Upgrade: Bump the dependencies group across 1 directory with 6 updates #166
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Bumps the dependencies group with 6 updates in the / directory:
2024.6.2
2024.8.30
3.7
3.8
8.0.0
8.4.0
2.7.1
2.13.0
3.0.3
3.0.4
3.19.2
3.20.1
Updates
certifi
from 2024.6.2 to 2024.8.30Commits
325c2fd
2024.08.30 (#304)d66bf5f
Bump actions/upload-artifact from 4.3.5 to 4.3.6 (#302)2150f23
Bump actions/upload-artifact from 4.3.4 to 4.3.5 (#301)fc9b771
Bump actions/setup-python from 5.1.0 to 5.1.1 (#300)965b239
Bump actions/download-artifact from 4.1.7 to 4.1.8 (#297)c1f50cc
Bump actions/upload-artifact from 4.3.3 to 4.3.4 (#296)bd81538
2024.07.04 (#295)06a2cbf
Bump peter-evans/create-pull-request from 6.0.5 to 6.1.0 (#294)13bba02
Bump actions/checkout from 4.1.6 to 4.1.7 (#293)e8abcd0
Bump pypa/gh-action-pypi-publish from 1.8.14 to 1.9.0 (#292)Updates
idna
from 3.7 to 3.8Release notes
Sourced from idna's releases.
Changelog
Sourced from idna's changelog.
Commits
784c6f4
Release v3.828c7c9e
Typo fixa2b41c3
Pin remainder of Github Actions flagged in code scanning1f613c5
More Github Action dependency pinninga87e2b6
Update OSSF scorecard to latest version12d4dd1
Merge pull request #182 from kjd/github-pypi-actionse1a1541
Pin Github Actions dependenciesc109d3a
Merge branch 'master' into github-pypi-actionsf8a8de4
Do not try to build/send packages to TestPyPI for now613bdde
Update regexp to move global flag to start of expressionUpdates
importlib-metadata
from 8.0.0 to 8.4.0Changelog
Sourced from importlib-metadata's changelog.
Commits
1616cb3
Finalize71b4678
Add news fragment.ebcdcfd
Remove workaround for python/typeshed#10328.2c43cfe
Merge pull request #499 from danielhollas/defer-inspecta7aaf72
Use third-person imperative voice and link to issue in comment.e99c105
Restore single-expression logic.debb516
Don't use global var3c8e1ec
Finalize5035755
Merge pull request #498 from python/feature/entry-points-disallow-dist-match6d9b766
Remove MetadataPathFinder regardless of its position.Updates
sentry-sdk
from 2.7.1 to 2.13.0Release notes
Sourced from sentry-sdk's releases.
... (truncated)
Changelog
Sourced from sentry-sdk's changelog.
... (truncated)
Commits
570307c
Updated changelog4c1ea7a
release: 2.13.017a6cf0
feat: Add ray integration support (#2400) (#2444)4858996
Expose custom_repr function that precedes safe_repr invocation in serializer ...275c63e
ref(sessions): Deprecate hub-basedsessions.py
logic (#3419)6a4e729
ref(sessions): Deprecateis_auto_session_tracking_enabled
(#3428)a6cb9b1
Add note to generated yaml files (#3423)19c4069
test(sessions): Remove unnecessary line (#3418)da0392f
Dramatiq integration from@jacobsvante
(#3397)7d46709
Serialize vars early to avoid living references (#3409)Updates
werkzeug
from 3.0.3 to 3.0.4Release notes
Sourced from werkzeug's releases.
Changelog
Sourced from werkzeug's changelog.
Commits
b933ccb
release version 3.0.4c09de73
debugger works on urls with query string (#2942)1d1d987
debugger works on urls with query string32a77a0
treat SSLEOFError as dropped connection (#2941)cf18d03
treat SSLEOFError as dropped connectiona1db120
synchronize failed pin entry (#2940)6504819
synchronize failed pin entry7abec4b
improve parse_options_header performance (#2939)3a893d2
improve parse_options_header performance3a52597
restore invalid bytes behavior for form parser (#2938)Updates
zipp
from 3.19.2 to 3.20.1Changelog
Sourced from zipp's changelog.
Commits
c23e549
Finalizec2b9015
Merge pull request #124 from jaraco/bugfix/gh-123270-supported-names774a3ac
Add TODO to consolidate this behavior in CPython.cc61e61
Prefer simpler path.rstrip to consolidate checks for empty or only paths.bec712f
Mark unused code as uncovered.fde82dc
Add news fragment.a421f7e
Invent DirtyZipInfo to create an unsanitized zipfile with backslashes.0a3a7b4
Refine expectation that paths with leading slashes are simply not visible.f89b93f
Address infinite loop when zipfile begins with more than one leading slash.3cb5609
Removed SanitizedNames.Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditions
will show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major version
will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor version
will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>
will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>
will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>
will remove the ignore condition of the specified dependency and ignore conditions