Deps: Bump the python-packages group with 8 updates #932

dependabot · 2024-10-21T05:02:49Z

Bumps the python-packages group with 8 updates:

Package	From	To
xmltodict	`0.14.1`	`0.14.2`
sentry-sdk	`2.16.0`	`2.17.0`
anyio	`4.6.2`	`4.6.2.post1`
coverage	`7.6.3`	`7.6.4`
markupsafe	`3.0.1`	`3.0.2`
pillow	`10.4.0`	`11.0.0`
ruff	`0.6.9`	`0.7.0`
zopfli	`0.2.3`	`0.2.3.post1`

Updates xmltodict from 0.14.1 to 0.14.2

Changelog

Sourced from xmltodict's changelog.

v0.14.2

Revert "Ensure significant whitespace is not trimmed"

This changed was backwards incompatible and caused downstream issues.

Commits

0952f38 Bump version and update CHANGELOG.
13068aa Revert "Ensure significant whitespace is not trimmed"
See full diff in compare view

Updates sentry-sdk from 2.16.0 to 2.17.0

Release notes

Sourced from sentry-sdk's releases.

2.17.0

Various fixes & improvements

Add support for async calls in Anthropic and OpenAI integration (#3497) by @vetyy

Allow custom transaction names in ASGI (#3664) by @sl0thentr0py

Langchain: Handle case when parent span wasn't traced (#3656) by @rbasoalto

Fix Anthropic integration when using tool calls (#3615) by @kwnath

More defensive Django Spotlight middleware injection (#3665) by @BYK

Remove ensure_integration_enabled_async (#3632) by @sentrivana

Test with newer Falcon version (#3644, #3653, #3662) by @sentrivana

Fix mypy (#3657) by @sentrivana

Fix flaky transport test (#3666) by @sentrivana

Remove pin on sphinx (#3650) by @sentrivana

Bump actions/checkout from 4.2.0 to 4.2.1 (#3651) by @dependabot

Changelog

Sourced from sentry-sdk's changelog.

2.17.0

Various fixes & improvements

Add support for async calls in Anthropic and OpenAI integration (#3497) by @vetyy

Allow custom transaction names in ASGI (#3664) by @sl0thentr0py

Langchain: Handle case when parent span wasn't traced (#3656) by @rbasoalto

Fix Anthropic integration when using tool calls (#3615) by @kwnath

More defensive Django Spotlight middleware injection (#3665) by @BYK

Remove ensure_integration_enabled_async (#3632) by @sentrivana

Test with newer Falcon version (#3644, #3653, #3662) by @sentrivana

Fix mypy (#3657) by @sentrivana

Fix flaky transport test (#3666) by @sentrivana

Remove pin on sphinx (#3650) by @sentrivana

Bump actions/checkout from 4.2.0 to 4.2.1 (#3651) by @dependabot

Commits

e44c9ee Update CHANGELOG.md
ee30db3 release: 2.17.0
365d9cf Fix flaky transport test (#3666)
9ae5820 Add support for async calls in Anthropic and OpenAI integration (#3497)
891afee fix(spotlight): More defensive Django spotlight middleware injection (#3665)
f493057 Allow custom transaction names in asgi (#3664)
e463034 tests: Falcon RC1 (#3662)
deca5f2 build(deps): Remove pin on sphinx (#3650)
302457d build(deps): bump actions/checkout from 4.2.0 to 4.2.1 (#3651)
846b8b2 fix(langchain): handle case when parent span wasn't traced (#3656)
Additional commits viewable in compare view

Updates anyio from 4.6.2 to 4.6.2.post1

Commits

See full diff in compare view

Updates coverage from 7.6.3 to 7.6.4

Changelog

Sourced from coverage's changelog.

Version 7.6.4 — 2024-10-20

fix: multi-line with statements could cause contained branches to be incorrectly marked as missing (issue 1880_). This is now fixed.

.. _issue 1880: nedbat/coveragepy#1880

.. _changes_7-6-3:

Commits

f24f76b docs: sample HTML for 7.6.4
96e10f7 docs: prep for 7.6.4
b8c236a fix: multi-line with-statements exit correctly. #1880
64b7a45 docs: another discord reference
68d7427 docs: Python Discord
43adcea build: include 3.14 in the usual Pythons
fb2b49f build: github_releases can update older releases, and pauses to get the sorti...
ca550ca 3.0b2 wasn't correctly titled
debcc77 build: bump version
See full diff in compare view

Updates markupsafe from 3.0.1 to 3.0.2

Release notes

Sourced from markupsafe's releases.

3.0.2

This is the MarkupSafe 3.0.2 fix release, which fixes bugs but does not otherwise change behavior and should not result in breaking changes.

PyPI: https://pypi.org/project/MarkupSafe/3.0.2/ Changes: https://markupsafe.palletsprojects.com/page/changes/#version-3-0-2 Milestone: https://github.com/pallets/markupsafe/milestone/14?closed=1

Fix compatibility when __str__ returns a str subclass. #472

Build requires setuptools >= 70.1. #475

Changelog

Sourced from markupsafe's changelog.

Version 3.0.2

Released 2024-10-18

Fix compatibility when __str__ returns a str subclass. :issue:472

Build requires setuptools >= 70.1. :issue:475

Commits

28ace20 release version 3.0.2
6b51fd8 build requires at least setuptools 70.1 (#478)
99dda9f build requires at least setuptools 70.1
3d8fd8c fix version
1933c4b fix version
e85aff4 relax speedups str check (#477)
8cb1691 relax speedups str check
4dafb7c start version 3.1.0
9c44ecf update docs build
275c769 Merge branch '2.1.x' into 3.0.x
Additional commits viewable in compare view

Updates pillow from 10.4.0 to 11.0.0

Release notes

Sourced from pillow's releases.

11.0.0

https://pillow.readthedocs.io/en/stable/releasenotes/11.0.0.html

Changes

Do not create core image in TIFF seek() #8392 [@radarhere]

Removed custom build_openjpeg #8365 [@radarhere]

Support writing LONG8 offsets in AppendingTiffWriter #8417 [@radarhere]

Use ImageFile.MAXBLOCK when saving TIFF images #8461 [@radarhere]

Always raise warnings for deprecated feature checks #8459 [@radarhere]

Do not close provided file handles with libtiff when saving #8458 [@radarhere]

Revert "Skip QEMU-emulated wheels on workflow dispatch event" #8455 [@radarhere]

Support ImageFilter.BuiltinFilter for I;16* images #8438 [@radarhere]

[pre-commit.ci] pre-commit autoupdate #8448 [@pre-commit-ci]

Use ImagingCore.ptr instead of ImagingCore.id #8341 [@homm]

Simplified code #8445 [@radarhere]

Removed unused code #8447 [@radarhere]

Updated EPS mode when opening images without transparency #8281 [@Yay295]

Use transparency when combining P frames from APNGs #8443 [@radarhere]

Generate and upload attestations to PyPI #8441 [@hugovk]

Do not convert images unnecessarily in ImageEnhance #8431 [@radarhere]

Raise an error if path is compacted during mapping #8416 [@radarhere]

Support all resampling filters when resizing I;16* images #8422 [@radarhere]

Free memory on early return #8413 [@radarhere]

Cast int before potentially exceeding INT_MAX #8402 [@radarhere]

Prevent division by zero #8408 [@radarhere]

Check image value before use #8400 [@radarhere]

Use ruff check #8423 [@radarhere]

Change harfbuzz versions in wheels #8421 [@radarhere]

Use Capsule for WebP saving #8386 [@homm]

Fixed writing multiple StripOffsets to TIFF #8317 [@Yay295]

Updated macOS deployment target for PyPy on Intel to 10.15 #8414 [@radarhere]

Fix dereference before checking for NULL in ImagingTransformAffine #8398 [@PavlNekrasov]

Use transposed size after opening for TIFF images #8390 [@radarhere]

Improve ImageFont error messages #8338 [@yngvem]

Mention MAX_TEXT_CHUNK limit in PNG error message #8391 [@radarhere]

Cast Dib handle to int #8385 [@radarhere]

Updated macOS deployment target for Python >= 3.12 on Intel to 10.13 #8379 [@radarhere]

Removed unused ImagePath variable #8377 [@radarhere]

Change macos-14 to macos-latest #8376 [@radarhere]

Accept float stroke widths #8369 [@radarhere]

Remove comments #8370 [@radarhere]

Removed libffi-dev #8368 [@radarhere]

Improved handling of RGBA palettes when saving GIF images #8366 [@radarhere]

Support converting more modes to LAB by converting to RGBA first #8358 [@radarhere]

Optimize getbbox() and getextrema() routines #8194 [@homm]

Removed unused TiffImagePlugin IFD_LEGACY_API #8355 [@radarhere]

Handle duplicate EXIF header #8350 [@zakajd]

Use (void) for empty function parameters #8002 [@Yay295]

Return early from BoxBlur if either width or height is zero #8347 [@radarhere]

... (truncated)

Changelog

Sourced from pillow's changelog.

11.0.0 (2024-10-15)

Update licence to MIT-CMU #8460 [hugovk]

Conditionally define ImageCms type hint to avoid requiring core #8197 [radarhere]

Support writing LONG8 offsets in AppendingTiffWriter #8417 [radarhere]

Use ImageFile.MAXBLOCK when saving TIFF images #8461 [radarhere]

Do not close provided file handles with libtiff when saving #8458 [radarhere]

Support ImageFilter.BuiltinFilter for I;16* images #8438 [radarhere]

Use ImagingCore.ptr instead of ImagingCore.id #8341 [homm, radarhere, hugovk]

Updated EPS mode when opening images without transparency #8281 [Yay295, radarhere]

Use transparency when combining P frames from APNGs #8443 [radarhere]

Support all resampling filters when resizing I;16* images #8422 [radarhere]

Free memory on early return #8413 [radarhere]

Cast int before potentially exceeding INT_MAX #8402 [radarhere]

Check image value before use #8400 [radarhere]

Improved copying imagequant libraries #8420 [radarhere]

Use Capsule for WebP saving #8386 [homm, radarhere]

Fixed writing multiple StripOffsets to TIFF #8317 [Yay295, radarhere]

... (truncated)

Commits

204aae6 11.0.0 version bump
f2cc87b Update CHANGES.rst [ci skip]
c855e8e Merge pull request #8464 from radarhere/imagemath_type_hint
dc37515 Merge pull request #8463 from hugovk/update-3.13-date
c3d81d6 Update Python 3.13 release date
a60610c Added type hints
a5c58f2 Merge pull request #8460 from hugovk/mit-cmu
e74994e Update licence to MIT-CMU
b5e1115 Update CHANGES.rst [ci skip]
686b5e2 Merge pull request #8392 from radarhere/tiff_seek
Additional commits viewable in compare view

Updates ruff from 0.6.9 to 0.7.0

Release notes

Sourced from ruff's releases.

0.7.0

Release Notes

Check out the blog post for a migration guide and overview of the changes!

Breaking changes

The pytest rules PT001 and PT023 now default to omitting the decorator parentheses when there are no arguments (#12838, #13292). This was a change that we attempted to make in Ruff v0.6.0, but only partially made due to an error on our part. See the blog post for more details.

The useless-try-except rule (in our tryceratops category) has been recoded from TRY302 to TRY203 (#13502). This ensures Ruff's code is consistent with the same rule in the tryceratops linter.

The lint.allow-unused-imports setting has been removed (#13677). Use lint.pyflakes.allow-unused-imports instead.

Formatter preview style

Normalize implicit concatenated f-string quotes per part (#13539)

Preview linter features

[refurb] implement hardcoded-string-charset (FURB156) (#13530)

[refurb] Count codepoints not bytes for slice-to-remove-prefix-or-suffix (FURB188) (#13631)

Rule changes

[pylint] Mark PLE1141 fix as unsafe (#13629)

[flake8-async] Consider async generators to be "checkpoints" for cancel-scope-no-checkpoint (ASYNC100) (#13639)

[flake8-bugbear] Do not suggest setting parameter strict= to False in B905 diagnostic message (#13656)

[flake8-todos] Only flag the word "TODO", not words starting with "todo" (TD006) (#13640)

[pycodestyle] Fix whitespace-related false positives and false negatives inside type-parameter lists (E231, E251) (#13704)

[flake8-simplify] Stabilize preview behavior for SIM115 so that the rule can detect files being opened from a wider range of standard-library functions (#12959).

CLI

Add explanation of fixable in --statistics command (#13774)

Bug fixes

[pyflakes] Allow ipytest cell magic (F401) (#13745)

[flake8-use-pathlib] Fix PTH123 false positive when open is passed a file descriptor (#13616)

[flake8-bandit] Detect patterns from multi line SQL statements (S608) (#13574)

[flake8-pyi] - Fix dropped expressions in PYI030 autofix (#13727)

Contributors

@AlexWaygood

... (truncated)

Changelog

Sourced from ruff's changelog.

0.7.0

Check out the blog post for a migration guide and overview of the changes!

Breaking changes

The pytest rules PT001 and PT023 now default to omitting the decorator parentheses when there are no arguments (#12838, #13292). This was a change that we attempted to make in Ruff v0.6.0, but only partially made due to an error on our part. See the blog post for more details.

The useless-try-except rule (in our tryceratops category) has been recoded from TRY302 to TRY203 (#13502). This ensures Ruff's code is consistent with the same rule in the tryceratops linter.

The lint.allow-unused-imports setting has been removed (#13677). Use lint.pyflakes.allow-unused-imports instead.

Formatter preview style

Normalize implicit concatenated f-string quotes per part (#13539)

Preview linter features

[refurb] implement hardcoded-string-charset (FURB156) (#13530)

[refurb] Count codepoints not bytes for slice-to-remove-prefix-or-suffix (FURB188) (#13631)

Rule changes

[pylint] Mark PLE1141 fix as unsafe (#13629)

[flake8-async] Consider async generators to be "checkpoints" for cancel-scope-no-checkpoint (ASYNC100) (#13639)

[flake8-bugbear] Do not suggest setting parameter strict= to False in B905 diagnostic message (#13656)

[flake8-todos] Only flag the word "TODO", not words starting with "todo" (TD006) (#13640)

[pycodestyle] Fix whitespace-related false positives and false negatives inside type-parameter lists (E231, E251) (#13704)

[flake8-simplify] Stabilize preview behavior for SIM115 so that the rule can detect files being opened from a wider range of standard-library functions (#12959).

CLI

Add explanation of fixable in --statistics command (#13774)

Bug fixes

[pyflakes] Allow ipytest cell magic (F401) (#13745)

[flake8-use-pathlib] Fix PTH123 false positive when open is passed a file descriptor (#13616)

[flake8-bandit] Detect patterns from multi line SQL statements (S608) (#13574)

[flake8-pyi] - Fix dropped expressions in PYI030 autofix (#13727)

Commits

5e6de4e Changelog for Ruff v0.7 (#13794)
70e5c4a Recode TRY302 to TRY203 (#13502)
9218d6b Remove allow-unused-imports setting from the common lint options (#13677)
1b79ae9 [ruff-0.7] Stabilise the expansion of open-file-with-context-handler to wor...
2b87587 [flake8-pytest-style] Fix defaults when lint.flake8-pytest-style config s...
d1e15f6 Remove tab-size setting (#12835)
89a8215 Remove error messages for removed CLI aliases (#12833)
202c6a6 Remove output-format=text setting (#12836)
5c3c0c4 [red-knot] Inference for comparison of union types (#13781)
6b7a738 Add explanation of fixable in --statistics command (#13774)
Additional commits viewable in compare view

Updates zopfli from 0.2.3 to 0.2.3.post1

Release notes

Sourced from zopfli's releases.

v0.2.3.post1

Added wheels for Python 3.13. No other code changes since v0.2.3.

Commits

b28d107 Merge pull request #23 from fonttools/py313
667694a pin setuptools<72.2 on pypy to workaround build error coming from distutils
1f6b820 update ci workflows to build python 3.13 wheels
3545f04 Revert "TEMP: pretend version 0.2.3 just to build missing wheel"
eba216e TEMP: pretend version 0.2.3 just to build missing wheel
466c0e7 setup.cfg: use tar.gz for sdist, rename deprecated license_file
a15dbbf CI: forgot to build cp312 manylinux wheel... :(
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the python-packages group with 8 updates: | Package | From | To | | --- | --- | --- | | [xmltodict](https://github.com/martinblech/xmltodict) | `0.14.1` | `0.14.2` | | [sentry-sdk](https://github.com/getsentry/sentry-python) | `2.16.0` | `2.17.0` | | [anyio](https://github.com/agronholm/anyio) | `4.6.2` | `4.6.2.post1` | | [coverage](https://github.com/nedbat/coveragepy) | `7.6.3` | `7.6.4` | | [markupsafe](https://github.com/pallets/markupsafe) | `3.0.1` | `3.0.2` | | [pillow](https://github.com/python-pillow/Pillow) | `10.4.0` | `11.0.0` | | [ruff](https://github.com/astral-sh/ruff) | `0.6.9` | `0.7.0` | | [zopfli](https://github.com/fonttools/py-zopfli) | `0.2.3` | `0.2.3.post1` | Updates `xmltodict` from 0.14.1 to 0.14.2 - [Changelog](https://github.com/martinblech/xmltodict/blob/master/CHANGELOG.md) - [Commits](martinblech/xmltodict@v0.14.1...v0.14.2) Updates `sentry-sdk` from 2.16.0 to 2.17.0 - [Release notes](https://github.com/getsentry/sentry-python/releases) - [Changelog](https://github.com/getsentry/sentry-python/blob/master/CHANGELOG.md) - [Commits](getsentry/sentry-python@2.16.0...2.17.0) Updates `anyio` from 4.6.2 to 4.6.2.post1 - [Release notes](https://github.com/agronholm/anyio/releases) - [Changelog](https://github.com/agronholm/anyio/blob/master/docs/versionhistory.rst) - [Commits](agronholm/anyio@4.6.2...4.6.2.post1) Updates `coverage` from 7.6.3 to 7.6.4 - [Release notes](https://github.com/nedbat/coveragepy/releases) - [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst) - [Commits](nedbat/coveragepy@7.6.3...7.6.4) Updates `markupsafe` from 3.0.1 to 3.0.2 - [Release notes](https://github.com/pallets/markupsafe/releases) - [Changelog](https://github.com/pallets/markupsafe/blob/main/CHANGES.rst) - [Commits](pallets/markupsafe@3.0.1...3.0.2) Updates `pillow` from 10.4.0 to 11.0.0 - [Release notes](https://github.com/python-pillow/Pillow/releases) - [Changelog](https://github.com/python-pillow/Pillow/blob/main/CHANGES.rst) - [Commits](python-pillow/Pillow@10.4.0...11.0.0) Updates `ruff` from 0.6.9 to 0.7.0 - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](astral-sh/ruff@0.6.9...0.7.0) Updates `zopfli` from 0.2.3 to 0.2.3.post1 - [Release notes](https://github.com/fonttools/py-zopfli/releases) - [Commits](fonttools/py-zopfli@v0.2.3...v0.2.3.post1) --- updated-dependencies: - dependency-name: xmltodict dependency-type: direct:production update-type: version-update:semver-patch dependency-group: python-packages - dependency-name: sentry-sdk dependency-type: direct:production update-type: version-update:semver-minor dependency-group: python-packages - dependency-name: anyio dependency-type: indirect update-type: version-update:semver-patch dependency-group: python-packages - dependency-name: coverage dependency-type: indirect update-type: version-update:semver-patch dependency-group: python-packages - dependency-name: markupsafe dependency-type: indirect update-type: version-update:semver-patch dependency-group: python-packages - dependency-name: pillow dependency-type: indirect update-type: version-update:semver-major dependency-group: python-packages - dependency-name: ruff dependency-type: indirect update-type: version-update:semver-minor dependency-group: python-packages - dependency-name: zopfli dependency-type: indirect update-type: version-update:semver-patch dependency-group: python-packages ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot · 2024-10-28T04:46:48Z

Looks like these dependencies are updatable in another way, so this is no longer needed.

dependabot bot requested a review from a team as a code owner October 21, 2024 05:02

dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Oct 21, 2024

greenbonebot enabled auto-merge (rebase) October 21, 2024 05:03

dependabot bot closed this Oct 28, 2024

auto-merge was automatically disabled October 28, 2024 04:46
Pull request was closed

dependabot bot deleted the dependabot/pip/main/python-packages-3e7c4ee395 branch October 28, 2024 04:46

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Deps: Bump the python-packages group with 8 updates #932

Deps: Bump the python-packages group with 8 updates #932

dependabot bot commented on behalf of github Oct 21, 2024 •

edited

Loading

dependabot bot commented on behalf of github Oct 28, 2024

Deps: Bump the python-packages group with 8 updates #932

Deps: Bump the python-packages group with 8 updates #932

Conversation

dependabot bot commented on behalf of github Oct 21, 2024 • edited Loading

v0.14.2

2.17.0

Various fixes & improvements

2.17.0

Various fixes & improvements

Version 7.6.4 — 2024-10-20

3.0.2

Version 3.0.2

11.0.0

Changes

11.0.0 (2024-10-15)

0.7.0

Release Notes

Breaking changes

Formatter preview style

Preview linter features

Rule changes

CLI

Bug fixes

Contributors

0.7.0

Breaking changes

Formatter preview style

Preview linter features

Rule changes

CLI

Bug fixes

v0.2.3.post1

dependabot bot commented on behalf of github Oct 28, 2024

dependabot bot commented on behalf of github Oct 21, 2024 •

edited

Loading