Update types-requests requirement from ~=2.31.0.6 to ~=2.32.4.20250611 #656
Conversation
![dependabot[bot]](https://avatars.githubusercontent.com/in/29110?s=60&v=4){kind=small}
dependabot
bot
added
dependencies
--- updated-dependencies: - dependency-name: types-requests dependency-version: 2.32.4.20250611 dependency-type: direct:development ... Signed-off-by: dependabot[bot] <[email protected]>
dependabot
bot
force-pushed
the
dependabot/pip/types-requests-approx-eq-2.32.4.20250611
branch
from
0008326 to
62d63cf
Compare
![cursor[bot]](https://avatars.githubusercontent.com/in/1210556?s=60&v=4){kind=small}
There was a problem hiding this comment.
Bug: Dependency Update Mismatch
The types-requests dependency in pyproject.toml was updated to >=2.31.0.6,<2.32.5.0. This change does not align with the PR title's stated intent to update the requirement to ~=2.32.4.20250611, as it maintains the old minimum version and uses a different constraint type, failing to ensure the intended update.
pyproject.toml#L52-L53
Lines 52 to 53 in 62d63cf
Bug: Version Constraint Mismatch Causes Compatibility Issues
The types-requests version constraint in requirements-dev.txt was updated from ~=2.31.0.6 to >=2.31.0.6,<2.32.5.0. This change does not match the PR title's intent to update to ~=2.32.4.20250611. Crucially, the new range allows types-requests 2.32.x versions, which conflicts with existing comments indicating that higher versions require urllib3>=2.0 and break Python 3.8 compatibility.
requirements-dev.txt#L4-L5
atlan-python/requirements-dev.txt
Lines 4 to 5 in 62d63cf
Was this report helpful? Give feedback by reacting with 👍 or 👎
|
Superseded by #698. |
dependabot
bot
deleted the
dependabot/pip/types-requests-approx-eq-2.32.4.20250611
branch
You can trigger a rebase of this PR by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)