pycanon
pycanon copied to clipboard
IFCA-Advanced-Computing
chore(deps): update beartype requirement from 0.21.0 to 0.22.2
Updates the requirements on beartype to permit the latest version.
Release notes
Sourced from beartype's releases.
Beartype 0.22.2: Yo Dawg We Heard You Like LLM
@beartypeis proud as a cub gnawing its first salmon to announce:@beartypehas been Tidelifted! For our security-conscious corporate and government userbase, the best way to secure your enterprise and support@beartypeis now through [Tidelift][] vis-a-vis a [SonarQube Advanced Security][] subscription. More on that later. We now return to your regularly scheduled release party. DJ Leycec in residence. Hit those fat QA jams.Beartype
0.22.00.22.10.22.2 portals into the mortal plenum with a disturbing "WHOOOMP!" As you panic, all the oxygen in the room is rapidly vacuumed into an adjacent hyperdimension. It's not@beartype's safest entrance – but it's one we're all sure to remember. This is@beartype0.22.2: don't ask what happened to0.22.0. just... don't.pip install --upgrade --pre beartype # beartype casts magic missile on the darknessThe central dogma of
@beartype0.22.2is LLM compatibility. Do you like LLM? Do you like compatibility? Then your code likes@beartype0.22.2(even against your better judgement). But before the liking starts...
@beartype0.22.2salutes you who are about to code
@leycecand his beautiful science wife are eating well. Thanks entirely to...GitHub Sponsors: Befriend the Bear and Get a Bear for Life
This release comes courtesy these proud GitHub Sponsors, without whom
@leycec's cats would currently be eating grasshoppers in the abandoned back lot again:
@sesco-llc(SESCO Enterprises), "The Power of Innovation in Trading": this inspires me to get out of the house and do something https://sescollc.com@DylanModesitt(Dylan Modesitt), quantitative strategies energy trading associate: ...wikipedia, don't fail me now! https://dylanmodesitt.comAdditional financial shout-outs to
@ilyapoz(@IliaPozhilov), the amazing former Yandex code cosmonaut who graciously donated a pile of Georgian lari to@beartypethis go-around. Apparently, the lari is denominated in the ლ Unicode character. What a symbol! It looks like a beautiful hat. If only the Canadian dollar was half as manly. :sob:Thanks so much, masters of fintech and Yandex.
The Masters of Fintech and Yandex. That's who.
Tidelift: A Rising Tide Lifted
@beartype's Not-At-All-Leaky BoatThis release also comes courtesy [Tidelift][], which very graciously pays out recurring income to security-sensitive open-source projects like
@beartype, NumPy, and other stuff you probably care about.@beartypejoining [Tidelift][] has super-positive implications for Python's broader QA community – including:
- No rugpull.
@beartypeis much less likely to die, disappear, or otherwise wither on the entropic vine now. Sadly, most open-source software does. Without recurring income, most open-source software never makes it to the [Tidelift][] stage. It vanishes without a trace at 5:37AM on a Monday morning, leaving your once-profitable corporate enterprise and your once-stable local government without a working QA solution. That won't happen to@beartype.- Actual security. Thanks to Tidelift making me do it,
@beartypenow features an actual honest-to-Ursula security policy. It's boring. It's bog-standard. If we were responsible, we'd encourage you to read it. Instead, here's the tl;dr:
@beartypeusers who discover security vulnerabilities are invited to privately disclose those vulnerabilities by submitting a GitHub-managed security vulnerability.@beartypewill then privately resolve those vulnerabilities.@beartypewill then publish a new stable release containing those resolutions.@beartypewill then publicly document your discovery, crediting you and your fearsome l33t skills. Seriously, they're fearsome. We're afraid. With great power comes greatresponsibilityQA. Somebody smart said that.- GitHub will then include these vulnerabilities in its own GitHub Advisory Database, improving everyone's security. Luckily, you are part of everyone. ...what does that even mean?
If you represent a security-conscious corporate, government, or non-profit, the best way bar none for you to support
@beartypeand secure your own workflow is by subscribing to [Tidelift][] through [SonarQube Advanced Security][]. Security giant [Sonar][] recently acquired [Tidelift][], guaranteeing the economic viability of the Tidelift model for billions of future open-source projects that have yet to be born. Join the jargon-laden conversation and pay someone else to think about unreadable acronyms like SAST, SCA, and SBOM for once.
Pictured: Artistic rendition of the
@beartypedevelopment process before Tidelift. You weren't supposed to see this.!!STUFF YOU WANNA READ EVEN THOUGH ITS EXHAUSTING!!
... (truncated)
Commits
344167bBeartype 0.22.2 released.5fb9383Beartype 0.22.2 started.2b6b528GitHub Actions-based release workflow permissions.f6e781cBeartype 0.22.1 started.871beab>@beartypeis proud as a cub gnawing its first salmon to announce: **@bearty...141e3d8Decorator-hostile decorator QA x 5.a6ed0aeOfficialpandera.polarssupport.8e5de8eDecorator-hostile decorator QA x 4.32590b0Decorator-hostile decorator QA x 3.10aa599Decorator-hostile decorator QA x 2.- Additional commits viewable in compare view
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "Published by a pub.dev verified publisher"){kind=small}