Bump the minor-patch-dependencies group with 4 updates

[dependabot]

Bumps the minor-patch-dependencies group with 4 updates: aiohttp, sentry-sdk, termcolor and ruff.

Updates aiohttp from 3.10.8 to 3.10.9

Release notes

Sourced from aiohttp's releases.

3.10.9

Bug fixes

• Fixed proxy headers being used in the ConnectionKey hash when a proxy was not being used -- by :user:bdraco.

  If default headers are used, they are also used for proxy headers. This could have led to creating connections that were not needed when one was already available.

  Related issues and pull requests on GitHub: #9368.

• Widened the type of the trace_request_ctx parameter of :meth:ClientSession.request() <aiohttp.ClientSession.request> and friends -- by :user:layday.

  Related issues and pull requests on GitHub: #9397.

Removals and backward incompatible breaking changes

• Fixed failure to try next host after single-host connection timeout -- by :user:brettdh.

  The default client :class:aiohttp.ClientTimeout params has changed to include a sock_connect timeout of 30 seconds so that this correct behavior happens by default.

  Related issues and pull requests on GitHub: #7342.

Miscellaneous internal changes

• Improved performance of resolving hosts with Python 3.12+ -- by :user:bdraco.

  Related issues and pull requests on GitHub: #9342.

... (truncated)

Changelog

Sourced from aiohttp's changelog.

3.10.9 (2024-10-04)

Bug fixes

• Fixed proxy headers being used in the ConnectionKey hash when a proxy was not being used -- by :user:bdraco.

  If default headers are used, they are also used for proxy headers. This could have led to creating connections that were not needed when one was already available.

  Related issues and pull requests on GitHub: :issue:9368.

• Widened the type of the trace_request_ctx parameter of :meth:ClientSession.request() <aiohttp.ClientSession.request> and friends -- by :user:layday.

  Related issues and pull requests on GitHub: :issue:9397.

Removals and backward incompatible breaking changes

• Fixed failure to try next host after single-host connection timeout -- by :user:brettdh.

  The default client :class:aiohttp.ClientTimeout params has changed to include a sock_connect timeout of 30 seconds so that this correct behavior happens by default.

  Related issues and pull requests on GitHub: :issue:7342.

Miscellaneous internal changes

• Improved performance of resolving hosts with Python 3.12+ -- by :user:bdraco.

  Related issues and pull requests on GitHub: :issue:9342.

... (truncated)

Commits

• b779432 Release 3.10.9 (#9415)
• 08ada3e [PR #9405/b96b01b backport][3.10] Only create the connection closed exception...
• 978ed74 [PR #9406/24b0e6f backport][3.10] Add slots to timer helpers (#9411)
• e1320b7 [PR #9398/3f43bd1b backport][3.10] Widen trace_request_ctx type (#9403)
• b5e2b0b [PR #7368/8a8913b backport][3.10] Fixed failure to try next host after single...
• 6198a56 [PR #9368/02d8dba9 backport][3.10] Avoid using the proxy headers in the Conne...
• 456cf5e [PR #9386/803d818d backport][3.10] Small speed up to starting client requests...
• 8e395a1 [PR #9366/43deadb2 backport][3.10] Small speed up to update_headers (#9383)
• 57ce46c [PR #9372/0416d28 backport][3.10] Only prepare proxy headers for a request if...
• 0a74b54 [PR #9367/b612127d backport][3.10] Speed up handling auth in urls (#9380)
• Additional commits viewable in compare view

Updates sentry-sdk from 2.14.0 to 2.15.0

Release notes

Sourced from sentry-sdk's releases.

2.15.0

Integrations

• Configure HTTP methods to capture in ASGI/WSGI middleware and frameworks (#3531) by @​antonpirker

  We've added a new option to the Django, Flask, Starlette and FastAPI integrations called http_methods_to_capture. This is a configurable tuple of HTTP method verbs that should create a transaction in Sentry. The default is ("CONNECT", "DELETE", "GET", "PATCH", "POST", "PUT", "TRACE",). OPTIONS and HEAD are not included by default.

  Here's how to use it (substitute Flask for your framework integration):

  sentry_sdk.init(
      integrations=[
        FlaskIntegration(
            http_methods_to_capture=("GET", "POST"),
        ),
    ],
  )

• Django: Allow ASGI to use drf_request in DjangoRequestExtractor (#3572) by @​PakawiNz

• Django: Don't let RawPostDataException bubble up (#3553) by @​sentrivana

• Django: Add sync_capable to SentryWrappingMiddleware (#3510) by @​szokeasaurusrex

• AIOHTTP: Add failed_request_status_codes (#3551) by @​szokeasaurusrex

  You can now define a set of integers that will determine which status codes should be reported to Sentry.

  sentry_sdk.init(
      integrations=[
          AioHttpIntegration(
              failed_request_status_codes={403, *range(500, 600)},
          )
      ]
  )

  Examples of valid failed_request_status_codes:

  • {500} will only send events on HTTP 500.
  • {400, *range(500, 600)} will send events on HTTP 400 as well as the 5xx range.
  • {500, 503} will send events on HTTP 500 and 503.
  • set() (the empty set) will not send events for any HTTP status code.

  The default is {*range(500, 600)}, meaning that all 5xx status codes are reported to Sentry.

• AIOHTTP: Delete test which depends on AIOHTTP behavior (#3568) by @​szokeasaurusrex

• AIOHTTP: Handle invalid responses (#3554) by @​szokeasaurusrex

• FastAPI/Starlette: Support new failed_request_status_codes (#3563) by @​szokeasaurusrex

  The format of failed_request_status_codes has changed from a list

... (truncated)

Changelog

Sourced from sentry-sdk's changelog.

2.15.0

Integrations

• Configure HTTP methods to capture in ASGI/WSGI middleware and frameworks (#3531) by @​antonpirker

  We've added a new option to the Django, Flask, Starlette and FastAPI integrations called http_methods_to_capture. This is a configurable tuple of HTTP method verbs that should create a transaction in Sentry. The default is ("CONNECT", "DELETE", "GET", "PATCH", "POST", "PUT", "TRACE",). OPTIONS and HEAD are not included by default.

  Here's how to use it (substitute Flask for your framework integration):

  sentry_sdk.init(
      integrations=[
        FlaskIntegration(
            http_methods_to_capture=("GET", "POST"),
        ),
    ],
  )

• Django: Allow ASGI to use drf_request in DjangoRequestExtractor (#3572) by @​PakawiNz

• Django: Don't let RawPostDataException bubble up (#3553) by @​sentrivana

• Django: Add sync_capable to SentryWrappingMiddleware (#3510) by @​szokeasaurusrex

• AIOHTTP: Add failed_request_status_codes (#3551) by @​szokeasaurusrex

  You can now define a set of integers that will determine which status codes should be reported to Sentry.

  sentry_sdk.init(
      integrations=[
          AioHttpIntegration(
              failed_request_status_codes={403, *range(500, 600)},
          )
      ]
  )

  Examples of valid failed_request_status_codes:

  • {500} will only send events on HTTP 500.
  • {400, *range(500, 600)} will send events on HTTP 400 as well as the 5xx range.
  • {500, 503} will send events on HTTP 500 and 503.
  • set() (the empty set) will not send events for any HTTP status code.

  The default is {*range(500, 600)}, meaning that all 5xx status codes are reported to Sentry.

• AIOHTTP: Delete test which depends on AIOHTTP behavior (#3568) by @​szokeasaurusrex

• AIOHTTP: Handle invalid responses (#3554) by @​szokeasaurusrex

• FastAPI/Starlette: Support new failed_request_status_codes (#3563) by @​szokeasaurusrex

... (truncated)

Commits

• 65909ed Update CHANGELOG.md
• 97b6d9f Fix changelog
• 5de346c Refactor changelog
• 7bee75f release: 2.15.0
• 1c64ff7 Configure HTTP methods to capture in WSGI middleware and frameworks (#3531)
• a3ab1ea XFail one of the Lambda tests (#3592)
• 05411ff allowing ASGI to use drf_request in DjangoRequestExtractor (#3572)
• 4636afc fix(tracing): Fix add_query_source with modules outside of project root (#3...
• aed18d4 build(deps): bump actions/checkout from 4.1.7 to 4.2.0 (#3585)
• 205591e Test more integrations on 3.13 (#3578)
• Additional commits viewable in compare view

Updates termcolor from 2.4.0 to 2.5.0

Release notes

Sourced from termcolor's releases.

Release 2.5.0

Added

• Add strike attribute (#65) @​muzhig
• Generate and upload attestations to PyPI (#83) @​hugovk

Changed

• Drop support for Python 3.8 (#81) @​hugovk

Commits

• 2654f7f Test with uv (#84)
• 143a8b4 Generate and upload attestations to PyPI (#83)
• 09ca9cc Drop support for Python 3.8 (#81)
• 9e35c66 [pre-commit.ci] pre-commit autoupdate (#80)
• 9f38125 Update codecov/codecov-action action to v4 (#78)
• 354cb36 Update codecov/codecov-action action to v4 (#76)
• 0ac4aeb Add Codecov token to work with v4 (#75)
• 3c927b6 [pre-commit.ci] pre-commit autoupdate (#71)
• 7143ed6 Update github-actions (#69)
• 40bd968 [pre-commit.ci] pre-commit autoupdate (#67)
• Additional commits viewable in compare view

Updates ruff from 0.6.8 to 0.6.9

Release notes

Sourced from ruff's releases.

0.6.9

Release Notes

Preview features

• Fix codeblock dynamic line length calculation for indented docstring examples (#13523)
• [refurb] Mark FURB118 fix as unsafe (#13613)

Rule changes

• [pydocstyle] Don't raise D208 when last line is non-empty (#13372)
• [pylint] Preserve trivia (i.e. comments) in PLR5501 autofix (#13573)

Configuration

• [pyflakes] Add allow-unused-imports setting for unused-import rule (F401) (#13601)

Bug fixes

• Support ruff discovery in pip build environments (#13591)
• [flake8-bugbear] Avoid short circuiting B017 for multiple context managers (#13609)
• [pylint] Do not offer an invalid fix for PLR1716 when the comparisons contain parenthesis (#13527)
• [pyupgrade] Fix UP043 to apply to collections.abc.Generator and collections.abc.AsyncGenerator (#13611)
• [refurb] Fix handling of slices in tuples for FURB118, e.g., x[:, 1] (#13518)

Documentation

• Update GitHub Action link to astral-sh/ruff-action (#13551)

Install ruff 0.6.9

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/astral-sh/ruff/releases/download/0.6.9/ruff-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy ByPass -c "irm https://github.com/astral-sh/ruff/releases/download/0.6.9/ruff-installer.ps1 | iex"

Download ruff 0.6.9

File	Platform	Checksum
ruff-aarch64-apple-darwin.tar.gz	Apple Silicon macOS	checksum
ruff-x86_64-apple-darwin.tar.gz	Intel macOS	checksum
ruff-aarch64-pc-windows-msvc.zip	ARM64 Windows	checksum

... (truncated)

Changelog

Sourced from ruff's changelog.

0.6.9

Preview features

• Fix codeblock dynamic line length calculation for indented docstring examples (#13523)
• [refurb] Mark FURB118 fix as unsafe (#13613)

Rule changes

• [pydocstyle] Don't raise D208 when last line is non-empty (#13372)
• [pylint] Preserve trivia (i.e. comments) in PLR5501 autofix (#13573)

Configuration

• [pyflakes] Add allow-unused-imports setting for unused-import rule (F401) (#13601)

Bug fixes

• Support ruff discovery in pip build environments (#13591)
• [flake8-bugbear] Avoid short circuiting B017 for multiple context managers (#13609)
• [pylint] Do not offer an invalid fix for PLR1716 when the comparisons contain parenthesis (#13527)
• [pyupgrade] Fix UP043 to apply to collections.abc.Generator and collections.abc.AsyncGenerator (#13611)
• [refurb] Fix handling of slices in tuples for FURB118, e.g., x[:, 1] (#13518)

Documentation

• Update GitHub Action link to astral-sh/ruff-action (#13551)

Commits

• 975be9c Bump version to 0.6.9 (#13624)
• 99e4566 Mark FURB118 fix as unsafe (#13613)
• 7ad07c2 Add allow-unused-imports setting for unused-import rule (F401) (#13601)
• 4aefe52 Support ruff discovery in pip build environments (#13591)
• cc1f766 Preserve trivia (i.e. comments) in PLR5501 (#13573)
• fdd0a22 Move to maintained mirror of prettier (#13592)
• 3728d5b [pyupgrade] Fix UP043 to apply to collections.abc.Generator and `collecti...
• 7e3894f Avoid short circuiting B017 for multiple context managers (#13609)
• c3b40da Use backticks for code in red-knot messages (#13599)
• ef45185 Allow users to provide custom diagnostic messages when unwrapping calls (#13597)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[github-actions]

The minor update of this production dependency was not automatically approved. For production dependencies, these semver updates can be automatically approved: patch