Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump the pip-packages group with 4 updates #281

Merged
merged 1 commit into from
Dec 25, 2024
Merged

Bump the pip-packages group with 4 updates #281

merged 1 commit into from
Dec 25, 2024

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Dec 1, 2024

Bumps the pip-packages group with 4 updates: pyright, aiohttp, yarl and httpx.

Updates pyright from 1.1.387 to 1.1.389

Commits

Updates aiohttp from 3.10.10 to 3.11.8

Release notes

Sourced from aiohttp's releases.

3.11.8

Miscellaneous internal changes

  • Improved performance of creating :class:aiohttp.ClientResponse objects when there are no cookies -- by :user:bdraco.

    Related issues and pull requests on GitHub: #10029.

  • Improved performance of creating :class:aiohttp.ClientResponse objects -- by :user:bdraco.

    Related issues and pull requests on GitHub: #10030.

  • Improved performances of creating objects during the HTTP request lifecycle -- by :user:bdraco.

    Related issues and pull requests on GitHub: #10037.

  • Improved performance of constructing :class:aiohttp.web.Response with headers -- by :user:bdraco.

    Related issues and pull requests on GitHub: #10043.

  • Improved performance of making requests when there are no auto headers to skip -- by :user:bdraco.

    Related issues and pull requests on GitHub: #10049.

  • Downgraded logging of invalid HTTP method exceptions on the first request to debug level -- by :user:bdraco.

    HTTP requests starting with an invalid method are relatively common, especially when connected to the public internet, because browsers or other clients may try to speak SSL to a plain-text server or vice-versa. These exceptions can quickly fill the log with noise when nothing is wrong.

    Related issues and pull requests on GitHub:

... (truncated)

Changelog

Sourced from aiohttp's changelog.

3.11.8 (2024-11-27)

Miscellaneous internal changes

  • Improved performance of creating :class:aiohttp.ClientResponse objects when there are no cookies -- by :user:bdraco.

    Related issues and pull requests on GitHub: :issue:10029.

  • Improved performance of creating :class:aiohttp.ClientResponse objects -- by :user:bdraco.

    Related issues and pull requests on GitHub: :issue:10030.

  • Improved performances of creating objects during the HTTP request lifecycle -- by :user:bdraco.

    Related issues and pull requests on GitHub: :issue:10037.

  • Improved performance of constructing :class:aiohttp.web.Response with headers -- by :user:bdraco.

    Related issues and pull requests on GitHub: :issue:10043.

  • Improved performance of making requests when there are no auto headers to skip -- by :user:bdraco.

    Related issues and pull requests on GitHub: :issue:10049.

  • Downgraded logging of invalid HTTP method exceptions on the first request to debug level -- by :user:bdraco.

    HTTP requests starting with an invalid method are relatively common, especially when connected to the public internet, because browsers or other clients may try to speak SSL to a plain-text server or vice-versa. These exceptions can quickly fill the log with noise when nothing is wrong.

... (truncated)

Commits
  • 5ddf720 Release 3.11.8 (#10066)
  • 13152c3 [PR #10055/c11fe96 backport][3.11] Downgrade logging of invalid HTTP methods ...
  • 1b78cae [PR #10059/aac6f741 backport][3.11] Combine executor jobs in FileResponse sen...
  • a5a6981 [PR #10058/12372d7 backport][3.11] Remove unreachable content length check fo...
  • 7e628f4 [PR #8699/11f0e7f backport][3.11] Reduce code indent in ResponseHandler.data_...
  • 1a6fafe [PR #10037/2e369db backport][3.11] Refactor requests and responses to use cla...
  • 653302e [PR #10049/006fbc37 backport][3.11] Improve client performance when there are...
  • d411bc5 [PR #10043/5255cec backport][3.11] Avoid constructing headers mulitidict twic...
  • 3dfd7ae Bump pypa/cibuildwheel from 2.21.3 to 2.22.0 (#10042)
  • 65dab0e [PR #10038/6f4e9615 backport][3.11] Small speed up to StreamWriter.__init__...
  • Additional commits viewable in compare view

Updates yarl from 1.17.1 to 1.18.0

Release notes

Sourced from yarl's releases.

1.18.0

Features

  • Added keep_query and keep_fragment flags in the :py:meth:yarl.URL.with_path, :py:meth:yarl.URL.with_name and :py:meth:yarl.URL.with_suffix methods, allowing users to optionally retain the query string and fragment in the resulting URL when replacing the path -- by :user:paul-nameless.

    Related issues and pull requests on GitHub: #111, #1421.

Contributor-facing changes

  • Started running downstream aiohttp tests in CI -- by :user:Cycloctane.

    Related issues and pull requests on GitHub: #1415.

Miscellaneous internal changes

  • Improved performance of converting :class:~yarl.URL to a string -- by :user:bdraco.

    Related issues and pull requests on GitHub: #1422.

1.17.2

Bug fixes

  • Stopped implicitly allowing the use of Cython pre-release versions when building the distribution package -- by :user:ajsanchezsanz and :user:markgreene74.

    Related issues and pull requests on GitHub: #1411, #1412.

  • Fixed a bug causing :attr:~yarl.URL.port to return the default port when the given port was zero -- by :user:gmacon.

    Related issues and pull requests on GitHub: #1413.

Features

... (truncated)

Changelog

Sourced from yarl's changelog.

1.18.0

(2024-11-21)

Features

  • Added keep_query and keep_fragment flags in the :py:meth:yarl.URL.with_path, :py:meth:yarl.URL.with_name and :py:meth:yarl.URL.with_suffix methods, allowing users to optionally retain the query string and fragment in the resulting URL when replacing the path -- by :user:paul-nameless.

    Related issues and pull requests on GitHub: :issue:111, :issue:1421.

Contributor-facing changes

  • Started running downstream aiohttp tests in CI -- by :user:Cycloctane.

    Related issues and pull requests on GitHub: :issue:1415.

Miscellaneous internal changes

  • Improved performance of converting :class:~yarl.URL to a string -- by :user:bdraco.

    Related issues and pull requests on GitHub: :issue:1422.

1.17.2

(2024-11-17)

Bug fixes

  • Stopped implicitly allowing the use of Cython pre-release versions when building the distribution package -- by :user:ajsanchezsanz and :user:markgreene74.

    Related issues and pull requests on GitHub:

... (truncated)

Commits

Updates httpx from 0.27.2 to 0.28.0

Release notes

Sourced from httpx's releases.

Version 0.28.0

0.28.0 (28th November, 2024)

The 0.28 release includes a limited set of deprecations.

Deprecations:

We are working towards a simplified SSL configuration API.

For users of the standard verify=True or verify=False cases, or verify=<ssl_context> case this should require no changes. The following cases have been deprecated...

  • The verify argument as a string argument is now deprecated and will raise warnings.
  • The cert argument is now deprecated and will raise warnings.

Our revised SSL documentation covers how to implement the same behaviour with a more constrained API.

The following changes are also included:

  • The deprecated proxies argument has now been removed.
  • The deprecated app argument has now been removed.
  • JSON request bodies use a compact representation. (#3363)
  • Review URL percent escape sets, based on WHATWG spec. (#3371, #3373)
  • Ensure certifi and httpcore are only imported if required. (#3377)
  • Treat socks5h as a valid proxy scheme. (#3178)
  • Cleanup Request() method signature in line with client.request() and httpx.request(). (#3378)
Changelog

Sourced from httpx's changelog.

0.28.0 (28th November, 2024)

The 0.28 release includes a limited set of deprecations.

Deprecations:

We are working towards a simplified SSL configuration API.

For users of the standard verify=True or verify=False cases, or verify=<ssl_context> case this should require no changes. The following cases have been deprecated...

  • The verify argument as a string argument is now deprecated and will raise warnings.
  • The cert argument is now deprecated and will raise warnings.

Our revised SSL documentation covers how to implement the same behaviour with a more constrained API.

The following changes are also included:

  • The deprecated proxies argument has now been removed.
  • The deprecated app argument has now been removed.
  • JSON request bodies use a compact representation. (#3363)
  • Review URL percent escape sets, based on WHATWG spec. (#3371, #3373)
  • Ensure certifi and httpcore are only imported if required. (#3377)
  • Treat socks5h as a valid proxy scheme. (#3178)
  • Cleanup Request() method signature in line with client.request() and httpx.request(). (#3378)
Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the pip-packages group with 4 updates
1816b76 
Bumps the pip-packages group with 4 updates: [pyright](https://github.com/RobertCraigie/pyright-python), [aiohttp](https://github.com/aio-libs/aiohttp), [yarl](https://github.com/aio-libs/yarl) and [httpx](https://github.com/encode/httpx).


Updates `pyright` from 1.1.387 to 1.1.389
- [Release notes](https://github.com/RobertCraigie/pyright-python/releases)
- [Commits](RobertCraigie/pyright-python@v1.1.387...v1.1.389)

Updates `aiohttp` from 3.10.10 to 3.11.8
- [Release notes](https://github.com/aio-libs/aiohttp/releases)
- [Changelog](https://github.com/aio-libs/aiohttp/blob/master/CHANGES.rst)
- [Commits](aio-libs/aiohttp@v3.10.10...v3.11.8)

Updates `yarl` from 1.17.1 to 1.18.0
- [Release notes](https://github.com/aio-libs/yarl/releases)
- [Changelog](https://github.com/aio-libs/yarl/blob/master/CHANGES.rst)
- [Commits](aio-libs/yarl@v1.17.1...v1.18.0)

Updates `httpx` from 0.27.2 to 0.28.0
- [Release notes](https://github.com/encode/httpx/releases)
- [Changelog](https://github.com/encode/httpx/blob/master/CHANGELOG.md)
- [Commits](encode/httpx@0.27.2...0.28.0)

---
updated-dependencies:
- dependency-name: pyright
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: pip-packages
- dependency-name: aiohttp
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: pip-packages
- dependency-name: yarl
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: pip-packages
- dependency-name: httpx
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: pip-packages
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot requested a review from a team as a code owner December 1, 2024 00:35
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Dec 1, 2024
@Pliner Pliner merged commit 8dbba72 into main Dec 25, 2024
4 checks passed
@Pliner Pliner deleted the dependabot/pip/pip-packages-a33d6ca538 branch December 25, 2024 11:08
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file python Pull requests that update Python code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@Pliner