Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Lock file maintenance poetry all non-major dependencies #3377

Closed
wants to merge 2 commits into from
Closed

Lock file maintenance poetry all non-major dependencies #3377

wants to merge 2 commits into from

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Feb 5, 2024
edited by github-actions bot
Loading

Mend Renovate

This PR contains the following updates:

Package Type Update Change Age Adoption Passing Confidence
lockFileMaintenance All locks refreshed age adoption passing confidence
aiobotocore dependencies patch 2.11.1 -> 2.11.2 age adoption passing confidence
aiobotocore dependencies minor 2.3.4 -> 2.11.2 age adoption passing confidence
aiohttp dependencies patch 3.9.2 -> 3.9.3 age adoption passing confidence
cryptography (changelog) dependencies patch 42.0.1 -> 42.0.2 age adoption passing confidence
fastapi dependencies patch 0.109.0 -> 0.109.2 age adoption passing confidence
geopandas dependencies patch 0.14.2 -> 0.14.3 age adoption passing confidence
nats-py dependencies minor 2.6.0 -> 2.7.0 age adoption passing confidence
orjson (changelog) dependencies patch 3.9.12 -> 3.9.13 age adoption passing confidence
pylint (changelog) dev-dependencies minor 2.13.9 -> 2.17.7 age adoption passing confidence
pytest (source, changelog) dev-dependencies minor 7.0.1 -> 7.4.4 age adoption passing confidence
python dependencies minor >=3.6.8,<=3.6.15 -> >=3.10.0,<=3.10.0 age adoption passing confidence
python-decouple dependencies minor 3.6 -> 3.8 age adoption passing confidence
shapely dependencies patch 1.8.5.post1 -> 1.8.5 age adoption passing confidence
types-aiobotocore dependencies patch 2.11.1 -> 2.11.2 age adoption passing confidence
python-multipart (changelog) dependencies patch ^0.0.6 -> ^0.0.7 age adoption passing confidence
ruff (source, changelog) dev minor ^0.1.0 -> ^0.2.0 age adoption passing confidence
uvicorn (changelog) dependencies patch 0.27.0.post1 -> 0.27.0 age adoption passing confidence

🔧 This Pull Request updates lock files to use the latest dependency versions.

Release Notes

aio-libs/aiobotocore (aiobotocore)

v2.11.2

Compare Source

What's Changed

Full Changelog: aio-libs/aiobotocore@2.11.1...2.11.2

aio-libs/aiohttp (aiohttp)

v3.9.3

Compare Source

==================

Bug fixes

  • Fixed backwards compatibility breakage (in 3.9.2) of ssl parameter when set outside
    of ClientSession (e.g. directly in TCPConnector) -- by :user:Dreamsorcerer.

    Related issues and pull requests on GitHub:
    :issue:8097, :issue:8098.

Miscellaneous internal changes

  • Improved test suite handling of paths and temp files to consistently use pathlib and pytest fixtures.

    Related issues and pull requests on GitHub:
    :issue:3957.

pyca/cryptography (cryptography)

v42.0.2

Compare Source

tiangolo/fastapi (fastapi)

v0.109.2

Compare Source

Upgrades
Translations
Internal

v0.109.1

Compare Source

Security fixes
  • ⬆️ Upgrade minimum version of python-multipart to >=0.0.7 to fix a vulnerability when using form data with a ReDos attack. You can also simply upgrade python-multipart.

Read more in the advisory: Content-Type Header ReDoS.

Features
Refactors
  • ✅ Refactor tests for duplicate operation ID generation for compatibility with other tools running the FastAPI test suite. PR #​10876 by @​emmettbutler.
  • ♻️ Simplify string format with f-strings in fastapi/utils.py. PR #​10576 by @​eukub.
  • 🔧 Fix Ruff configuration unintentionally enabling and re-disabling mccabe complexity check. PR #​10893 by @​jiridanek.
  • ✅ Re-enable test in tests/test_tutorial/test_header_params/test_tutorial003.py after fix in Starlette. PR #​10904 by @​ooknimm.
Docs
Translations
Internal
geopandas/geopandas (geopandas)

v0.14.3

Compare Source

  • Several fixes for compatibility with the latest pandas 2.2 release.
  • Fix bug in pandas.concat CRS consistency checking where CRS differing by WKT
    whitespace only were treated as incompatible (#​3023).
nats-io/nats.py (nats-py)

v2.7.0

Compare Source

Added

  • Added support for multiple filter consumers when using nats-server +v2.10
    This is only supported when using the pull_subscribe_bind API:
await jsm.add_stream(name="multi", subjects=["a", "b", "c.>"])
cinfo = await jsm.add_consumer(
    "multi",
    name="myconsumer",
    filter_subjects=["a", "b"],
)
psub = await js.pull_subscribe_bind("multi", "myconsumer")
msgs = await psub.fetch(2)
for msg in msgs:
  await msg.ack()
  • Added subjects_filter option to js.stream_info() API
stream = await js.add_stream(name="foo", subjects=["foo.>"])
for i in range(0, 5):
    await js.publish("foo.%d" % i, b'A')

si = await js.stream_info("foo", subjects_filter=">")
print(si.state.subjects)

### => {'foo.0': 1, 'foo.1': 1, 'foo.2': 1, 'foo.3': 1, 'foo.4': 1}

Changed

  • Changed kv.watch default inactive_threshold cleanup timeout to be 5 minutes.
    It can now be customized as well by passing inactive_threshold as argument in seconds:
w = await kv.watchall(inactive_threshold=30.0)
  • Changed pull_subscribe_bind first argument to be called consumer instead of durable
    since it also supports ephemeral consumers. This should be backwards compatible.
psub = await js.pull_subscribe_bind(consumer="myconsumer", stream="test")
ijl/orjson (orjson)

v3.9.13

Compare Source

Fixed
  • Serialization str escape uses only 128-bit SIMD.
  • Fix compatibility with CPython 3.13 alpha 3.
Changed
  • Publish musllinux_1_2 instead of musllinux_1_1 wheels.
  • Serialization uses small integer optimization in CPython 3.12 or later.
pylint-dev/pylint (pylint)

v2.17.7

Compare Source

2.17.7 is the last release before we only support pylint 3.0.0 or superior and python 3.8 or superior.

False Positives Fixed

  • Fix a regression in pylint 2.17.6 / astroid 2.15.7 causing various
    messages for code involving TypeVar.

    Closes #​9069

Other Bug Fixes

  • Fix crash in refactoring checker when unary operand used with variable in for
    loop.

    Closes #​9074

v2.17.6

Compare Source

Other Bug Fixes

  • When parsing comma-separated lists of regular expressions in the config,
    ignore commas that are inside braces since those indicate quantifiers, not
    delineation between expressions.

    Closes #​7229

  • sys.argv is now always correctly considered as impossible to infer
    (instead of using the actual values given to pylint).

    Closes #​9047

  • Don't show class fields more than once in Pyreverse diagrams.

    Closes #​8189

  • Don't show arrows more than once in Pyreverse diagrams.

    Closes #​8522

  • Don't show duplicate type annotations in Pyreverse diagrams.

    Closes #​8888

  • Don't add Optional to | annotations with None in Pyreverse diagrams.

    Closes #​9014

v2.17.5

Compare Source

What's new in Pylint 2.17.5?

Release date: 2023-07-26

False Positives Fixed

  • Fix a false positive for unused-variable when there is an import in a
    if TYPE_CHECKING: block and allow-global-unused-variables is set to
    no in the configuration.

    Closes #​8696

  • Fix false positives generated when supplying arguments as **kwargs to IO
    calls like open().

    Closes #​8719

  • Fix a false positive where pylint was ignoring method calls annotated as
    NoReturn during the inconsistent-return-statements check.

    Closes #​8747

  • Exempt parents with only type annotations from the invalid-enum-extension
    message.

    Closes #​8830

Other Bug Fixes

  • Fixed crash when a call to super() was placed after an operator (e.g.
    not).

    Closes #​8554

  • Fix crash for modified-while-iterating checker when deleting
    members of a dict returned from a call.

    Closes #​8598

  • Fix crash in invalid-metaclass check when a metaclass had duplicate
    bases.

    Closes #​8698

  • Avoid consider-using-f-string on modulos with brackets in template.

    Closes #​8720.

  • Fix a crash when __all__ exists but cannot be inferred.

    Closes #​8740

  • Fix crash when a variable is assigned to a class attribute of identical name.

    Closes #​8754

  • Fixed a crash when calling copy.copy() without arguments.

    Closes #​8774

Other Changes

  • Fix a crash when a nonlocal is defined at module-level.

    Closes #​8735

v2.17.4

Compare Source

False Positives Fixed

  • Fix a false positive for bad-dunder-name when there is a user-defined
    __index__ method.

    Closes #​8613

Other Bug Fixes

  • pyreverse: added escaping of vertical bar character in annotation labels
    produced by DOT printer to ensure it is not treated as field separator of
    record-based nodes.

    Closes #​8603

  • Fixed a crash when generating a configuration file:
    tomlkit.exceptions.TOMLKitError: Can't add a table to a dotted key
    caused by tomlkit v0.11.8.

    Closes #​8632

v2.17.3

Compare Source

What's new in Pylint 2.17.3?

Release date: 2023-04-24

False Positives Fixed

  • Fix unused-argument false positive when __new__ does not use all the
    arguments of __init__.

    Closes #​3670

  • Fix unused-import false positive for usage of six.with_metaclass.

    Closes #​7506

  • logging-not-lazy is not longer emitted for explicitly concatenated string
    arguments.

    Closes #​8410

  • Fix false positive for isinstance-second-argument-not-valid-type when union
    types contains None.

    Closes #​8424

  • Fixed unused-import so that it observes the dummy-variables-rgx option.

    Closes #​8500

  • Union typed variables without assignment are no longer treated as
    TypeAlias.

    Closes #​8540

  • Fix false positive for positional-only-arguments-expected when a function
    contains both a positional-only parameter that has a default value, and
    **kwargs.

    Closes #​8555

  • Fix false positive for keyword-arg-before-vararg when a positional-only
    parameter with a default value precedes *args.

    Closes #​8570

Other Bug Fixes

  • Improve output of consider-using-generator message for min()` calls with default`` keyword.

    Closes #​8563

v2.17.2

Compare Source

False Positives Fixed

  • invalid-name now allows for integers in typealias names:

    • now valid: Good2Name, GoodName2.
    • still invalid: _1BadName.

    Closes #​8485

  • No longer consider Union as type annotation as type alias for naming
    checks.

    Closes #​8487

  • unnecessary-lambda no longer warns on lambdas which use its parameters in
    their body (other than the final arguments), e.g.
    lambda foo: (bar if foo else baz)(foo).

    Closes #​8496

Other Bug Fixes

  • Fix a crash in pyreverse when "/" characters are used in the output filename
    e.g pyreverse -o png -p name/ path/to/project.

    Closes #​8504

v2.17.1

Compare Source

False Positives Fixed

  • Adds asyncSetUp to the default defining-attr-methods list to silence
    attribute-defined-outside-init warning when using
    unittest.IsolatedAsyncioTestCase.

    Refs #​8403

Other Bug Fixes

  • --clear-cache-post-run now also clears LRU caches for pylint utilities
    holding references to AST nodes.

    Closes #​8361

  • Fix a crash when TYPE_CHECKING is used without importing it.

    Closes #​8434

  • Fix a regression of preferred-modules where a partial match was used
    instead of the required full match.

    Closes #​8453

Internal Changes

  • The following utilities are deprecated in favor of the more robust
    in_type_checking_block
    and will be removed in pylint 3.0:

    • is_node_in_guarded_import_block
    • is_node_in_typing_guarded_import_block
    • is_typing_guard

    is_sys_guard is still available, which was part of
    is_node_in_guarded_import_block.

    Refs #​8433

v2.17.0

Compare Source

2.17 is a small release that is the first to support python 3.11 officially
with the addition of TryStar nodes.

There's still two new default checks: bad-chained-comparison and
implicit-flag-alias, one of them already fixed a previously undetected
bug in sentry.

Thanks to the community effort our documentation is almost complete,
and almost all messages should have a proper documentation now.
A big thank you to everyone who participated !

The next release is going to be 3.0.0, bring breaking changes and
enact long announced deprecations. There's going to be frequent beta
releases, before the official releases, everyone is welcome to try the betas
so we find problems before the actual release.

What's new in Pylint 2.17.0?

Release date: 2023-03-08

New Features

  • pyreverse now supports custom color palettes with the --color-palette
    option.

    Closes #​6738

  • Add invalid-name check for TypeAlias names.

    Closes #​7081

  • Accept values of the form <class name>.<attribute name> for the
    exclude-protected list.

    Closes #​7343

  • Add --version option to pyreverse.

    Refs #​7851

  • Adds new functionality with preferred-modules configuration to detect
    submodules.

    Refs #​7957

  • Support implicit namespace packages (PEP 420).

    Closes #​8154

  • Add globbing pattern support for --source-roots.

    Closes #​8290

  • Support globbing pattern when defining which file/directory/module to lint.

    Closes #​8310

  • pylint now supports TryStar nodes from Python 3.11 and shoul

Configuration

📅 Schedule: Branch creation - "before 4am on monday" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Mend Renovate. View repository job log here.

Test Links:

Landing Page
MoreCast 2.0
Percentile Calculator
MoreCast
C-Haines
FireBat
FireBat bookmark
Auto Spatial Advisory (ASA)
HFI Calculator

@codecov Codecov
Copy link

codecov bot commented Feb 5, 2024
edited
Loading

Codecov Report

All modified and coverable lines are covered by tests ✅

Comparison is base (8b2bd0e) 81.39% compared to head (e5dc5d1) 81.39%.

Additional details and impacted files 
@@           Coverage Diff           @@
##             main    #3377   +/-   ##
=======================================
  Coverage   81.39%   81.39%           
=======================================
  Files         278      278           
  Lines        9681     9681           
  Branches      450      450           
=======================================
  Hits         7880     7880           
  Misses       1682     1682           
  Partials      119      119

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

@renovate renovate bot force-pushed the renovate/poetry-all-minor-patch branch from 048a7fb to 28001d6 Compare February 5, 2024 03:10
@renovate renovate bot force-pushed the renovate/poetry-all-minor-patch branch from 194068b to b5fcdd7 Compare February 5, 2024 21:05
@renovate Renovate
Copy link
Contributor Author

renovate bot commented Feb 5, 2024

⚠ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

  • any of the package files in this branch needs updating, or
  • the branch becomes conflicted, or
  • you click the rebase/retry checkbox if found above, or
  • you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: sfms/poetry.lock
[21:04:37.434] INFO (2403): Installing tool [email protected]...
installing v2 tool poetry v1.2.2
ERROR: Could not find a version that satisfies the requirement poetry==1.2.2 (from versions: 0.8.0a0, 0.8.0a1, 0.8.0a2, 0.8.0a3, 0.8.0a4, 0.8.0, 0.8.1a0, 0.8.1, 0.8.2, 0.8.3, 0.8.4, 0.8.5a0, 0.8.5, 0.8.6, 0.9.0a0, 0.9.0a1, 0.9.0a2, 0.9.0a3, 0.9.0, 0.9.1, 0.10.0a0, 0.10.0a1, 0.10.0a2, 0.10.0a3, 0.10.0, 0.10.1, 0.10.2, 0.10.3, 0.11.0a0, 0.11.0a1, 0.11.0a2, 0.11.0a3, 0.11.0a4, 0.11.0, 0.11.1, 0.11.2, 0.11.3, 0.11.4, 0.11.5, 0.12.0a0, 0.12.0a1, 0.12.0a2, 0.12.0a3, 0.12.0a4, 0.12.0a5, 0.12.0, 0.12.1, 0.12.2, 0.12.3, 0.12.4, 0.12.5, 0.12.6, 0.12.7, 0.12.8, 0.12.9, 0.12.10, 0.12.11, 0.12.12, 0.12.13, 0.12.14, 0.12.15, 0.12.16, 0.12.17, 1.0.0a0, 1.0.0a1, 1.0.0a2, 1.0.0a3, 1.0.0a4, 1.0.0a5, 1.0.0b1, 1.0.0b2, 1.0.0b3, 1.0.0b4, 1.0.0b5, 1.0.0b6, 1.0.0b7, 1.0.0b8, 1.0.0b9, 1.0.0, 1.0.1, 1.0.2, 1.0.3, 1.0.4, 1.0.5, 1.0.6, 1.0.7, 1.0.8, 1.0.9, 1.0.10, 1.1.0a1, 1.1.0a2, 1.1.0a3, 1.1.0b1, 1.1.0b2, 1.1.0b3, 1.1.0b4, 1.1.0rc1, 1.1.0, 1.1.1, 1.1.2, 1.1.3, 1.1.4, 1.1.5, 1.1.6, 1.1.7, 1.1.8, 1.1.9, 1.1.10, 1.1.11, 1.1.12, 1.1.13, 1.1.14, 1.1.15)
ERROR: No matching distribution found for poetry==1.2.2
[21:04:38.951] FATAL (2403): Command failed with exit code 1: /usr/local/containerbase/bin/install-tool poetry 1.2.2
    err: {
      "type": "Error",
      "message": "Command failed with exit code 1: /usr/local/containerbase/bin/install-tool poetry 1.2.2",
      "stack":
          Error: Command failed with exit code 1: /usr/local/containerbase/bin/install-tool poetry 1.2.2
              at makeError (/snapshot/dist/containerbase-cli.js:44563:13)
              at handlePromise (/snapshot/dist/containerbase-cli.js:45278:29)
              at process.processTicksAndRejections (node:internal/process/task_queues:95:5)
              at async InstallLegacyToolService.execute (/snapshot/dist/containerbase-cli.js:52166:5)
              at async InstallToolService.execute (/snapshot/dist/containerbase-cli.js:52346:9)
              at async InstallToolShortCommand.execute (/snapshot/dist/containerbase-cli.js:52555:14)
              at async InstallToolShortCommand.validateAndExecute (/snapshot/dist/containerbase-cli.js:2426:26)
              at async _Cli.run (/snapshot/dist/containerbase-cli.js:3539:22)
              at async _Cli.runExit (/snapshot/dist/containerbase-cli.js:3547:28)
              at async main (/snapshot/dist/containerbase-cli.js:52749:3)
      "shortMessage": "Command failed with exit code 1: /usr/local/containerbase/bin/install-tool poetry 1.2.2",
      "command": "/usr/local/containerbase/bin/install-tool poetry 1.2.2",
      "escapedCommand": "\"/usr/local/containerbase/bin/install-tool\" poetry 1.2.2",
      "exitCode": 1,
      "cwd": "/tmp/renovate/repos/github/bcgov/wps/sfms",
      "failed": true,
      "timedOut": false,
      "isCanceled": false,
      "killed": false
    }
[21:04:39.556] INFO (2403): Installed tool poetry with errors in 2.1s.

@renovate Renovate
Copy link
Contributor Author

renovate bot commented Feb 5, 2024

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

Warning: custom changes will be lost.

@sonarqubecloud SonarQubeCloud
Copy link

sonarqubecloud bot commented Feb 5, 2024

Quality Gate Passed Quality Gate passed

Kudos, no new issues were introduced!

0 New issues
0 Security Hotspots
No data about Coverage
No data about Duplication

See analysis details on SonarCloud

@conbrad conbrad closed this Feb 5, 2024
@conbrad conbrad temporarily deployed to production February 5, 2024 22:42 Inactive
@conbrad conbrad deleted the renovate/poetry-all-minor-patch branch February 5, 2024 23:12
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@conbrad