Skip to content

Build(deps): Bump the minor group with 2 updates #53

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

Build(deps): Bump the minor group with 2 updates #53

wants to merge 1 commit into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github May 1, 2025
edited
Loading

Bumps the minor group with 2 updates: nox and setuptools-scm[toml].

Updates nox from 2025.2.9 to 2025.5.1

Release notes

Sourced from nox's releases.

2025.05.01 🌸

This is a bugfix release that primarily adds support for uv 0.7+. A few other small fixes were made.

We'd like to thank the following folks who contributed to this release:

Bugfixes:

Documentation:

Internal changes:

Changelog

Sourced from nox's changelog.

Changelog

2025.05.01

This is a bugfix release that primarily adds support for uv 0.7+. A few other small fixes were made.

We'd like to thank the following folks who contributed to this release:

Bugfixes:

Documentation:

Internal changes:

2025.02.09

This release improves PEP 723 support, including adding dependencies to the noxfile itself ("plugins"). It adds the long-awaited "requires" option, allowing sessions to require other sessions. And it brings further improvements to the pyproject.toml support, including helpers for dependency-groups and Python version lists.

We'd like to thank the following folks who contributed to this release:

... (truncated)

Commits
  • 2254a1e chore: bump version to 2025.05.01 (#960)
  • e0b5e33 fix: conda_install issue with newer conda (#957)
  • a58fe60 fix: support forcing Python on parametrized session (#958)
  • aa475d6 fix: add UV_PYTHON to disallowed vars (#959)
  • 1acbb4e chore: use PEP 639 license (#956)
  • 7219be7 chore(deps): bump astral-sh/setup-uv from 5 to 6 in the actions group (#952)
  • b943f95 fix: uv version is now uv self version, support UV (#955)
  • 1d52c8f Never ignore URL dependencies in PEP 723 noxfiles (#935)
  • 4e7f644 feat: show skip reason by default (#941)
  • 70df6ab fix: use Python 3.12 for action, allow 3.13, drop 3.8 from auto versions (#946)
  • Additional commits viewable in compare view

Updates setuptools-scm[toml] from 8.2.0 to 8.3.1

Release notes

Sourced from setuptools-scm[toml]'s releases.

v8.3.1

What's Changed

Full Changelog: pypa/setuptools-scm@v8.3.0...v8.3.1

v8.3.0

What's Changed

New Contributors

Full Changelog: pypa/setuptools-scm@v8.2.1...v8.3.0

Changelog

Sourced from setuptools-scm[toml]'s changelog.

v8.3.1

Fixed

  • fixed #1131: allow self-build without importlib_metadata avaliable on python3.9

v8.3.0

Fixed

  • fix #1013: use modern importlib_metadata in all cases to dedup distribution objects that must shadow based on pythonpath priority starting with python 3.10 this is part of python itself

v8.2.1 (yanked due to legacy python issues)

Fixed

  • fix #1119: also include pre/post release details in version_tuple
  • fix #1112: unpin setuptools for own dependencies due to ubuntu lts bugs
  • add python 3.13 to the support matrix
Commits
  • b6a2022 Merge pull request #1132 from RonnyPfannschmidt/self-build-no-importlib
  • 15dca67 fix #1131: allow self-build without importlib_metadata
  • cd5c8a0 Merge pull request #1130 from RonnyPfannschmidt/fix-1013-importlib-dedup
  • 0a07be8 changelog
  • 1f7abea [pre-commit.ci] pre-commit autoupdate (#1129)
  • e79a57a migrate to selectable entrypoints
  • 9fcaffa remove setuptools pin again - needs a breaking release
  • fc2d841 use importlib_metadata on python <3.10
  • 1bd767d Fixed typo (#1128)
  • bce5cfc [pre-commit.ci] pre-commit autoupdate (#1126)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Build(deps): Bump the minor group with 2 updates
63c674f 
Bumps the minor group with 2 updates: [nox](https://github.com/wntrblm/nox) and [setuptools-scm[toml]](https://github.com/pypa/setuptools-scm).


Updates `nox` from 2025.2.9 to 2025.5.1
- [Release notes](https://github.com/wntrblm/nox/releases)
- [Changelog](https://github.com/wntrblm/nox/blob/main/CHANGELOG.md)
- [Commits](wntrblm/nox@2025.02.09...2025.05.01)

Updates `setuptools-scm[toml]` from 8.2.0 to 8.3.1
- [Release notes](https://github.com/pypa/setuptools-scm/releases)
- [Changelog](https://github.com/pypa/setuptools-scm/blob/main/CHANGELOG.md)
- [Commits](pypa/setuptools-scm@v8.2.0...v8.3.1)

---
updated-dependencies:
- dependency-name: nox
  dependency-version: 2025.5.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor
- dependency-name: setuptools-scm[toml]
  dependency-version: 8.3.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added part:tooling Affects the development tooling (CI, deployment, dependency management, etc.) type:tech-debt Improves the project without visible changes for users labels May 1, 2025
@dependabot dependabot bot requested a review from a team as a code owner May 1, 2025 21:54
@dependabot dependabot bot requested a review from daniel-zullo-frequenz May 1, 2025 21:54
llucax
llucax approved these changes May 5, 2025
View reviewed changes
Copy link
Contributor

@llucax llucax left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Automatically approved via dependabot-automerge.

@llucax llucax added this pull request to the merge queue May 5, 2025
@github-merge-queue github-merge-queue bot removed this pull request from the merge queue due to a conflict with the base branch May 5, 2025
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github May 5, 2025

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this May 5, 2025
@dependabot dependabot bot deleted the dependabot/pip/minor-a740a7bba3 branch May 5, 2025 07:20
@llucax llucax restored the dependabot/pip/minor-a740a7bba3 branch May 5, 2025 07:23
@llucax llucax reopened this May 5, 2025
@llucax
Copy link
Contributor

llucax commented May 5, 2025

@dependabot rebase

@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github May 5, 2025

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this May 5, 2025
@dependabot dependabot bot deleted the dependabot/pip/minor-a740a7bba3 branch May 5, 2025 07:26
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@llucax llucax llucax approved these changes

@daniel-zullo-frequenz daniel-zullo-frequenz Awaiting requested review from daniel-zullo-frequenz daniel-zullo-frequenz is a code owner automatically assigned from frequenz-floss/python-sdk-team

Assignees

No one assigned

Labels

part:tooling Affects the development tooling (CI, deployment, dependency management, etc.) type:tech-debt Improves the project without visible changes for users

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@llucax