Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

build(deps): bump the dependencies group with 3 updates #286

Closed
wants to merge 1 commit into from
Closed

build(deps): bump the dependencies group with 3 updates #286

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 3, 2025
edited
Loading

Bumps the dependencies group with 3 updates: granian, pyright and pytest.

Updates granian from 1.7.6 to 2.0.0

Release notes

Sourced from granian's releases.

Granian 2.0.0

What's Changed

New features

  • Experimental support for free-threaded Python
  • runtime-blocking-threads option
  • blocking-threads-idle-timeout option
  • http1-header-read-timeout option
  • PyPy 3.11 support
  • Embeddable server variant in granian.server.embed module

Changes

  • uvloop dependency is now optional and gated behind the relevant dependency extra
  • BREAKING renamed threads option to runtime-threads
  • BREAKING blocking-threads option now affects Python interop threads only
  • BREAKING removed threading-mode in favor of runtime-mode
    • previous workers option is now st
    • previous runtime option is now mt
  • BREAKING blocking-threads is now limited to 1 on ASGI and RSGI protocols
  • rust task implementation is now available on Python < 3.12 only
  • Removed PGO builds
  • Bump dependencies

Enhancements

  • Refactor the Rust task implementation
  • Refactor the Python blocking threadpool
  • Refactor application protocols failure handling
  • Re-export loops registry to facilitate customisations
  • Added warn messages for most common workers/threads misconfigurations
  • Review README's workers, threads and backpressure sections
  • Added range validations on all the relevant HTTP/2 options
  • Added back custom allocators, with jemalloc as default option and mimalloc as gated feature, used by default in the following cases:
    • MUSL builds
    • Windows builds
    • Python 3.13t
  • Avoid to strip symbols from release builds
Commits

Updates pyright from 1.1.395 to 1.1.396

Commits

Updates pytest from 8.3.4 to 8.3.5

Release notes

Sourced from pytest's releases.

8.3.5

pytest 8.3.5 (2025-03-02)

Bug fixes

  • #11777: Fixed issue where sequences were still being shortened even with -vv verbosity.
  • #12888: Fixed broken input when using Python 3.13+ and a libedit build of Python, such as on macOS or with uv-managed Python binaries from the python-build-standalone project. This could manifest e.g. by a broken prompt when using Pdb, or seeing empty inputs with manual usage of input() and suspended capturing.
  • #13026: Fixed AttributeError{.interpreted-text role="class"} crash when using --import-mode=importlib when top-level directory same name as another module of the standard library.
  • #13053: Fixed a regression in pytest 8.3.4 where, when using --import-mode=importlib, a directory containing py file with the same name would cause an ImportError
  • #13083: Fixed issue where pytest could crash if one of the collected directories got removed during collection.

Improved documentation

  • #12842: Added dedicated page about using types with pytest.

    See types{.interpreted-text role="ref"} for detailed usage.

Contributor-facing changes

  • #13112: Fixed selftest failures in test_terminal.py with Pygments >= 2.19.0
  • #13256: Support for Towncrier versions released in 2024 has been re-enabled when building Sphinx docs -- by webknjaz{.interpreted-text role="user"}.
Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
build(deps): bump the dependencies group with 3 updates
6cee767 
Bumps the dependencies group with 3 updates: [granian](https://github.com/emmett-framework/granian), [pyright](https://github.com/RobertCraigie/pyright-python) and [pytest](https://github.com/pytest-dev/pytest).


Updates `granian` from 1.7.6 to 2.0.0
- [Release notes](https://github.com/emmett-framework/granian/releases)
- [Commits](emmett-framework/granian@v1.7.6...v2.0.0)

Updates `pyright` from 1.1.395 to 1.1.396
- [Release notes](https://github.com/RobertCraigie/pyright-python/releases)
- [Commits](RobertCraigie/pyright-python@v1.1.395...v1.1.396)

Updates `pytest` from 8.3.4 to 8.3.5
- [Release notes](https://github.com/pytest-dev/pytest/releases)
- [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst)
- [Commits](pytest-dev/pytest@8.3.4...8.3.5)

---
updated-dependencies:
- dependency-name: granian
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: dependencies
- dependency-name: pyright
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: pytest
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Mar 3, 2025
@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Mar 5, 2025

Superseded by #287.

@dependabot dependabot bot closed this Mar 5, 2025
@dependabot dependabot bot deleted the dependabot/pip/dependencies-413e285370 branch March 5, 2025 10:53
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file python Pull requests that update Python code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants