Upgrade: Bump the dependencies group across 1 directory with 6 updates

Open dependabot[bot] opened this issue 1 year ago • 0 comments

Bumps the dependencies group with 6 updates in the / directory:

Package	From	To
aiohttp	`3.9.5`	`3.10.8`
attrs	`23.2.0`	`24.2.0`
idna	`3.7`	`3.10`
multidict	`6.0.5`	`6.1.0`
pyyaml	`6.0.1`	`6.0.2`
yarl	`1.9.4`	`1.13.1`

Updates aiohttp from 3.9.5 to 3.10.8

Release notes

Sourced from aiohttp's releases.

3.10.8

Bug fixes

Fixed cancellation leaking upwards on timeout -- by :user:bdraco.

Related issues and pull requests on GitHub: #9326.

3.10.7

Bug fixes

Fixed assembling the :class:~yarl.URL for web requests when the host contains a non-default port or IPv6 address -- by :user:bdraco.

Related issues and pull requests on GitHub: #9309.

Miscellaneous internal changes

Improved performance of determining if a URL is absolute -- by :user:bdraco.

The property :attr:~yarl.URL.absolute is more performant than the method URL.is_absolute() and preferred when newer versions of yarl are used.

Related issues and pull requests on GitHub: #9171.

Replaced code that can now be handled by yarl -- by :user:bdraco.

Related issues and pull requests on GitHub: #9301.

... (truncated)

Changelog

Sourced from aiohttp's changelog.

3.10.8 (2024-09-28)

Bug fixes

Fixed cancellation leaking upwards on timeout -- by :user:bdraco.

Related issues and pull requests on GitHub: :issue:9326.

3.10.7 (2024-09-27)

Bug fixes

Fixed assembling the :class:~yarl.URL for web requests when the host contains a non-default port or IPv6 address -- by :user:bdraco.

Related issues and pull requests on GitHub: :issue:9309.

Miscellaneous internal changes

Improved performance of determining if a URL is absolute -- by :user:bdraco.

The property :attr:~yarl.URL.absolute is more performant than the method URL.is_absolute() and preferred when newer versions of yarl are used.

Related issues and pull requests on GitHub: :issue:9171.

Replaced code that can now be handled by yarl -- by :user:bdraco.

Related issues and pull requests on GitHub:

... (truncated)

Commits

8a7ce94 Release 3.10.8 (#9330)
a308f74 [PR #9326/fe26ae2 backport][3.10] Fix TimerContext not uncancelling the curre...
52e0b91 Fix custom cookies example (#9321) (#9324)
609c6e3 Increment version to 3.10.8.dev0
f9a9e85 Release 3.10.7 (#9320)
8220ced [PR #9309/e4028333 backport][3.10] Fix building the URL in BaseRequest when t...
d32d580 [PR #9301/c240b52 backport][3.10] Replace code that can now be handled by yar...
fd5ece6 Bump yarl to 1.13.0 (#9302) (#9304)
d6d2bcc [PR #9294/552dea53 backport][3.10] Backport type fix from #9226 (#9299)
e6bcfbe [PR #9171/0462ae6b backport][3.10] Switch to using yarl.URL.absolute over `...
Additional commits viewable in compare view

Updates attrs from 23.2.0 to 24.2.0

Commits

See full diff in compare view

Updates idna from 3.7 to 3.10

Release notes

Sourced from idna's releases.

v3.10

No release notes provided.

v3.9

No release notes provided.

v3.8

What's Changed

Fix regression where IDNAError exception was not being produced for certain inputs.

Add support for Python 3.13, drop support for Python 3.5 as it is no longer testable.

Documentation improvements

Updates to package testing using Github actions

Thanks to Hugo van Kemenade for contributions to this release.

Full Changelog: https://github.com/kjd/idna/compare/v3.7...v3.8

Changelog

Sourced from idna's changelog.

3.10 (2024-09-15) +++++++++++++++++

Reverted to Unicode 15.1.0 data. Unicode 16 has some significant changes to UTS46 processing that will require more work to properly implement.

3.9 (2024-09-13) ++++++++++++++++

Update to Unicode 16.0.0

Deprecate setup.cfg in favour of pyproject.toml

Use ruff for code formatting

Thanks to Waket Zheng for contributions to this release.

3.8 (2024-08-23) ++++++++++++++++

Fix regression where IDNAError exception was not being produced for certain inputs.

Add support for Python 3.13, drop support for Python 3.5 as it is no longer testable.

Documentation improvements

Updates to package testing using Github actions

Thanks to Hugo van Kemenade for contributions to this release.

Commits

729225d Release v3.10
3eef168 Merge pull request #194 from kjd/revert-unicode-16
ceca619 Revert Unicode 16.0.0 data updates
c43ac75 Merge pull request #191 from kjd/release-3.9
1b8800a Release v3.9
a1fd168 Merge pull request #190 from kjd/unicode-16
7732c61 Merge branch 'master' into unicode-16
4ed183d Refactor membership test
762216b Format with ruff
580ece9 Implement changes to UTS46 algorithm
Additional commits viewable in compare view

Updates multidict from 6.0.5 to 6.1.0

Release notes

Sourced from multidict's releases.

6.1.0

Bug fixes

Covered the unreachable code path in multidict._multidict_base._abc_itemsview_register() with typing -- by :user:skinnyBat.

Related issues and pull requests on GitHub: #928.

Features

Added support for Python 3.13 -- by :user:bdraco.

Related issues and pull requests on GitHub: #1002.

Removals and backward incompatible breaking changes

Removed Python 3.7 support -- by :user:bdraco.

Related issues and pull requests on GitHub: #997.

Contributor-facing changes

Added tests to have full code coverage of the multidict._multidict_base._viewbaseset_richcmp() function -- by :user:skinnyBat.

Related issues and pull requests on GitHub: #928.

... (truncated)

Changelog

Sourced from multidict's changelog.

6.1.0 (2024-09-09)

Bug fixes

Covered the unreachable code path in multidict._multidict_base._abc_itemsview_register() with typing -- by :user:skinnyBat.

Related issues and pull requests on GitHub: :issue:928.

Features

Added support for Python 3.13 -- by :user:bdraco.

Related issues and pull requests on GitHub: :issue:1002.

Removals and backward incompatible breaking changes

Removed Python 3.7 support -- by :user:bdraco.

Related issues and pull requests on GitHub: :issue:997.

Contributor-facing changes

Added tests to have full code coverage of the multidict._multidict_base._viewbaseset_richcmp() function -- by :user:skinnyBat.

Related issues and pull requests on GitHub:

... (truncated)

Commits

4140e63 Release 6.1.0
f3876fd Python 3.13 support (#1002)
62ab55e Bump test-summary/action from 2.3 to 2.4 (#983)
039c298 [pre-commit.ci] pre-commit autoupdate (#964)
a27f057 Bump black from 24.4.0 to 24.8.0 (#1001)
ac10253 Bump pytest-cov from 4.1.0 to 5.0.0 (#963)
794c6b2 Bump pre-commit from 3.7.0 to 3.8.0 (#1000)
234d448 Bump dependabot/fetch-metadata from 2.0.0 to 2.2.0 (#985)
056c7de Bump sigstore/gh-action-sigstore-python from 2.1.1 to 3.0.0 (#986)
f176071 Bump pypa/cibuildwheel from 2.17.0 to 2.20.0 (#993)
Additional commits viewable in compare view

Updates pyyaml from 6.0.1 to 6.0.2

Release notes

Sourced from pyyaml's releases.

6.0.2

What's Changed

Support for Cython 3.x and Python 3.13.

Full Changelog: https://github.com/yaml/pyyaml/compare/6.0.1...6.0.2

6.0.2rc1

Support for extension build with Cython 3.x

Support for Python 3.13

Added PyPI wheels for musllinux on aarch64

Changelog

Sourced from pyyaml's changelog.

6.0.2 (2024-08-06)

yaml/pyyaml#808 -- Support for Cython 3.x and Python 3.13

Commits

41309b0 Release 6.0.2 (#819)
dd9f0e1 6.0.2rc1 (#809)
f5527a2 disable CI trigger on PR edits
b4d80a7 Python 3.12 + musllinux_1_1_x86_64 wheel support
See full diff in compare view

Updates yarl from 1.9.4 to 1.13.1

Release notes

Sourced from yarl's releases.

1.13.1

Miscellaneous internal changes

Improved performance of calling :py:meth:~yarl.URL.build with authority -- by :user:bdraco.

Related issues and pull requests on GitHub: #1163.

1.13.0

Bug fixes

Started rejecting ASCII hostnames with invalid characters. For host strings that look like authority strings, the exception message includes advice on what to do instead -- by :user:mjpieters.

Related issues and pull requests on GitHub: #880, #954.

Fixed IPv6 addresses missing brackets when the :class:~yarl.URL was converted to a string -- by :user:bdraco.

Related issues and pull requests on GitHub: #1157, #1158.

Features

Added :attr:~yarl.URL.host_subcomponent which returns the :rfc:3986#section-3.2.2 host subcomponent -- by :user:bdraco.

The only current practical difference between :attr:~yarl.URL.raw_host and :attr:~yarl.URL.host_subcomponent is that IPv6 addresses are returned bracketed.

Related issues and pull requests on GitHub: #1159.

1.12.1

No significant changes.

This release was created because the signatures failed to upload for 1.12.0

1.12.0

... (truncated)

Changelog

Sourced from yarl's changelog.

1.13.1

(2024-09-27)

Miscellaneous internal changes

Improved performance of calling :py:meth:~yarl.URL.build with authority -- by :user:bdraco.

Related issues and pull requests on GitHub: :issue:1163.

1.13.0

(2024-09-26)

Bug fixes

Started rejecting ASCII hostnames with invalid characters. For host strings that look like authority strings, the exception message includes advice on what to do instead -- by :user:mjpieters.

Related issues and pull requests on GitHub: :issue:880, :issue:954.

Fixed IPv6 addresses missing brackets when the :class:~yarl.URL was converted to a string -- by :user:bdraco.

Related issues and pull requests on GitHub: :issue:1157, :issue:1158.

Features

Added :attr:~yarl.URL.host_subcomponent which returns the :rfc:3986#section-3.2.2 host subcomponent -- by :user:bdraco.

The only current practical difference between :attr:~yarl.URL.raw_host and :attr:~yarl.URL.host_subcomponent is that IPv6 addresses are returned bracketed.

Related issues and pull requests on GitHub: :issue:1159.

... (truncated)

Commits

4a77391 Release 1.13.1
07b2e84 Improve performance of building URLs with authority (#1163)
38ef0f9 Increment version to 1.13.1.dev0 (#1162)
eaae7fd Release 1.13.0
3273936 Validate ASCII host values (#954)
7128872 Fix round-trip of IPv6 addresses when converting to a string (#1158)
7d013d2 Add host_subcomponent property (#1159)
ecb100d Add versionadded to path_safe (#1160)
bf2ced7 Increment verson to 1.12.2.dev0 (#1155)
19f2516 Release 1.12.1
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Oct 01 '24 14:10 dependabot[bot]