Skip to content

Bump maxminddb from 2.6.0 to 2.7.0 in /requirements #2856

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: develop
Choose a base branch
from
Open

Bump maxminddb from 2.6.0 to 2.7.0 in /requirements #2856

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github May 6, 2025

Bumps maxminddb from 2.6.0 to 2.7.0.

Release notes

Sourced from maxminddb's releases.

2.7.0

  • IMPORTANT: Python 3.9 or greater is required. If you are using an older version, please use an earlier release.
  • The vendored libmaxminddb has been updated to 1.12.2.
  • The C extension now checks that the database metadata lookup was successful.
  • A theoretical segmentation fault with the C extension when doing lookups on a corrupt or invalid database was fixed.

2.6.3

  • The vendored libmaxminddb has been updated to 1.12.0. This fixes a memory leak when opening a database fails.
  • Binary wheels are now built for Python 3.13.

2.6.2

  • The vendored libmaxminddb has been updated to 1.10.0. This fixes a bug that would cause incorrect results on databases that had search trees greater than 4 GB.

2.6.1

  • This release includes no source code changes. The only changes are to the release workflow.
  • Binary wheels are now built on Linux for aarch64. Pull request by Kevin Park. GitHub #160.
  • Binary wheels are now built on macOS for Apple silicon. Requested by Kevin Park. GitHub #152.
Changelog

Sourced from maxminddb's changelog.

2.7.0 (2025-05-05) ++++++++++++++++++

  • IMPORTANT: Python 3.9 or greater is required. If you are using an older version, please use an earlier release.
  • The vendored libmaxminddb has been updated to 1.12.2.
  • The C extension now checks that the database metadata lookup was successful.
  • A theoretical segmentation fault with the C extension when doing lookups on a corrupt or invalid database was fixed.

2.6.3 (2025-01-09) ++++++++++++++++++

  • The vendored libmaxminddb has been updated to 1.12.0. This fixes a memory leak when opening a database fails.
  • Binary wheels are now built for Python 3.13.

2.6.2 (2024-06-10) ++++++++++++++++++

  • The vendored libmaxminddb has been updated to 1.10.0. This fixes a bug that would cause incorrect results on databases that had search trees greater than 4 GB.

2.6.1 (2024-04-12) ++++++++++++++++++

  • This release includes no source code changes. The only changes are to the release workflow.
  • Binary wheels are now built on Linux for aarch64. Pull request by Kevin Park. GitHub #160.
  • Binary wheels are now built on macOS for Apple silicon. Requested by Kevin Park. GitHub #152.
Commits
  • 542dc56 Update for v2.7.0
  • d56f6c4 Set release date
  • e6e8398 Merge pull request #197 from maxmind/greg/eng-1832
  • 2bc6b70 Merge pull request #199 from maxmind/dependabot/github_actions/pypa/cibuildwh...
  • 924ebba Bump pypa/cibuildwheel from 2.23.2 to 2.23.3
  • 31c3d39 Merge pull request #198 from maxmind/dependabot/github_actions/astral-sh/setu...
  • 20a6340 Bump astral-sh/setup-uv from 5 to 6
  • 2faec63 Use uv to build project in actions
  • 942f5fb Correctly handle null check of entry_data_list
  • b372324 Fix license config deprecation warnings
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump maxminddb from 2.6.0 to 2.7.0 in /requirements
978677a 
Bumps [maxminddb](https://github.com/maxmind/MaxMind-DB-Reader-python) from 2.6.0 to 2.7.0.
- [Release notes](https://github.com/maxmind/MaxMind-DB-Reader-python/releases)
- [Changelog](https://github.com/maxmind/MaxMind-DB-Reader-python/blob/main/HISTORY.rst)
- [Commits](maxmind/MaxMind-DB-Reader-python@v2.6.0...v2.7.0)

---
updated-dependencies:
- dependency-name: maxminddb
  dependency-version: 2.7.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels May 6, 2025
@github-actions GitHub Actions
Copy link

This pull request has been marked as stale because it has had no activity for 10 days. If you are still working on this, please provide some updates or it will be closed in 5 days.

@github-actions github-actions bot added the stale label May 17, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file python Pull requests that update Python code stale
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants