Skip to content

Bump the pip group with 3 updates #212

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
Parent: Synchronize the latest CPython repo changes with `purge.py`
merged 3 commits into from
Feb 11, 2025
Merged

Bump the pip group with 3 updates #212

merged 3 commits into from
Feb 11, 2025

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 1, 2025

Bumps the pip group with 3 updates: sigstore, pytest-aiohttp and blurb.

Updates sigstore from 3.6.0 to 3.6.1

Release notes

Sourced from sigstore's releases.

v3.6.1

Fixed

  • Relaxed the transitive dependency on cryptography to allow v43 and v44 to be resolved (#1251)
Changelog

Sourced from sigstore's changelog.

[3.6.1]

Fixed

  • Relaxed the transitive dependency on cryptography to allow v43 and v44 to be resolved (#1251)
Commits

Updates pytest-aiohttp from 1.0.5 to 1.1.0

Release notes

Sourced from pytest-aiohttp's releases.

pytest-aiohttp v1.1.0

pytest-aiohttp

pytest plugin for aiohttp support

The library provides useful fixtures for creation test aiohttp server and client.

Installation

.. code-block:: console

$ pip install pytest-aiohttp

Add asyncio_mode = auto line to pytest configuration <https://docs.pytest.org/en/latest/customize.html>_ (see pytest-asyncio modes <https://github.com/pytest-dev/pytest-asyncio#modes>_ for details). The plugin works with strict mode also.

Usage

Write tests in pytest-asyncio <https://github.com/pytest-dev/pytest-asyncio>_ style using provided fixtures for aiohttp test server and client creation. The plugin provides resources cleanup out-of-the-box.

The simple usage example:

.. code-block:: python

from aiohttp import web

async def hello(request):
return web.Response(body=b"Hello, world")


def create_app():
app = web.Application()
app.router.add_route("GET", "/", hello)
return app


async def test_hello(aiohttp_client):
client = await aiohttp_client(create_app())
resp = await client.get("/")

... (truncated)

Changelog

Sourced from pytest-aiohttp's changelog.

1.1.0 (2025-01-23)

  • Drop Python 3.8 (#57)

  • Export the plugin types at top-level (#60, #61)

  • Add host parameter to aiohttp_server fixture (#63)

Commits

Updates blurb from 1.3.0 to 2.0.0

Release notes

Sourced from blurb's releases.

v2.0.0

What's Changed

Full Changelog: python/blurb@v1.3.0...v2.0.0

Changelog

Sourced from blurb's changelog.

2.0.0

Commits
  • e7ea718 Update changelog for 2.0.0 (#41)
  • df1ef06 Test textwrap_body, current_date and sortable_datetime (#42)
  • 0f2c292 Add newline
  • ee43c48 Remove extra parentheses
  • 1e6dd0f Use 'not in' to test membership
  • 7cb5abb Remove unused variable
  • 156988c Test textwrap_body, current_date and sortable_datetime
  • 0311da4 Update changelog for 2.0.0
  • 65941da Move 'blurb test' subcommand into test suite (#37)
  • 0df5d3b Add support for Python 3.14 (#40)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the pip group with 3 updates
1893e15 
Bumps the pip group with 3 updates: [sigstore](https://github.com/sigstore/sigstore-python), [pytest-aiohttp](https://github.com/aio-libs/pytest-aiohttp) and [blurb](https://github.com/python/blurb).


Updates `sigstore` from 3.6.0 to 3.6.1
- [Release notes](https://github.com/sigstore/sigstore-python/releases)
- [Changelog](https://github.com/sigstore/sigstore-python/blob/main/CHANGELOG.md)
- [Commits](sigstore/sigstore-python@v3.6.0...v3.6.1)

Updates `pytest-aiohttp` from 1.0.5 to 1.1.0
- [Release notes](https://github.com/aio-libs/pytest-aiohttp/releases)
- [Changelog](https://github.com/aio-libs/pytest-aiohttp/blob/master/CHANGES.rst)
- [Commits](aio-libs/pytest-aiohttp@v1.0.5...v1.1.0)

Updates `blurb` from 1.3.0 to 2.0.0
- [Release notes](https://github.com/python/blurb/releases)
- [Changelog](https://github.com/python/blurb/blob/main/CHANGELOG.md)
- [Commits](python/blurb@v1.3.0...v2.0.0)

---
updated-dependencies:
- dependency-name: sigstore
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip
- dependency-name: pytest-aiohttp
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: pip
- dependency-name: blurb
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: pip
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Feb 1, 2025
ezio-melotti
ezio-melotti reviewed Feb 1, 2025
View reviewed changes
@ezio-melotti
Copy link
Member

This and #211 seem to be failing because of an unrelated issue in a Misc/NEWS that should be fixed upstream.

@hugovk
Copy link
Member

hugovk commented Feb 1, 2025

Fixed in python/cpython#128875 and backported to 3.12 in python/cpython#128878 two weeks ago.

However, this workflow defaults to the 3.12.3 tag (from 2024-04-09):

release-tools/.github/workflows/source-and-docs-release.yml

Line 44 in 6922a3c

CPYTHON_RELEASE: ${{ github.event.inputs.cpython_release || '3.12.3' }}

So we'll need to update that to something newer. Perhaps 3.12.8 or 3.13.1?

@hugovk hugovk mentioned this pull request Feb 10, 2025
Merged
@hugovk
Copy link
Member

hugovk commented Feb 11, 2025

@python/organization-owners Please could you enable the "Always suggest updating pull request branches" option so we can merge main master into PRs?

@ambv
Copy link
Contributor

ambv commented Feb 11, 2025

Done.

@hugovk hugovk merged commit 0524e67 into master Feb 11, 2025
21 checks passed
@hugovk hugovk deleted the dependabot/pip/pip-5cdcf6c19f branch February 11, 2025 20:46
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@ezio-melotti ezio-melotti ezio-melotti approved these changes

Assignees

@ezio-melotti ezio-melotti

Labels

dependencies Pull requests that update a dependency file python Pull requests that update Python code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@ezio-melotti @hugovk @ambv