Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Deps: Bump the python-packages group with 7 updates #1049

Closed
wants to merge 1 commit into from
Closed

Deps: Bump the python-packages group with 7 updates #1049

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 2, 2023
edited
Loading

Bumps the python-packages group with 7 updates:

Package From To
pontos 23.9.0 23.9.2
rope 1.9.0 1.10.0
astroid 2.15.7 3.0.0
cffi 1.15.1 1.16.0
charset-normalizer 3.2.0 3.3.0
packaging 23.1 23.2
rich 13.5.3 13.6.0

Updates pontos from 23.9.0 to 23.9.2

Release notes

Sourced from pontos's releases.

pontos 23.9.2

23.9.2 - 2023-09-28

Added

  • Add simple GitHub script to show and update repo topics c2a9948
  • Add GitHub API for updating repository topics c9328eb
  • Add GitHub API for getting repository topics cf5f21e

Changed

  • Update java version command with config file (#886) fd7af60

pontos 23.9.1

23.9.1 - 2023-09-27

Added

  • Add repo model property for enabled dependabot security updates a31ae3c

Changed

  • Improve error message when a model value can't be set c3d18b8
  • Group PRs from Dependabot (#879) 36fdead

Bug Fixes

  • Mark repo model properties for security and analysis as optional 0ad99e9

Dependencies

Commits
  • 1bdd114 Automatic release to 23.9.2
  • fd7af60 Change: Update java version command with config file (#886)
  • c2a9948 Add: Add simple GitHub script to show and update repo topics
  • c9328eb Add: Add GitHub API for updating repository topics
  • cf5f21e Add: Add GitHub API for getting repository topics
  • 167ef3a Automatic adjustments after release
  • 96b297a Automatic release to 23.9.1
  • c3d18b8 Change: Improve error message when a model value can't be set
  • a31ae3c Add: Add repo model property for enabled dependabot security updates
  • 0ad99e9 Fix: Mark repo model properties for security and analysis as optional
  • Additional commits viewable in compare view

Updates rope from 1.9.0 to 1.10.0

Changelog

Sourced from rope's changelog.

Release 1.10.0

  • #708, #709 Add support for Python 3.12
Commits
  • a5fa15b Update CHANGELOG.md
  • 0bee51e Bump version
  • ef3613b Black
  • 00e937c Add build.os key to .readthedocs.yaml
  • 3049f35 Update .readthedocs.yaml to use build.tools.python key
  • 68630e3 Update readthedocs to use Python 3.11
  • cd34ac5 Update current year to 2023
  • 11316ec Replace pkg_resources to use importlib
  • c4c77d5 Fix deprecation warnings
  • 677111a Merge pull request #709 from python-rope/lieryan-py312
  • Additional commits viewable in compare view

Updates astroid from 2.15.7 to 3.0.0

Changelog

Sourced from astroid's changelog.

What's New in astroid 3.0.0?

Release date: 2023-09-25

  • Add support for Python 3.12, including PEP 695 type parameter syntax.

    Closes #2201

  • Remove support for Python 3.7.

    Refs #2137

  • Use the global inference cache when inferring, even without an explicit InferenceContext. This is a significant performance improvement given how often methods default to None for the context argument. (Linting astroid itself now takes ~5% less time on Python 3.12; other projects requiring more complex inference calculations will see greater speedups.)

    Refs #529

  • Following a deprecation period starting in astroid 2.7.0, the astroid.node_classes and astroid.scoped_nodes modules have been removed in favor of astroid.nodes.node_classes and astroid.nodes.scoped_nodes.

    Closes #1072

  • Following a deprecation period starting in astroid 2.12.0, the astroid.mixins module has been removed in favor of astroid.nodes._base_nodes (private).

    Refs #1633

  • Return all existing arguments when calling Arguments.arguments(). This also means find_argname will now use the whole list of arguments for its search.

    Closes #2213

  • Exclude class attributes from the __members__ container of an Enum class when they are nodes.AnnAssign nodes with no assigned value.

    Refs pylint-dev/pylint#7402

  • Remove @cached and @cachedproperty decorator (just use @cached_property from the stdlib).

    Closes #1780 Refs #2140

  • Remove the inference module. Node inference methods are now in the module defining the node, rather than being associated to the node afterward.

    Closes #679

... (truncated)

Commits
  • 2891daf Bump astroid to 3.0.0, update changelog
  • d637bdf Revert "Add boilerplate for documenting an upgrade guide (#1873)"
  • 5c8a248 Merge maintenance/2.15.x following 2.15.8 release
  • c633af2 Bump astroid to 2.15.8, update changelog
  • 584b1fd False positive unsubscriptable-object (#2307) (#2309)
  • 1f0f2f8 False positive unsubscriptable-object (#2307)
  • 2380f6f Merge pull request #2308 from pylint-dev/pre-commit-ci-update-config
  • 7581348 [pre-commit.ci] pre-commit autoupdate
  • 1113d49 Merge pull request #2306 from pylint-dev/dependabot/github_actions/actions/ch...
  • 9c0e642 Bump actions/checkout from 4.0.0 to 4.1.0
  • Additional commits viewable in compare view

Updates cffi from 1.15.1 to 1.16.0

Release notes

Sourced from cffi's releases.

v1.16.0

  • Add support for Python 3.12. With the removal of distutils from Python 3.12, projects using CFFI features that depend on distutils at runtime must add a dependency on setuptools to function under Python 3.12+. CFFI does not declare a runtime setuptools requirement to avoid an unnecessary dependency for projects that do not require it.
  • Drop support for end-of-life Python versions (2.7, 3.6, 3.7).
  • Add support for PEP517 builds; setuptools is now a required build dependency.
  • Declare python_requires metadata for Python 3.8+. This allows unsupported Pythons to continue using previously released sdists and wheels.
  • Move project source under src/; a more standard layout that also enables CI to more easily catch packaging errors.

v1.16.0rc2

  • Fix packaging issue in v1.16.0rc1.
  • Rearrange project sources (src/ layout) so packaging tests can properly detect similar issues in the future.

Full Changelog: python-cffi/cffi@v1.16.0rc1...v1.16.0rc2

v1.16.0rc1

  • Add support for Python 3.12. With the removal of distutils from Python 3.12, projects using CFFI features that depend on distutils at runtime must add a dependency on setuptools to function under Python 3.12+. CFFI does not declare a runtime setuptools requirement to avoid an unnecessary dependency for projects that do not require it.
  • Drop support for end-of-life Python versions (2.7, 3.6, 3.7).
  • Move project home to python-cffi/cffi on GitHub.
  • Add support for PEP517 builds; setuptools is now a required build dependency.
  • Declare python_requires metadata for Python 3.8+. This allows unsupported Pythons to continue using previously released sdists and wheels.
  • Add missing calls to PyObject_GC_UnTrack to avoid ResourceWarning 15c4b71d5e3f2295c0e4773e99b23ac751e02534
Commits

Updates charset-normalizer from 3.2.0 to 3.3.0

Release notes

Sourced from charset-normalizer's releases.

Release 3.3.0

3.3.0 (2023-09-30)

Added

  • Allow to execute the CLI (e.g. normalizer) through python -m charset_normalizer.cli or python -m charset_normalizer
  • Support for 9 forgotten encodings that are supported by Python but unlisted in encoding.aliases as they have no alias (#323)

Removed

  • (internal) Redundant utils.is_ascii function and unused function is_private_use_only
  • (internal) charset_normalizer.assets is moved inside charset_normalizer.constant

Changed

  • (internal) Unicode code blocks in constants are updated using the latest v15.0.0 definition to improve detection
  • Optional mypyc compilation upgraded to version 1.5.1 for Python >= 3.8

Fixed

  • Unable to properly sort CharsetMatch when both chaos/noise and coherence were close due to an unreachable condition in __lt__ (#350)
Changelog

Sourced from charset-normalizer's changelog.

3.3.0 (2023-09-30)

Added

  • Allow to execute the CLI (e.g. normalizer) through python -m charset_normalizer.cli or python -m charset_normalizer
  • Support for 9 forgotten encoding that are supported by Python but unlisted in encoding.aliases as they have no alias (#323)

Removed

  • (internal) Redundant utils.is_ascii function and unused function is_private_use_only
  • (internal) charset_normalizer.assets is moved inside charset_normalizer.constant

Changed

  • (internal) Unicode code blocks in constants are updated using the latest v15.0.0 definition to improve detection
  • Optional mypyc compilation upgraded to version 1.5.1 for Python >= 3.7

Fixed

  • Unable to properly sort CharsetMatch when both chaos/noise and coherence were close due to an unreachable condition in __lt__ (#350)
Commits
  • 165211a 🔖 Release 3.3.0 (#353)
  • 5aed9a4 🐛 Fix unreachable code in the sorting algorithm of CharsetMatch (#352)
  • 061a71b ⬆️ Bump actions/checkout from 4.0.0 to 4.1.0 (#348)
  • 88df580 ⬆️ Bump github/codeql-action from 2.21.7 to 2.21.9 (#351)
  • aa0234b ⬆️ Bump pypa/cibuildwheel from 2.15.0 to 2.16.0 (#349)
  • 58f69f7 ⬆️ Bump github/codeql-action from 2.21.5 to 2.21.7 (#345)
  • e7c2d8e ⬆️ Bump docker/setup-qemu-action from 2.2.0 to 3.0.0 (#346)
  • 5abf47f ⬆️ Bump pytest from 7.4.1 to 7.4.2 (#342)
  • 50a138e ⬆️ Bump actions/checkout from 3.6.0 to 4.0.0 (#343)
  • 5da7047 ⬆️ Bump actions/upload-artifact from 3.1.2 to 3.1.3 (#344)
  • Additional commits viewable in compare view

Updates packaging from 23.1 to 23.2

Release notes

Sourced from packaging's releases.

23.2

What's Changed

New Contributors

Full Changelog: pypa/packaging@23.1...23.2

Changelog

Sourced from packaging's changelog.

23.2 - 2023-10-01


* Document calendar-based versioning scheme (:issue:`716`)
* Enforce that the entire marker string is parsed (:issue:`687`)
* Requirement parsing no longer automatically validates the URL (:issue:`120`)
* Canonicalize names for requirements comparison (:issue:`644`)
* Introduce ``metadata.Metadata`` (along with ``metadata.ExceptionGroup`` and ``metadata.InvalidMetadata``; :issue:`570`)
* Introduce the ``validate`` keyword parameter to ``utils.validate_name()`` (:issue:`570`)
* Introduce ``utils.is_normalized_name()`` (:issue:`570`)
* Make ``utils.parse_sdist_filename()`` and ``utils.parse_wheel_filename()``
  raise ``InvalidSdistFilename`` and ``InvalidWheelFilename``, respectively,
  when the version component of the name is invalid
Commits
  • b3a5d7d Bump for release
  • d7ce40d Fix code blocks in CHANGELOG.md (#724)
  • 524b701 parse_{sdist,wheel}_filename: don't raise InvalidVersion (#721)
  • b509bef Typing annotations fixed (#723)
  • 0206c39 Bump pip version to avoid known vulnerabilities (#720)
  • 7023537 fix: Update copyright date for docs (#713)
  • 39786bb Document use of calendar-based versioning scheme (#717)
  • c1346df fix: Detect when a platform is 32-bit more accurately (#711)
  • 7e68d82 Correct rST syntax in CHANGELOG.rst (#709)
  • 61e6efb Support enriched metadata in packaging.metadata (#686)
  • Additional commits viewable in compare view

Updates rich from 13.5.3 to 13.6.0

Release notes

Sourced from rich's releases.

The Python 3.12 release

Mostly a meta update in readiness for the release of Python3.12

[13.6.0] - 2023-09-30

Added

  • Added Python 3.12 to classifiers.
Changelog

Sourced from rich's changelog.

[13.6.0] - 2023-09-30

Added

  • Added Python 3.12 to classifiers.
Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Deps: Bump the python-packages group with 7 updates
311b042 
Bumps the python-packages group with 7 updates:

| Package | From | To |
| --- | --- | --- |
| [pontos](https://github.com/greenbone/pontos) | `23.9.0` | `23.9.2` |
| [rope](https://github.com/python-rope/rope) | `1.9.0` | `1.10.0` |
| [astroid](https://github.com/pylint-dev/astroid) | `2.15.7` | `3.0.0` |
| [cffi](https://github.com/python-cffi/cffi) | `1.15.1` | `1.16.0` |
| [charset-normalizer](https://github.com/Ousret/charset_normalizer) | `3.2.0` | `3.3.0` |
| [packaging](https://github.com/pypa/packaging) | `23.1` | `23.2` |
| [rich](https://github.com/Textualize/rich) | `13.5.3` | `13.6.0` |


Updates `pontos` from 23.9.0 to 23.9.2
- [Release notes](https://github.com/greenbone/pontos/releases)
- [Commits](greenbone/pontos@v23.9.0...v23.9.2)

Updates `rope` from 1.9.0 to 1.10.0
- [Changelog](https://github.com/python-rope/rope/blob/master/CHANGELOG.md)
- [Commits](python-rope/rope@1.9.0...1.10.0)

Updates `astroid` from 2.15.7 to 3.0.0
- [Release notes](https://github.com/pylint-dev/astroid/releases)
- [Changelog](https://github.com/pylint-dev/astroid/blob/main/ChangeLog)
- [Commits](pylint-dev/astroid@v2.15.7...v3.0.0)

Updates `cffi` from 1.15.1 to 1.16.0
- [Release notes](https://github.com/python-cffi/cffi/releases)
- [Commits](python-cffi/cffi@v1.15.1...v1.16.0)

Updates `charset-normalizer` from 3.2.0 to 3.3.0
- [Release notes](https://github.com/Ousret/charset_normalizer/releases)
- [Changelog](https://github.com/Ousret/charset_normalizer/blob/master/CHANGELOG.md)
- [Commits](jawah/charset_normalizer@3.2.0...3.3.0)

Updates `packaging` from 23.1 to 23.2
- [Release notes](https://github.com/pypa/packaging/releases)
- [Changelog](https://github.com/pypa/packaging/blob/main/CHANGELOG.rst)
- [Commits](pypa/packaging@23.1...23.2)

Updates `rich` from 13.5.3 to 13.6.0
- [Release notes](https://github.com/Textualize/rich/releases)
- [Changelog](https://github.com/Textualize/rich/blob/master/CHANGELOG.md)
- [Commits](Textualize/rich@v13.5.3...v13.6.0)

---
updated-dependencies:
- dependency-name: pontos
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: python-packages
- dependency-name: rope
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: python-packages
- dependency-name: astroid
  dependency-type: indirect
  update-type: version-update:semver-major
  dependency-group: python-packages
- dependency-name: cffi
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: python-packages
- dependency-name: charset-normalizer
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: python-packages
- dependency-name: packaging
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: python-packages
- dependency-name: rich
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: python-packages
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot requested a review from a team as a code owner October 2, 2023 04:11
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Oct 2, 2023
@greenbonebot greenbonebot enabled auto-merge (squash) October 2, 2023 04:11
@github-actions
Copy link

github-actions bot commented Oct 2, 2023

Conventional Commits Report

Type Number
Dependencies 1

🚀 Conventional commits found.

@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Oct 5, 2023

Looks like these dependencies are up-to-date now, so this is no longer needed.

@dependabot dependabot bot closed this Oct 5, 2023
auto-merge was automatically disabled October 5, 2023 06:33

Pull request was closed

@dependabot dependabot bot deleted the dependabot/pip/python-packages-a51e81ae10 branch October 5, 2023 06:33
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@bjoernricks bjoernricks bjoernricks approved these changes

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file python Pull requests that update Python code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@bjoernricks