Bump the all-dependencies group in /api with 17 updates #412

dependabot · 2025-02-01T18:14:47Z

Bumps the all-dependencies group in /api with 17 updates:

Package	From	To
pip	`24.3.1`	`25.0`
cachetools	`5.5.0`	`5.5.1`
certifi	`2024.12.14`	`2025.1.31`
filelock	`3.16.1`	`3.17.0`
identify	`2.6.4`	`2.6.6`
pre-commit	`4.0.1`	`4.1.0`
pyproject-api	`1.8.0`	`1.9.0`
tox	`4.23.2`	`4.24.1`
virtualenv	`20.28.0`	`20.29.1`
boto3	`1.35.90`	`1.36.11`
pydantic	`2.10.4`	`2.10.6`
pytz	`2024.2`	`2025.1`
botocore	`1.35.90`	`1.36.11`
importlib-metadata	`8.5.0`	`8.6.1`
pydantic-core	`2.27.2`	`2.28.0`
s3transfer	`0.10.4`	`0.11.2`
sqlalchemy	`2.0.36`	`2.0.37`

Updates pip from 24.3.1 to 25.0

Changelog

Sourced from pip's changelog.

25.0 (2025-01-26)

Deprecations and Removals

Deprecate the no-python-version-warning flag as it has long done nothing since Python 2 support was removed in pip 21.0. ([#13154](https://github.com/pypa/pip/issues/13154) <https://github.com/pypa/pip/issues/13154>_)

Features

Prefer to display :pep:639 License-Expression in pip show if metadata version is at least 2.4. ([#13112](https://github.com/pypa/pip/issues/13112) <https://github.com/pypa/pip/issues/13112>_)

Support :pep:639 License-Expression and License-File metadata fields in JSON output. pip inspect and pip install --report now emit license_expression and license_file fields in the metadata object, if the corresponding fields are present in the installed METADATA file. ([#13134](https://github.com/pypa/pip/issues/13134) <https://github.com/pypa/pip/issues/13134>_)

Files in the network cache will inherit the read/write permissions of pip's cache directory (in addition to the current user retaining read/write access). This enables a single cache to be shared among multiple users. ([#11012](https://github.com/pypa/pip/issues/11012) <https://github.com/pypa/pip/issues/11012>_)

Return the size, along with the number, of files cleared on pip cache purge and pip cache remove ([#12176](https://github.com/pypa/pip/issues/12176) <https://github.com/pypa/pip/issues/12176>_)

Cache python-requires checks while filtering potential installation candidates. ([#13128](https://github.com/pypa/pip/issues/13128) <https://github.com/pypa/pip/issues/13128>_)

Optimize package collection by avoiding unnecessary URL parsing and other processing. ([#13132](https://github.com/pypa/pip/issues/13132) <https://github.com/pypa/pip/issues/13132>_)

Bug Fixes

Reorder the encoding detection when decoding a requirements file, relying on UTF-8 over the locale encoding by default, matching the documented behaviour. ([#12771](https://github.com/pypa/pip/issues/12771) <https://github.com/pypa/pip/issues/12771>_)

The pip version self check is disabled on EXTERNALLY-MANAGED environments. ([#11820](https://github.com/pypa/pip/issues/11820) <https://github.com/pypa/pip/issues/11820>_)

Fix a security bug allowing a specially crafted wheel to execute code during installation. ([#13079](https://github.com/pypa/pip/issues/13079) <https://github.com/pypa/pip/issues/13079>_)

The inclusion of packaging 24.2 changes how pre-release specifiers with < and > behave. Including a pre-release version with these specifiers now implies accepting pre-releases (e.g., <2.0dev can include 1.0rc1). To avoid implying pre-releases, avoid specifying them (e.g., use <2.0). The exception is !=, which never implies pre-releases. ([#13163](https://github.com/pypa/pip/issues/13163) <https://github.com/pypa/pip/issues/13163>_)

The --cert and --client-cert command-line options are now respected while installing build dependencies. Consequently, the private _PIP_STANDALONE_CERT environment variable is no longer used. ([#5502](https://github.com/pypa/pip/issues/5502) <https://github.com/pypa/pip/issues/5502>_)

The --proxy command-line option is now respected while installing build dependencies. ([#6018](https://github.com/pypa/pip/issues/6018) <https://github.com/pypa/pip/issues/6018>_)

Vendored Libraries

Upgrade CacheControl to 0.14.1

Upgrade idna to 3.10

Upgrade msgpack to 1.1.0

Upgrade packaging to 24.2

... (truncated)

Commits

f47b587 Bump for release
74a7f33 Update AUTHORS.txt
a008888 Merge pull request #13171 from pypa/dependabot/github_actions/github-actions-...
d265fb7 Merge pull request #13174 from ichard26/changelog
d35384e Copyedit news entries before 25.0
adc4f99 Reorder requirements file decoding (#12795)
40c4214 Bump pypa/gh-action-pypi-publish in the github-actions group
6b0fb90 Merge pull request #13048 from sbidoul/trusted-publisher-sbi
c7fb1e1 Merge pull request #13145 from befeleme/pip-show-pep639
41c807c Show License-Expression if present in package metadata
Additional commits viewable in compare view

Updates cachetools from 5.5.0 to 5.5.1

Changelog

Sourced from cachetools's changelog.

v5.5.1 (2025-01-21)

Add documentation regarding caching of exceptions.

Officially support Python 3.13.

Update CI environment.

Commits

b072920 Release v5.5.1.
efc3633 Fix #138: Add documentation regarding caching of exceptions.
d5c6892 Officially support Python 3.13.
a34b9c5 Merge remote-tracking branch 'origin/dependabot/github_actions/actions/setup-...
9c122a2 Merge remote-tracking branch 'origin/dependabot/github_actions/actions/checko...
d44c984 Create FUNDING.yml
49bff17 Bump actions/checkout from 4.1.7 to 4.2.0
85c6026 Bump actions/setup-python from 5.1.1 to 5.2.0
See full diff in compare view

Updates certifi from 2024.12.14 to 2025.1.31

Commits

088f931 2025.01.31 (#336)
1c17795 Bump pypa/gh-action-pypi-publish from 1.12.3 to 1.12.4 (#335)
a2e88f0 Bump actions/upload-artifact from 4.5.0 to 4.6.0 (#334)
82284ed Bump peter-evans/create-pull-request from 7.0.5 to 7.0.6 (#333)
10d3d1d Bump actions/upload-artifact from 4.4.3 to 4.5.0 (#332)
See full diff in compare view

Updates filelock from 3.16.1 to 3.17.0

Release notes

Sourced from filelock's releases.

Drop 3.8

Full Changelog: tox-dev/filelock@3.16.1...3.17.0

Commits

5eb02b2 Drop 3.8 (#388)
23a9848 Bump astral-sh/setup-uv from 4 to 5 (#387)
79a9583 Bump pypa/gh-action-pypi-publish from 1.12.2 to 1.12.3 (#386)
46dddc8 [pre-commit.ci] pre-commit autoupdate (#385)
57f488f [pre-commit.ci] pre-commit autoupdate (#383)
d4feb5a [pre-commit.ci] pre-commit autoupdate (#382)
fb2a4e2 Bump astral-sh/setup-uv from 3 to 4 (#381)
07c2840 [pre-commit.ci] pre-commit autoupdate (#379)
ee4c7ba [pre-commit.ci] pre-commit autoupdate (#377)
2e1a1b2 [pre-commit.ci] pre-commit autoupdate (#374)
Additional commits viewable in compare view

Updates identify from 2.6.4 to 2.6.6

Commits

5bc1845 v2.6.6
7b82a63 Merge pull request #500 from vlotorev/patch-1
26e13ca Add '.asm' file extension as 'asm' filetype
f093855 Merge pull request #499 from pre-commit/pre-commit-ci-update-config
e9ef72e [pre-commit.ci] pre-commit autoupdate
1eadcb7 v2.6.5
2bb89b8 Merge pull request #498 from MatejKafka/main
3fa1e74 feat: identify .psm1 and .psd1 files as powershell
See full diff in compare view

Updates pre-commit from 4.0.1 to 4.1.0

Release notes

Sourced from pre-commit's releases.

pre-commit v4.1.0

Features

Add language: julia.

#3348 PR by @fredrikekre.

#2689 issue @jmuchovej.

Fixes

Disable automatic toolchain switching for language: golang.

#3304 PR by @AleksaC.

#3300 issue by @AleksaC.

#3149 issue by @nijel.

Fix language: r installation when initiated by RStudio.

#3389 PR by @lorenzwalthert.

#3385 issue by @lorenzwalthert.

Changelog

Sourced from pre-commit's changelog.

4.1.0 - 2025-01-20

Features

Add language: julia.

#3348 PR by @fredrikekre.

#2689 issue @jmuchovej.

Fixes

Disable automatic toolchain switching for language: golang.

#3304 PR by @AleksaC.

#3300 issue by @AleksaC.

#3149 issue by @nijel.

Fix language: r installation when initiated by RStudio.

#3389 PR by @lorenzwalthert.

#3385 issue by @lorenzwalthert.

Commits

b152e92 v4.1.0
c3125a4 Merge pull request #3389 from lorenzwalthert/dev-always-unset-renv
c2c061c fix: ensure env patch is applied for vanilla emulation
cd429db Merge pull request #3382 from pre-commit/pre-commit-ci-update-config
9b9f8e2 [pre-commit.ci] pre-commit autoupdate
86300a4 Merge pull request #3376 from pre-commit/r-gone
77edad8 install r on ubuntu runners
18b3939 Merge pull request #3375 from pre-commit/dotnet-tests-ubuntu-latest
31cb945 Merge pull request #3374 from pre-commit/docker-image-tests-ubuntu-22-not-pre...
28c3d81 update .net tests to use .net 8
Additional commits viewable in compare view

Updates pyproject-api from 1.8.0 to 1.9.0

Release notes

Sourced from pyproject-api's releases.

Drop 3.8

What's Changed

Create FUNDING.yml by @gaborbernat in tox-dev/pyproject-api#158

Full Changelog: tox-dev/pyproject-api@1.8.0...1.9.0

Commits

aace737 Bump pypa/gh-action-pypi-publish from 1.12.2 to 1.12.3 (#175)
ce4087b Bump astral-sh/setup-uv from 4 to 5 (#176)
136e5de [pre-commit.ci] pre-commit autoupdate (#174)
81e9d22 [pre-commit.ci] pre-commit autoupdate (#172)
5814c0a Bump astral-sh/setup-uv from 3 to 4 (#173)
eb9f7ba [pre-commit.ci] pre-commit autoupdate (#171)
249be0c [pre-commit.ci] pre-commit autoupdate (#170)
f9c1b7f Bump pypa/gh-action-pypi-publish from 1.12.1 to 1.12.2 (#169)
298cafc [pre-commit.ci] pre-commit autoupdate (#166)
762410d Bump pypa/gh-action-pypi-publish from 1.11.0 to 1.12.1 (#168)
Additional commits viewable in compare view

Updates tox from 4.23.2 to 4.24.1

Release notes

Sourced from tox's releases.

4.24.1

What's Changed

Adds ability to configure stderr output color by @ssbarnea in tox-dev/tox#3426

Full Changelog: tox-dev/tox@4.24.0...4.24.1

4.24.0

What's Changed

fix docs config typo by @wooshaun53 in tox-dev/tox#3424

Allow users to disable use of pre-commit-uv by @ssbarnea in tox-dev/tox#3430

Pass nix-ld related variables by default in pass_env (fixes #3425) by @albertodonato in tox-dev/tox#3434

Improve testenv docs consistency by @thatch in tox-dev/tox#3440

Display exception name when subprocesses raise them by @ssbarnea in tox-dev/tox#3450

Fix the CI after setuptools 75.6 change by @gaborbernat in tox-dev/tox#3452

Update pre-commit hooks with mypy fix by @ssbarnea in tox-dev/tox#3454

Fix a typo in a code block in the User Guide by @bryant1410 in tox-dev/tox#3462

Update pre-commit hooks by @ssbarnea in tox-dev/tox#3460

💅 Make SVG image compatible with Firefox by @webknjaz in tox-dev/tox#3466

feat: adding a json schema command by @henryiii in tox-dev/tox#3446

New Contributors

@wooshaun53 made their first contribution in tox-dev/tox#3424

@albertodonato made their first contribution in tox-dev/tox#3434

@thatch made their first contribution in tox-dev/tox#3440

@bryant1410 made their first contribution in tox-dev/tox#3462

@henryiii made their first contribution in tox-dev/tox#3446

Full Changelog: tox-dev/tox@4.23.2...4.24.0

Changelog

Sourced from tox's changelog.

v4.24.1 (2025-01-21)

Misc - 4.24.1
- :issue:`3426`
v4.24.0 (2025-01-21)
Features - 4.24.0
Add a schema command to produce a JSON Schema for tox and the current plugins.

by :user:henryiii (:issue:3446)

Bugfixes - 4.24.0
- Log exception name when subprocess execution produces one.

by :user:ssbarnea (:issue:3450)

Improved Documentation - 4.24.0
Fix typo in docs/config.rst from {} to {:}.

by :user:wooshaun53 (:issue:3424)

Pass NIX_LD and NIX_LD_LIBRARY_PATH variables by default in pass_env to make generic binaries work under Nix/NixOS.

by :user:albertodonato (:issue:3425)

Commits

d4276dc release 4.24.1
ee660b9 Adds ability to configure stderr output color (#3426)
eca61ed release 4.24.0
bbd9663 [pre-commit.ci] pre-commit autoupdate (#3464)
825c68b feat: adding a json schema command (#3446)
fccbe2a 💅 Make SVG image compatible with Firefox (#3466)
e3e77a6 Bump astral-sh/setup-uv from 4 to 5 (#3463)
c0b490d Update pre-commit hooks (#3460)
fbac078 Fix a typo in a code block in the User Guide (#3462)
c7f2caf Bump pypa/gh-action-pypi-publish from 1.12.2 to 1.12.3 (#3459)
Additional commits viewable in compare view

Updates virtualenv from 20.28.0 to 20.29.1

Release notes

Sourced from virtualenv's releases.

20.29.1

What's Changed

release 20.29.0 by @gaborbernat in pypa/virtualenv#2824

Simplify Solution to --python command-line flag precedence by @DK96-OS in pypa/virtualenv#2826

Change PyInfo cache versioning mechanism by @robsdedude in pypa/virtualenv#2827

New Contributors

@DK96-OS made their first contribution in pypa/virtualenv#2826

Full Changelog: pypa/virtualenv@20.29.0...20.29.1

20.29.0

What's Changed

release 20.28.1 by @gaborbernat in pypa/virtualenv#2818

Makes --python command-line flag take precedence over env var by @filiplajszczak in pypa/virtualenv#2821

Add free-threaded Python support by @robsdedude in pypa/virtualenv#2809

Upgrade embeded setuptools by @gaborbernat in pypa/virtualenv#2823

New Contributors

@filiplajszczak made their first contribution in pypa/virtualenv#2821

@robsdedude made their first contribution in pypa/virtualenv#2809

Full Changelog: pypa/virtualenv@20.28.1...20.29.0

20.28.1

What's Changed

release 20.28.0 by @gaborbernat in pypa/virtualenv#2807

Skip tcsh tests on broken tcsh versions by @gaborbernat in pypa/virtualenv#2817

Full Changelog: pypa/virtualenv@20.28.0...20.28.1

Changelog

Sourced from virtualenv's changelog.

v20.29.1 (2025-01-17)

Bugfixes - 20.29.1
- Fix PyInfo cache incompatibility warnings - by :user:`robsdedude`. (:issue:`2827`)
v20.29.0 (2025-01-15)
Features - 20.29.0
Add support for selecting free-threaded Python interpreters, e.g., python3.13t. (:issue:2809)

Bugfixes - 20.29.0
- Upgrade embedded wheels:

setuptools to 75.8.0 from 75.6.0 (:issue:2823)

v20.28.1 (2025-01-02)
Bugfixes - 20.28.1
Skip tcsh tests on broken tcsh versions - by :user:gaborbernat. (:issue:2814)

Commits

e07c0c3 release 20.29.1
61bee9f Add changelog for PyInfo fix
fd0dc85 Change PyInfo cache versioning mechanism (#2827)
56ef466 Merge pull request #2826 from DK96-OS/cli-precedence-2285
caf03a2 Merge pull request #2824 from pypa/release-20.29.0
0f6dc41 release 20.29.0
ea5e5cb Upgrade embeded setuptools (#2823)
b00d59c Add free-threaded Python support (#2809)
bc7a91a Merge pull request #2821 from filiplajszczak/cli-precedence-2285
11995e7 Merge pull request #2819 from pypa/pre-commit-ci-update-config
Additional commits viewable in compare view

Updates boto3 from 1.35.90 to 1.36.11

Commits

1f4efb9 Merge branch 'release-1.36.11'
c7543e5 Bumping version to 1.36.11
18d8817 Add changelog entries from botocore
7893a06 Merge branch 'release-1.36.10'
c5c634b Merge branch 'release-1.36.10' into develop
f147d86 Bumping version to 1.36.10
07397a2 Add changelog entries from botocore
6003754 Merge branch 'release-1.36.9'
622fdef Merge branch 'release-1.36.9' into develop
76e9059 Bumping version to 1.36.9
Additional commits viewable in compare view

Updates pydantic from 2.10.4 to 2.10.6

Release notes

Sourced from pydantic's releases.

v2.10.6 2025-01-23

What's Changed

Fixes

Fix JSON Schema reference collection with 'examples' keys by @Viicos in #11325

Fix url python serialization by @sydney-runkle in #11331

Full Changelog: pydantic/pydantic@v2.10.5...v2.10.6

v2.10.5 2024-12-18

What's Changed

Fixes

Remove custom MRO implementation of Pydantic models by @Viicos in #11184

Fix URL serialization for unions by @sydney-runkle in #11233

Full Changelog: pydantic/pydantic@v2.10.4...v2.10.5

Changelog

Sourced from pydantic's changelog.

v2.10.6 (2025-01-23)

GitHub release

What's Changed

Fixes

Fix JSON Schema reference collection with 'examples' keys by @Viicos in #11325

Fix url python serialization by @sydney-runkle in #11331

v2.10.5 (2025-01-08)

GitHub release

What's Changed

Fixes

Remove custom MRO implementation of Pydantic models by @Viicos in #11184

Fix URL serialization for unions by @sydney-runkle in #11233

Commits

df05e69 Bump version to v2.10.6 (#11334)
4160826 Fix url python serialization (#11331)
f94e842 Fix JSON Schema reference collection with "examples" keys (#11325)
5d34efd Prepare release v2.10.5 (#11237)
6e585f9 Fix url serialization for unions (#11233)
5a22e02 Remove custom MRO implementation of Pydantic models (#11195)
See full diff in compare view

Updates pytz from 2024.2 to 2025.1

Commits

00ad7f1 Bump version numbers to 2025.1 / 2025a
f3a8f38 IANA 2025a
7abdc14 Squashed 'tz/' changes from 6903dde39e..5ad5cfba5b
See full diff in compare view

Updates botocore from 1.35.90 to 1.36.11

Commits

c126c4f Merge branch 'release-1.36.11'
b8d3c14 Bumping version to 1.36.11
34eb3f6 Update to latest models
a97cfe9 Ignore Content-Length header when setting 'chunked' for Transfer-Encoding (#3...
53104ee Merge branch 'release-1.36.10'
84ed226 Merge branch 'release-1.36.10' into develop
41ddfc8 Bumping version to 1.36.10
5227714 Update endpoints model
703d19e Update to latest models
45da16d Update awscrt version to 0.23.8 (#3358)
Additional commits viewable in compare view

Updates importlib-metadata from 8.5.0 to 8.6.1

Changelog

Sourced from importlib-metadata's changelog.

v8.6.1

Bugfixes

Fixed indentation logic to also honor blank lines.

v8.6.0

Features

python/cpython#119650

Commits

45e8bde Finalize
506beb7 Fixed indentation logic to also honor blank lines.
dad7380 Finalize
dab1dd8 When transforming the payload to a Description key, clear the payload.
07aa607 Add support for rendering metadata where some fields have newlines (python/cp...
b92ec18 Merge https://github.com/jaraco/skeleton
5c34e69 Use extend for proper workaround.
694e5b4 Merge https://github.com/jaraco/skeleton
750a189 Require Python 3.9 or later now that Python 3.8 is EOL.
e61a9df Include pyproject.toml in ruff.toml.
Additional commits viewable in compare view

Updates pydantic-core from 2.27.2 to 2.28.0

Release notes

Sourced from pydantic-core's releases.

v2.28.0 2025-01-30

What's Changed

minimal upgrade to PyO3 0.23 (ignoring deprecations) by @davidhewitt in pydantic/pydantic-core#1556

Bump serde_json from 1.0.132 to 1.0.133 by @dependabot in pydantic/pydantic-core#1564

Bump idna from 1.0.2 to 1.0.3 by @dependabot in pydantic/pydantic-core#1567

Bump serde from 1.0.214 to 1.0.215 by @dependabot in pydantic/pydantic-core#1565

remove python3-dll-a dependency by @davidhewitt in pydantic/pydantic-core#1568

Use UserWarning from pyo3 by @changhc in pydantic/pydantic-core#1559

bump jiter to 0.8.2, PyO3 to 0.23.3 by @davidhewitt in pydantic/pydantic-core#1570

Fix typo in PydanticUseDefault docstring by @Viicos in pydantic/pydantic-core#1571

Forward default_value calls to the underlying schema for DefinitionRefValidator by @Viicos in pydantic/pydantic-core#1573

fix type hint for SerializationInfo.round_trip by @davidhewitt in pydantic/pydantic-core#1576

Include JSON Schema input core schema in function schemas by @Viicos in pydantic/pydantic-core#1572

fix wasteful to_python() calls checking for undefined by @davidhewitt in pydantic/pydantic-core#1580

Fix ValueError on year zero by @davidhewitt in pydantic/pydantic-core#1583

Bump serde from 1.0.215 to 1.0.216 by @dependabot in pydantic/pydantic-core#1586

optimize refcounting op in datetime creation by @davidhewitt in pydantic/pydantic-core#1590

Bump astral-sh/setup-uv from 4 to 5 by @dependabot in pydantic/pydantic-core#1596

Bump serde from 1.0.216 to 1.0.217 by @dependabot in pydantic/pydantic-core#1595

Bump serde_json from 1.0.133 to 1.0.134 by @dependabot in pydantic/pydantic-core#1594

Drop 3.8 support by @sydney-runkle in pydantic/pydantic-core#1604

Remove pyupgrade as an explicit linting dependency by @sydney-runkle in pydantic/pydantic-core#1606

Fix: dataclass InitVars shouldn't be required on serialization by @sydney-runkle in pydantic/pydantic-core#1602

Bump version to v2.28.0 by @Viicos in pydantic/pydantic-core#1615

Full Changelog: pydantic/pydantic-core@v2.27.1...v2.28.0

Commits

009b948 Bump version to v2.28.0 (#1615)
0ede4d1 Add back stubtest check (#1610)
8758528 resolve remaining deprecation warnings from PyO3 0.23 (#1584)
261c7ab Fix: dataclass InitVars shouldn't be required on serialization (#1602)
82b7aa7 Remove pyupgrade as an explicit linting dependency (#1606)
b426cce Drop 3.8 support (#1604)
e572f55 Linting / formatting updates (#1603)
2c27319 Bump serde_json from 1.0.133 to 1.0.134 (#1594)
ecaa1a0 Bump serde from 1.0.216 to 1.0.217 (#1595)
e7c5dc7 Bump astral-sh/setup-uv from 4 to 5 (#1596)
Additional commits viewable in compare view

Updates s3transfer from 0.10.4 to 0.11.2

Changelog

Sourced from s3transfer's changelog.

0.11.2

bugfix:upload: Only set a default checksum if the request_checksum_calculation config is set to when_supported. Fixes boto/s3transfer#327 <https://github.com/boto/s3transfer/issues/327>__.

0.11.1

bugfix:Dependencies: Update the floor version of botocore to 1.36.0 to match imports.

0.11.0

feature:manager: Use CRC32 by default and support user provided full-object checksums.

Commits

e2310f6 Merge branch 'release-0.11.2'
d66e5b6 Bumping version to 0.11.2
bc23c92 Only set default checksum if request_checksum_calculation config is set t...
af066ef Merge branch 'release-0.11.1'
cb67175 Merge branch 'release-0.11.1' into develop
5f6cb50 Bumping version to 0.11.1
c4d0f87 Update minimum required botocore version to 1.36.0 (#326)
0778911 Merge branch 'release-0.11.0'
136d00a Merge branch 'release-0.11.0' into develop
aef3dfa Bumping version to 0.11.0
Additional commits viewable in compare view

Updates sqlalchemy from 2.0.36 to 2.0.37

Release notes

Sourced from sqlalchemy's releases.

2.0.37

Released: January 9, 2025

orm

[orm] [bug] Fixed issue regarding Union types that would be present in the _orm.registry.type_annotation_map of a _orm.registry or declarative base class, where a Mapped element that included one of the subtypes present in that Union would be matched to that entry, potentially ignoring other entries that matched exactly. The correct behavior now takes place such that an entry should only match in _orm.registry.type_annotation_map exactly, as a Union type is a self-contained type. For example, an attribute with Mapped[float] would previously match to a _orm.registry.type_annotation_map entry Union[float, Decimal]; this will no longer match and will now only match to an entry that states float. Pull request courtesy Frazer McLean.

References: #11370

[orm] [bug] Fixed bug in how type unions were handled within _orm.registry.type_annotation_map as well as _orm.Mapped that made the lookup behavior of a | b different from that of Union[a, b].

References: #11944

[orm] [bug] Consistently handle TypeAliasType (defined in PEP 695) obtained with the type X = int syntax introduced in python 3.12. Now in all cases one such alias must be explicitly added to the type map for it to be usable inside Mapped. This change also revises the approach added in #11305, ...
Description has been truncated

Bumps the all-dependencies group in /api with 17 updates: | Package | From | To | | --- | --- | --- | | [pip](https://github.com/pypa/pip) | `24.3.1` | `25.0` | | [cachetools](https://github.com/tkem/cachetools) | `5.5.0` | `5.5.1` | | [certifi](https://github.com/certifi/python-certifi) | `2024.12.14` | `2025.1.31` | | [filelock](https://github.com/tox-dev/py-filelock) | `3.16.1` | `3.17.0` | | [identify](https://github.com/pre-commit/identify) | `2.6.4` | `2.6.6` | | [pre-commit](https://github.com/pre-commit/pre-commit) | `4.0.1` | `4.1.0` | | [pyproject-api](https://github.com/tox-dev/pyproject-api) | `1.8.0` | `1.9.0` | | [tox](https://github.com/tox-dev/tox) | `4.23.2` | `4.24.1` | | [virtualenv](https://github.com/pypa/virtualenv) | `20.28.0` | `20.29.1` | | [boto3](https://github.com/boto/boto3) | `1.35.90` | `1.36.11` | | [pydantic](https://github.com/pydantic/pydantic) | `2.10.4` | `2.10.6` | | [pytz](https://github.com/stub42/pytz) | `2024.2` | `2025.1` | | [botocore](https://github.com/boto/botocore) | `1.35.90` | `1.36.11` | | [importlib-metadata](https://github.com/python/importlib_metadata) | `8.5.0` | `8.6.1` | | [pydantic-core](https://github.com/pydantic/pydantic-core) | `2.27.2` | `2.28.0` | | [s3transfer](https://github.com/boto/s3transfer) | `0.10.4` | `0.11.2` | | [sqlalchemy](https://github.com/sqlalchemy/sqlalchemy) | `2.0.36` | `2.0.37` | Updates `pip` from 24.3.1 to 25.0 - [Changelog](https://github.com/pypa/pip/blob/main/NEWS.rst) - [Commits](pypa/pip@24.3.1...25.0) Updates `cachetools` from 5.5.0 to 5.5.1 - [Changelog](https://github.com/tkem/cachetools/blob/master/CHANGELOG.rst) - [Commits](tkem/cachetools@v5.5.0...v5.5.1) Updates `certifi` from 2024.12.14 to 2025.1.31 - [Commits](certifi/python-certifi@2024.12.14...2025.01.31) Updates `filelock` from 3.16.1 to 3.17.0 - [Release notes](https://github.com/tox-dev/py-filelock/releases) - [Changelog](https://github.com/tox-dev/filelock/blob/main/docs/changelog.rst) - [Commits](tox-dev/filelock@3.16.1...3.17.0) Updates `identify` from 2.6.4 to 2.6.6 - [Commits](pre-commit/identify@v2.6.4...v2.6.6) Updates `pre-commit` from 4.0.1 to 4.1.0 - [Release notes](https://github.com/pre-commit/pre-commit/releases) - [Changelog](https://github.com/pre-commit/pre-commit/blob/main/CHANGELOG.md) - [Commits](pre-commit/pre-commit@v4.0.1...v4.1.0) Updates `pyproject-api` from 1.8.0 to 1.9.0 - [Release notes](https://github.com/tox-dev/pyproject-api/releases) - [Commits](tox-dev/pyproject-api@1.8.0...1.9.0) Updates `tox` from 4.23.2 to 4.24.1 - [Release notes](https://github.com/tox-dev/tox/releases) - [Changelog](https://github.com/tox-dev/tox/blob/main/docs/changelog.rst) - [Commits](tox-dev/tox@4.23.2...4.24.1) Updates `virtualenv` from 20.28.0 to 20.29.1 - [Release notes](https://github.com/pypa/virtualenv/releases) - [Changelog](https://github.com/pypa/virtualenv/blob/main/docs/changelog.rst) - [Commits](pypa/virtualenv@20.28.0...20.29.1) Updates `boto3` from 1.35.90 to 1.36.11 - [Release notes](https://github.com/boto/boto3/releases) - [Commits](boto/boto3@1.35.90...1.36.11) Updates `pydantic` from 2.10.4 to 2.10.6 - [Release notes](https://github.com/pydantic/pydantic/releases) - [Changelog](https://github.com/pydantic/pydantic/blob/main/HISTORY.md) - [Commits](pydantic/pydantic@v2.10.4...v2.10.6) Updates `pytz` from 2024.2 to 2025.1 - [Release notes](https://github.com/stub42/pytz/releases) - [Commits](stub42/pytz@release_2024.2...release_2025.1) Updates `botocore` from 1.35.90 to 1.36.11 - [Commits](boto/botocore@1.35.90...1.36.11) Updates `importlib-metadata` from 8.5.0 to 8.6.1 - [Release notes](https://github.com/python/importlib_metadata/releases) - [Changelog](https://github.com/python/importlib_metadata/blob/main/NEWS.rst) - [Commits](python/importlib_metadata@v8.5.0...v8.6.1) Updates `pydantic-core` from 2.27.2 to 2.28.0 - [Release notes](https://github.com/pydantic/pydantic-core/releases) - [Commits](pydantic/pydantic-core@v2.27.2...v2.28.0) Updates `s3transfer` from 0.10.4 to 0.11.2 - [Changelog](https://github.com/boto/s3transfer/blob/develop/CHANGELOG.rst) - [Commits](boto/s3transfer@0.10.4...0.11.2) Updates `sqlalchemy` from 2.0.36 to 2.0.37 - [Release notes](https://github.com/sqlalchemy/sqlalchemy/releases) - [Changelog](https://github.com/sqlalchemy/sqlalchemy/blob/main/CHANGES.rst) - [Commits](https://github.com/sqlalchemy/sqlalchemy/commits) --- updated-dependencies: - dependency-name: pip dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-dependencies - dependency-name: cachetools dependency-type: direct:development update-type: version-update:semver-patch dependency-group: all-dependencies - dependency-name: certifi dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-dependencies - dependency-name: filelock dependency-type: direct:development update-type: version-update:semver-minor dependency-group: all-dependencies - dependency-name: identify dependency-type: direct:development update-type: version-update:semver-patch dependency-group: all-dependencies - dependency-name: pre-commit dependency-type: direct:development update-type: version-update:semver-minor dependency-group: all-dependencies - dependency-name: pyproject-api dependency-type: direct:development update-type: version-update:semver-minor dependency-group: all-dependencies - dependency-name: tox dependency-type: direct:development update-type: version-update:semver-minor dependency-group: all-dependencies - dependency-name: virtualenv dependency-type: direct:development update-type: version-update:semver-minor dependency-group: all-dependencies - dependency-name: boto3 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-dependencies - dependency-name: pydantic dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-dependencies - dependency-name: pytz dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-dependencies - dependency-name: botocore dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-dependencies - dependency-name: importlib-metadata dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-dependencies - dependency-name: pydantic-core dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-dependencies - dependency-name: s3transfer dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-dependencies - dependency-name: sqlalchemy dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Feb 1, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump the all-dependencies group in /api with 17 updates #412

Bump the all-dependencies group in /api with 17 updates #412

dependabot bot commented on behalf of github Feb 1, 2025

v4.24.0 (2025-01-21)

v20.29.0 (2025-01-15)

v20.28.1 (2025-01-02)

Bump the all-dependencies group in /api with 17 updates #412

Are you sure you want to change the base?

Bump the all-dependencies group in /api with 17 updates #412

Conversation

dependabot bot commented on behalf of github Feb 1, 2025

25.0 (2025-01-26)

Deprecations and Removals

Features

Bug Fixes

Vendored Libraries

v5.5.1 (2025-01-21)

Drop 3.8

pre-commit v4.1.0

Features

Fixes

4.1.0 - 2025-01-20

Features

Fixes

Drop 3.8

What's Changed

4.24.1

What's Changed

4.24.0

What's Changed

New Contributors

v4.24.1 (2025-01-21)

v4.24.0 (2025-01-21)

20.29.1

What's Changed

New Contributors

20.29.0

What's Changed

New Contributors

20.28.1

What's Changed

v20.29.1 (2025-01-17)

v20.29.0 (2025-01-15)

v20.28.1 (2025-01-02)

v2.10.6 2025-01-23

What's Changed

Fixes

v2.10.5 2024-12-18

What's Changed

Fixes

v2.10.6 (2025-01-23)

What's Changed

Fixes

v2.10.5 (2025-01-08)

What's Changed

Fixes

v8.6.1

Bugfixes

v8.6.0

Features

v2.28.0 2025-01-30

What's Changed

0.11.2

0.11.1

0.11.0

2.0.37

orm