Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump the minor-patch group with 2 updates #3469

Merged
merged 1 commit into from
Nov 12, 2024

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 11, 2024

Bumps the minor-patch group with 2 updates: ruff and werkzeug.

Updates ruff from 0.7.2 to 0.7.3

Release notes

Sourced from ruff's releases.

0.7.3

Release Notes

Preview features

  • Formatter: Disallow single-line implicit concatenated strings (#13928)
  • [flake8-pyi] Include all Python file types for PYI006 and PYI066 (#14059)
  • [flake8-simplify] Implement split-of-static-string (SIM905) (#14008)
  • [refurb] Implement subclass-builtin (FURB189) (#14105)
  • [ruff] Improve diagnostic messages and docs (RUF031, RUF032, RUF034) (#14068)

Rule changes

  • Detect items that hash to same value in duplicate sets (B033, PLC0208) (#14064)
  • [eradicate] Better detection of IntelliJ language injection comments (ERA001) (#14094)
  • [flake8-pyi] Add autofix for docstring-in-stub (PYI021) (#14150)
  • [flake8-pyi] Update duplicate-literal-member (PYI062) to alawys provide an autofix (#14188)
  • [pyflakes] Detect items that hash to same value in duplicate dictionaries (F601) (#14065)
  • [ruff] Fix false positive for decorators (RUF028) (#14061)

Bug fixes

  • Avoid parsing joint rule codes as distinct codes in # noqa (#12809)
  • [eradicate] ignore # language= in commented-out-code rule (ERA001) (#14069)
  • [flake8-bugbear] - do not run mutable-argument-default on stubs (B006) (#14058)
  • [flake8-builtins] Skip lambda expressions in builtin-argument-shadowing (A002) (#14144)
  • [flake8-comprehension] Also remove trailing comma while fixing C409 and C419 (#14097)
  • [flake8-simplify] Allow open without context manager in return statement (SIM115) (#14066)
  • [pylint] Respect hash-equivalent literals in iteration-over-set (PLC0208) (#14063)
  • [pylint] Update known dunder methods for Python 3.13 (PLW3201) (#14146)
  • [pyupgrade] - ignore kwarg unpacking for UP044 (#14053)
  • [refurb] Parse more exotic decimal strings in verbose-decimal-constructor (FURB157) (#14098)

Documentation

  • Add links to missing related options within rule documentations (#13971)
  • Add rule short code to mkdocs tags to allow searching via rule codes (#14040)

Install ruff 0.7.3

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/astral-sh/ruff/releases/download/0.7.3/ruff-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy ByPass -c "irm https://github.com/astral-sh/ruff/releases/download/0.7.3/ruff-installer.ps1 | iex"
</tr></table> 

... (truncated)

Changelog

Sourced from ruff's changelog.

0.7.3

Preview features

  • Formatter: Disallow single-line implicit concatenated strings (#13928)
  • [flake8-pyi] Include all Python file types for PYI006 and PYI066 (#14059)
  • [flake8-simplify] Implement split-of-static-string (SIM905) (#14008)
  • [refurb] Implement subclass-builtin (FURB189) (#14105)
  • [ruff] Improve diagnostic messages and docs (RUF031, RUF032, RUF034) (#14068)

Rule changes

  • Detect items that hash to same value in duplicate sets (B033, PLC0208) (#14064)
  • [eradicate] Better detection of IntelliJ language injection comments (ERA001) (#14094)
  • [flake8-pyi] Add autofix for docstring-in-stub (PYI021) (#14150)
  • [flake8-pyi] Update duplicate-literal-member (PYI062) to alawys provide an autofix (#14188)
  • [pyflakes] Detect items that hash to same value in duplicate dictionaries (F601) (#14065)
  • [ruff] Fix false positive for decorators (RUF028) (#14061)

Bug fixes

  • Avoid parsing joint rule codes as distinct codes in # noqa (#12809)
  • [eradicate] ignore # language= in commented-out-code rule (ERA001) (#14069)
  • [flake8-bugbear] - do not run mutable-argument-default on stubs (B006) (#14058)
  • [flake8-builtins] Skip lambda expressions in builtin-argument-shadowing (A002) (#14144)
  • [flake8-comprehension] Also remove trailing comma while fixing C409 and C419 (#14097)
  • [flake8-simplify] Allow open without context manager in return statement (SIM115) (#14066)
  • [pylint] Respect hash-equivalent literals in iteration-over-set (PLC0208) (#14063)
  • [pylint] Update known dunder methods for Python 3.13 (PLW3201) (#14146)
  • [pyupgrade] - ignore kwarg unpacking for UP044 (#14053)
  • [refurb] Parse more exotic decimal strings in verbose-decimal-constructor (FURB157) (#14098)

Documentation

  • Add links to missing related options within rule documentations (#13971)
  • Add rule short code to mkdocs tags to allow searching via rule codes (#14040)
Commits
  • fbf140a Bump version to 0.7.3 (#14197)
  • 670f958 [red-knot] Fix intersection simplification for ~Any/~Unknown (#14195)
  • fed35a2 [red-knot] Fix is_assignable_to for unions (#14196)
  • d1ef418 Docs: tweak rules documentation (#14180)
  • 272d24b [flake8-pyi] Add a fix for duplicate-literal-member (#14188)
  • 2624249 [red-knot] Minor: fix Literal[True] <: int (#14177)
  • 4b08d17 [red-knot] Add a new Type::KnownInstanceType variant (#14155)
  • 5b6169b [red-knot] Minor fix in intersection type comment (#14176)
  • 2040e93 [flake8-logging-format] Fix invalid formatting value in docs of `logging-ex...
  • 794eb88 [flake8-bandit] Typo in docs suspicious-pickle-import (S403) (#14175)
  • Additional commits viewable in compare view

Updates werkzeug from 3.1.2 to 3.1.3

Release notes

Sourced from werkzeug's releases.

3.1.3

This is the Werkzeug 3.1.3 fix release, which fixes bugs but does not otherwise change behavior and should not result in breaking changes vs 3.1.0.

PyPI: https://pypi.org/project/Werkzeug/3.1.3/ Changes: https://werkzeug.palletsprojects.com/en/stable/changes/#version-3-1-3 Milestone: https://github.com/pallets/werkzeug/milestone/41?closed=1

  • Initial data passed to MultiDict and similar interfaces only accepts list, tuple, or set when passing multiple values. It had been changed to accept any Collection, but this matched types that should be treated as single values, such as bytes. #2994
  • When the Host header is not set and Request.host falls back to the WSGI SERVER_NAME value, if that value is an IPv6 address it is wrapped in [] to match the Host header. #2993
Changelog

Sourced from werkzeug's changelog.

Version 3.1.3

Released 2024-11-08

  • Initial data passed to MultiDict and similar interfaces only accepts list, tuple, or set when passing multiple values. It had been changed to accept any Collection, but this matched types that should be treated as single values, such as bytes. :issue:2994
  • When the Host header is not set and Request.host falls back to the WSGI SERVER_NAME value, if that value is an IPv6 address it is wrapped in [] to match the Host header. :issue:2993
Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the minor-patch group with 2 updates: [ruff](https://github.com/astral-sh/ruff) and [werkzeug](https://github.com/pallets/werkzeug).


Updates `ruff` from 0.7.2 to 0.7.3
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@0.7.2...0.7.3)

Updates `werkzeug` from 3.1.2 to 3.1.3
- [Release notes](https://github.com/pallets/werkzeug/releases)
- [Changelog](https://github.com/pallets/werkzeug/blob/main/CHANGES.rst)
- [Commits](pallets/werkzeug@3.1.2...3.1.3)

---
updated-dependencies:
- dependency-name: ruff
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-patch
- dependency-name: werkzeug
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Nov 11, 2024
@leplatrem leplatrem merged commit 8e9f42d into main Nov 12, 2024
19 checks passed
@leplatrem leplatrem deleted the dependabot/pip/minor-patch-effcc1d48c branch November 12, 2024 16:29
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file python Pull requests that update Python code
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant