Skip to content

Bump pex from 2.1.105 to 2.1.123 #262

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

Bump pex from 2.1.105 to 2.1.123 #262

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 24, 2023

Bumps pex from 2.1.105 to 2.1.123.

Release notes

Sourced from pex's releases.

pex 2.1.123

2.1.123

This release fixes a few pex3 lock create bugs.

There was a regression introduced in Pex 2.1.122 where projects that used a PEP-518 [build-system] requires but specified no corresponding build-backend would fail to lock.

There were also two long standing issues handling more exotic direct reference URL requirements. Source archives with names not following the standard Python sdist naming scheme of <project name>-<version>.{zip,tar.gz} would cause a lock error. An important class of these is provided by GitHub's magic source archive download URLs. Also, although local projects addressed with Pip proprietary support for pure local path requirements would lock, the same local projects addressed via <project name> @ file://<local project path> would also cause a lock error. Both of these cases are now fixed and can be locked successfully.

When locking with an --interpreter-constraint, any resolve traversing wheels using the pypyXY or cpythonXY python tags would cause the lock to error. Wheels with this form of python tag are now handled correctly.

  • Handle [build-system] with no build-backend. (#2064)
  • Handle locking all direct reference URL forms. (#2060)
  • Fix python tag handling in IC locks. (#2061)

pex 2.1.122

2.1.122

This release fixes posix file locks used by Pex internally and enhances lock creation to support locking sdist-only C extension projects that do not build on the current platform. Pex is also updated to support --pip-version 22.3.1 and --pip-version 23.0, bringing it up to date with the latest Pip's available.

  • Support the latest Pip releases: 22.3.1 & 23.0 (#2056)
  • Lock sdists with prepare-metadata-for-build-wheel. (#2053)
  • Fix execute_parallel "leaking" a thread. (#2052)

pex 2.1.121

2.1.121

... (truncated)

Changelog

Sourced from pex's changelog.

2.1.123

This release fixes a few pex3 lock create bugs.

There was a regression introduced in Pex 2.1.122 where projects that used a PEP-518 [build-system] requires but specified no corresponding build-backend would fail to lock.

There were also two long standing issues handling more exotic direct reference URL requirements. Source archives with names not following the standard Python sdist naming scheme of <project name>-<version>.{zip,tar.gz} would cause a lock error. An important class of these is provided by GitHub's magic source archive download URLs. Also, although local projects addressed with Pip proprietary support for pure local path requirements would lock, the same local projects addressed via <project name> @ file://<local project path> would also cause a lock error. Both of these cases are now fixed and can be locked successfully.

When locking with an --interpreter-constraint, any resolve traversing wheels using the pypyXY or cpythonXY python tags would cause the lock to error. Wheels with this form of python tag are now handled correctly.

  • Handle [build-system] with no build-backend. (#2064) PR [#2064](https://github.com/pantsbuild/pex/issues/2064) <https://github.com/pantsbuild/pex/pull/2064>_

  • Handle locking all direct reference URL forms. (#2060) PR [#2060](https://github.com/pantsbuild/pex/issues/2060) <https://github.com/pantsbuild/pex/pull/2060>_

  • Fix python tag handling in IC locks. (#2061) PR [#2061](https://github.com/pantsbuild/pex/issues/2061) <https://github.com/pantsbuild/pex/pull/2061>_

2.1.122

This release fixes posix file locks used by Pex internally and enhances lock creation to support locking sdist-only C extension projects that do not build on the current platform. Pex is also updated to support --pip-version 22.3.1 and --pip-version 23.0, bringing it up to date with the latest Pip's available.

  • Support the latest Pip releases: 22.3.1 & 23.0 (#2056) PR [#2056](https://github.com/pantsbuild/pex/issues/2056) <https://github.com/pantsbuild/pex/pull/2056>_

  • Lock sdists with prepare-metadata-for-build-wheel. (#2053) PR [#2053](https://github.com/pantsbuild/pex/issues/2053) <https://github.com/pantsbuild/pex/pull/2053>_

  • Fix execute_parallel "leaking" a thread. (#2052)

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump pex from 2.1.105 to 2.1.123
652a752 
Bumps [pex](https://github.com/pantsbuild/pex) from 2.1.105 to 2.1.123.
- [Release notes](https://github.com/pantsbuild/pex/releases)
- [Changelog](https://github.com/pantsbuild/pex/blob/main/CHANGES.rst)
- [Commits](pex-tool/pex@v2.1.105...v2.1.123)

---
updated-dependencies:
- dependency-name: pex
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Feb 24, 2023
@dependabot dependabot bot mentioned this pull request Feb 24, 2023
Closed
@codecov
Copy link

codecov bot commented Feb 24, 2023
edited
Loading

Codecov Report

Merging #262 (652a752) into main (0c43ff5) will not change coverage.
The diff coverage is n/a.

@@            Coverage Diff            @@
##              main      #262   +/-   ##
=========================================
  Coverage   100.00%   100.00%           
=========================================
  Files            6         6           
  Lines          472       472           
  Branches        90        90           
=========================================
  Hits           472       472

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.

@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Feb 28, 2023

Superseded by #263.

@dependabot dependabot bot closed this Feb 28, 2023
@dependabot dependabot bot deleted the dependabot/pip/pex-2.1.123 branch February 28, 2023 06:00
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants