Skip to content

deps: bump the other-dependencies group with 5 updates #151

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
dependabot wants to merge 1 commit into from
Closed

deps: bump the other-dependencies group with 5 updates #151

dependabot wants to merge 1 commit into from
+5 −5

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 20, 2026
edited
Loading

Bumps the other-dependencies group with 5 updates:

Package From To
asttokens 3.0.0 3.0.1
bleach[css] 6.2.0 6.3.0
cffi 1.17.1 2.0.0
executing 2.1.0 2.2.1
tenacity 9.0.0 9.1.2

Updates asttokens from 3.0.0 to 3.0.1

Commits
  • bdbf396 Update mypy; add 3.14 to the CI; drop python 3.8 support (#167)
  • f859c05 Add tests for astroid v2, v3, and v4 to the CI (#166)
  • 84ef059 Adapt asttokens for astroid 4.x (#165)
  • 9db9335 Various links improvements (#163)
  • 3371ebf Merge pull request #161 from gristlabs/dependabot/pip/docs/requests-2.32.4
  • 3a60115 Bump requests from 2.32.2 to 2.32.4 in /docs
  • 584b51c Merge pull request #160 from gristlabs/dependabot/pip/docs/urllib3-2.5.0
  • 3e9d703 Bump urllib3 from 2.2.2 to 2.5.0 in /docs
  • 64d3f7c Merge pull request #158 from gristlabs/dependabot/pip/docs/jinja2-3.1.6
  • 9b5fb1a Bump jinja2 from 3.1.4 to 3.1.6 in /docs
  • Additional commits viewable in compare view

Updates bleach[css] from 6.2.0 to 6.3.0

Changelog

Sourced from bleach[css]'s changelog.

Version 6.3.0 (October 27th, 2025)

Backwards incompatible changes

  • Dropped support for Python 3.9. (#756)

Security fixes

None

Bug fixes

  • Add support for Python 3.14. (#758)
  • Fix wbr handling. (#488)
Commits
  • 5546d5d chore: prep for 6.3.0 release
  • 88df3ff chore: fix readthedocs
  • d8b2fb4 fix: fix wbr handling (#488)
  • 55e48ce chore: add support for Python 3.14 (#758)
  • a4d6cdd chore: drop support for Python 3.9 (#756)
  • 172d92f Bump actions/setup-python from 5.6.0 to 6.0.0
  • df88612 Bump actions/checkout from 4.2.2 to 5.0.0
  • cbcf6b1 Bump actions/cache from 4.2.3 to 4.3.0
  • d9aa7ef Switch from dependabot reviewers to CODEOWNERS
  • 06f0f76 Update setuptools, wheel, and twine for devs
  • Additional commits viewable in compare view

Updates cffi from 1.17.1 to 2.0.0

Release notes

Sourced from cffi's releases.

v2.0.0

What's Changed

  • Add Python 3.14 support.
  • Add CPython free-threaded support (3.14t+ only) - huge thanks to the folks at Quansight Labs for all the work to get this one sorted!
  • Drop Python <= 3.8 support.
  • Fix order dependency affecting nested type size calculation (#148).

Full Changelog: python-cffi/cffi@v1.17.1...v2.0.0

v2.0.0b1

What's Changed

  • Add Python 3.14 support.
  • Add CPython free-threaded support (3.14t+ only).
  • Drop Python <= 3.8 support.
  • Fix order dependency affecting nested type size calculation (#148).

Full Changelog: python-cffi/cffi@v1.17.1...v2.0.0b1

Commits
  • 6366c01 release 2.0.0 (#196)
  • 95c8476 2.0.0 post beta backports (#195)
  • 195cbda Release 2.0.0b1 (#183)
  • b4bbe79 fix version test to support beta
  • 7ed073d Add support for the free-threaded build (#178)
  • 67a170d Change the license from MIT to MIT-no-attribution, which is the same without ...
  • 92645ec Add Python 3.14 support/testing (#177)
  • 2b81170 doc: update test commands in Section Testing/development tips (#158)
  • 25172b8 doc: update year (#153)
  • b57a92c issue 147: force-compute nested structs before parent structs. Occurs mainly...
  • Additional commits viewable in compare view

Updates executing from 2.1.0 to 2.2.1

Commits
  • bafb305 Add 3.14 to classifiers
  • 5ed2ba3 Merge pull request #97 from alexmojaki/3.14
  • 28095d4 refactor: review changes
  • bb09dc6 refactor: some cleanup
  • dabc70e fix: inst.argval can be a tuple for sometimes
  • 0772f91 fix: removed comments
  • bacc5b6 fix: moved verification for CALL_INTRINSIC_2 back to 3.13
  • ec09075 test: added sample_results for 3.14
  • 9405fed fix: handle synthetic code to store annotation
  • f09e4cd fix: TypeVar defaults
  • Additional commits viewable in compare view

Updates tenacity from 9.0.0 to 9.1.2

Release notes

Sourced from tenacity's releases.

9.1.2

Full Changelog: jd/tenacity@9.1.1...9.1.2

9.1.1

What's Changed

New Contributors

Full Changelog: jd/tenacity@9.0.0...9.1.0

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update python code labels Jan 20, 2026
@coderabbitai
Copy link

coderabbitai bot commented Jan 20, 2026

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Comment @coderabbitai help to get the list of available commands and usage tips.

@github-actions
Copy link
Contributor

github-actions bot commented Jan 20, 2026

📖 Documentation Preview

The documentation for this PR has been built and is available at:
🔗 View Preview

This preview will be updated automatically when you push new commits to this PR.

Preview built from commit: eb5a3ed

github-actions bot added a commit that referenced this pull request Jan 20, 2026
@github-actions
Deploy PR #151 preview [skip ci]
6bbbb0f
@dependabot dependabot bot force-pushed the dependabot/pip/other-dependencies-116a0bb1a3 branch 2 times, most recently from 1eb91a3 to 5e2b995 Compare January 20, 2026 23:05
@github-actions
Copy link
Contributor

github-actions bot commented Jan 20, 2026

📖 Documentation Preview

The documentation for this PR has been built and is available at:
🔗 View Preview

This preview will be updated automatically when you push new commits to this PR.

Preview built from commit: 4931119

github-actions bot added a commit that referenced this pull request Jan 20, 2026
@github-actions
Deploy PR #151 preview [skip ci]
e4f6629
@github-actions
Copy link
Contributor

github-actions bot commented Jan 20, 2026

📖 Documentation Preview

The documentation for this PR has been built and is available at:
🔗 View Preview

This preview will be updated automatically when you push new commits to this PR.

Preview built from commit: c7f0d72

github-actions bot added a commit that referenced this pull request Jan 20, 2026
@github-actions
Deploy PR #151 preview [skip ci]
c87e6dd
@dependabot
deps: bump the other-dependencies group with 5 updates
0b1cd40 
Bumps the other-dependencies group with 5 updates:

| Package | From | To |
| --- | --- | --- |
| [asttokens](https://github.com/gristlabs/asttokens) | `3.0.0` | `3.0.1` |
| [bleach[css]](https://github.com/mozilla/bleach) | `6.2.0` | `6.3.0` |
| [cffi](https://github.com/python-cffi/cffi) | `1.17.1` | `2.0.0` |
| [executing](https://github.com/alexmojaki/executing) | `2.1.0` | `2.2.1` |
| [tenacity](https://github.com/jd/tenacity) | `9.0.0` | `9.1.2` |


Updates `asttokens` from 3.0.0 to 3.0.1
- [Commits](gristlabs/asttokens@v3.0.0...v3.0.1)

Updates `bleach[css]` from 6.2.0 to 6.3.0
- [Changelog](https://github.com/mozilla/bleach/blob/main/CHANGES)
- [Commits](mozilla/bleach@v6.2.0...v6.3.0)

Updates `cffi` from 1.17.1 to 2.0.0
- [Release notes](https://github.com/python-cffi/cffi/releases)
- [Commits](python-cffi/cffi@v1.17.1...v2.0.0)

Updates `executing` from 2.1.0 to 2.2.1
- [Release notes](https://github.com/alexmojaki/executing/releases)
- [Commits](alexmojaki/executing@v2.1.0...v2.2.1)

Updates `tenacity` from 9.0.0 to 9.1.2
- [Release notes](https://github.com/jd/tenacity/releases)
- [Commits](jd/tenacity@9.0.0...9.1.2)

---
updated-dependencies:
- dependency-name: asttokens
  dependency-version: 3.0.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: other-dependencies
- dependency-name: bleach[css]
  dependency-version: 6.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: other-dependencies
- dependency-name: cffi
  dependency-version: 2.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: other-dependencies
- dependency-name: executing
  dependency-version: 2.2.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: other-dependencies
- dependency-name: tenacity
  dependency-version: 9.1.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: other-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/pip/other-dependencies-116a0bb1a3 branch from 5e2b995 to 0b1cd40 Compare January 20, 2026 23:30
@github-actions
Copy link
Contributor

github-actions bot commented Jan 20, 2026

📖 Documentation Preview

The documentation for this PR has been built and is available at:
🔗 View Preview

This preview will be updated automatically when you push new commits to this PR.

Preview built from commit: 8dfcf88

github-actions bot added a commit that referenced this pull request Jan 20, 2026
@github-actions
Deploy PR #151 preview [skip ci]
1b22b0e
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Jan 21, 2026

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Jan 21, 2026
@dependabot dependabot bot deleted the dependabot/pip/other-dependencies-116a0bb1a3 branch January 21, 2026 16:04
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python Pull requests that update python code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant