Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

build(deps): bump the optional group with 3 updates #1181

Closed
wants to merge 32 commits into from
Closed

build(deps): bump the optional group with 3 updates #1181

wants to merge 32 commits into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 1, 2024
edited
Loading

Updates the requirements on pre-commit, django-auth-ldap and pytest-cov to permit the latest version.
Updates pre-commit to 4.0.1

Release notes

Sourced from pre-commit's releases.

pre-commit v4.0.1

Fixes

Changelog

Sourced from pre-commit's changelog.

4.0.1 - 2024-10-08

Fixes

4.0.0 - 2024-10-05

Features

Migrating

3.8.0 - 2024-07-28

Features

3.7.1 - 2024-05-10

Fixes

  • Fix language: rust default language version check when rust-toolchain.toml is present.

... (truncated)

Commits
  • cc4a522 v4.0.1
  • 772d7d4 Merge pull request #3324 from pre-commit/migrate-config-purelib
  • 222c62b fix migrate-config for purelib yaml
  • 3d5548b Merge pull request #3323 from pre-commit/pre-commit-ci-update-config
  • 4235a87 [pre-commit.ci] pre-commit autoupdate
  • dbccd57 v4.0.0
  • d07e529 Merge pull request #3320 from pre-commit/remove-python-venv
  • 801b956 remove deprecated python_venv alias
  • a2f7b80 Merge pull request #3315 from pre-commit/warn-deprecated-stage-names-on-init
  • d317223 add warning for deprecates stages for remote repos on init
  • Additional commits viewable in compare view

Updates django-auth-ldap to 5.1.0

Release notes

Sourced from django-auth-ldap's releases.

5.1.0

What's Changed

Full Changelog: django-auth-ldap/django-auth-ldap@5.0.0...5.1.0

Changelog

Sourced from django-auth-ldap's changelog.

Change Log

.. important:: The releases are now tracked using the GitHub releases <https://github.com/django-auth-ldap/django-auth-ldap/releases>_. The following remains for historical purposes.

Old changes

Breaking changes ^^^^^^^^^^^^^^^^

  • The signal ldap_error now has an additional request keyword argument.

  • Added support for Python 3.10.

  • Added support for Django 4.0.

3.0.0 — 2021-07-19

  • Dropped support for Django 3.0.

Breaking changes ^^^^^^^^^^^^^^^^

  • Dropped deprecated setting AUTH_LDAP_CACHE_GROUPS.
  • Callables passed to AUTH_LDAP_SERVER_URI must now take a request positional argument.

2.4.0 - 2021-04-06

  • Added support for Django 3.2.

2.3.0 - 2021-02-15

  • Removed support for end of life Django 1.11. django-auth-ldap now requires Django 2.2+.
  • Removed support for end of life Python 3.5.
  • Added support for Django 3.1.
  • Added support for Python 3.9.
  • Removed dev-requirements.txt in favor of :doc:tox <tox:index>.

2.2.0 - 2020-06-02

  • Added support for the escape argument in LDAPSearchUnion.execute().

2.1.1 - 2020-03-26

... (truncated)

Commits
  • 943c800 Allow importing the backend without loading apps
  • 1966c9e Drop support for EOL Python 3.8
  • 3685761 Propagate LDAP errors instead of silently ignoring, send more ldap_error signals
  • 796129b Cache pip packages across GitHub actions
  • 2c5d07b Specify python-version for each GitHub action
  • 7508234 Add setuptools requirement to build docs with Python 3.12
  • 1850b19 Use tox-gh to simplify test matrix on GitHub
  • 92a1439 Add support for Python 3.13
  • 21c2296 Restore testing for Python 3.8 and 3.9
  • fb89efc Add support for Django 5.1
  • Additional commits viewable in compare view

Updates pytest-cov to 6.0.0

Changelog

Sourced from pytest-cov's changelog.

6.0.0 (2024-10-29)

  • Updated various documentation inaccuracies, especially on subprocess handling.
  • Changed fail under checks to use the precision set in the coverage configuration. Now it will perform the check just like coverage report would.
  • Added a --cov-precision cli option that can override the value set in your coverage configuration.
  • Dropped support for now EOL Python 3.8.

5.0.0 (2024-03-24)

  • Removed support for xdist rsync (now deprecated). Contributed by Matthias Reichenbach in [#623](https://github.com/pytest-dev/pytest-cov/issues/623) <https://github.com/pytest-dev/pytest-cov/pull/623>_.
  • Switched docs theme to Furo.
  • Various legacy Python cleanup and CI improvements. Contributed by Christian Clauss and Hugo van Kemenade in [#630](https://github.com/pytest-dev/pytest-cov/issues/630) <https://github.com/pytest-dev/pytest-cov/pull/630>, [#631](https://github.com/pytest-dev/pytest-cov/issues/631) <https://github.com/pytest-dev/pytest-cov/pull/631>, [#632](https://github.com/pytest-dev/pytest-cov/issues/632) <https://github.com/pytest-dev/pytest-cov/pull/632>_ and [#633](https://github.com/pytest-dev/pytest-cov/issues/633) <https://github.com/pytest-dev/pytest-cov/pull/633>_.
  • Added a pyproject.toml example in the docs. Contributed by Dawn James in [#626](https://github.com/pytest-dev/pytest-cov/issues/626) <https://github.com/pytest-dev/pytest-cov/pull/626>_.
  • Modernized project's pre-commit hooks to use ruff. Initial POC contributed by Christian Clauss in [#584](https://github.com/pytest-dev/pytest-cov/issues/584) <https://github.com/pytest-dev/pytest-cov/pull/584>_.

4.1.0 (2023-05-24)

  • Updated CI with new Pythons and dependencies.
  • Removed rsyncdir support. This makes pytest-cov compatible with xdist 3.0. Contributed by Sorin Sbarnea in [#558](https://github.com/pytest-dev/pytest-cov/issues/558) <https://github.com/pytest-dev/pytest-cov/pull/558>_.
  • Optimized summary generation to not be performed if no reporting is active (for example, when --cov-report='' is used without --cov-fail-under). Contributed by Jonathan Stewmon in [#589](https://github.com/pytest-dev/pytest-cov/issues/589) <https://github.com/pytest-dev/pytest-cov/pull/589>_.
  • Added support for JSON reporting. Contributed by Matthew Gamble in [#582](https://github.com/pytest-dev/pytest-cov/issues/582) <https://github.com/pytest-dev/pytest-cov/pull/582>_.
  • Refactored code to use f-strings. Contributed by Mark Mayo in [#572](https://github.com/pytest-dev/pytest-cov/issues/572) <https://github.com/pytest-dev/pytest-cov/pull/572>_.
  • Fixed a skip in the test suite for some old xdist. Contributed by a bunch of people in [#565](https://github.com/pytest-dev/pytest-cov/issues/565) <https://github.com/pytest-dev/pytest-cov/pull/565>_.

4.0.0 (2022-09-28)

Note that this release drops support for multiprocessing.

  • --cov-fail-under no longer causes pytest --collect-only to fail

... (truncated)

Commits
  • 9540437 Bump version: 5.0.0 → 6.0.0
  • 9f81754 Further trim down envs and drop Python 3.8.
  • b12b5ec Update conf.
  • 23f4b27 Update changelog.
  • 291a04f Bump test deps and trim config.
  • 08f1101 Add --cov-precision option. Close #655.
  • 76fe2a7 Move the warnings/errors in a place that doesn't import anything.
  • a9ea7b7 Implement error/warning for the bad dynamic_context being set in config.
  • c299e01 Add explicit suffixing to make it easier to see the identify the sources/usag...
  • c87e546 Add reproducer for weird xdist dynamic_context interaction. Ref #604.
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

dependabot bot and others added 30 commits September 1, 2024 00:15
@dependabot
Update django-allauth[openid,socialaccount] requirement
3d059d5 
Updates the requirements on [django-allauth[openid,socialaccount]](https://github.com/pennersr/django-allauth) to permit the latest version.

Updates `django-allauth[openid,socialaccount]` to 64.2.0
- [Changelog](https://github.com/pennersr/django-allauth/blob/main/ChangeLog.rst)
- [Commits](pennersr/django-allauth@64.1.0...64.2.0)

---
updated-dependencies:
- dependency-name: django-allauth[openid,socialaccount]
  dependency-type: direct:production
  dependency-group: django
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
Update setuptools requirement from <74,>=73 to >=73,<75
ff670b9 
Updates the requirements on [setuptools](https://github.com/pypa/setuptools) to permit the latest version.
- [Release notes](https://github.com/pypa/setuptools/releases)
- [Changelog](https://github.com/pypa/setuptools/blob/main/NEWS.rst)
- [Commits](pypa/setuptools@v73.0.0...v74.0.0)

---
updated-dependencies:
- dependency-name: setuptools
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
Bump @babel/cli from 7.24.1 to 7.25.6 in the babel group
aecca07 
Bumps the babel group with 1 update: [@babel/cli](https://github.com/babel/babel/tree/HEAD/packages/babel-cli).


Updates `@babel/cli` from 7.24.1 to 7.25.6
- [Release notes](https://github.com/babel/babel/releases)
- [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md)
- [Commits](https://github.com/babel/babel/commits/v7.25.6/packages/babel-cli)

---
updated-dependencies:
- dependency-name: "@babel/cli"
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: babel
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
Bump webpack from 5.93.0 to 5.94.0 in the webpack group
b750867 
Bumps the webpack group with 1 update: [webpack](https://github.com/webpack/webpack).


Updates `webpack` from 5.93.0 to 5.94.0
- [Release notes](https://github.com/webpack/webpack/releases)
- [Commits](webpack/webpack@v5.93.0...v5.94.0)

---
updated-dependencies:
- dependency-name: webpack
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: webpack
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
build(deps): bump peter-evans/create-pull-request
02e24c3 
Bumps the github-actions group with 1 update: [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request).


Updates `peter-evans/create-pull-request` from 6.1.0 to 7.0.1
- [Release notes](https://github.com/peter-evans/create-pull-request/releases)
- [Commits](peter-evans/create-pull-request@c5a7806...8867c4a)

---
updated-dependencies:
- dependency-name: peter-evans/create-pull-request
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <[email protected]>
@MyPyDavid
Merge pull request #1143 from rdmorganiser/dependabot/github_actions/…
b0a2ee3 
…dependency-updates/github-actions-f9ddd5409d

build(deps): bump peter-evans/create-pull-request from 6.1.0 to 7.0.1 in the github-actions group
@dependabot
Merge pull request #1139 from rdmorganiser/dependabot/pip/dependency-…
dfac40d 
…updates/setuptools-gte-73-and-lt-75
@dependabot
Merge pull request #1140 from rdmorganiser/dependabot/npm_and_yarn/de…
bcd59b4 
…pendency-updates/babel-7bf08ae338
@dependabot
Merge pull request #1141 from rdmorganiser/dependabot/npm_and_yarn/de…
1bcf65b 
…pendency-updates/webpack-7aabbe6aff
@dependabot
build(deps-dev): bump the dev-dependencies group across 1 directory w…
c3927b9 
…ith 3 updates

Bumps the dev-dependencies group with 3 updates in the / directory: [babel-loader](https://github.com/babel/babel-loader), [eslint-plugin-react](https://github.com/jsx-eslint/eslint-plugin-react) and [sass](https://github.com/sass/dart-sass).


Updates `babel-loader` from 9.1.3 to 9.2.1
- [Release notes](https://github.com/babel/babel-loader/releases)
- [Changelog](https://github.com/babel/babel-loader/blob/main/CHANGELOG.md)
- [Commits](babel/babel-loader@v9.1.3...v9.2.1)

Updates `eslint-plugin-react` from 7.35.0 to 7.36.1
- [Release notes](https://github.com/jsx-eslint/eslint-plugin-react/releases)
- [Changelog](https://github.com/jsx-eslint/eslint-plugin-react/blob/master/CHANGELOG.md)
- [Commits](jsx-eslint/eslint-plugin-react@v7.35.0...v7.36.1)

Updates `sass` from 1.77.1 to 1.79.3
- [Release notes](https://github.com/sass/dart-sass/releases)
- [Changelog](https://github.com/sass/dart-sass/blob/main/CHANGELOG.md)
- [Commits](sass/dart-sass@1.77.1...1.79.3)

---
updated-dependencies:
- dependency-name: babel-loader
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: dev-dependencies
- dependency-name: eslint-plugin-react
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: dev-dependencies
- dependency-name: sass
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: dev-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
Merge pull request #1138 from rdmorganiser/dependabot/pip/dependency-…
64ce186 
…updates/django-60662b2891
@MyPyDavid
Merge pull request #1155 from rdmorganiser/dependabot/npm_and_yarn/de…
fc37520 
…pendency-updates/dev-dependencies-0396ca1b36

build(deps-dev): bump the dev-dependencies group across 1 directory with 3 updates
@dependabot
build(deps): bump the django group with 2 updates
4333387 
---
updated-dependencies:
- dependency-name: django-cleanup
  dependency-type: direct:production
  dependency-group: django
- dependency-name: django-allauth[openid,socialaccount]
  dependency-type: direct:production
  dependency-group: django
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
build(deps): update importlib-metadata requirement from <8.5.0 to <8.6.0
0b63fda 
Updates the requirements on [importlib-metadata](https://github.com/python/importlib_metadata) to permit the latest version.
- [Release notes](https://github.com/python/importlib_metadata/releases)
- [Changelog](https://github.com/python/importlib_metadata/blob/main/NEWS.rst)
- [Commits](python/importlib_metadata@0.1...v8.5.0)

---
updated-dependencies:
- dependency-name: importlib-metadata
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
build(deps): update setuptools requirement from <75,>=73 to >=73,<76
f74a86c 
Updates the requirements on [setuptools](https://github.com/pypa/setuptools) to permit the latest version.
- [Release notes](https://github.com/pypa/setuptools/releases)
- [Changelog](https://github.com/pypa/setuptools/blob/main/NEWS.rst)
- [Commits](pypa/setuptools@v73.0.0...v75.1.0)

---
updated-dependencies:
- dependency-name: setuptools
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
build(deps-dev): bump webpack from 5.94.0 to 5.95.0 in the webpack group
08c5de0 
Bumps the webpack group with 1 update: [webpack](https://github.com/webpack/webpack).


Updates `webpack` from 5.94.0 to 5.95.0
- [Release notes](https://github.com/webpack/webpack/releases)
- [Commits](webpack/webpack@v5.94.0...v5.95.0)

---
updated-dependencies:
- dependency-name: webpack
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: webpack
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
build(deps): bump date-fns in the prod-dependencies group
f94e3f8 
Bumps the prod-dependencies group with 1 update: [date-fns](https://github.com/date-fns/date-fns).


Updates `date-fns` from 3.6.0 to 4.1.0
- [Release notes](https://github.com/date-fns/date-fns/releases)
- [Changelog](https://github.com/date-fns/date-fns/blob/main/CHANGELOG.md)
- [Commits](date-fns/date-fns@v3.6.0...v4.1.0)

---
updated-dependencies:
- dependency-name: date-fns
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: prod-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
build(deps): bump peter-evans/create-pull-request
be33037 
Bumps the github-actions group with 1 update: [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request).


Updates `peter-evans/create-pull-request` from 7.0.1 to 7.0.5
- [Release notes](https://github.com/peter-evans/create-pull-request/releases)
- [Commits](peter-evans/create-pull-request@8867c4a...5e91468)

---
updated-dependencies:
- dependency-name: peter-evans/create-pull-request
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
Merge pull request #1160 from rdmorganiser/dependabot/pip/dependency-…
d1b4435 
…updates/setuptools-gte-73-and-lt-76
@dependabot
Merge pull request #1162 from rdmorganiser/dependabot/npm_and_yarn/de…
e46f8df 
…pendency-updates/webpack-abbbb0c33e
@dependabot
Merge pull request #1165 from rdmorganiser/dependabot/github_actions/…
e071841 
…dependency-updates/github-actions-f566bf2af6
@dependabot
Merge pull request #1164 from rdmorganiser/dependabot/npm_and_yarn/de…
0f5f289 
…pendency-updates/prod-dependencies-96366c5089
@dependabot
Merge pull request #1159 from rdmorganiser/dependabot/pip/dependency-…
58517cf 
…updates/importlib-metadata-lt-8.6.0
@dependabot
Merge pull request #1158 from rdmorganiser/dependabot/pip/dependency-…
5f8ceb1 
…updates/django-bf75ef0b7a
@github-actions @MyPyDavid
build: update pre-commit hooks
38db5dd
@MyPyDavid
build(pre-commit): autoupdate hooks and update eslint-plugin-react
a78467b 
Signed-off-by: David Wallace <[email protected]>
@MyPyDavid
build(pre-commit): add pre-commit.ci config
a2ecba8 
Signed-off-by: David Wallace <[email protected]>
@MyPyDavid
docs: add pre-commit.ci badge to README.md
7714e1d 
Signed-off-by: David Wallace <[email protected]>
@MyPyDavid
build(pre-commit): add commit msg to autoupdate config
0da46cc 
Signed-off-by: David Wallace <[email protected]>
@MyPyDavid
ci: remove pre-commit-autoupdate workflow and related types array
2283088 
Signed-off-by: David Wallace <[email protected]>

# Conflicts:
#	.github/workflows/pre-commit-autoupdate.yml
MyPyDavid and others added 2 commits October 11, 2024 18:06
@MyPyDavid
Merge pull request #1166 from rdmorganiser/pre-commit-autoupdate
c6cfe9c 
build: update pre-commit hooks
@dependabot
build(deps): bump the optional group with 3 updates
3ae5909 
Updates the requirements on [pre-commit](https://github.com/pre-commit/pre-commit), [django-auth-ldap](https://github.com/django-auth-ldap/django-auth-ldap) and [pytest-cov](https://github.com/pytest-dev/pytest-cov) to permit the latest version.

Updates `pre-commit` to 4.0.1
- [Release notes](https://github.com/pre-commit/pre-commit/releases)
- [Changelog](https://github.com/pre-commit/pre-commit/blob/main/CHANGELOG.md)
- [Commits](pre-commit/pre-commit@v3.4.0...v4.0.1)

Updates `django-auth-ldap` to 5.1.0
- [Release notes](https://github.com/django-auth-ldap/django-auth-ldap/releases)
- [Changelog](https://github.com/django-auth-ldap/django-auth-ldap/blob/master/docs/changes.rst)
- [Commits](django-auth-ldap/django-auth-ldap@4.5.0...5.1.0)

Updates `pytest-cov` to 6.0.0
- [Changelog](https://github.com/pytest-dev/pytest-cov/blob/master/CHANGELOG.rst)
- [Commits](pytest-dev/pytest-cov@v4.1.0...v6.0.0)

---
updated-dependencies:
- dependency-name: pre-commit
  dependency-type: direct:production
  dependency-group: optional
- dependency-name: django-auth-ldap
  dependency-type: direct:production
  dependency-group: optional
- dependency-name: pytest-cov
  dependency-type: direct:production
  dependency-group: optional
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code type:maintenance labels Nov 1, 2024
@MyPyDavid
Copy link
Member

@jochenklar , there is a new version of django-auth-ldap, drops support for py3.8, would that be ok?

@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Nov 28, 2024

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Nov 28, 2024
@dependabot dependabot bot deleted the dependabot/pip/dependency-updates/optional-a5fca4ca42 branch November 28, 2024 15:01
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file python Pull requests that update Python code status:hold type:maintenance
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@MyPyDavid