • Refactor hooks (:pr:2279). Thanks :user:deckar01 for the PR.
Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the production-dependencies group with 5 updates in the /config/requirements directory:

| Package | From | To |
| --- | --- | --- |
| [boto3](https://github.com/boto/boto3) | `1.34.158` | `1.35.10` |
| [botocore](https://github.com/boto/botocore) | `1.34.158` | `1.35.10` |
| [django-alive](https://github.com/lincolnloop/django-alive) | `1.2.1` | `2.0.0` |
| [django-allauth](https://github.com/pennersr/django-allauth) | `64.0.0` | `64.2.0` |
| [marshmallow](https://github.com/marshmallow-code/marshmallow) | `3.21.3` | `3.22.0` |



Updates `boto3` from 1.34.158 to 1.35.10
- [Release notes](https://github.com/boto/boto3/releases)
- [Commits](boto/boto3@1.34.158...1.35.10)

Updates `botocore` from 1.34.158 to 1.35.10
- [Changelog](https://github.com/boto/botocore/blob/develop/CHANGELOG.rst)
- [Commits](boto/botocore@1.34.158...1.35.10)

Updates `django-alive` from 1.2.1 to 2.0.0
- [Release notes](https://github.com/lincolnloop/django-alive/releases)
- [Changelog](https://github.com/lincolnloop/django-alive/blob/main/CHANGELOG.md)
- [Commits](lincolnloop/django-alive@1.2.1...2.0.0)

Updates `django-allauth` from 64.0.0 to 64.2.0
- [Changelog](https://github.com/pennersr/django-allauth/blob/main/ChangeLog.rst)
- [Commits](pennersr/django-allauth@64.0.0...64.2.0)

Updates `marshmallow` from 3.21.3 to 3.22.0
- [Changelog](https://github.com/marshmallow-code/marshmallow/blob/dev/CHANGELOG.rst)
- [Commits](marshmallow-code/marshmallow@3.21.3...3.22.0)

---
updated-dependencies:
- dependency-name: boto3
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: botocore
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: django-alive
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: production-dependencies
- dependency-name: django-allauth
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: marshmallow
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Aug 31, 2024
Copy link
Contributor Author

dependabot bot commented on behalf of github Aug 31, 2024

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Aug 31, 2024
@dependabot dependabot bot deleted the dependabot/pip/config/requirements/production-dependencies-257b11b403 branch August 31, 2024 14:35
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file python Pull requests that update Python code
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants