Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump the pip group with 5 updates #651

Merged
merged 2 commits into from
Nov 1, 2024
Merged

Bump the pip group with 5 updates #651

merged 2 commits into from
Nov 1, 2024

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 1, 2024

Bumps the pip group with 6 updates:

Package From To
aiohttp 3.10.8 3.10.10
async-timeout 4.0.3 5.0.0
pyparsing 3.1.4 3.2.0
yarl 1.13.1 1.17.1
sentry-sdk 2.14.0 2.17.0
pytest-cov 5.0.0 6.0.0

Updates aiohttp from 3.10.8 to 3.10.10

Release notes

Sourced from aiohttp's releases.

3.10.10

Bug fixes

  • Fixed error messages from :py:class:~aiohttp.resolver.AsyncResolver being swallowed -- by :user:bdraco.

    Related issues and pull requests on GitHub: #9451, #9455.

Features

  • Added :exc:aiohttp.ClientConnectorDNSError for differentiating DNS resolution errors from other connector errors -- by :user:mstojcevich.

    Related issues and pull requests on GitHub: #8455.

Miscellaneous internal changes

  • Simplified DNS resolution throttling code to reduce chance of race conditions -- by :user:bdraco.

    Related issues and pull requests on GitHub: #9454.

3.10.9

Bug fixes

  • Fixed proxy headers being used in the ConnectionKey hash when a proxy was not being used -- by :user:bdraco.

    If default headers are used, they are also used for proxy headers. This could have led to creating connections that were not needed when one was already available.

    Related issues and pull requests on GitHub: #9368.

... (truncated)

Changelog

Sourced from aiohttp's changelog.

3.10.10 (2024-10-10)

Bug fixes

  • Fixed error messages from :py:class:~aiohttp.resolver.AsyncResolver being swallowed -- by :user:bdraco.

    Related issues and pull requests on GitHub: :issue:9451, :issue:9455.

Features

  • Added :exc:aiohttp.ClientConnectorDNSError for differentiating DNS resolution errors from other connector errors -- by :user:mstojcevich.

    Related issues and pull requests on GitHub: :issue:8455.

Miscellaneous internal changes

  • Simplified DNS resolution throttling code to reduce chance of race conditions -- by :user:bdraco.

    Related issues and pull requests on GitHub: :issue:9454.

3.10.9 (2024-10-04)

Bug fixes

  • Fixed proxy headers being used in the ConnectionKey hash when a proxy was not being used -- by :user:bdraco.

... (truncated)

Commits
  • 47475c5 Release 3.10.10 (#9462)
  • 8b424c8 [PR #8456/b09d7cc backport][3.10] Add ClientConnectorDNSError for differentia...
  • cdf3dca [PR #9454/b20908e backport][3.10] Simplify DNS throttle implementation (#9457)
  • ee87a04 [PR #9455/dfaafac0 backport][3.10] Fix AsyncResolver query fallback swallowin...
  • ba9b33e [PR #9451/216e082 backport][3.10] Fix AsyncResolver swallowing the error mess...
  • bc9e5d6 [PR #9448/93e87c2e backport][3.10] Improve performance of fetching the conten...
  • 3ea557a Increment version to 3.10.10.dev0
  • b779432 Release 3.10.9 (#9415)
  • 08ada3e [PR #9405/b96b01b backport][3.10] Only create the connection closed exception...
  • 978ed74 [PR #9406/24b0e6f backport][3.10] Add slots to timer helpers (#9411)
  • Additional commits viewable in compare view

Updates async-timeout from 4.0.3 to 5.0.0

Release notes

Sourced from async-timeout's releases.

5.0.0

Features

  • Make asyncio_timeout fully compatible with the standard asyncio.Timeout but keep backward compatibility with existing asyncio_timeout.Timeout API. ([#422](https://github.com/aio-libs/async-timeout/issues/422) <https://github.com/aio-libs/async-timeout/issues/422>_)

Improved Documentation

  • On the CHANGES/README.rst <https://github.com/aio-libs/async-timeout/tree/master/CHANGES/README.rst>_ page, a link to the Towncrier philosophy has been fixed. ([#388](https://github.com/aio-libs/async-timeout/issues/388) <https://github.com/aio-libs/async-timeout/issues/388>_)

Deprecations and Removals

  • Drop deprecated sync context manager support, use async with timeout(...): ... instead. ([#421](https://github.com/aio-libs/async-timeout/issues/421) <https://github.com/aio-libs/async-timeout/issues/421>_)
Changelog

Sourced from async-timeout's changelog.

5.0.0 (2024-10-31)

Features

  • Make asyncio_timeout fully compatible with the standard asyncio.Timeout but keep backward compatibility with existing asyncio_timeout.Timeout API. ([#422](https://github.com/aio-libs/async-timeout/issues/422) <https://github.com/aio-libs/async-timeout/issues/422>_)

Improved Documentation

  • On the CHANGES/README.rst <https://github.com/aio-libs/async-timeout/tree/master/CHANGES/README.rst>_ page, a link to the Towncrier philosophy has been fixed. ([#388](https://github.com/aio-libs/async-timeout/issues/388) <https://github.com/aio-libs/async-timeout/issues/388>_)

Deprecations and Removals

  • Drop deprecated sync context manager support, use async with timeout(...): ... instead. ([#421](https://github.com/aio-libs/async-timeout/issues/421) <https://github.com/aio-libs/async-timeout/issues/421>_)
Commits

Updates pyparsing from 3.1.4 to 3.2.0

Changelog

Sourced from pyparsing's changelog.

Version 3.2.0 - October, 2024

  • Discontinued support for Python 3.6, 3.7, and 3.8. Adopted new Python features from Python versions 3.7-3.9:

    • Updated type annotations to use built-in container types instead of names imported from the typing module (e.g., list[str] vs List[str]).
    • Reworked portions of the packrat cache to leverage insertion-preserving ordering in dicts (including removal of uses of OrderedDict).
    • Changed pdb.set_trace() call in ParserElement.set_break() to breakpoint().
    • Converted typing.NamedTuple to dataclasses.dataclass in railroad diagramming code.
    • Added from __future__ import annotations to clean up some type annotations. (with assistance from ISyncWithFoo, issue #535, thanks for the help!)

  • POSSIBLE BREAKING CHANGES

    The following bugfixes may result in subtle changes in the results returned or exceptions raised by pyparsing.

    • Fixed code in ParseElementEnhance subclasses that replaced detailed exception messages raised in contained expressions with a less-specific and less-informative generic exception message and location.

      If your code has conditional logic based on the message content in raised ParseExceptions, this bugfix may require changes in your code.

    • Fixed bug in transform_string() where whitespace in the input string was not properly preserved in the output string.

      If your code uses transform_string, this bugfix may require changes in your code.

    • Fixed bug where an IndexError raised in a parse action was incorrectly handled as an IndexError raised as part of the ParserElement parsing methods, and reraised as a ParseException. Now an IndexError that raises inside a parse action will properly propagate out as an IndexError. (Issue #573, reported by August Karlstedt, thanks!)

      If your code raises IndexErrors in parse actions, this bugfix may require changes in your code.

  • FIXES AND NEW FEATURES

    • Added type annotations to remainder of pyparsing package, and added mypy run to tox.ini, so that type annotations are now run as part of pyparsing's CI. Addresses Issue #373, raised by Iwan Aucamp, thanks!

    • Exception message format can now be customized, by overriding ParseBaseException.format_message:

... (truncated)

Commits
  • 36fc04b Fix docstring with invalid esc sequence
  • a46066d Prep for 3.2.0 release
  • a0c219b Docs cleanup; added new whats_new_* docs for 3.1 and 3.2
  • d9b1f14 Rewrite _collapse_string_to_ranges to use _GroupConsecutive class instead of ...
  • 0d3c2d7 Fix minor internal bug in one_of building regex when all choices are single c...
  • 2165ab2 Cleanup ambiguous "contains" vs "in" usage in mongodb_query_expression.py
  • 25ddb02 Prep for dev before final release
  • 08846ae Prep for release
  • 9ee042b Remove deprecated utcnow()
  • a2b2f25 Final cleanup on mongodb_query_expression.py and mongodb_query_expression_ste...
  • Additional commits viewable in compare view

Updates yarl from 1.13.1 to 1.17.1

Release notes

Sourced from yarl's releases.

1.17.1

Miscellaneous internal changes

  • Improved performance of many :class:~yarl.URL methods -- by :user:bdraco.

    Related issues and pull requests on GitHub: #1396, #1397, #1398.

  • Improved performance of passing a dict or str to :py:meth:~yarl.URL.extend_query -- by :user:bdraco.

    Related issues and pull requests on GitHub: #1401.

1.17.0

Features

  • Added :attr:~yarl.URL.host_port_subcomponent which returns the :rfc:3986#section-3.2.2 host and :rfc:3986#section-3.2.3 port subcomponent -- by :user:bdraco.

    Related issues and pull requests on GitHub: #1375.

1.16.0

Bug fixes

  • Fixed blocking I/O to load Python code when creating a new :class:~yarl.URL with non-ascii characters in the network location part -- by :user:bdraco.

    Related issues and pull requests on GitHub: #1342.

Removals and backward incompatible breaking changes

  • Migrated to using a single cache for encoding hosts -- by :user:bdraco.

    Passing ip_address_size and host_validate_size to :py:meth:~yarl.cache_configure is deprecated in favor of the new encode_host_size parameter and will be removed in a future release. For backwards compatibility, the old parameters affect the encode_host cache size.

    Related issues and pull requests on GitHub: #1348, #1357, #1363.

... (truncated)

Changelog

Sourced from yarl's changelog.

1.17.1

(2024-10-30)

Miscellaneous internal changes

  • Improved performance of many :class:~yarl.URL methods -- by :user:bdraco.

    Related issues and pull requests on GitHub: :issue:1396, :issue:1397, :issue:1398.

  • Improved performance of passing a dict or str to :py:meth:~yarl.URL.extend_query -- by :user:bdraco.

    Related issues and pull requests on GitHub: :issue:1401.

1.17.0

(2024-10-28)

Features

  • Added :attr:~yarl.URL.host_port_subcomponent which returns the :rfc:3986#section-3.2.2 host and :rfc:3986#section-3.2.3 port subcomponent -- by :user:bdraco.

    Related issues and pull requests on GitHub: :issue:1375.

1.16.0

(2024-10-21)

Bug fixes

... (truncated)

Commits

Updates sentry-sdk from 2.14.0 to 2.17.0

Release notes

Sourced from sentry-sdk's releases.

2.17.0

Various fixes & improvements

2.16.0

Integrations

  • Bottle: Add failed_request_status_codes (#3618) by @​szokeasaurusrex

    You can now define a set of integers that will determine which status codes should be reported to Sentry.

    sentry_sdk.init(
    integrations=[
        BottleIntegration(
            failed_request_status_codes={403, *range(500, 600)},
        )
    ]
)

    Examples of valid failed_request_status_codes:

    • {500} will only send events on HTTP 500.
    • {400, *range(500, 600)} will send events on HTTP 400 as well as the 5xx range.
    • {500, 503} will send events on HTTP 500 and 503.
    • set() (the empty set) will not send events for any HTTP status code.

    The default is {*range(500, 600)}, meaning that all 5xx status codes are reported to Sentry.

  • Bottle: Delete never-reached code (#3605) by @​szokeasaurusrex

  • Redis: Remove flaky test (#3626) by @​sentrivana

  • Django: Improve getting psycopg3 connection info (#3580) by @​nijel

  • Django: Add SpotlightMiddleware when Spotlight is enabled (#3600) by @​BYK

  • Django: Open relevant error when SpotlightMiddleware is on (#3614) by @​BYK

  • Django: Support http_methods_to_capture in ASGI Django (#3607) by @​sentrivana

    ASGI Django now also supports the http_methods_to_capture integration option. This is a configurable tuple of HTTP method verbs that should create a transaction in Sentry. The default is ("CONNECT", "DELETE", "GET", "PATCH", "POST", "PUT", "TRACE",). OPTIONS and HEAD are not included by default.

... (truncated)

Changelog

Sourced from sentry-sdk's changelog.

2.17.0

Various fixes & improvements

2.16.0

Integrations

  • Bottle: Add failed_request_status_codes (#3618) by @​szokeasaurusrex

    You can now define a set of integers that will determine which status codes should be reported to Sentry.

    sentry_sdk.init(
    integrations=[
        BottleIntegration(
            failed_request_status_codes={403, *range(500, 600)},
        )
    ]
)

    Examples of valid failed_request_status_codes:

    • {500} will only send events on HTTP 500.
    • {400, *range(500, 600)} will send events on HTTP 400 as well as the 5xx range.
    • {500, 503} will send events on HTTP 500 and 503.
    • set() (the empty set) will not send events for any HTTP status code.

    The default is {*range(500, 600)}, meaning that all 5xx status codes are reported to Sentry.

  • Bottle: Delete never-reached code (#3605) by @​szokeasaurusrex

  • Redis: Remove flaky test (#3626) by @​sentrivana

  • Django: Improve getting psycopg3 connection info (#3580) by @​nijel

  • Django: Add SpotlightMiddleware when Spotlight is enabled (#3600) by @​BYK

  • Django: Open relevant error when SpotlightMiddleware is on (#3614) by @​BYK

  • Django: Support http_methods_to_capture in ASGI Django (#3607) by @​sentrivana

... (truncated)

Commits

Updates pytest-cov from 5.0.0 to 6.0.0

Changelog

Sourced from pytest-cov's changelog.

6.0.0 (2024-10-29)

  • Updated various documentation inaccuracies, especially on subprocess handling.
  • Changed fail under checks to use the precision set in the coverage configuration. Now it will perform the check just like coverage report would.
  • Added a --cov-precision cli option that can override the value set in your coverage configuration.
  • Dropped support for now EOL Python 3.8.
Commits
  • 9540437 Bump version: 5.0.0 → 6.0.0
  • 9f81754 Further trim down envs and drop Python 3.8.
  • b12b5ec Update conf.
  • 23f4b27 Update changelog.
  • 291a04f Bump test deps and trim config.
  • 08f1101 Add --cov-precision option. Close #655.
  • 76fe2a7 Move the warnings/errors in a place that doesn't import anything.
  • a9ea7b7 Implement error/warning for the bad dynamic_context being set in config.
  • c299e01 Add explicit suffixing to make it easier to see the identify the sources/usag...
  • c87e546 Add reproducer for weird xdist dynamic_context interaction. Ref #604.
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the pip group with 6 updates
cd7d74e 
Bumps the pip group with 6 updates:

| Package | From | To |
| --- | --- | --- |
| [aiohttp](https://github.com/aio-libs/aiohttp) | `3.10.8` | `3.10.10` |
| [async-timeout](https://github.com/aio-libs/async-timeout) | `4.0.3` | `5.0.0` |
| [pyparsing](https://github.com/pyparsing/pyparsing) | `3.1.4` | `3.2.0` |
| [yarl](https://github.com/aio-libs/yarl) | `1.13.1` | `1.17.1` |
| [sentry-sdk](https://github.com/getsentry/sentry-python) | `2.14.0` | `2.17.0` |
| [pytest-cov](https://github.com/pytest-dev/pytest-cov) | `5.0.0` | `6.0.0` |


Updates `aiohttp` from 3.10.8 to 3.10.10
- [Release notes](https://github.com/aio-libs/aiohttp/releases)
- [Changelog](https://github.com/aio-libs/aiohttp/blob/master/CHANGES.rst)
- [Commits](aio-libs/aiohttp@v3.10.8...v3.10.10)

Updates `async-timeout` from 4.0.3 to 5.0.0
- [Release notes](https://github.com/aio-libs/async-timeout/releases)
- [Changelog](https://github.com/aio-libs/async-timeout/blob/master/CHANGES.rst)
- [Commits](aio-libs/async-timeout@v4.0.3...v5.0.0)

Updates `pyparsing` from 3.1.4 to 3.2.0
- [Release notes](https://github.com/pyparsing/pyparsing/releases)
- [Changelog](https://github.com/pyparsing/pyparsing/blob/master/CHANGES)
- [Commits](pyparsing/pyparsing@3.1.4...3.2.0)

Updates `yarl` from 1.13.1 to 1.17.1
- [Release notes](https://github.com/aio-libs/yarl/releases)
- [Changelog](https://github.com/aio-libs/yarl/blob/master/CHANGES.rst)
- [Commits](aio-libs/yarl@v1.13.1...v1.17.1)

Updates `sentry-sdk` from 2.14.0 to 2.17.0
- [Release notes](https://github.com/getsentry/sentry-python/releases)
- [Changelog](https://github.com/getsentry/sentry-python/blob/master/CHANGELOG.md)
- [Commits](getsentry/sentry-python@2.14.0...2.17.0)

Updates `pytest-cov` from 5.0.0 to 6.0.0
- [Changelog](https://github.com/pytest-dev/pytest-cov/blob/master/CHANGELOG.rst)
- [Commits](pytest-dev/pytest-cov@v5.0.0...v6.0.0)

---
updated-dependencies:
- dependency-name: aiohttp
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip
- dependency-name: async-timeout
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: pip
- dependency-name: pyparsing
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: pip
- dependency-name: yarl
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: pip
- dependency-name: sentry-sdk
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: pip
- dependency-name: pytest-cov
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: pip
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Nov 1, 2024
@codecov Codecov
Copy link

codecov bot commented Nov 1, 2024
edited
Loading

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 100.00%. Comparing base (bdb5fe3) to head (2861551).
Report is 1 commits behind head on main.

Impacted file tree graph

@@            Coverage Diff            @@
##              main      #651   +/-   ##
=========================================
  Coverage   100.00%   100.00%           
=========================================
  Files           18        18           
  Lines         2149      2149           
  Branches        97        97           
=========================================
  Hits          2149      2149
Flag Coverage Δ
Python_3.10.15 100.00% <ø> (ø)
Python_3.11.10 100.00% <ø> (ø)
Python_3.12.7 100.00% <ø> (ø)
Python_3.13.0 100.00% <ø> (ø)
Python_3.9.20 100.00% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

@hugovk
Copy link
Member

hugovk commented Nov 1, 2024
edited
Loading 

The conflict is caused by:
    The user requested async-timeout==5.0.0
    aiohttp 3.10.10 depends on async-timeout<5.0 and >=4.0; python_version < "3.11"

To fix this you could try to:
1. loosen the range of package versions you've specified
2. remove package versions to allow pip to attempt to solve the dependency conflict

aiohttp pins async-timeout<5 for Python 3.9-3.10:

https://github.com/aio-libs/aiohttp/blob/7d0f980af6d725970cda5cb011400f5459699301/setup.cfg#L56

Let's skip the async-timeout bump for now, and hopefully aiohttp will update their pins for next time. I've updated this PR.

@hugovk hugovk changed the title Bump the pip group with 6 updates Bump the pip group with 5 updates Nov 1, 2024
@hugovk hugovk merged commit 25f1059 into main Nov 1, 2024
13 checks passed
@hugovk hugovk deleted the dependabot/pip/pip-ad938cf19f branch November 1, 2024 15:35
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ezio-melotti ezio-melotti ezio-melotti approved these changes

Assignees

@ezio-melotti ezio-melotti

Labels
dependencies Pull requests that update a dependency file python Pull requests that update Python code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@hugovk @ezio-melotti