Skip to content

build(deps): update maturin requirement from <1.8,>=1.7.0 to >=1.7.0,<1.10 #1386

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

build(deps): update maturin requirement from <1.8,>=1.7.0 to >=1.7.0,<1.10 #1386

wants to merge 1 commit into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Aug 4, 2025
edited
Loading

Updates the requirements on maturin to permit the latest version.

Release notes

Sourced from maturin's releases.

v1.9.2

What's Changed

New Contributors

Full Changelog: PyO3/maturin@v1.9.1...v1.9.2

Changelog

Sourced from maturin's changelog.

[1.9.2]

  • Fix PEP 639 implementation, use License-Expression over License.

[1.9.1]

  • Fix absolute license file path from Cargo.toml in #2667

[1.9.0]

  • Add full PEP 639 support for project.license and project.license-files in #2647.
  • Add --compatiblity pypi to only build wheels with platform tags that can also be uploaded to PyPI. This blocks e.g. building for riscv64, which is supported by manylinux, but not by PyPI.

[1.8.7]

  • Allow specifying compression method and level, in both build and develop modes, in #2625.
  • Fix Windows free-threaded builds on Python 3.14 in #2632

[1.8.6]

  • Print a message when overriding platform tag from _PYTHON_HOST_PLATFORM in #2594
  • Use the current python interpreter's version when the abi3 feature is set with no explicit version in #2597

[1.8.5]

  • Fix release CI build

[1.8.4]

  • Install a Rust toolchain into a temporary directory when building maturin itself or a package and a Rust toolchain is missing. Set MATURIN_NO_INSTALL_RUST to disable this behavior. #2421
  • Fix broken maturin develop with latest uv in #2584
  • Add PYO3_PYTHON env var support in #2534
  • Sort RECORD file in wheel archives to make them deterministic in #2550
  • Publish wheel for loongarch64 in #2548
  • Add --compression-level option to build command in #2572

[1.8.3]

  • Fix relocating shared library for namespace modules in #2513
  • Don't install dependencies when running maturin develop --skip-install in #2504
  • Use emcc.bat to query version on Windows in #2478
  • Bump the attest-build-provenance version in the generated ci file in #2484
  • Fix platform tag on Solaris/Illumos in #2483
  • Fix cargo run uniffi-bindgen when cross compiling in #2476

[1.8.2]

  • Exclude packages not in the dependency tree when finding bindings in #2426
  • Use uv automatically when running maturin develop inside uv-created virtualenv in #2433

... (truncated)

Commits
  • f18f776 Release v1.9.2
  • ef3dda2 Fix PEP 639 implementation, use License-Expression over License (#2695)
  • f6d6a69 Update manylinux/musllinux policies to the latest main (#2693)
  • 52f7e64 [pre-commit.ci] pre-commit autoupdate (#2687)
  • 7402a48 pyproject.toml: add license-files (#2690)
  • a50defe [pre-commit.ci] pre-commit autoupdate (#2682)
  • c8ce04b Add copilot setup steps to customize copilot agent environment
  • 7bb2209 Use user-specified library search paths in RUSTFLAGS in auditwheel (#2676)
  • b876182 auditwheel: add manylinux_2_26 policy (#2677)
  • 4fb4991 Only use all_features=true in sdist when local path dependencies exist (#2674)
  • Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot
build(deps): update maturin requirement
0fa99bf 
Updates the requirements on [maturin](https://github.com/pyo3/maturin) to permit the latest version.
- [Release notes](https://github.com/pyo3/maturin/releases)
- [Changelog](https://github.com/PyO3/maturin/blob/main/Changelog.md)
- [Commits](PyO3/maturin@v1.7.0...v1.9.2)

---
updated-dependencies:
- dependency-name: maturin
  dependency-version: 1.9.2
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Aug 4, 2025
@meta-cla meta-cla bot added the CLA Signed This label is managed by the Facebook bot. Authors need to sign the CLA before a PR can be reviewed. label Aug 4, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

CLA Signed This label is managed by the Facebook bot. Authors need to sign the CLA before a PR can be reviewed. dependencies Pull requests that update a dependency file python Pull requests that update Python code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants