Python Requirements Update

requirements/base.txt

@@ -12,7 +12,7 @@ asgiref==3.8.1
     # via
     #   django
     #   django-cors-headers
-attrs==24.1.0
+attrs==24.2.0
     # via
     #   jsonschema
     #   openedx-events
@@ -28,7 +28,7 @@ celery==5.4.0
     #   edx-celeryutils
 certifi==2024.7.4
     # via requests
-cffi==1.16.0
+cffi==1.17.0
     # via
     #   cryptography
     #   pynacl
@@ -66,7 +66,7 @@ defusedxml==0.8.0rc2
     # via
     #   python3-openid
     #   social-auth-core
-django==4.2.14
+django==4.2.15
     # via
     #   -c requirements/common_constraints.txt
     #   -r requirements/base.in
@@ -177,7 +177,7 @@ edx-drf-extensions==10.3.0
     #   edx-rbac
 edx-enterprise-subsidy-client==0.4.4
     # via -r requirements/base.in
-edx-event-bus-kafka==5.8.0
+edx-event-bus-kafka==5.8.1
     # via -r requirements/base.in
 edx-opaque-keys[django]==2.10.0
     # via
@@ -216,15 +216,15 @@ jsonschema==4.23.0
     # via drf-spectacular
 jsonschema-specifications==2023.12.1
     # via jsonschema
-kombu==5.3.7
+kombu==5.4.0
     # via celery
 markupsafe==2.1.5
     # via jinja2
 monotonic==1.6
     # via analytics-python
 mysqlclient==2.2.4
     # via -r requirements/base.in
-newrelic==9.12.0
+newrelic==9.13.0
     # via edx-django-utils
 oauthlib==3.2.2
     # via
@@ -276,7 +276,7 @@ pytz==2024.1
     #   -r requirements/base.in
     #   djangorestframework
     #   drf-yasg
-pyyaml==6.0.1
+pyyaml==6.0.2
     # via
     #   code-annotations
     #   drf-spectacular
@@ -299,7 +299,7 @@ requests==2.32.3
     #   social-auth-core
 requests-oauthlib==2.0.0
     # via social-auth-core
-rpds-py==0.19.1
+rpds-py==0.20.0
     # via
     #   jsonschema
     #   referencing

requirements/common_constraints.txt

@@ -24,15 +24,6 @@ elasticsearch<7.14.0
 # django-simple-history>3.0.0 adds indexing and causes a lot of migrations to be affected
 
 
-# opentelemetry requires version 6.x at the moment:
-# https://github.com/open-telemetry/opentelemetry-python/issues/3570
-# Normally this could be added as a constraint in edx-django-utils, where we're
-# adding the opentelemetry dependency. However, when we compile pip-tools.txt,
-# that uses version 7.x, and then there's no undoing that when compiling base.txt.
-# So we need to pin it globally, for now.
-# Ticket for unpinning: https://github.com/openedx/edx-lint/issues/407
-importlib-metadata<7
-
 # Cause: https://github.com/openedx/event-tracking/pull/290
 # event-tracking 2.4.1 upgrades to pymongo 4.4.0 which is not supported on edx-platform.
 # We will pin event-tracking to do not break existing installations

requirements/dev.txt

@@ -20,7 +20,7 @@ astroid==3.2.4
     #   -r requirements/validation.txt
     #   pylint
     #   pylint-celery
-attrs==24.1.0
+attrs==24.2.0
     # via
     #   -r requirements/validation.txt
     #   jsonschema
@@ -51,7 +51,7 @@ certifi==2024.7.4
     # via
     #   -r requirements/validation.txt
     #   requests
-cffi==1.16.0
+cffi==1.17.0
     # via
     #   -r requirements/validation.txt
     #   cryptography
@@ -141,7 +141,7 @@ distlib==0.3.8
     # via
     #   -r requirements/validation.txt
     #   virtualenv
-django==4.2.14
+django==4.2.15
     # via
     #   -r requirements/validation.txt
     #   django-celery-results
@@ -269,7 +269,7 @@ edx-drf-extensions==10.3.0
     #   edx-rbac
 edx-enterprise-subsidy-client==0.4.4
     # via -r requirements/validation.txt
-edx-event-bus-kafka==5.8.0
+edx-event-bus-kafka==5.8.1
     # via -r requirements/validation.txt
 edx-i18n-tools==1.6.2
     # via -r requirements/dev.in
@@ -293,7 +293,7 @@ edx-toggles==5.2.0
     #   edx-event-bus-kafka
 factory-boy==3.3.0
     # via -r requirements/validation.txt
-faker==26.1.0
+faker==26.3.0
     # via
     #   -r requirements/validation.txt
     #   factory-boy
@@ -312,7 +312,7 @@ idna==3.7
     # via
     #   -r requirements/validation.txt
     #   requests
-importlib-metadata==6.11.0
+importlib-metadata==8.2.0
     # via
     #   -r requirements/validation.txt
     #   twine
@@ -374,11 +374,11 @@ keyring==25.3.0
     # via
     #   -r requirements/validation.txt
     #   twine
-kombu==5.3.7
+kombu==5.4.0
     # via
     #   -r requirements/validation.txt
     #   celery
-lxml==5.2.2
+lxml==5.3.0
     # via edx-i18n-tools
 markdown-it-py==3.0.0
     # via
@@ -400,14 +400,14 @@ monotonic==1.6
     # via
     #   -r requirements/validation.txt
     #   analytics-python
-more-itertools==10.3.0
+more-itertools==10.4.0
     # via
     #   -r requirements/validation.txt
     #   jaraco-classes
     #   jaraco-functools
 mysqlclient==2.2.4
     # via -r requirements/validation.txt
-newrelic==9.12.0
+newrelic==9.13.0
     # via
     #   -r requirements/validation.txt
     #   edx-django-utils
@@ -565,7 +565,7 @@ pytz==2024.1
     #   -r requirements/validation.txt
     #   djangorestframework
     #   drf-yasg
-pyyaml==6.0.1
+pyyaml==6.0.2
     # via
     #   -r requirements/validation.txt
     #   code-annotations
@@ -612,7 +612,7 @@ rich==13.7.1
     # via
     #   -r requirements/validation.txt
     #   twine
-rpds-py==0.19.1
+rpds-py==0.20.0
     # via
     #   -r requirements/validation.txt
     #   jsonschema
@@ -677,7 +677,7 @@ tomlkit==0.13.0
     # via
     #   -r requirements/validation.txt
     #   pylint
-tox==4.16.0
+tox==4.17.1
     # via -r requirements/validation.txt
 twine==5.1.1
     # via -r requirements/validation.txt
@@ -718,7 +718,7 @@ wheel==0.44.0
     # via
     #   -r requirements/pip-tools.txt
     #   pip-tools
-zipp==3.19.2
+zipp==3.20.0
     # via
     #   -r requirements/validation.txt
     #   importlib-metadata

requirements/django.txt

@@ -1 +1 @@
-django==4.2.14
+django==4.2.15

requirements/doc.txt

@@ -24,13 +24,13 @@ astroid==3.2.4
     #   -r requirements/test.txt
     #   pylint
     #   pylint-celery
-attrs==24.1.0
+attrs==24.2.0
     # via
     #   -r requirements/test.txt
     #   jsonschema
     #   openedx-events
     #   referencing
-babel==2.15.0
+babel==2.16.0
     # via
     #   pydata-sphinx-theme
     #   sphinx
@@ -57,7 +57,7 @@ certifi==2024.7.4
     # via
     #   -r requirements/test.txt
     #   requests
-cffi==1.16.0
+cffi==1.17.0
     # via
     #   -r requirements/test.txt
     #   cryptography
@@ -141,7 +141,7 @@ distlib==0.3.8
     # via
     #   -r requirements/test.txt
     #   virtualenv
-django==4.2.14
+django==4.2.15
     # via
     #   -c requirements/common_constraints.txt
     #   -r requirements/test.txt
@@ -272,7 +272,7 @@ edx-drf-extensions==10.3.0
     #   edx-rbac
 edx-enterprise-subsidy-client==0.4.4
     # via -r requirements/test.txt
-edx-event-bus-kafka==5.8.0
+edx-event-bus-kafka==5.8.1
     # via -r requirements/test.txt
 edx-lint==5.3.7
     # via -r requirements/test.txt
@@ -294,7 +294,7 @@ edx-toggles==5.2.0
     #   edx-event-bus-kafka
 factory-boy==3.3.0
     # via -r requirements/test.txt
-faker==26.1.0
+faker==26.3.0
     # via
     #   -r requirements/test.txt
     #   factory-boy
@@ -352,7 +352,7 @@ jsonschema-specifications==2023.12.1
     # via
     #   -r requirements/test.txt
     #   jsonschema
-kombu==5.3.7
+kombu==5.4.0
     # via
     #   -r requirements/test.txt
     #   celery
@@ -370,7 +370,7 @@ monotonic==1.6
     #   analytics-python
 mysqlclient==2.2.4
     # via -r requirements/test.txt
-newrelic==9.12.0
+newrelic==9.13.0
     # via
     #   -r requirements/test.txt
     #   edx-django-utils
@@ -510,7 +510,7 @@ pytz==2024.1
     #   -r requirements/test.txt
     #   djangorestframework
     #   drf-yasg
-pyyaml==6.0.1
+pyyaml==6.0.2
     # via
     #   -r requirements/test.txt
     #   code-annotations
@@ -543,7 +543,7 @@ requests-oauthlib==2.0.0
     #   social-auth-core
 restructuredtext-lint==1.4.0
     # via doc8
-rpds-py==0.19.1
+rpds-py==0.20.0
     # via
     #   -r requirements/test.txt
     #   jsonschema
@@ -623,7 +623,7 @@ tomlkit==0.13.0
     # via
     #   -r requirements/test.txt
     #   pylint
-tox==4.16.0
+tox==4.17.1
     # via -r requirements/test.txt
 typing-extensions==4.12.2
     # via

requirements/production.txt

@@ -15,7 +15,7 @@ asgiref==3.8.1
     #   -r requirements/base.txt
     #   django
     #   django-cors-headers
-attrs==24.1.0
+attrs==24.2.0
     # via
     #   -r requirements/base.txt
     #   jsonschema
@@ -38,7 +38,7 @@ certifi==2024.7.4
     # via
     #   -r requirements/base.txt
     #   requests
-cffi==1.16.0
+cffi==1.17.0
     # via
     #   -r requirements/base.txt
     #   cryptography
@@ -93,7 +93,7 @@ defusedxml==0.8.0rc2
     #   -r requirements/base.txt
     #   python3-openid
     #   social-auth-core
-django==4.2.14
+django==4.2.15
     # via
     #   -r requirements/base.txt
     #   django-celery-results
@@ -211,7 +211,7 @@ edx-drf-extensions==10.3.0
     #   edx-rbac
 edx-enterprise-subsidy-client==0.4.4
     # via -r requirements/base.txt
-edx-event-bus-kafka==5.8.0
+edx-event-bus-kafka==5.8.1
     # via -r requirements/base.txt
 edx-opaque-keys[django]==2.10.0
     # via
@@ -237,7 +237,7 @@ gevent==24.2.1
     # via -r requirements/production.in
 greenlet==3.0.3
     # via gevent
-gunicorn==22.0.0
+gunicorn==23.0.0
     # via -r requirements/production.in
 idna==3.7
     # via
@@ -271,7 +271,7 @@ jsonschema-specifications==2023.12.1
     # via
     #   -r requirements/base.txt
     #   jsonschema
-kombu==5.3.7
+kombu==5.4.0
     # via
     #   -r requirements/base.txt
     #   celery
@@ -287,7 +287,7 @@ mysqlclient==2.2.4
     # via
     #   -r requirements/base.txt
     #   -r requirements/production.in
-newrelic==9.12.0
+newrelic==9.13.0
     # via
     #   -r requirements/base.txt
     #   edx-django-utils
@@ -369,7 +369,7 @@ pytz==2024.1
     #   -r requirements/base.txt
     #   djangorestframework
     #   drf-yasg
-pyyaml==6.0.1
+pyyaml==6.0.2
     # via
     #   -r requirements/base.txt
     #   -r requirements/production.in
@@ -398,7 +398,7 @@ requests-oauthlib==2.0.0
     # via
     #   -r requirements/base.txt
     #   social-auth-core
-rpds-py==0.19.1
+rpds-py==0.20.0
     # via
     #   -r requirements/base.txt
     #   jsonschema
@@ -479,7 +479,7 @@ wcwidth==0.2.13
     #   prompt-toolkit
 zope-event==5.0
     # via gevent
-zope-interface==6.4.post2
+zope-interface==7.0.1
     # via gevent
 
 # The following packages are considered to be unsafe in a requirements file: