Bumping Dependencies (inc. pyproject.toml)#436
Conversation
Codecov ReportAll modified and coverable lines are covered by tests ✅
Additional details and impacted files@@ Coverage Diff @@
## main #436 +/- ##
=======================================
Coverage 23.80% 23.80%
=======================================
Files 41 41
Lines 1294 1294
Branches 94 94
=======================================
Hits 308 308
Misses 959 959
Partials 27 27 ☔ View full report in Codecov by Sentry. 🚀 New features to boost your workflow:
|
![greptile-apps[bot]](https://avatars.githubusercontent.com/in/867647?s=60&v=4){kind=small}
There was a problem hiding this comment.
PR Summary
This PR enhances security in GitHub Actions workflows and updates dependency version constraints in pyproject.toml for better Python version compatibility.
- Added explicit OIDC authentication for Codecov uploads in
.github/workflows/python-package.ymlwithuse_oidc: true - Updated setuptools constraints in
pyproject.tomlto 60.0.0-75.0.0 for Python 3.8 and >=75.5.0 for Python 3.9+ - Bumped debugpy to 1.8.8 and mypy to 1.13.0 in
pyproject.toml - Added Python version-specific constraints for pytest-cov and pytest-rerunfailures in
pyproject.toml - Added explicit permissions for Unit job with
contents: readandid-token: writein workflow file
💡 (1/5) You can manually trigger the bot by mentioning @greptileai in a comment!
2 file(s) reviewed, no comment(s)
Edit PR Review Bot Settings | Greptile
Nusnus
force-pushed
the
hotfix
branch
4 times, most recently
from
9738a08 to
7f7ddec
Compare
Nusnus
force-pushed
the
hotfix
branch
18 times, most recently
from
76f0a1b to
c3a0bea
Compare
There was a problem hiding this comment.
PR Summary
This PR focuses on standardizing Poetry version management and updating dependency configurations across the project. Here's a concise summary of the key changes:
- Standardized Poetry version to 1.8.4 across all GitHub Actions workflows and ReadTheDocs configuration
- Modified ReadTheDocs build process to use
poetry exportfor generating requirements.txt instead of direct Poetry installation - Added new PyPI history page link pattern to
docs/conf.pylinkcheck_ignore list - Updated urllib3 (<2.0), psutil (>=7.0.0), and debugpy (1.8.12) version constraints in
pyproject.toml
The changes ensure consistent dependency management and build processes across different environments while maintaining compatibility with various Python versions.
6 file(s) reviewed, 2 comment(s)
Edit PR Review Bot Settings | Greptile
| uses: snok/install-poetry@v1.4.1 | ||
| with: | ||
| version: 1.8.4 |
There was a problem hiding this comment.
style: Duplicate Poetry installation configuration. Consider using a reusable workflow or composite action to avoid repetition.
| { version = "*", python = ">=3.8,<3.9" }, | ||
| { version = "^0.14.0", python = ">=3.9,<4.0" }, |
There was a problem hiding this comment.
style: Using '*' as version specifier for pytest-subtests on Python 3.8 could lead to incompatibility issues. Consider specifying a version range.
1 participant
No description provided.