Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump the small-change group across 1 directory with 6 updates #174

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Bump the small-change group across 1 directory with 6 updates #174

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 13, 2025

Bumps the small-change group with 6 updates in the / directory:

Package From To
pyarrow 18.0.0 18.1.0
pydantic 2.9.2 2.10.5
jinja2 3.1.4 3.1.5
pytest 8.3.3 8.3.4
coverage 7.6.7 7.6.10
flake8-bugbear 24.10.31 24.12.12

Updates pyarrow from 18.0.0 to 18.1.0

Release notes

Sourced from pyarrow's releases.

Apache Arrow 18.1.0

Release Notes URL: https://arrow.apache.org/release/18.1.0.html

Apache Arrow 18.1.0 RC2

Release Notes: Release Candidate: 18.1.0 RC2

Apache Arrow 18.1.0 RC1

Release Notes: Release Candidate: 18.1.0 RC1

Apache Arrow 18.1.0 RC0

Release Notes: Release Candidate: 18.1.0 RC0

Commits
  • 6a0414b MINOR: [Release] Update versions for 18.1.0
  • e4aee0c MINOR: [Release] Update .deb/.rpm changelogs for 18.1.0
  • 6199e5e MINOR: [Release] Update .deb package names for 18.1.0
  • d944b8b MINOR: [Release] Update CHANGELOG.md for 18.1.0
  • ac81eed GH-44455: [C++] Update vendored date to 3.0.3 (#44482)
  • 90bfa2c GH-44432: [Swift] Use flatbuffers v24.3.7 (#44433)
  • 0d69542 MINOR: [Java] Bump org.cyclonedx:cyclonedx-maven-plugin from 2.8.2 to 2.9.0 i...
  • 602e447 MINOR: [Java] Bump logback.version from 1.5.8 to 1.5.10 in /java (#44403)
  • 67c4d5e MINOR: [Java] Bump checker.framework.version from 3.48.0 to 3.48.1 in /java (...
  • 363acb0 MINOR: [C#] Bump Grpc.Tools from 2.66.0 to 2.67.0 in /csharp (#44400)
  • Additional commits viewable in compare view

Updates pydantic from 2.9.2 to 2.10.5

Release notes

Sourced from pydantic's releases.

v2.10.5 2024-12-18

v2.10.5 (2025-01-08)

What's Changed

v2.10.4 2024-12-18

What's Changed

Packaging

Fixes

New Contributors

Full Changelog: pydantic/pydantic@v2.10.3...v2.10.4

v2.10.3 2024-12-03

What's Changed

Fixes

  • Set fields when defer_build is set on Pydantic dataclasses by @​Viicos in #10984
  • Do not resolve the JSON Schema reference for dict core schema keys by @​Viicos in #10989
  • Use the globals of the function when evaluating the return type for PlainSerializer and WrapSerializer functions by @​Viicos in #11008
  • Fix host required enforcement for urls to be compatible with v2.9 behavior by @​sydney-runkle in #11027
  • Add a default_factory_takes_validated_data property to FieldInfo by @​Viicos in #11034
  • Fix url json schema in serialization mode by @​sydney-runkle in #11035

Full Changelog: pydantic/pydantic@v2.10.2...v2.10.3

v2.10.2 2024-11-26

What's Changed

Fixes

  • Only evaluate FieldInfo annotations if required during schema building by @​Viicos in #10769

... (truncated)

Changelog

Sourced from pydantic's changelog.

v2.10.5 (2025-01-08)

GitHub release

What's Changed

v2.10.4 (2024-12-18)

GitHub release

What's Changed

Packaging

Fixes

New Contributors

v2.10.3 (2024-12-03)

GitHub release

What's Changed

Fixes

  • Set fields when defer_build is set on Pydantic dataclasses by @​Viicos in #10984
  • Do not resolve the JSON Schema reference for dict core schema keys by @​Viicos in #10989
  • Use the globals of the function when evaluating the return type for PlainSerializer and WrapSerializer functions by @​Viicos in #11008
  • Fix host required enforcement for urls to be compatible with v2.9 behavior by @​sydney-runkle in #11027
  • Add a default_factory_takes_validated_data property to FieldInfo by @​Viicos in #11034
  • Fix url json schema in serialization mode by @​sydney-runkle in #11035

... (truncated)

Commits

Updates jinja2 from 3.1.4 to 3.1.5

Release notes

Sourced from jinja2's releases.

3.1.5

This is the Jinja 3.1.5 security fix release, which fixes security issues and bugs but does not otherwise change behavior and should not result in breaking changes compared to the latest feature release.

PyPI: https://pypi.org/project/Jinja2/3.1.5/ Changes: https://jinja.palletsprojects.com/changes/#version-3-1-5 Milestone: https://github.com/pallets/jinja/milestone/16?closed=1

  • The sandboxed environment handles indirect calls to str.format, such as by passing a stored reference to a filter that calls its argument. GHSA-q2x7-8rv6-6q7h
  • Escape template name before formatting it into error messages, to avoid issues with names that contain f-string syntax. #1792, GHSA-gmj6-6f8f-6699
  • Sandbox does not allow clear and pop on known mutable sequence types. #2032
  • Calling sync render for an async template uses asyncio.run. #1952
  • Avoid unclosed auto_aiter warnings. #1960
  • Return an aclose-able AsyncGenerator from Template.generate_async. #1960
  • Avoid leaving root_render_func() unclosed in Template.generate_async. #1960
  • Avoid leaving async generators unclosed in blocks, includes and extends. #1960
  • The runtime uses the correct concat function for the current environment when calling block references. #1701
  • Make |unique async-aware, allowing it to be used after another async-aware filter. #1781
  • |int filter handles OverflowError from scientific notation. #1921
  • Make compiling deterministic for tuple unpacking in a {% set ... %} call. #2021
  • Fix dunder protocol (copy/pickle/etc) interaction with Undefined objects. #2025
  • Fix copy/pickle support for the internal missing object. #2027
  • Environment.overlay(enable_async) is applied correctly. #2061
  • The error message from FileSystemLoader includes the paths that were searched. #1661
  • PackageLoader shows a clearer error message when the package does not contain the templates directory. #1705
  • Improve annotations for methods returning copies. #1880
  • urlize does not add mailto: to values like @a@b. #1870
  • Tests decorated with @pass_context can be used with the |select filter. #1624
  • Using set for multiple assignment (a, b = 1, 2) does not fail when the target is a namespace attribute. #1413
  • Using set in all branches of {% if %}{% elif %}{% else %} blocks does not cause the variable to be considered initially undefined. #1253
Changelog

Sourced from jinja2's changelog.

Version 3.1.5

Released 2024-12-21

  • The sandboxed environment handles indirect calls to str.format, such as by passing a stored reference to a filter that calls its argument. :ghsa:q2x7-8rv6-6q7h
  • Escape template name before formatting it into error messages, to avoid issues with names that contain f-string syntax. :issue:1792, :ghsa:gmj6-6f8f-6699
  • Sandbox does not allow clear and pop on known mutable sequence types. :issue:2032
  • Calling sync render for an async template uses asyncio.run. :pr:1952
  • Avoid unclosed auto_aiter warnings. :pr:1960
  • Return an aclose-able AsyncGenerator from Template.generate_async. :pr:1960
  • Avoid leaving root_render_func() unclosed in Template.generate_async. :pr:1960
  • Avoid leaving async generators unclosed in blocks, includes and extends. :pr:1960
  • The runtime uses the correct concat function for the current environment when calling block references. :issue:1701
  • Make |unique async-aware, allowing it to be used after another async-aware filter. :issue:1781
  • |int filter handles OverflowError from scientific notation. :issue:1921
  • Make compiling deterministic for tuple unpacking in a {% set ... %} call. :issue:2021
  • Fix dunder protocol (copy/pickle/etc) interaction with Undefined objects. :issue:2025
  • Fix copy/pickle support for the internal missing object. :issue:2027
  • Environment.overlay(enable_async) is applied correctly. :pr:2061
  • The error message from FileSystemLoader includes the paths that were searched. :issue:1661
  • PackageLoader shows a clearer error message when the package does not contain the templates directory. :issue:1705
  • Improve annotations for methods returning copies. :pr:1880
  • urlize does not add mailto: to values like @a@b. :pr:1870
  • Tests decorated with @pass_context`` can be used with the ``|select`` filter. :issue:1624`
  • Using set for multiple assignment (a, b = 1, 2) does not fail when the target is a namespace attribute. :issue:1413
  • Using set in all branches of {% if %}{% elif %}{% else %} blocks does not cause the variable to be considered initially undefined. :issue:1253
Commits
  • 877f6e5 release version 3.1.5
  • 8d58859 remove test pypi
  • eda8fe8 update dev dependencies
  • c8fdce1 Fix bug involving calling set on a template parameter within all branches of ...
  • 66587ce Fix bug where set would sometimes fail within if
  • fbc3a69 Add support for namespaces in tuple parsing (#1664)
  • b8f4831 more comments about nsref assignment
  • ee83219 Add support for namespaces in tuple assignment
  • 1d55cdd Triple quotes in docs (#2064)
  • 8a8eafc edit block assignment section
  • Additional commits viewable in compare view

Updates pytest from 8.3.3 to 8.3.4

Release notes

Sourced from pytest's releases.

8.3.4

pytest 8.3.4 (2024-12-01)

Bug fixes

  • #12592: Fixed KeyError{.interpreted-text role="class"} crash when using --import-mode=importlib in a directory layout where a directory contains a child directory with the same name.

  • #12818: Assertion rewriting now preserves the source ranges of the original instructions, making it play well with tools that deal with the AST, like executing.

  • #12849: ANSI escape codes for colored output now handled correctly in pytest.fail{.interpreted-text role="func"} with [pytrace=False]{.title-ref}.

  • #9353: pytest.approx{.interpreted-text role="func"} now uses strict equality when given booleans.

Improved documentation

  • #10558: Fix ambiguous docstring of pytest.Config.getoption{.interpreted-text role="func"}.

  • #10829: Improve documentation on the current handling of the --basetemp option and its lack of retention functionality (temporary directory location and retention{.interpreted-text role="ref"}).

  • #12866: Improved cross-references concerning the recwarn{.interpreted-text role="fixture"} fixture.

  • #12966: Clarify filterwarnings{.interpreted-text role="ref"} docs on filter precedence/order when using multiple @pytest.mark.filterwarnings <pytest.mark.filterwarnings ref>{.interpreted-text role="ref"} marks.

Contributor-facing changes

  • #12497: Fixed two failing pdb-related tests on Python 3.13.
Commits
  • 53f8b4e Update pypa/gh-action-pypi-publish to v1.12.2
  • 98dff36 Prepare release version 8.3.4
  • 1b474e2 approx: use exact comparison for bool (#13013)
  • b541721 docs: Fix wrong statement about sys.modules with importlib import mode (#1298...
  • 16cb87b pytest.fail: fix ANSI escape codes for colored output (#12959) (#12990)
  • be6bc81 Issue #12966 Clarify filterwarnings docs on precedence when using multiple ma...
  • 7aeb72b Improve docs on basetemp and retention (#12912) (#12928)
  • c875841 Merge pull request #12917 from pytest-dev/patchback/backports/8.3.x/ded1f44e5...
  • 6502816 Merge pull request #12913 from jakkdl/dontfailonbadpath
  • 52135b0 Merge pull request #12885 from The-Compiler/pdb-py311 (#12887)
  • Additional commits viewable in compare view

Updates coverage from 7.6.7 to 7.6.10

Changelog

Sourced from coverage's changelog.

Version 7.6.10 — 2024-12-26

  • Fix: some descriptions of missing branches in HTML and LCOV reports were incorrect when multi-line statements were involved (issue 1874_ and issue 1875_). These are now fixed.

  • Fix: Python 3.14 defers evaluation of annotations <pep649_>_ by moving them into separate code objects. That code is rarely executed, so coverage.py would mark them as missing, as reported in issue 1908_. Now they are ignored by coverage automatically.

  • Fixed an obscure and mysterious problem on PyPy 3.10 seemingly involving mocks, imports, and trace functions: issue 1902_. To be honest, I don't understand the problem or the solution, but git bisect helped find it, and now it's fixed.

  • Docs: re-wrote the :ref:subprocess page to put multiprocessing first and to highlight the correct use of :class:multiprocessing.Pool <python:multiprocessing.pool.Pool>.

.. _issue 1874: nedbat/coveragepy#1874 .. _issue 1875: nedbat/coveragepy#1875 .. _issue 1902: nedbat/coveragepy#1902 .. _issue 1908: nedbat/coveragepy#1908 .. _pep649: https://docs.python.org/3.14/whatsnew/3.14.html#pep-649-deferred-evaluation-of-annotations

.. _changes_7-6-9:

Version 7.6.9 — 2024-12-06

  • Fix: Tomas Uribe fixed <pull 1901_>_ a performance problem in the XML report. Large code bases should produce XML reports much faster now.

.. _pull 1901: nedbat/coveragepy#1901

.. _changes_7-6-8:

Version 7.6.8 — 2024-11-23

  • Fix: the LCOV report code assumed that a branch line that took no branches meant that the entire line was unexecuted. This isn't true in a few cases: the line might always raise an exception, or might have been optimized away. Fixes issue 1896_.

  • Fix: similarly, the HTML report will now explain that a line that jumps to

... (truncated)

Commits
  • f0dcf65 docs: sample HTML for 7.6.10
  • 0f26f35 docs: prep for 7.6.10
  • 81c5e43 docs: rewrite the subprocess page
  • 878410c chore: make doc_upgrade
  • f1d320d chore: make upgrade
  • 67f1440 debug: this condition is never true. really?
  • c85eaba fix: multi-line statements no longer confuse branch target descriptions. #187...
  • 73e58fa refactor: clarify the code that fixes with-statement exits
  • e16c9cc typo: backslask
  • 865fd7f chore: bump the action-dependencies group with 4 updates (#1909)
  • Additional commits viewable in compare view

Updates flake8-bugbear from 24.10.31 to 24.12.12

Release notes

Sourced from flake8-bugbear's releases.

24.12.12

  • B012 and B025 now also handle try/except* (#500)
  • Skip B028 if warnings.warn is called with *args or **kwargs (#501)
  • Add B911: itertools.batched without strict= (#502)
  • Readme has anchors per check (they do not seem to render on GitHub tho)
Commits
  • 3a14037 Update CHANGES + move to version 24.12.12 to release
  • 761dbe2 Make rstcheck pass again sadly ignoring anchor links
  • 7ee1976 README: Add anchors for rules and config options (#491)
  • b960272 add except* support to B012&B025 (#500)
  • 4fed293 Skip B028 if warnings.warn is called with *args or **kwargs (#501)
  • 994f3dd Add B911: itertools.batched without strict= (#502)
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the small-change group across 1 directory with 6 updates
2fc2c19 
Bumps the small-change group with 6 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [pyarrow](https://github.com/apache/arrow) | `18.0.0` | `18.1.0` |
| [pydantic](https://github.com/pydantic/pydantic) | `2.9.2` | `2.10.5` |
| [jinja2](https://github.com/pallets/jinja) | `3.1.4` | `3.1.5` |
| [pytest](https://github.com/pytest-dev/pytest) | `8.3.3` | `8.3.4` |
| [coverage](https://github.com/nedbat/coveragepy) | `7.6.7` | `7.6.10` |
| [flake8-bugbear](https://github.com/PyCQA/flake8-bugbear) | `24.10.31` | `24.12.12` |



Updates `pyarrow` from 18.0.0 to 18.1.0
- [Release notes](https://github.com/apache/arrow/releases)
- [Commits](apache/arrow@apache-arrow-18.0.0...apache-arrow-18.1.0)

Updates `pydantic` from 2.9.2 to 2.10.5
- [Release notes](https://github.com/pydantic/pydantic/releases)
- [Changelog](https://github.com/pydantic/pydantic/blob/main/HISTORY.md)
- [Commits](pydantic/pydantic@v2.9.2...v2.10.5)

Updates `jinja2` from 3.1.4 to 3.1.5
- [Release notes](https://github.com/pallets/jinja/releases)
- [Changelog](https://github.com/pallets/jinja/blob/main/CHANGES.rst)
- [Commits](pallets/jinja@3.1.4...3.1.5)

Updates `pytest` from 8.3.3 to 8.3.4
- [Release notes](https://github.com/pytest-dev/pytest/releases)
- [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst)
- [Commits](pytest-dev/pytest@8.3.3...8.3.4)

Updates `coverage` from 7.6.7 to 7.6.10
- [Release notes](https://github.com/nedbat/coveragepy/releases)
- [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst)
- [Commits](nedbat/coveragepy@7.6.7...7.6.10)

Updates `flake8-bugbear` from 24.10.31 to 24.12.12
- [Release notes](https://github.com/PyCQA/flake8-bugbear/releases)
- [Commits](PyCQA/flake8-bugbear@24.10.31...24.12.12)

---
updated-dependencies:
- dependency-name: pyarrow
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: small-change
- dependency-name: pydantic
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: small-change
- dependency-name: jinja2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: small-change
- dependency-name: pytest
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: small-change
- dependency-name: coverage
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: small-change
- dependency-name: flake8-bugbear
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: small-change
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Jan 13, 2025
@dependabot dependabot bot requested a review from JohannesFinsveen January 13, 2025 13:01
@dependabot dependabot bot mentioned this pull request Jan 13, 2025
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@JohannesFinsveen JohannesFinsveen Awaiting requested review from JohannesFinsveen

At least 1 approving review is required to merge this pull request.

Assignees

@JohannesFinsveen JohannesFinsveen

Labels
dependencies Pull requests that update a dependency file python Pull requests that update Python code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@JohannesFinsveen