Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

chore(deps): bump the python group across 1 directory with 6 updates #424

Closed
wants to merge 2 commits into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Apr 26, 2024

Bumps the python group with 6 updates in the / directory:

Package From To
pypdf 4.1.0 4.2.0
aws-lambda-powertools 2.36.0 2.37.0
boto3 1.34.76 1.34.92
black 24.3.0 24.4.2
mypy 1.9.0 1.10.0
types-requests 2.31.0.20240403 2.31.0.20240406

Updates pypdf from 4.1.0 to 4.2.0

Release notes

Sourced from pypdf's releases.

Version 4.2.0, 2024-04-07

What's new

New Features (ENH)

Bug Fixes (BUG)

Robustness (ROB)

Documentation (DOC)

Developer Experience (DEV)

Maintenance (MAINT)

... (truncated)

Changelog

Sourced from pypdf's changelog.

Version 4.2.0, 2024-04-07

New Features (ENH)

  • Allow multiple charsets for NameObject.read_from_stream (#2585)
  • Add support for /Kids in page labels (#2562)
  • Allow to update fields on many pages (#2571)
  • Tolerate PDF with invalid xref pointed objects (#2335)
  • Add Enforce from PDF2.0 in viewer_preferences (#2511)
  • Add += and -= operators to ArrayObject (#2510)

Bug Fixes (BUG)

  • Fix merge_page sometimes generating unknown operator 'QQ' (#2588)
  • Fix fields update where annotations are kids of field (#2570)
  • Process CMYK images without a filter correctly (#2557)
  • Extract text in layout mode without finding resources (#2555)
  • Prevent recursive loop in some PDF files (#2505)

Robustness (ROB)

  • Tolerate "truncated" xref (#2580)
  • Replace error by warning for EOD in RunLengthDecode/ASCIIHexDecode (#2334)
  • Rebuild xref table if one entry is invalid (#2528)
  • Robustify stream extraction (#2526)

Documentation (DOC)

  • Update release process for latest changes (#2564)
  • Encryption/decryption: Clone document instead of copying all pages (#2546)
  • Minor improvements (#2542)
  • Update annotation list (#2534)
  • Update references and formatting (#2529)
  • Correct threads reference, plus minor changes (#2521)
  • Minor readability increases (#2515)
  • Simplify PaperSize examples (#2504)
  • Minor improvements (#2501)

Developer Experience (DEV)

  • Remove unused dependencies (#2572)
  • Remove page labels PR link from message (#2561)
  • Fix changelog generator regarding whitespace and handling of "Other" group (#2492)
  • Add REL to known PR prefixes (#2554)
  • Release using the REL commit instead of git tag (#2500)
  • Unify code between PdfReader and PdfWriter (#2497)
  • Bump softprops/action-gh-release from 1 to 2 (#2514)

Maintenance (MAINT)

  • Ressources → Resources (and internal name childs) (#2550)
  • Fix typos found by codespell (#2549)
  • Update Read the Docs configuration (#2538)
  • Add root_object, _info and _ID to PdfReader (#2495)

Testing (TST)

... (truncated)

Commits

Updates aws-lambda-powertools from 2.36.0 to 2.37.0

Release notes

Sourced from aws-lambda-powertools's releases.

v2.37.0

Summary

This release adds Security Schemes support for generated OpenAPI / Swagger UI, and a new feature to manipulate idempotent responses. 🚀🚀 And of course, you know it, fixes in typing and documentation. 🎉

🌟 Tons of things in this release was only possible because of our community. 🌟 A huge thank you to @​walmsles, @​Wurstnase, @​SZubarev, @​Emerson-MM-Filho, @​nlykkei, @​amyc92 and many others for your support and collaboration!

OpenAPI Security Schemes

Docs

You can now add security scheme annotations to your generated OpenAPI documentation (HTTP headers, API keys, OAuth 2 and OpenID connect). Additionally, you can configure the built-in Swagger UI to use OAuth 2 when generating requests.

carbon (21) (1) image (26)

🌟 Huge thanks to @​nlykkei for helping us shape this feature!

Manipulating Idempotent Responses

Docs

You can now set up a response_hook in the IdempotentConfig class to manipulate the returned data when an operation is idempotent. The hook function will be called with the current deserialized response object and the idempotency record.

This can be used for changing something in the response, inject headers, emit custom metrics, and many other use cases.

carbon (23)

🌟 Thank you @​walmsles for leading the design and implementation of this!

Changes

🌟New features and non-breaking changes

📜 Documentation updates

  • docs(we-made-this): new article on how to stream data with AWS Lambda & Powertools for AWS Lambda (#4068) by @​leandrodamascena

🐛 Bug and hot fixes

  • fix(typing): make the case_sensitive field a boolean only (#4128) by @​Wurstnase
  • fix(typing): improve overloads to ensure the return type follows the default_value type (#4114) by @​Wurstnase
  • fix(docs): clarified usage of validation with fine grained responses (#4101) by @​rubenfonseca
  • fix(event_source): fix typo in physicalname attribute for AmazonMQ events (#4053) by @​SZubarev

... (truncated)

Changelog

Sourced from aws-lambda-powertools's changelog.

[v2.37.0] - 2024-04-18

Bug Fixes

  • docs: clarified usage of validation with fine grained responses (#4101)
  • event_source: fix typo in physicalname attribute for AmazonMQ events (#4053)
  • typing: make the case_sensitive field a boolean only (#4128)
  • typing: improve overloads to ensure the return type follows the default_value type (#4114)

Documentation

  • we-made-this: new article on how to stream data with AWS Lambda & Powertools for AWS Lambda (#4068)

Features

  • Idempotency: add feature for manipulating idempotent responses (#4037)
  • event_handler: add support for OpenAPI security schemes (#4103)
  • logger: add method to return currently configured keys (#4033)

Maintenance

  • version bump
  • ci: add monthly roadmap reminder workflow (#4075)
  • ci: prevent deprecated custom runner from being used (#4061)
  • deps: bump squidfunk/mkdocs-material from 065f3af to 6b124e1 in /docs (#4055)
  • deps: bump squidfunk/mkdocs-material from 3307665 to 065f3af in /docs (#4052)
  • deps: bump idna from 3.6 to 3.7 (#4121)
  • deps: bump sqlparse from 0.4.4 to 0.5.0 (#4138)
  • deps: bump squidfunk/mkdocs-material from 6b124e1 to 521644b in /docs (#4141)
  • deps: bump the layer-balancer group in /layer/scripts/layer-balancer with 1 update (#4066)
  • deps: bump pydantic from 1.10.14 to 1.10.15 (#4064)
  • deps: bump the layer-balancer group in /layer/scripts/layer-balancer with 3 updates (#4042)
  • deps: bump golang.org/x/sync from 0.6.0 to 0.7.0 in /layer/scripts/layer-balancer in the layer-balancer group (#4071)
  • deps: bump codecov/codecov-action from 4.1.1 to 4.2.0 (#4072)
  • deps: bump datadog-lambda from 5.91.0 to 5.92.0 (#4038)
  • deps: bump github.com/aws/aws-sdk-go-v2/config from 1.27.10 to 1.27.11 in /layer/scripts/layer-balancer in the layer-balancer group (#4079)
  • deps: bump typing-extensions from 4.10.0 to 4.11.0 (#4080)
  • deps: bump zgosalvez/github-actions-ensure-sha-pinned-actions from 3.0.3 to 3.0.4 (#4099)
  • deps: bump codecov/codecov-action from 4.2.0 to 4.3.0 (#4098)
  • deps: bump docker/setup-buildx-action from 3.2.0 to 3.3.0 (#4091)
  • deps-dev: bump cdklabs-generative-ai-cdk-constructs from 0.1.112 to 0.1.113 (#4136)
  • deps-dev: bump aws-cdk from 2.135.0 to 2.136.0 (#4090)
  • deps-dev: bump types-redis from 4.6.0.20240311 to 4.6.0.20240409 (#4094)
  • deps-dev: bump aws-cdk-lib from 2.135.0 to 2.136.0 (#4092)
  • deps-dev: bump cfn-lint from 0.86.1 to 0.86.2 (#4081)
  • deps-dev: bump aws-cdk-aws-lambda-python-alpha from 2.135.0a0 to 2.136.0a0 (#4095)
  • deps-dev: bump filelock from 3.13.3 to 3.13.4 (#4096)
  • deps-dev: bump cdklabs-generative-ai-cdk-constructs from 0.1.106 to 0.1.107 (#4082)
  • deps-dev: bump cdklabs-generative-ai-cdk-constructs from 0.1.107 to 0.1.110 (#4097)
  • deps-dev: bump aws-cdk from 2.136.0 to 2.136.1 (#4106)
  • deps-dev: bump aws-cdk-lib from 2.136.0 to 2.136.1 (#4107)

... (truncated)

Commits
  • 444dbaa chore: version bump
  • bb8675c chore(ci): changelog rebuild (#4149)
  • 4f27133 chore(deps-dev): bump cdklabs-generative-ai-cdk-constructs from 0.1.115 to 0....
  • 113eb07 chore(deps-dev): bump types-redis from 4.6.0.20240409 to 4.6.0.20240417 (#4145)
  • 55713ce feat(event_handler): add support for OpenAPI security schemes (#4103)
  • 1e7b3ab chore(deps-dev): bump mkdocs-material from 9.5.17 to 9.5.18 (#4143)
  • 446a706 chore(deps-dev): bump cdklabs-generative-ai-cdk-constructs from 0.1.113 to 0....
  • 9244a35 chore(deps): bump squidfunk/mkdocs-material from 6b124e1 to 521644b in /d...
  • f114a8e chore(deps-dev): bump cfn-lint from 0.86.2 to 0.86.3 (#4137)
  • 7f88384 chore(deps-dev): bump cdklabs-generative-ai-cdk-constructs from 0.1.112 to 0....
  • Additional commits viewable in compare view

Updates boto3 from 1.34.76 to 1.34.92

Changelog

Sourced from boto3's changelog.

1.34.92

  • api-change:appsync: [botocore] UpdateGraphQLAPI documentation update and datasource introspection secret arn update
  • api-change:fms: [botocore] AWS Firewall Manager adds support for network ACL policies to manage Amazon Virtual Private Cloud (VPC) network access control lists (ACLs) for accounts in your organization.
  • api-change:ivs: [botocore] Bug Fix: IVS does not support arns with the svs prefix
  • api-change:ivs-realtime: [botocore] Bug Fix: IVS Real Time does not support ARNs using the svs prefix.
  • api-change:rds: [botocore] Updates Amazon RDS documentation for setting local time zones for RDS for Db2 DB instances.
  • api-change:stepfunctions: [botocore] Add new ValidateStateMachineDefinition operation, which performs syntax checking on the definition of a Amazon States Language (ASL) state machine.

1.34.91

  • api-change:datasync: [botocore] This change allows users to disable and enable the schedules associated with their tasks.
  • api-change:ec2: [botocore] Launching capability for customers to enable or disable automatic assignment of public IPv4 addresses to their network interface
  • api-change:emr-containers: [botocore] EMRonEKS Service support for SecurityConfiguration enforcement for Spark Jobs.
  • api-change:entityresolution: [botocore] Support Batch Unique IDs Deletion.
  • api-change:gamelift: [botocore] Amazon GameLift releases container fleets support for public preview. Deploy Linux-based containerized game server software for hosting on Amazon GameLift.
  • api-change:ssm: [botocore] Add SSM DescribeInstanceProperties API to public AWS SDK.

1.34.90

  • api-change:bedrock: [botocore] This release introduces Model Evaluation and Guardrails for Amazon Bedrock.
  • api-change:bedrock-agent: [botocore] Introducing the ability to create multiple data sources per knowledge base, specify S3 buckets as data sources from external accounts, and exposing levers to define the deletion behavior of the underlying vector store data.
  • api-change:bedrock-agent-runtime: [botocore] This release introduces zero-setup file upload support for the RetrieveAndGenerate API. This allows you to chat with your data without setting up a Knowledge Base.
  • api-change:bedrock-runtime: [botocore] This release introduces Guardrails for Amazon Bedrock.
  • api-change:ce: [botocore] Added additional metadata that might be applicable to your reservation recommendations.
  • api-change:ec2: [botocore] This release introduces EC2 AMI Deregistration Protection, a new AMI property that can be enabled by customers to protect an AMI against an unintended deregistration. This release also enables the AMI owners to view the AMI 'LastLaunchedTime' in DescribeImages API.
  • api-change:pi: [botocore] Clarifies how aggregation works for GetResourceMetrics in the Performance Insights API.
  • api-change:rds: [botocore] Fix the example ARN for ModifyActivityStreamRequest
  • api-change:sqs: [botocore] This release enables customers to call SQS using AWS JSON-1.0 protocol
  • api-change:workspaces-web: [botocore] Added InstanceType and MaxConcurrentSessions parameters on CreatePortal and UpdatePortal Operations as well as the ability to read Customer Managed Key & Additional Encryption Context parameters on supported resources (Portal, BrowserSettings, UserSettings, IPAccessSettings)

1.34.89

  • api-change:bedrock-agent: [botocore] Releasing the support for simplified configuration and return of control
  • api-change:bedrock-agent-runtime: [botocore] Releasing the support for simplified configuration and return of control
  • api-change:payment-cryptography: [botocore] Adding support to TR-31/TR-34 exports for optional headers, allowing customers to add additional metadata (such as key version and KSN) when exporting keys from the service.
  • api-change:redshift-serverless: [botocore] Updates description of schedule field for scheduled actions.
  • api-change:route53profiles: [botocore] Route 53 Profiles allows you to apply a central DNS configuration across many VPCs regardless of account.
  • api-change:sagemaker: [botocore] This release adds support for Real-Time Collaboration and Shared Space for JupyterLab App on SageMaker Studio.
  • api-change:servicediscovery: [botocore] This release adds examples to several Cloud Map actions.
  • api-change:transfer: [botocore] Adding new API to support remote directory listing using SFTP connector

... (truncated)

Commits
  • fbd8845 Merge branch 'release-1.34.92'
  • 2330760 Bumping version to 1.34.92
  • c11d47b Add changelog entries from botocore
  • 1cdfd9e Merge branch 'release-1.34.91'
  • 9a2673e Merge branch 'release-1.34.91' into develop
  • 1db9ea4 Bumping version to 1.34.91
  • 245435c Add changelog entries from botocore
  • d7e4e96 Add missing changelog entry (#4096)
  • eb20bba Merge branch 'release-1.34.90'
  • 3982e49 Merge branch 'release-1.34.90' into develop
  • Additional commits viewable in compare view

Updates black from 24.3.0 to 24.4.2

Release notes

Sourced from black's releases.

24.4.2

This is a bugfix release to fix two regressions in the new f-string parser introduced in 24.4.1.

Parser

  • Fix regression where certain complex f-strings failed to parse (#4332)

Performance

  • Fix bad performance on certain complex string literals (#4331)

24.4.1

Highlights

  • Add support for the new Python 3.12 f-string syntax introduced by PEP 701 (#3822)

Stable style

  • Fix crash involving indented dummy functions containing newlines (#4318)

Parser

  • Add support for type parameter defaults, a new syntactic feature added to Python 3.13 by PEP 696 (#4327)

Integrations

  • Github Action now works even when git archive is skipped (#4313)

24.4.0

Stable style

  • Fix unwanted crashes caused by AST equivalency check (#4290)

Preview style

  • if guards in case blocks are now wrapped in parentheses when the line is too long. (#4269)
  • Stop moving multiline strings to a new line unless inside brackets (#4289)

Integrations

  • Add a new option use_pyproject to the GitHub Action psf/black. This will read the Black version from pyproject.toml. (#4294)
Changelog

Sourced from black's changelog.

24.4.2

This is a bugfix release to fix two regressions in the new f-string parser introduced in 24.4.1.

Parser

  • Fix regression where certain complex f-strings failed to parse (#4332)

Performance

  • Fix bad performance on certain complex string literals (#4331)

24.4.1

Highlights

  • Add support for the new Python 3.12 f-string syntax introduced by PEP 701 (#3822)

Stable style

  • Fix crash involving indented dummy functions containing newlines (#4318)

Parser

  • Add support for type parameter defaults, a new syntactic feature added to Python 3.13 by PEP 696 (#4327)

Integrations

  • Github Action now works even when git archive is skipped (#4313)

24.4.0

Stable style

  • Fix unwanted crashes caused by AST equivalency check (#4290)

Preview style

  • if guards in case blocks are now wrapped in parentheses when the line is too long. (#4269)
  • Stop moving multiline strings to a new line unless inside brackets (#4289)

Integrations

  • Add a new option use_pyproject to the GitHub Action psf/black. This will read the Black version from pyproject.toml. (#4294)
Commits

Updates mypy from 1.9.0 to 1.10.0

Changelog

Sourced from mypy's changelog.

Mypy Release Notes

Next release

Mypy 1.10

We’ve just uploaded mypy 1.10 to the Python Package Index (PyPI). Mypy is a static type checker for Python. This release includes new features, performance improvements and bug fixes. You can install it as follows:

python3 -m pip install -U mypy

You can read the full documentation for this release on Read the Docs.

Support TypeIs (PEP 742)

Mypy now supports TypeIs (PEP 742), which allows functions to narrow the type of a value, similar to isinstance(). Unlike TypeGuard, TypeIs can narrow in both the if and else branches of an if statement:

from typing_extensions import TypeIs
def is_str(s: object) -> TypeIs[str]:
return isinstance(s, str)
def f(o: str | int) -> None:
if is_str(o):
# Type of o is 'str'
...
else:
# Type of o is 'int'
...

TypeIs will be added to the typing module in Python 3.13, but it can be used on earlier Python versions by importing it from typing_extensions.

This feature was contributed by Jelle Zijlstra (PR 16898).

Support TypeVar Defaults (PEP 696)

PEP 696 adds support for type parameter defaults. Example:

from typing import Generic
from typing_extensions import TypeVar
</tr></table>

... (truncated)

Commits

Updates types-requests from 2.31.0.20240403 to 2.31.0.20240406

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the python group with 6 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [pypdf](https://github.com/py-pdf/pypdf) | `4.1.0` | `4.2.0` |
| [aws-lambda-powertools](https://github.com/aws-powertools/powertools-lambda-python) | `2.36.0` | `2.37.0` |
| [boto3](https://github.com/boto/boto3) | `1.34.76` | `1.34.92` |
| [black](https://github.com/psf/black) | `24.3.0` | `24.4.2` |
| [mypy](https://github.com/python/mypy) | `1.9.0` | `1.10.0` |
| [types-requests](https://github.com/python/typeshed) | `2.31.0.20240403` | `2.31.0.20240406` |



Updates `pypdf` from 4.1.0 to 4.2.0
- [Release notes](https://github.com/py-pdf/pypdf/releases)
- [Changelog](https://github.com/py-pdf/pypdf/blob/main/CHANGELOG.md)
- [Commits](py-pdf/pypdf@4.1.0...4.2.0)

Updates `aws-lambda-powertools` from 2.36.0 to 2.37.0
- [Release notes](https://github.com/aws-powertools/powertools-lambda-python/releases)
- [Changelog](https://github.com/aws-powertools/powertools-lambda-python/blob/develop/CHANGELOG.md)
- [Commits](aws-powertools/powertools-lambda-python@v2.36.0...v2.37.0)

Updates `boto3` from 1.34.76 to 1.34.92
- [Release notes](https://github.com/boto/boto3/releases)
- [Changelog](https://github.com/boto/boto3/blob/develop/CHANGELOG.rst)
- [Commits](boto/boto3@1.34.76...1.34.92)

Updates `black` from 24.3.0 to 24.4.2
- [Release notes](https://github.com/psf/black/releases)
- [Changelog](https://github.com/psf/black/blob/main/CHANGES.md)
- [Commits](psf/black@24.3.0...24.4.2)

Updates `mypy` from 1.9.0 to 1.10.0
- [Changelog](https://github.com/python/mypy/blob/master/CHANGELOG.md)
- [Commits](python/mypy@1.9.0...v1.10.0)

Updates `types-requests` from 2.31.0.20240403 to 2.31.0.20240406
- [Commits](https://github.com/python/typeshed/commits)

---
updated-dependencies:
- dependency-name: pypdf
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: python
- dependency-name: aws-lambda-powertools
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: python
- dependency-name: boto3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: python
- dependency-name: black
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: python
- dependency-name: mypy
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: python
- dependency-name: types-requests
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: python
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies python Pull requests that update Python code labels Apr 26, 2024
Copy link

changeset-bot bot commented Apr 26, 2024

🦋 Changeset detected

Latest commit: dcfeb84

The changes in this PR will be included in the next version bump.

This PR includes changesets to release 1 package
Name Type
arcane-scripts Patch

Not sure what this means? Click here to learn what changesets are.

Click here if you're a maintainer who wants to add another changeset to this PR

Copy link
Contributor Author

dependabot bot commented on behalf of github Apr 29, 2024

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Apr 29, 2024
@dependabot dependabot bot deleted the dependabot/pip/python-37a81f735b branch April 29, 2024 16:02
@chizmw chizmw added the deps Pull requests that update a dependency label May 6, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
deps Pull requests that update a dependency python Pull requests that update Python code
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant