chore(deps): Bump the dependencies group across 1 directory with 11 updates

[dependabot]

Bumps the dependencies group with 10 updates in the / directory:

Package	From	To
django-cors-headers	4.6.0	4.7.0
django-environ	0.11.2	0.12.0
pytest	8.3.4	8.3.5
factory-boy	3.3.1	3.3.3
pytest-django	4.9.0	4.10.0
python-dotenv	1.0.1	1.1.0
sentry-sdk	2.19.2	2.25.0
pytz	2024.2	2025.2
whitenoise	6.8.2	6.9.0
pre-commit	4.0.1	4.2.0

Updates django-cors-headers from 4.6.0 to 4.7.0

Changelog

Sourced from django-cors-headers's changelog.

4.7.0 (2025-02-06)

• Support Django 5.2.

Commits

• 9568acb Version 4.7.0
• 14e1129 Support Django 5.2 (#988)
• 4c551e9 Run pre-commit, coverage, and readthedocs on Python 3.13
• 88c0c48 Upgrade django-stubs to 5.1.2
• 0bb6fe5 Upgrade Black used by blacken-docs to 25.1.0
• 0d20b5a [pre-commit.ci] pre-commit autoupdate (#987)
• 81c98d9 Upgrade requirements (#986)
• beac952 [pre-commit.ci] pre-commit autoupdate (#985)
• de836c8 Bump astral-sh/setup-uv from 4 to 5 in the github-actions group (#984)
• 4d3a833 Upgrade requirements (#982)
• Additional commits viewable in compare view

Updates django from 5.1.3 to 5.1.7

Commits

• 691e945 [5.1.x] Bumped version for 5.1.7 release.
• 8dbb44d [5.1.x] Fixed CVE-2025-26699 -- Mitigated potential DoS in wordwrap template ...
• d7dc1f6 [5.1.x] Fixed typo in docs/ref/checks.txt.
• dbd94e7 [5.1.x] Fixed #36227 -- Fixed outdated PostgreSQL documentation links.
• cc405e1 [5.1.x] Fixed #36128 -- Clarified auto-generated unique constraint on m2m thr...
• 03ace75 [5.1.x] Fixed #36217 -- Restored pre_save/post_save signal emission via LogEn...
• 76a9f12 [5.1.x] Added some heading labels to to docs/topics/cache.txt.
• 558c616 [5.1.x] Added stub release notes and release date for 5.1.7, 5.0.13, and 4.2.20.
• 11243cc [5.1.x] Added security guideline on reasonable size limitations when renderin...
• b80288a [5.1.x] Added security reporting guidelines.
• Additional commits viewable in compare view

Updates django-environ from 0.11.2 to 0.12.0

Release notes

Sourced from django-environ's releases.

v0.12.0

Fixed Include prefix in the ImproperlyConfigured error message #513.

Added Add support for Python 3.12 and 3.13 #538.

Add support for Django 5.1 #535.

Add support for Django CockroachDB driver #509.

Add support for Django Channels #266.

Changed Disabled inline comments handling by default due to potential side effects. While the feature itself is useful, the project’s philosophy dictates that it should not be enabled by default for all users #499.

Removed Removed support of Python 3.6, 3.7 and 3.8 #538.

Removed support of Django 1.x. #538.

Changelog

Sourced from django-environ's changelog.

v0.12.0_ - 8-November-2024

Fixed +++++

• Include prefix in the ImproperlyConfigured error message [#513](https://github.com/joke2k/django-environ/issues/513) <https://github.com/joke2k/django-environ/issues/513>_.

Added +++++

• Add support for Python 3.12 and 3.13 [#538](https://github.com/joke2k/django-environ/issues/538) <https://github.com/joke2k/django-environ/issues/538>_.
• Add support for Django 5.1 [#535](https://github.com/joke2k/django-environ/issues/535) <https://github.com/joke2k/django-environ/issues/535>_.
• Add support for Django CockroachDB driver [#509](https://github.com/joke2k/django-environ/issues/509) <https://github.com/joke2k/django-environ/issues/509>_.
• Add support for Django Channels [#266](https://github.com/joke2k/django-environ/issues/266) <https://github.com/joke2k/django-environ/issues/266>_.

Changed +++++++

• Disabled inline comments handling by default due to potential side effects. While the feature itself is useful, the project's philosophy dictates that it should not be enabled by default for all users [#499](https://github.com/joke2k/django-environ/issues/499) <https://github.com/joke2k/django-environ/issues/499>_.

Removed +++++++

• Removed support of Python 3.6, 3.7 and 3.8 [#538](https://github.com/joke2k/django-environ/issues/538) <https://github.com/joke2k/django-environ/issues/538>_.
• Removed support of Django 1.x. [#538](https://github.com/joke2k/django-environ/issues/538) <https://github.com/joke2k/django-environ/issues/538>_.

Commits

• 176e812 Merge pull request #545 from joke2k/develop
• 993b36c Merge branch 'main' into develop
• 00c8203 Update change log
• 8e844ac Correct code style
• 6abdb86 Add tests for kwarg overriding engine/backend from urls
• d92e11b Update change log
• 60164fd chore: Prefer Redis default port 6379
• 8b70d9f feat: Redis Pub/Sub
• 8729165 feat: Channels URL support
• 0f2e088 Update change log
• Additional commits viewable in compare view

Updates pytest from 8.3.4 to 8.3.5

Release notes

Sourced from pytest's releases.

8.3.5

pytest 8.3.5 (2025-03-02)

Bug fixes

• #11777: Fixed issue where sequences were still being shortened even with -vv verbosity.
• #12888: Fixed broken input when using Python 3.13+ and a libedit build of Python, such as on macOS or with uv-managed Python binaries from the python-build-standalone project. This could manifest e.g. by a broken prompt when using Pdb, or seeing empty inputs with manual usage of input() and suspended capturing.
• #13026: Fixed AttributeError{.interpreted-text role="class"} crash when using --import-mode=importlib when top-level directory same name as another module of the standard library.
• #13053: Fixed a regression in pytest 8.3.4 where, when using --import-mode=importlib, a directory containing py file with the same name would cause an ImportError
• #13083: Fixed issue where pytest could crash if one of the collected directories got removed during collection.

Improved documentation

• #12842: Added dedicated page about using types with pytest.

  See types{.interpreted-text role="ref"} for detailed usage.

Contributor-facing changes

• #13112: Fixed selftest failures in test_terminal.py with Pygments >= 2.19.0
• #13256: Support for Towncrier versions released in 2024 has been re-enabled when building Sphinx docs -- by webknjaz{.interpreted-text role="user"}.

Commits

• b55ab2a Prepare release version 8.3.5
• e217726 Added dedicated page about using types with pytest #12842 (#12963) (#13260)
• 2fa3f83 Add more resources and studies to flaky tests page in docs (#13250) (#13259)
• e5c2efe Merge pull request #13256 from webknjaz/maintenance/towncrier-bump (#13258)
• 3419674 Merge pull request #13187 from pytest-dev/patchback/backports/8.3.x/b4009b319...
• b75cfb1 Add readline workaround for libedit (#13176)
• edbfff7 doc: Clarify capturing .readouterr() return value (#13222) (#13225)
• 2ebba00 Merge pull request #13199 from jakkdl/tox_docs_no_fetch (#13200)
• eb6496b doc: Change training to remote only (#13196) (#13197)
• 78cf1f6 ci: Bump build-and-inspect-python-package (#13188)
• Additional commits viewable in compare view

Updates factory-boy from 3.3.1 to 3.3.3

Changelog

Sourced from factory-boy's changelog.

3.3.3 (2025-02-03)

New:

• Publish type annotations

3.3.2 (2025-02-03)

Bugfix:

• Fix docs generation

New:

• Add support for Python 3.13

Commits

• f82a7bf Preparing release 3.3.3
• 336b72f Export type annotations
• aec0b19 Announce support for intermediate Django versions
• fa397a2 Fix comment, as caught in #1108
• 8b75576 Back to development: 3.3.3
• 11a9acf Preparing release 3.3.2
• c463536 Update Changelog
• 6f5f6a0 Fix tox.ini config for Django "main"
• 68cb77c Replace Python 3.8 with 3.13 in testing matrix
• e007ef7 fixup! Update readthedocs build configuration
• Additional commits viewable in compare view

Updates pytest-django from 4.9.0 to 4.10.0

Release notes

Sourced from pytest-django's releases.

v4.10.0

https://github.com/pytest-dev/pytest-django/blob/main/docs/changelog.rst#v4100-2025-02-10

Changelog

Sourced from pytest-django's changelog.

v4.10.0 (2025-02-10)

Compatibility ^^^^^^^^^^^^^

• Added official support for Python 3.13.

Improvements ^^^^^^^^^^^^

• Added using argument to :fixture:django_assert_num_queries and :fixture:django_assert_max_num_queries to easily specify the database alias to use.

Bugfixes ^^^^^^^^

• Fixed lock/unlock of db breaks if pytest is executed twice in the same process.

Commits

• d8dc3d9 Release 4.10.0
• 50a5578 build(deps): bump hynek/build-and-inspect-python-package
• 54a5950 build(deps): bump pypa/gh-action-pypi-publish from 1.10.0 to 1.12.4
• c030eb9 Bump codecov/codecov-action from 4 to 5
• 0ee43ef Adds using to django_assert_num_queries (#1170)
• c3018d6 Developer QOL (#1174)
• 120c2a5 ci: update runs-on to ubuntu 24.04
• ba6c6a6 tox: update ruff and mypy
• e2c6cee Add Python 3.13 support
• f422f1d Remove setup.py file
• Additional commits viewable in compare view

Updates python-dotenv from 1.0.1 to 1.1.0

Release notes

Sourced from python-dotenv's releases.

v1.1.0

What's Changed

• Add a security policy by @​bbc2 in theskumar/python-dotenv#512
• Keep GitHub Actions up to date with GitHub's Dependabot by @​cclauss in theskumar/python-dotenv#506
• ci: fix multiline string in test.yml & use fail-fast strategy by @​cclauss in theskumar/python-dotenv#514
• Enhance dotenv run: Switch to execvpe for better resource management and signal handling by @​eekstunt in theskumar/python-dotenv#523
• ci: add py3.13 to test.yml by @​waketzheng in theskumar/python-dotenv#527
• Add Python 3.13 trove classifier by @​edgarrmondragon in theskumar/python-dotenv#535
• Bump the github-actions group with 2 updates by @​dependabot in theskumar/python-dotenv#529
• Add support for python 3.13 and drop 3.8 by @​theskumar in theskumar/python-dotenv#551
• docs: Update README.md by @​chapeupreto in theskumar/python-dotenv#516
• Some more s/Python-dotenv/python-dotenv/ by @​theskumar in theskumar/python-dotenv#552
• add _is_debugger so load_dotenv will work in pdb by @​randomseed42 in theskumar/python-dotenv#553

New Contributors

• @​eekstunt made their first contribution in theskumar/python-dotenv#523
• @​waketzheng made their first contribution in theskumar/python-dotenv#527
• @​edgarrmondragon made their first contribution in theskumar/python-dotenv#535
• @​dependabot made their first contribution in theskumar/python-dotenv#529
• @​chapeupreto made their first contribution in theskumar/python-dotenv#516
• @​randomseed42 made their first contribution in theskumar/python-dotenv#553

Full Changelog: theskumar/python-dotenv@v1.0.1...v1.1.0

Changelog

Sourced from python-dotenv's changelog.

[1.1.0] - 2025-03-25

Feature

• Add support for python 3.13
• Enhance dotenv run, switch to execvpe for better resource management and signal handling (#523) by [@​eekstunt]

Fixed

• find_dotenv and load_dotenv now correctly looks up at the current directory when running in debugger or pdb (#553 by [@​randomseed42])

Misc

• Drop support for Python 3.8

Commits

• 6a02ef5 update mkdocs -> mkdocstrings config
• 36c6270 Update changelog
• 2198b69 Bump version: 1.0.1 → 1.1.0
• c89fb6d Update changelog
• 8dd413e Add _is_debugger so load_dotenv will work in pdb (#553)
• 9acba4a Some more s/Python-dotenv/python-dotenv/ (#552)
• 3c19c03 s/Python-dotenv/python-dotenv/ (#516)
• 4159388 Add support for python 3.13 and drop 3.8 (#551)
• 2b8635b Bump the github-actions group with 2 updates (#529)
• 533f8ac Add Python 3.13 trove classifier (#535)
• Additional commits viewable in compare view

Updates sentry-sdk from 2.19.2 to 2.25.0

Release notes

Sourced from sentry-sdk's releases.

2.25.0

Various fixes & improvements

• New Beta Feature Enable Sentry logs in logging Integration (#4143) by @​colin-sentry

  You can now send existing log messages to the new Sentry Logs feature.

  For more information see: Logs in Sentry 🚀 - Generally Available getsentry/sentry#86804

  This is how you can use it (Sentry Logs is in beta right now so the API can still change):

  import logging
  import sentry_sdk
  from sentry_sdk.integrations.logging import LoggingIntegration
  Setup Sentry SDK to send log messages with a level of "error" or higher to Sentry.
  sentry_sdk.init(
  dsn="...",
  _experiments={
  "enable_sentry_logs": True
  }
  integrations=[
  LoggingIntegration(sentry_logs_level=logging.ERROR),
  ]
  )
  Your existing logging setup
  some_logger = logging.Logger("some-logger")
  some_logger.info('In this example info events will not be sent to Sentry logs. my_value=%s', my_value)
  some_logger.error('But error events will be sent to Sentry logs. my_value=%s', my_value)

• Spotlight: Sample everything 100% w/ Spotlight & no DSN set (#4207) by @​BYK

• Dramatiq: use set_transaction_name (#4175) by @​timdrijvers

• toxgen: Make it clearer which suites can be migrated (#4196) by @​sentrivana

• Move Litestar under toxgen (#4197) by @​sentrivana

• Added flake8 plugings to pre-commit call of flake8 (#4190) by @​antonpirker

• Deprecate Scope.user (#4194) by @​sentrivana

• Fix hanging when capturing long stacktrace (#4191) by @​szokeasaurusrex

• Fix GraphQL failures (#4208) by @​sentrivana

• Fix flaky test (#4198) by @​sentrivana

• Update Ubuntu in Github test runners (#4204) by @​antonpirker

2.24.1

Various fixes & improvements

• Always set _spotlight_url (#4186) by @​BYK

... (truncated)

Changelog

Sourced from sentry-sdk's changelog.

2.25.0

Various fixes & improvements

• New Beta Feature Enable Sentry logs in logging Integration (#4143) by @​colin-sentry

  You can now send existing log messages to the new Sentry Logs feature.

  For more information see: Logs in Sentry 🚀 - Generally Available getsentry/sentry#86804

  This is how you can use it (Sentry Logs is in beta right now so the API can still change):

  import logging
  import sentry_sdk
  from sentry_sdk.integrations.logging import LoggingIntegration
  Setup Sentry SDK to send log messages with a level of "error" or higher to Sentry.
  sentry_sdk.init(
  dsn="...",
  _experiments={
  "enable_sentry_logs": True
  }
  integrations=[
  LoggingIntegration(sentry_logs_level=logging.ERROR),
  ]
  )
  Your existing logging setup
  some_logger = logging.Logger("some-logger")
  some_logger.info('In this example info events will not be sent to Sentry logs. my_value=%s', my_value)
  some_logger.error('But error events will be sent to Sentry logs. my_value=%s', my_value)

• Spotlight: Sample everything 100% w/ Spotlight & no DSN set (#4207) by @​BYK

• Dramatiq: use set_transaction_name (#4175) by @​timdrijvers

• toxgen: Make it clearer which suites can be migrated (#4196) by @​sentrivana

• Move Litestar under toxgen (#4197) by @​sentrivana

• Added flake8 plugings to pre-commit call of flake8 (#4190) by @​antonpirker

• Deprecate Scope.user (#4194) by @​sentrivana

• Fix hanging when capturing long stacktrace (#4191) by @​szokeasaurusrex

• Fix GraphQL failures (#4208) by @​sentrivana

• Fix flaky test (#4198) by @​sentrivana

• Update Ubuntu in Github test runners (#4204) by @​antonpirker

2.24.1

Various fixes & improvements

... (truncated)

Commits

• 44cd9b7 Merge branch 'master' into release/2.25.0
• fae17b3 Pin fakeredis until rq can work with the new version (#4216)
• 711816b Updated changelog
• 8841b1f release: 2.25.0
• 3b28649 feat: Sample everything 100% w/ Spotlight & no DSN set (#4207)
• 4aaadf4 Update Ubuntu in Github test runners (#4204)
• 3d2f044 ci: Fix GraphQL failures (#4208)
• e432fb4 fix: Don't hang when capturing long stacktrace (#4191)
• 2f4b028 feat(logs): Make the logging integration send Sentry logs (#4143)
• 6f49bfb toxgen: Make it clearer which suites can be migrated (#4196)
• Additional commits viewable in compare view

Updates pytz from 2024.2 to 2025.2

Commits

• 82e0891 Bump version numbers to 2024.2 (2024b)
• 277b33c IANA 2025b
• 07d8e91 Squashed 'tz/' changes from a8e2fcd87b..a84610f010
• 00ad7f1 Bump version numbers to 2025.1 / 2025a
• 7abdc14 Squashed 'tz/' changes from 6903dde39e..5ad5cfba5b
• f3a8f38 IANA 2025a
• See full diff in compare view

Updates whitenoise from 6.8.2 to 6.9.0

Changelog

Sourced from whitenoise's changelog.

6.9.0 (2025-02-06)

• Support Django 5.2.

Commits

• 62fbf7a Version 6.9.0
• 3bd4c67 Support Django 5.2 (#633)
• ae3fa94 Run pre-commit, coverage, and readthedocs on Python 3.13
• 9ee33c9 Upgrade Black used by blacken-docs to 25.1.0
• fd735f6 [pre-commit.ci] pre-commit autoupdate (#632)
• 80b8941 Remove documentation note on old request_finished bug (#631)
• 85f2ad9 Upgrade requirements (#624)
• 2cafe86 [pre-commit.ci] pre-commit autoupdate (#623)
• 1093c9a Bump astral-sh/setup-uv from 4 to 5 in the github-actions group (#622)
• 36c8b3e Upgrade requirements (#620)
• Additional commits viewable in compare view

Updates pre-commit from 4.0.1 to 4.2.0

Release notes

Sourced from pre-commit's releases.

pre-commit v4.2.0

Features

• For language: python first attempt a versioned python executable for the default language version before consulting a potentially unversioned sys.executable.
  • #3430 PR by @​asottile.

Fixes

• Handle error during conflict detection when a file is named "HEAD"
  • #3425 PR by @​tusharsadhwani.

pre-commit v4.1.0

Features

• Add language: julia.
  • #3348 PR by @​fredrikekre.
  • #2689 issue @​jmuchovej.

Fixes

• Disable automatic toolchain switching for language: golang.
  • #3304 PR by @​AleksaC.
  • #3300 issue by @​AleksaC.
  • #3149 issue by @​nijel.
• Fix language: r installation when initiated by RStudio.
  • #3389 PR by @​lorenzwalthert.
  • #3385 issue by @​lorenzwalthert.

Changelog

Sourced from pre-commit's changelog.

4.2.0 - 2025-03-18

Features

• For language: python first attempt a versioned python executable for the default language version before consulting a potentially unversioned sys.executable.
  • #3430 PR by @​asottile.

Fixes

• Handle error during conflict detection when a file is named "HEAD"
  • #3425 PR by @​tusharsadhwani.

4.1.0 - 2025-01-20

Features

• Add language: julia.
  • #3348 PR by @​fredrikekre.
  • #2689 issue @​jmuchovej.

Fixes

• Disable automatic toolchain switching for language: golang.
  • #3304 PR by @​AleksaC.
  • #3300 issue by @​AleksaC.
  • #3149 issue by @​nijel.
• Fix language: r installation when initiated by RStudio.
  • #3389 PR by @​lorenzwalthert.
  • #3385 issue by @​lorenzwalthert.

Commits

• aa48766 v4.2.0
• bf6f11d Merge pull request #3430 from pre-commit/preferential-sys-impl
• 3e8d0f5 adjust python default_language_version to prefer versioned exe
• ff7256c Merge pull request #3425 from tusharsadhwani/ambiguous-ref
• b7eb412 fix: crash on ambiguous ref 'HEAD'
• 7b88c63 Merge pull request #3404 from pre-commit/pre-commit-ci-update-config
• 94b97e2 [pre-commit.ci] pre-commit autoupdate
• 2f93b80 Merge pull request #3401 from pre-commit/pre-commit-ci-update-config
• 4f90a1e [pre-commit.ci] pre-commit autoupdate
• aba1ce0 Merge pull request #3396 from pre-commit/all-repos_autofix_all-repos-sed
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.