chore(deps-dev): bump pymongo from 4.7.3 to 4.11

[dependabot]

Bumps pymongo from 4.7.3 to 4.11.

Release notes

Sourced from pymongo's releases.

PyMongo 4.11.0

Community notes: https://www.mongodb.com/community/forums/t/pymongo-4-11-released/310976

PyMongo 4.10.1

Community notes: https://www.mongodb.com/community/forums/t/pymongo-4-10-1-released/299573

PyMongo 4.10.0

Community notes: https://www.mongodb.com/community/forums/t/pymongo-4-10-0-released/299474

PyMongo 4.9.2

• Fixed a bug where pymongo.asynchronous.mongo_client.AsyncMongoClient could deadlock.
• Fixed a bug where PyMongo could fail to import on Windows if asyncio is misconfigured.
• Fixed a bug where pymongo.results.UpdateResult.did_upsert would raise a TypeError.

PyMongo 4.9.1

Community notes: https://www.mongodb.com/community/forums/t/pymongo-4-9-released/297833

PyMongo 4.8.0

Changes in Version 4.8.0

PyMongo 4.8 brings a number of improvements including:

• The handshake metadata for "os.name" on Windows has been simplified to "Windows" to improve import time.
• The repr of bson.binary.Binary is now redacted when the subtype is SENSITIVE_SUBTYPE(8).
• Secure Software Development Life Cycle automation for release process. GitHub Releases now include a Software Bill of Materials, and signature files corresponding to the distribution files released on PyPI.
• Fixed a bug in change streams where both startAtOperationTime and resumeToken could be added to a retry attempt, which caused the retry to fail.
• Fallback to stdlib ssl module when pyopenssl import fails with AttributeError.
• Improved performance of MongoClient operations, especially when many operations are being run concurrently.

Unavoidable breaking changes

• Since we are now using hatch as our build backend, we no longer have a usable setup.py file and require installation using pip. Attempts to invoke the setup.py file will raise an exception. Additionally, pip >= 21.3 is now required for editable installs.

Issues Resolved

See the PyMongo 4.8 release notes in JIRA for the list of resolved issues in this release.

---

Full Changelog: mongodb/mongo-python-driver@4.7.1...4.8.0

Changelog

Sourced from pymongo's changelog.

Changelog

Changes in Version 4.11.0 (YYYY/MM/DD)

.. warning:: PyMongo 4.11 drops support for Python 3.8 and PyPy 3.9: Python 3.9+ or PyPy 3.10+ is now required. .. warning:: PyMongo 4.11 drops support for MongoDB 3.6. PyMongo now supports MongoDB 4.0+. Driver support for MongoDB 3.6 reached end of life in April 2024. .. warning:: Driver support for MongoDB 4.0 reaches end of life in April 2025. A future minor release of PyMongo will raise the minimum supported MongoDB Server version from 4.0 to 4.2. This is in accordance with MongoDB Software Lifecycle Schedules. Support for MongoDB Server 4.0 will be dropped in a future release! .. warning:: This version does not include wheels for ppc64le or s390x architectures, see PYTHON-5058_ for more information.

PyMongo 4.11 brings a number of changes including:

• Dropped support for Python 3.8 and PyPy 3.9.
• Dropped support for MongoDB 3.6.
• Dropped support for the MONGODB-CR authenticate mechanism, which is no longer supported by MongoDB 4.0+.
• pymongocrypt>=1.12 is now required for :ref:In-Use Encryption support.
• Added support for free-threaded Python with the GIL disabled. For more information see: Free-threaded CPython <https://docs.python.org/3.13/whatsnew/3.13.html#whatsnew313-free-threaded-cpython>. We do not yet support free-threaded Python on Windows (PYTHON-5027) or with In-Use Encryption (PYTHON-5024_).
• :attr:~pymongo.asynchronous.mongo_client.AsyncMongoClient.address and :attr:~pymongo.mongo_client.MongoClient.address now correctly block when called on unconnected clients until either connection succeeds or a server selection timeout error is raised.
• Added :func:repr support to :class:pymongo.operations.IndexModel.
• Added :func:repr support to :class:pymongo.operations.SearchIndexModel.
• Added sort parameter to :meth:~pymongo.collection.Collection.update_one, :meth:~pymongo.collection.Collection.replace_one, :class:~pymongo.operations.UpdateOne, and :class:~pymongo.operations.UpdateMany,
• :meth:~pymongo.mongo_client.MongoClient.bulk_write and :meth:~pymongo.asynchronous.mongo_client.AsyncMongoClient.bulk_write now throw an error when ordered=True or verboseResults=True are used with unacknowledged writes. These are unavoidable breaking changes.
• Fixed a bug in :const:bson.json_util.dumps where a :class:bson.datetime_ms.DatetimeMS would be incorrectly encoded as '{"$date": "X"}' instead of '{"$date": X}' when using the legacy MongoDB Extended JSON datetime representation.
• Fixed a bug where :const:bson.json_util.loads would raise an IndexError when parsing an invalid "$date" instead of a ValueError.

Issues Resolved ...............

See the PyMongo 4.11 release notes in JIRA_ for the list of resolved issues in this release.

.. _PyMongo 4.11 release notes in JIRA: https://jira.mongodb.org/secure/ReleaseNote.jspa?projectId=10004&version=40784

... (truncated)

Commits

• cae161e BUMP 4.11
• dc29938 PYTHON-5047 Fix dry run logic in releases (#2083)
• 4567f88 PYTHON-5047 Fix handling of attestation on testpypi workflows (#2081)
• 848ab4f PYTHON-5047 Improve testing of publish workflows (#2080)
• 2225cca PYTHON-5062 Add GitHub Actions CodeQL scanning (#2079)
• 9082a4b PYTHON-5058 Build linux aarch64 wheel using native runner and omit ppc64le an...
• a3208df PYTHON-5059 Update default maxMessageSizeBytes and maxWriteBatchSize (#2078)
• dc18231 PYTHON-5047 Avoid updating the uv lock unintentionally (#2076)
• a3cc43f PYTHON-4999 Resync retryable writes tests (#2073)
• cfe7784 PYTHON-4976 Replace hatch with uv as our python environment and workfow tool ...
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Greptile Summary

Disclaimer: Experimental PR review

This pull request updates the pymongo dependency from version 4.7.3 to 4.11 in the langfuse-python package, introducing several significant changes.

• Drops support for Python 3.8 and MongoDB 3.6, now requiring Python 3.9+ and MongoDB 4.0+
• Removes support for MONGODB-CR authentication mechanism and ppc64le/s390x architecture wheels
• Adds support for free-threaded Python with GIL disabled (except on Windows and with In-Use Encryption)
• Fixes several bugs including AsyncMongoClient deadlocks and JSON serialization issues
• Requires pymongocrypt>=1.12 for In-Use Encryption support

[greptile-apps]

LGTM

_{No file(s) reviewed, no comment(s)
Edit PR Review Bot Settings | Greptile}