fix(deps): update all non-major dependencies (!9) · Merge requests · Information Services / DevOps / Django Libraries / API Gateway Auth

Open uis-devops-renovatebot requested to merge renovate/all-minor-patch into main 3 weeks ago

This MR contains the following updates:

Package	Type	Update	Change
cachecontrol	dependencies	minor	`^0.13.1` -> `^0.14.0`
coverage	dev	minor	`7.4.3` -> `7.7.0`
django (changelog)	dependencies	patch	`4.2.11` -> `4.2.20`
django-ucamlookup	dependencies	minor	`>=3.0.5,<3.1.0` -> `>=3.1.0,<3.2.0`
djangorestframework (source, changelog)	dependencies	minor	`3.14.0` -> `3.15.2`
editorconfig-checker/editorconfig-checker.python	repository	patch	`2.7.2` -> `2.7.3`
geddit	dependencies	minor	`1.0.2` -> `1.1.0`
google-auth	dependencies	minor	`2.28.1` -> `2.38.0`
mock (source)	dev	minor	`5.1.0` -> `5.2.0`
pre-commit	dev	minor	`3.6.2` -> `3.8.0`
pre-commit/mirrors-mypy	repository	minor	`v1.4.1` -> `v1.15.0`
pre-commit/pre-commit-hooks	repository	minor	`v4.4.0` -> `v4.6.0`
psf/black	repository	minor	`23.3.0` -> `23.12.1`
pycqa/flake8	repository	minor	`6.0.0` -> `6.1.0`
python-poetry/poetry	repository	minor	`1.5.1` -> `1.8.5`
pyyaml (source)	dependencies	patch	`6.0.1` -> `6.0.2`
registry.gitlab.developers.cam.ac.uk/uis/devops/infra/dockerimages/python	final	minor	`3.10-slim` -> `3.13-slim`
timothycrosley/isort	repository	minor	`5.12.0` -> `5.13.2`
ucam-identitylib	dependencies	patch	`3.3.0` -> `3.3.1`
uis/devops/continuous-delivery/ci-templates	repository	minor	`v3.6.0` -> `v3.8.2`

Note: The pre-commit manager in Renovate is not supported by the pre-commit maintainers or community. Please do not report any problems there, instead create a Discussion in the Renovate repository if you have any questions.

Release Notes

psf/cachecontrol (cachecontrol)

`v0.14.2`

Compare Source

Eliminate a race condition when overwriting cache entries.
Fix a requests object leak when doing caching on a streamed response

`v0.14.1`

Compare Source

What's Changed

github: bump signing step, use dependabot by @woodruffw in https://github.com/psf/cachecontrol/pull/329
build(deps): bump the actions group with 1 update by @dependabot in https://github.com/psf/cachecontrol/pull/330
GitHub Action to spellcheck and lint Python code by @cclauss in https://github.com/psf/cachecontrol/pull/333
workflows/tests: patch macos runner version for 3.7 by @woodruffw in https://github.com/psf/cachecontrol/pull/334
build(deps): bump sigstore/gh-action-sigstore-python from 2.1.1 to 3.0.0 in the actions group by @dependabot in https://github.com/psf/cachecontrol/pull/338
drop Python 3.7, add 3.13 by @woodruffw in https://github.com/psf/cachecontrol/pull/340

nedbat/coveragepy (coverage)

`v7.7.0`

Compare Source

The Coverage object has a new method, :meth:.Coverage.branch_stats for getting simple branch information for a module. Closes issue 1888_.
The :class:Coverage constructor<.Coverage> now has a plugins parameter for passing in plugin objects directly, thanks to Alex Gaynor <pull 1919_>_.
Many constant tests in if statements are now recognized as being optimized away. For example, previously if 13: would have been considered a branch with one path not taken. Now it is understood as always true and no coverage is missing.
The experimental sys.monitoring support now works for branch coverage if you are using Python 3.14.0 alpha 6 or newer. This should reduce the overhead coverage.py imposes on your test suite. Set the environment variable COVERAGE_CORE=sysmon to try it out.
Confirmed support for PyPy 3.11. Thanks Michał Górny.

.. _issue 1888: https://github.com/nedbat/coveragepy/issues/1888 .. _pull 1919: https://github.com/nedbat/coveragepy/pull/1919

.. _changes_7-6-12:

`v7.6.12`

Compare Source

Fix: some aarch64 distributions were missing (issue 1927_). These are now building reliably.

.. _issue 1927: https://github.com/nedbat/coveragepy/issues/1927

.. _changes_7-6-11:

`v7.6.11`

Compare Source

Fix: a memory leak in CTracer has been fixed. The details are in issue 1924_ and pytest-dev 676_. This should reduce the memory footprint for everyone even if it hadn't caused a problem before.
We now ship a py3-none-any.whl wheel file. Thanks, Russell Keith-Magee <pull 1914_>_.

.. _pull 1914: https://github.com/nedbat/coveragepy/pull/1914 .. _issue 1924: https://github.com/nedbat/coveragepy/issues/1924 .. _pytest-dev 676: https://github.com/pytest-dev/pytest-cov/issues/676

.. _changes_7-6-10:

`v7.6.10`

Compare Source

Fix: some descriptions of missing branches in HTML and LCOV reports were incorrect when multi-line statements were involved (issue 1874_ and issue 1875_). These are now fixed.
Fix: Python 3.14 defers evaluation of annotations <pep649_>_ by moving them into separate code objects. That code is rarely executed, so coverage.py would mark them as missing, as reported in issue 1908_. Now they are ignored by coverage automatically.
Fixed an obscure and mysterious problem on PyPy 3.10 seemingly involving mocks, imports, and trace functions: issue 1902_. To be honest, I don't understand the problem or the solution, but git bisect helped find it, and now it's fixed.
Docs: re-wrote the :ref:subprocess page to put multiprocessing first and to highlight the correct use of :class:multiprocessing.Pool <python:multiprocessing.pool.Pool>.

.. _issue 1874: https://github.com/nedbat/coveragepy/issues/1874 .. _issue 1875: https://github.com/nedbat/coveragepy/issues/1875 .. _issue 1902: https://github.com/nedbat/coveragepy/issues/1902 .. _issue 1908: https://github.com/nedbat/coveragepy/issues/1908 .. _pep649: https://docs.python.org/3.14/whatsnew/3.14.html#pep-649-deferred-evaluation-of-annotations

.. _changes_7-6-9:

`v7.6.9`

Compare Source

Fix: Tomas Uribe fixed <pull 1901_>_ a performance problem in the XML report. Large code bases should produce XML reports much faster now.

.. _pull 1901: https://github.com/nedbat/coveragepy/pull/1901

.. _changes_7-6-8:

`v7.6.8`

Compare Source

Fix: the LCOV report code assumed that a branch line that took no branches meant that the entire line was unexecuted. This isn't true in a few cases: the line might always raise an exception, or might have been optimized away. Fixes issue 1896_.
Fix: similarly, the HTML report will now explain that a line that jumps to none of its expected destinations must have always raised an exception. Previously, it would say something nonsensical like, "line 4 didn't jump to line 5 because line 4 was never true, and it didn't jump to line 7 because line 4 was always true." This was also shown in issue 1896_.

.. _issue 1896: https://github.com/nedbat/coveragepy/issues/1896

.. _changes_7-6-7:

`v7.6.7`

Compare Source

Fix: ugh, the other assert from 7.6.5 can also be encountered in the wild, so it's been restored to a conditional. Sorry for the churn.

.. _changes_7-6-6:

`v7.6.6`

Compare Source

One of the new asserts from 7.6.5 caused problems in real projects, as reported in issue 1891_. The assert has been removed.

.. _issue 1891: https://github.com/nedbat/coveragepy/issues/1891

.. _changes_7-6-5:

`v7.6.5`

Compare Source

Fix: fine-tuned the exact Python version (3.12.6) when exiting from with statements changed how they traced. This affected whether people saw the fix for issue 1880_.
Fix: isolate our code more from mocking in the os module that in rare cases can cause bizarre behavior <pytest-cov-666_>_.
Refactor: some code unreachable code paths in parser.py were changed to asserts. If you encounter any of these, please let me know!

.. _pytest-cov-666: https://github.com/pytest-dev/pytest-cov/issues/666

.. _changes_7-6-4:

`v7.6.4`

Compare Source

Fix: multi-line with statements could cause contained branches to be incorrectly marked as missing (issue 1880_). This is now fixed.

.. _issue 1880: https://github.com/nedbat/coveragepy/issues/1880

.. _changes_7-6-3:

`v7.6.3`

Compare Source

Fix: nested context managers could incorrectly be analyzed to flag a missing branch on the last context manager, as described in issue 1876_. This is now fixed.
Fix: the missing branch message about not exiting a module had an extra "didn't," as described in issue 1873_. This is now fixed.

.. _issue 1873: https://github.com/nedbat/coveragepy/issues/1873 .. _issue 1876: https://github.com/nedbat/coveragepy/issues/1876

.. _changes_7-6-2:

`v7.6.2`

Compare Source

Dropped support for Python 3.8 and PyPy 3.8.
Fix: a final wildcard match/case clause assigning to a name (case _ as value) was incorrectly marked as a missing branch. This is now fixed, closing issue 1860_.
Fewer things are considered branches now. Lambdas, comprehensions, and generator expressions are no longer marked as missing branches if they don't complete execution. Closes issue 1852_.
Fix: the HTML report didn't properly show multi-line f-strings that end with a backslash continuation. This is now fixed, closing issue 1836, thanks to LiuYinCarl and Marco Ricci <pull 1838_>.
Fix: the LCOV report now has correct line numbers (fixing issue 1846) and better branch descriptions for BRDA records (fixing issue 1850). There are other changes to lcov also, including a new configuration option :ref:line_checksums <config_lcov_line_checksums> to control whether line checksums are included in the lcov report. The default is false. To keep checksums set it to true. All this work is thanks to Zack Weinberg (pull 1849_ and pull 1851_).
Fixed the docs for multi-line regex exclusions, closing issue 1863_.
Fixed a potential crash in the C tracer, closing issue 1835, thanks to Jan Kühle <pull 1843_>.

.. _changes_7-6-1:

`v7.6.1`

Compare Source

Fix: some descriptions of missing branches in HTML and LCOV reports were incorrect when multi-line statements were involved (issue 1874_ and issue 1875_). These are now fixed.
Fix: Python 3.14 defers evaluation of annotations <pep649_>_ by moving them into separate code objects. That code is rarely executed, so coverage.py would mark them as missing, as reported in issue 1908_. Now they are ignored by coverage automatically.
Fixed an obscure and mysterious problem on PyPy 3.10 seemingly involving mocks, imports, and trace functions: issue 1902_. To be honest, I don't understand the problem or the solution, but git bisect helped find it, and now it's fixed.
Docs: re-wrote the :ref:subprocess page to put multiprocessing first and to highlight the correct use of :class:multiprocessing.Pool <python:multiprocessing.pool.Pool>.

.. _changes_7-6-9:

`v7.6.0`

Compare Source

Exclusion patterns can now be multi-line, thanks to Daniel Diniz <pull 1807_>. This enables many interesting exclusion use-cases, including those requested in issues 118 <issue 118_> (entire files), 996 <issue 996_>_ (multiple lines only when appearing together), 1741 <issue 1741_>_ (remainder of a function), and 1803 <issue 1803_>_ (arbitrary sequence of marked lines). See the :ref:multi_line_exclude section of the docs for more details and examples.
The JSON report now includes per-function and per-class coverage information. Thanks to Daniel Diniz <pull 1809_>_ for getting the work started. This closes issue 1793_ and issue 1532_.
Fixed an incorrect calculation of "(no class)" lines in the HTML classes report.
Python 3.13.0b3 is supported.

.. _issue 118: https://github.com/nedbat/coveragepy/issues/118 .. _issue 996: https://github.com/nedbat/coveragepy/issues/996 .. _issue 1532: https://github.com/nedbat/coveragepy/issues/1532 .. _issue 1741: https://github.com/nedbat/coveragepy/issues/1741 .. _issue 1793: https://github.com/nedbat/coveragepy/issues/1793 .. _issue 1803: https://github.com/nedbat/coveragepy/issues/1803 .. _pull 1807: https://github.com/nedbat/coveragepy/pull/1807 .. _pull 1809: https://github.com/nedbat/coveragepy/pull/1809

.. _changes_7-5-4:

`v7.5.4`

Compare Source

If you attempt to combine statement coverage data with branch coverage data, coverage.py used to fail with the message "Can't combine arc data with line data" or its reverse, "Can't combine line data with arc data." These messages used internal terminology, making it hard for people to understand the problem. They are now changed to mention "branch coverage data" and "statement coverage data."
Fixed a minor branch coverage problem with wildcard match/case cases using names or guard clauses.
Started testing on 3.13 free-threading (nogil) builds of Python. I'm not claiming full support yet. Closes issue 1799_.

.. _issue 1799: https://github.com/nedbat/coveragepy/issues/1799

.. _changes_7-5-3:

`v7.5.3`

Compare Source

Performance improvements for combining data files, especially when measuring line coverage. A few different quadratic behaviors were eliminated. In one extreme case of combining 700+ data files, the time dropped from more than three hours to seven minutes. Thanks for Kraken Tech for funding the fix.
Performance improvements for generating HTML reports, with a side benefit of reducing memory use, closing issue 1791_. Thanks to Daniel Diniz for helping to diagnose the problem.

.. _issue 1791: https://github.com/nedbat/coveragepy/issues/1791

.. _changes_7-5-2:

`v7.5.2`

Compare Source

Fix: nested matches of exclude patterns could exclude too much code, as reported in issue 1779_. This is now fixed.
Changed: previously, coverage.py would consider a module docstring to be an executable statement if it appeared after line 1 in the file, but not executable if it was the first line. Now module docstrings are never counted as executable statements. This can change coverage.py's count of the number of statements in a file, which can slightly change the coverage percentage reported.
In the HTML report, the filter term and "hide covered" checkbox settings are remembered between viewings, thanks to Daniel Diniz <pull 1776_>_.
Python 3.13.0b1 is supported.
Fix: parsing error handling is improved to ensure bizarre source files are handled gracefully, and to unblock oss-fuzz fuzzing, thanks to Liam DeVoe <pull 1788_>. Closes issue 1787.

.. _pull 1776: https://github.com/nedbat/coveragepy/pull/1776 .. _issue 1779: https://github.com/nedbat/coveragepy/issues/1779 .. _issue 1787: https://github.com/nedbat/coveragepy/issues/1787 .. _pull 1788: https://github.com/nedbat/coveragepy/pull/1788

.. _changes_7-5-1:

`v7.5.1`

Compare Source

Fix: a pragma comment on the continuation lines of a multi-line statement now excludes the statement and its body, the same as if the pragma is on the first line. This closes issue 754. The fix was contributed by Daniel Diniz <pull 1773_>.
Fix: very complex source files like this one <resolvent_lookup_>_ could cause a maximum recursion error when creating an HTML report. This is now fixed, closing issue 1774_.
HTML report improvements:
- Support files (JavaScript and CSS) referenced by the HTML report now have hashes added to their names to ensure updated files are used instead of stale cached copies.
- Missing branch coverage explanations that said "the condition was never false" now read "the condition was always true" because it's easier to understand.
- Column sort order is remembered better as you move between the index pages, fixing issue 1766. Thanks, Daniel Diniz <pull 1768_>.

.. _resolvent_lookup: https://github.com/sympy/sympy/blob/130950f3e6b3f97fcc17f4599ac08f70fdd2e9d4/sympy/polys/numberfields/resolvent_lookup.py .. _issue 754: https://github.com/nedbat/coveragepy/issues/754 .. _issue 1766: https://github.com/nedbat/coveragepy/issues/1766 .. _pull 1768: https://github.com/nedbat/coveragepy/pull/1768 .. _pull 1773: https://github.com/nedbat/coveragepy/pull/1773 .. _issue 1774: https://github.com/nedbat/coveragepy/issues/1774

.. _changes_7-5-0:

`v7.5.0`

Compare Source

Added initial support for function and class reporting in the HTML report. There are now three index pages which link to each other: files, functions, and classes. Other reports don't yet have this information, but it will be added in the future where it makes sense. Feedback gladly accepted! Finishes issue 780_.
Other HTML report improvements:
- There is now a "hide covered" checkbox to filter out 100% files, finishing issue 1384_.
- The index page is always sorted by one of its columns, with clearer indications of the sorting.
- The "previous file" shortcut key didn't work on the index page, but now it does, fixing issue 1765_.
The debug output showing which configuration files were tried now shows absolute paths to help diagnose problems where settings aren't taking effect, and is renamed from "attempted_config_files" to the more logical "config_files_attempted."
Python 3.13.0a6 is supported.

.. _issue 780: https://github.com/nedbat/coveragepy/issues/780 .. _issue 1384: https://github.com/nedbat/coveragepy/issues/1384 .. _issue 1765: https://github.com/nedbat/coveragepy/issues/1765

.. _changes_7-4-4:

`v7.4.4`

Compare Source

Fix: in some cases, even with [run] relative_files=True, a data file could be created with absolute path names. When combined with other relative data files, it was random whether the absolute file names would be made relative or not. If they weren't, then a file would be listed twice in reports, as detailed in issue 1752_. This is now fixed: absolute file names are always made relative when combining. Thanks to Bruno Rodrigues dos Santos for support.
Fix: the last case of a match/case statement had an incorrect message if the branch was missed. It said the pattern never matched, when actually the branch is missed if the last case always matched.
Fix: clicking a line number in the HTML report now positions more accurately.
Fix: the report:format setting was defined as a boolean, but should be a string. Thanks, Tanaydin Sirin <pull 1754_>_. It is also now documented on the :ref:configuration page <config_report_format>.

.. _issue 1752: https://github.com/nedbat/coveragepy/issues/1752 .. _pull 1754: https://github.com/nedbat/coveragepy/pull/1754

.. _changes_7-4-3:

django/django (django)

`v4.2.20`

Compare Source

`v4.2.19`

Compare Source

`v4.2.18`

Compare Source

`v4.2.17`

Compare Source

`v4.2.16`

Compare Source

`v4.2.15`

Compare Source

`v4.2.14`

Compare Source

`v4.2.13`

Compare Source

`v4.2.12`

Compare Source

uis/devops/django/ucamlookup (django-ucamlookup)

`v3.1.0`

Upgraded to support django 4.2
Support for django 2.2 removed

encode/django-rest-framework (djangorestframework)

`v3.15.2`

Compare Source

`v3.15.1`: Version 3.15.1

Compare Source

What's Changed

Update the message to be consistent with the Django `HttpResponseBa… by @maycuatroi in https://github.com/encode/django-rest-framework/pull/9287
Make inflection package truly optional by @browniebroke in https://github.com/encode/django-rest-framework/pull/9303
Fix broken links in release notes for 3.15 by @browniebroke in https://github.com/encode/django-rest-framework/pull/9305
TokenAdmin.autocomplete_fields Breaks Some Use Cases, Revert by @alexdlaird in https://github.com/encode/django-rest-framework/pull/9301
Add drf-sendables to third-party-packages.md by @amikrop in https://github.com/encode/django-rest-framework/pull/9261
Revert "feat: Add some changes to ValidationError to support django style vad…" by @auvipy in https://github.com/encode/django-rest-framework/pull/9326
Revert "Re-prefetch related objects after updating" by @auvipy in https://github.com/encode/django-rest-framework/pull/9327
Revert #8863 by @tomchristie in https://github.com/encode/django-rest-framework/pull/9330
Revert #8009 by @tomchristie in https://github.com/encode/django-rest-framework/pull/9332
Revert #9030 by @tomchristie in https://github.com/encode/django-rest-framework/pull/9333
Revert "Fix NamespaceVersioning ignoring DEFAULT_VERSION on non-None namespaces" by @auvipy in https://github.com/encode/django-rest-framework/pull/9335
SearchFilter.get_search_terms returns list. by @tomchristie in https://github.com/encode/django-rest-framework/pull/9338
Version 3.15.1 by @tomchristie in https://github.com/encode/django-rest-framework/pull/9339

New Contributors

@maycuatroi made their first contribution in https://github.com/encode/django-rest-framework/pull/9287
@alexdlaird made their first contribution in https://github.com/encode/django-rest-framework/pull/9301

Full Changelog: https://github.com/encode/django-rest-framework/compare/3.15.0...3.15.1

`v3.15.0`

Compare Source

editorconfig-checker/editorconfig-checker.python (editorconfig-checker/editorconfig-checker.python)

`v2.7.3`

Compare Source

Fix #27
Fix #28

googleapis/google-auth-library-python (google-auth)

`v2.38.0`

Compare Source

Features

Adding domain-wide delegation flow in impersonated credential (#1624) (34ee3fe)

Documentation

Add warnings regarding consuming externally sourced credentials (d049370)

`v2.37.0`

Compare Source

Features

Allow users to use jwk keys for verifying ID token (#1641) (98c3ed9)

`v2.36.0`

Compare Source

Features

IAM signblob retries (#1600) (484c8db)
Making iam endpoint universe-aware (#1604) (16c728d)
Support External Account Authorized User as a Source Credential for impersonated credentials in ADC (#1608) (875796c)

Bug Fixes

Adding default parameters to updated interfaces (#1622) (8cf1cb1)
Change universe_domain to universe-domain (#1613) (168fcc6)
Remove base class to avoid type conflict (#1619) (9e2789a)
Revert templates for iam endpoints (#1614) (0a4363a)
Update secret (#1611) (f070de0)
Update secret (#1617) (10f42a7)
Update secret (#1621) (6be19fb)

`v2.35.0`

Compare Source

Features

Add cred info to ADC creds (#1587) (6f75dd5)
Add support for asynchronous AuthorizedSession api (#1577) (2910b6b)

Bug Fixes

Remove token_info call from token refresh path (#1595) (afb9e5a)

`v2.34.0`

Compare Source

Features

auth: Update get_client_ssl_credentials to support X.509 workload certs (#1558) (18c2ec1)

Bug Fixes

Retry token request on retryable status code (#1563) (f858a15)

`v2.33.0`

Compare Source

Features

Implement async StaticCredentials using access tokens (#1559) (dc17dfc)
Implement base classes for credentials and request sessions (#1551) (036dac4)

Bug Fixes

metadata: Enhance retry logic for metadata server access in _metadata.py (#1545) (61c2432)

Documentation

Update argument for Credentials initialization (#1557) (40b9ed9)

`v2.32.0`

Compare Source

Features

Adds support for X509 workload credential type (#1541) (1270217)

`v2.31.0`

Compare Source

Features

Adds X509 workload cert logic (#1527) (05220e0)

Bug Fixes

Added py.typed to MANIFEST.in (#1526) (1829a3b)
Pass trust_env kwarg to ClientSession (#1533) (6c15c9a), closes #1530

`v2.30.0`

Compare Source

Features

Add WebAuthn plugin component to handle WebAuthn get assertion request (#1464) (e25f336)
ECP Provider drop cryptography requirement (#1524) (a821d71)
Enable webauthn plugin for security keys (#1528) (e2d5e63)

Bug Fixes

Fix id_token iam endpoint for non-gdu service credentials (#1506) (93d681e)
Makes default token_url universe aware (#1514) (045776e)

`v2.29.0`

Compare Source

Features

Adds support for custom suppliers in AWS and Identity Pool credentials (#1496) (3af1768)

Bug Fixes

Refactor tech debt in aws and identity pool credentials (#1501) (ce435b0)

`v2.28.2`

Compare Source

Bug Fixes

Remove gce log for expected 404 (#1491) (cb04e49)

testing-cabal/mock (mock)

`v5.2.0`

Compare Source

This is release is in memory of Michael Foord__, who originally authored the mock package and passed away in January 2025.

__ https://discuss.python.org/t/in-memoriam-michael-foord-1974-2025/78317

gh-65454: :func:unittest.mock.Mock.attach_mock no longer triggers a call to a PropertyMock being attached.
gh-117765: Improved documentation for :func:unittest.mock.patch.dict
gh-124176: Add support for :func:dataclasses.dataclass in :func:unittest.mock.create_autospec. Now create_autospec will check for potential dataclasses and use :func:dataclasses.fields function to retrieve the spec information.
gh-123934: Fix :class:unittest.mock.MagicMock reseting magic methods return values after .reset_mock(return_value=True) was called.
gh-90848: Fixed :func:unittest.mock.create_autospec to configure parent mock with keyword arguments.
gh-113569: Indicate if there were no actual calls in unittest :meth:~unittest.mock.Mock.assert_has_calls failure.
gh-122858: Deprecate :func:!asyncio.iscoroutinefunction in favor of :func:inspect.iscoroutinefunction.
gh-104745: Limit starting a patcher (from :func:unittest.mock.patch or :func:unittest.mock.patch.object) more than once without stopping it
gh-75988: Fixed :func:unittest.mock.create_autospec to pass the call through to the wrapped object to return the real result.
gh-119600: Fix :func:unittest.mock.patch to not read attributes of the target when new_callable is set. Patch by Robert Collins.
gh-113407: Fix import of :mod:unittest.mock when CPython is built without docstrings.
gh-120732: Fix name passing to :class:unittest.mock.Mock object when using :func:unittest.mock.create_autospec.

pre-commit/pre-commit (pre-commit)

`v3.8.0`

Compare Source

==================

Features

Implement health checks for language: r so environments are recreated if the system version of R changes.
- #3206 issue by @lorenzwalthert.
- #3265 MR by @lorenzwalthert.

`v3.7.1`

Compare Source

==================

Fixes

Fix language: rust default language version check when rust-toolchain.toml is present.
- issue by @gaborbernat.
- #3201 MR by @asottile.

`v3.7.0`

Compare Source

==================

Features

Use a tty for docker and docker_image hooks when --color is specified.
- #3122 MR by @glehmann.

Fixes

Fix fail_fast for individual hooks stopping when previous hooks had failed.
- #3167 issue by @tp832944.
- #3168 MR by @asottile.

Updating

The per-hook behaviour of fail_fast was fixed. If you want the pre-3.7.0 behaviour, add fail_fast: true to all hooks before the last fail_fast hook.

pre-commit/mirrors-mypy (pre-commit/mirrors-mypy)

`v1.15.0`

Compare Source

`v1.14.1`

Compare Source

`v1.14.0`

Compare Source

`v1.13.0`

Compare Source

`v1.12.1`

Compare Source

`v1.12.0`

Compare Source

`v1.11.2`

Compare Source

`v1.11.1`

Compare Source

`v1.11.0`

Compare Source

`v1.10.1`

Compare Source

`v1.10.0`

Compare Source

`v1.9.0`

Compare Source

`v1.8.0`

Compare Source

`v1.7.1`

Compare Source

`v1.7.0`

Compare Source

`v1.6.1`

Compare Source

`v1.6.0`

Compare Source

`v1.5.1`

Compare Source

`v1.5.0`

Compare Source

pre-commit/pre-commit-hooks (pre-commit/pre-commit-hooks)

`v4.6.0`: pre-commit-hooks v4.6.0

Compare Source

Features

requirements-txt-fixer: remove duplicate packages.
- #1014 MR by @vhoulbreque-withings.
- #960 issue @csibe17.

Migrating

fix-encoding-pragma: deprecated -- will be removed in 5.0.0. use pyupgrade or some other tool.
- #1033 MR by @mxr.
- #1032 issue by @mxr.

`v4.5.0`: pre-commit-hooks v4.5.0

Compare Source

Features

requirements-txt-fixer: also sort constraints.txt by default.
- #857 MR by @lev-blit.
- #830 issue by @PLPeeters.
debug-statements: add bpdb debugger.
- #942 MR by @mwip.
- #941 issue by @mwip.

Fixes

file-contents-sorter: fix sorting an empty file.
- #944 MR by @RoelAdriaans.
- #935 issue by @paduszyk.
double-quote-string-fixer: don't rewrite inside f-strings in 3.12+.
- #973 MR by @asottile.
- #971 issue by @XuehaiPan.

Migrating

now requires python >= 3.8.
- #926 MR by @asottile.
- #927 MR by @asottile.

psf/black (psf/black)

`v23.12.1`

Compare Source

Packaging

Fixed a bug that included dependencies from the d extra by default (#4108)

`v23.12.0`

Compare Source

Highlights

It's almost 2024, which means it's time for a new edition of Black's stable style! Together with this release, we'll put out an alpha release 24.1a1 showcasing the draft 2024 stable style, which we'll finalize in the January release. Please try it out and share your feedback.

This release (23.12.0) will still produce the 2023 style. Most but not all of the changes in --preview mode will be in the 2024 stable style.

Stable style

Fix bug where # fmt: off automatically dedents when used with the --line-ranges option, even when it is not within the specified line range. (#4084)
Fix feature detection for parenthesized context managers (#4104)

Preview style

Prefer more equal signs before a break when splitting chained assignments (#4010)
Standalone form feed characters at the module level are no longer removed (#4021)
Additional cases of immediately nested tuples, lists, and dictionaries are now indented less (#4012)
Allow empty lines at the beginning of all blocks, except immediately before a docstring (#4060)
Fix crash in preview mode when using a short --line-length (#4086)
Keep suites consisting of only an ellipsis on their own lines if they are not functions or class definitions (#4066) (#4103)

Configuration

--line-ranges now skips Black's internal stability check in --safe mode. This avoids a crash on rare inputs that have many unformatted same-content lines. (#4034)

Packaging

Upgrade to mypy 1.7.1 (#4049) (#4069)
Faster compiled wheels are now available for CPython 3.12 (#4070)

Integrations

Enable 3.12 CI (#4035)
Build docker images in parallel (#4054)
Build docker images with 3.12 (#4055)

`v23.11.0`

Compare Source

Highlights

Support formatting ranges of lines with the new --line-ranges command-line option (#4020)

Stable style

Fix crash on formatting bytes strings that look like docstrings (#4003)
Fix crash when whitespace followed a backslash before newline in a docstring (#4008)
Fix standalone comments inside complex blocks crashing Black (#4016)
Fix crash on formatting code like await (a ** b) (#3994)
No longer treat leading f-strings as docstrings. This matches Python's behaviour and fixes a crash (#4019)

Preview style

Multiline dicts and lists that are the sole argument to a function are now indented less (#3964)
Multiline unpacked dicts and lists as the sole argument to a function are now also indented less (#3992)
In f-string debug expressions, quote types that are visible in the final string are now preserved (#4005)
Fix a bug where long case blocks were not split into multiple lines. Also enable general trailing comma rules on case blocks (#4024)
Keep requiring two empty lines between module-level docstring and first function or class definition (#4028)
Add support for single-line format skip with other comments on the same line (#3959)

Configuration

Consistently apply force exclusion logic before resolving symlinks (#4015)
Fix a bug in the matching of absolute path names in --include (#3976)

Performance

Fix mypyc builds on arm64 on macOS (#4017)

Integrations

Black's pre-commit integration will now run only on git hooks appropriate for a code formatter (#3940)

`v23.10.1`

Compare Source

Highlights

Maintenance release to get a fix out for GitHub Action edge case (#3957)

Preview style

Fix merging implicit multiline strings that have inline comments (#3956)
Allow empty first line after block open before a comment or compound statement (#3967)

Packaging

Change Dockerfile to hatch + compile black (#3965)

Integrations

The summary output for GitHub workflows is now suppressible using the summary parameter. (#3958)
Fix the action failing when Black check doesn't pass (#3957)

Documentation

It is known Windows documentation CI is broken https://github.com/psf/black/issues/3968

`v23.10.0`

Compare Source

Stable style

Fix comments getting removed from inside parenthesized strings (#3909)

Preview style

Fix long lines with power operators getting split before the line length (#3942)
Long type hints are now wrapped in parentheses and properly indented when split across multiple lines (#3899)
Magic trailing commas are now respected in return types. (#3916)
Require one empty line after module-level docstrings. (#3932)
Treat raw triple-quoted strings as docstrings (#3947)

Configuration

Fix cache versioning logic when BLACK_CACHE_DIR is set (#3937)

Parser

Fix bug where attributes named type were not accepted inside match statements (#3950)
Add support for PEP 695 type aliases containing lambdas and other unusual expressions (#3949)

Output

Black no longer attempts to provide special errors for attempting to format Python 2 code (#3933)
Black will more consistently print stacktraces on internal errors in verbose mode (#3938)

Integrations

The action output displayed in the job summary is now wrapped in Markdown (#3914)

`v23.9.1`

Compare Source

Due to various issues, the previous release (23.9.0) did not include compiled mypyc wheels, which make Black significantly faster. These issues have now been fixed, and this release should come with compiled wheels once again.

There will be no wheels for Python 3.12 due to a bug in mypyc. We will provide 3.12 wheels in a future release as soon as the mypyc bug is fixed.

Packaging

Upgrade to mypy 1.5.1 (#3864)

Performance

Store raw tuples instead of NamedTuples in Black's cache, improving performance and decreasing the size of the cache (#3877)

`v23.9.0`

Compare Source

Preview style

More concise formatting for dummy implementations (#3796)
In stub files, add a blank line between a statement with a body (e.g an if sys.version_info > (3, x):) and a function definition on the same level (#3862)
Fix a bug whereby spaces were removed from walrus operators within subscript(#3823)

Configuration

Black now applies exclusion and ignore logic before resolving symlinks (#3846)

Performance

Avoid importing IPython if notebook cells do not contain magics (#3782)
Improve caching by comparing file hashes as fallback for mtime and size (#3821)

Blackd

Fix an issue in blackd with single character input (#3558)

Integrations

Black now has an official pre-commit mirror. Swapping https://github.com/psf/black to https://github.com/psf/black-pre-commit-mirror in your .pre-commit-config.yaml will make Black about 2x faster (#3828)
The .black.env folder specified by ENV_PATH will now be removed on the completion of the GitHub Action (#3759)

`v23.7.0`

Compare Source

Highlights

Runtime support for Python 3.7 has been removed. Formatting 3.7 code will still be supported until further notice (#3765)

Stable style

Fix a bug where an illegal trailing comma was added to return type annotations using PEP 604 unions (#3735)
Fix several bugs and crashes where comments in stub files were removed or mishandled under some circumstances (#3745)
Fix a crash with multi-line magic comments like type: ignore within parentheses (#3740)
Fix error in AST validation when Black removes trailing whitespace in a type comment (#3773)

Preview style

Implicitly concatenated strings used as function args are no longer wrapped inside parentheses (#3640)
Remove blank lines between a class definition and its docstring (#3692)

Configuration

The --workers argument to Black can now be specified via the BLACK_NUM_WORKERS environment variable (#3743)
.pytest_cache, .ruff_cache and .vscode are now excluded by default (#3691)
Fix Black not honouring pyproject.toml settings when running --stdin-filename and the pyproject.toml found isn't in the current working directory (#3719)
Black will now error if exclude and extend-exclude have invalid data types in pyproject.toml, instead of silently doing the wrong thing (#3764)

Packaging

Upgrade mypyc from 0.991 to 1.3 (#3697)
Remove patching of Click that mitigated errors on Python 3.6 with LANG=C (#3768)

Parser

Add support for the new PEP 695 syntax in Python 3.12 (#3703)

Performance

Speed up Black significantly when the cache is full (#3751)
Avoid importing IPython in a case where we wouldn't need it (#3748)

Output

Use aware UTC datetimes internally, avoids deprecation warning on Python 3.12 (#3728)
Change verbose logging to exactly mirror Black's logic for source discovery (#3749)

Blackd

The blackd argument parser now shows the default values for options in their help text (#3712)

Integrations

Black is now tested with PYTHONWARNDEFAULTENCODING = 1 (#3763)
Update GitHub Action to display black output in the job summary (#3688)

Documentation

Add a CITATION.cff file to the root of the repository, containing metadata on how to cite this software (#3723)
Update the classes and exceptions documentation in Developer reference to match the latest code base (#3755)

pycqa/flake8 (pycqa/flake8)

`v6.1.0`

Compare Source

python-poetry/poetry (python-poetry/poetry)

`v1.8.5`

Compare Source

Changed

Require pkginfo>=1.12 to fix an issue with an unknown metadata version 2.4 (#9888).
Do not fail if the unknown metadata version is only a minor version update (#9888).

`v1.8.4`

Compare Source

Added

Add official support for Python 3.13 (#9523).

Changed

Require virtualenv>=20.26.6 to mitigate potential command injection when running poetry shell in untrusted projects (#9757).

poetry-core (`1.9.1`)

Add 3.13 to the list of available Python versions (#747).

`v1.8.3`

Compare Source

Added

Add support for untagged CPython builds with versions ending with a + (#9207).

Changed

Require pkginfo>=1.10 to ensure support for packages with metadata version 2.3 (#9130).
Improve locking on FIPS systems (#9152).

Fixed

Fix an issue where unrecognized package metadata versions silently resulted in empty dependencies (#9203, #9226).
Fix an issue where trailing slashes in git URLs where not handled correctly (#9205).
Fix an issue where poetry self commands printed a warning that the current project cannot be installed (#9302).
Fix an issue where poetry install sporadically failed with a KeyError due to a race condition (#9335).

Docs

Fix incorrect information about poetry shell (#9060).
Add a git subdirectory example to poetry add (#9080).
Mention interactive credential configuration (#9074).
Add notes for optional advanced installation steps (#9098).
Add reference to configuration credentials in documentation of poetry publish (#9110).
Improve documentation for configuring credentials via environment variables (#9121).
Remove misleading wording around virtual environments (#9213).
Remove outdated advice regarding seeding keyring backends (#9164).
Add a pyproject.toml example for a dependency with multiple extras (#9138).
Clarify help of poetry add (#9230).
Add a note how to configure credentials for TestPyPI for poetry publish (#9255).
Fix information about the --readme option in poetry new (#9260).
Clarify what is special about the Python constraint in dependencies (#9256).
Update how to uninstall plugins via pipx (#9320).

`v1.8.2`

Compare Source

Fixed

Harden lazy-wheel error handling if the index server is behaving badly in an unexpected way (#9051).
Improve lazy-wheel error handling if the index server does not handle HTTP range requests correctly (#9082).
Improve lazy-wheel error handling if the index server pretends to support HTTP range requests but does not respect them (#9084).
Improve lazy-wheel to allow redirects for HEAD requests (#9087).
Improve debug logging for lazy-wheel errors (#9059).
Fix an issue where the hash of a metadata file could not be calculated correctly due to an encoding issue (#9049).
Fix an issue where poetry add failed in non-package mode if no project name was set (#9046).
Fix an issue where a hint to non-package mode was not compliant with the final name of the setting (#9073).

`v1.8.1`

Compare Source

Fixed

Update the minimum required version of packaging (#9031).
Handle unexpected responses from servers that do not support HTTP range requests with negative offsets more robust (#9030).

Docs

Rename master branch to main (#9022).

`v1.8.0`

Compare Source

Added

Add a non-package mode for use cases where Poetry is only used for dependency management (#8650).
Add support for PEP 658 to fetch metadata without having to download wheels (#5509).
Add a lazy-wheel config option (default: true) to reduce wheel downloads during dependency resolution (#8815, #8941).
Improve performance of dependency resolution by using shallow copies instead of deep copies (#8671).
poetry check validates that no unknown sources are referenced in dependencies (#8709).
Add archive validation during installation for further hash algorithms (#8851).
Add a to key in tool.poetry.packages to allow custom subpackage names (#8791).
Add a config option to disable keyring (#8910).
Add a --sync option to poetry update (#8931).
Add an --output option to poetry build (#8828).
Add a --dist-dir option to poetry publish (#8828).

Changed

The implicit PyPI source is disabled if at least one primary source is configured (#8771).
Deprecate source priority default (#8771).
Upgrade the warning about an inconsistent lockfile to an error (#8737).
Deprecate setting installer.modern-installation to false (#8988).
Drop support for pip<19 (#8894).
Require requests-toolbelt>=1 (#8680).
Allow platformdirs 4.x (#8668).
Allow and require xattr 1.x on macOS (#8801).
Improve venv shell activation in fish (#8804).
Rename system to base in output of poetry env info (#8832).
Use pretty name in output of poetry version (#8849).
Improve error handling for invalid entries in tool.poetry.scripts (#8898).
Improve verbose output for dependencies with extras during dependency resolution (#8834).
Improve message about an outdated lockfile (#8962).

Fixed

Fix an issue where poetry shell failed when Python has been installed with MSYS2 (#8644).
Fix an issue where Poetry commands failed in a terminal with a non-UTF-8 encoding (#8608).
Fix an issue where a missing project name caused an incomprehensible error message (#8691).
Fix an issue where Poetry failed to install an sdist path dependency (#8682).
Fix an issue where poetry install failed because an unused extra was not available (#8548).
Fix an issue where poetry install --sync did not remove an unrequested extra (#8621).
Fix an issue where poetry init did not allow specific characters in the author field (#8779).
Fix an issue where Poetry could not download sdists from misconfigured servers (#8701).
Fix an issue where metadata of sdists that call CLI tools of their build requirements could not be determined (#8827).
Fix an issue where Poetry failed to use the currently activated environment (#8831).
Fix an issue where poetry shell failed in zsh if a space was in the venv path (#7245).
Fix an issue where scripts with extras could not be installed (#8900).
Fix an issue where explicit sources where not propagated correctly (#8835).
Fix an issue where debug prints where swallowed when using a build script (#8760).
Fix an issue where explicit sources of locked dependencies where not propagated correctly (#8948).
Fix an issue where Poetry's own environment was falsely identified as system environment (#8970).
Fix an issue where dependencies from a setup.py were ignored silently (#9000).
Fix an issue where environment variables for virtualenv.options were ignored (#9015).
Fix an issue where virtualenvs.options.no-pip and virtualenvs.options.no-setuptools were not normalized (#9015).

Docs

Replace deprecated --no-dev with --without dev in the FAQ (#8659).
Recommend poetry-check instead of the deprecated poetry-lock pre-commit hook (#8675).
Clarify the names of the environment variables to provide credentials for repositories (#8782).
Add note how to install several version of Poetry in parallel (#8814).
Improve description of poetry show --why (#8817).
Improve documentation of poetry update (#8706).
Add a warning about passing variables that may start with a hyphen via command line (#8850).
Mention that the virtual environment in which Poetry itself is installed should not be activated (#8833).
Add note about poetry run and externally managed environments (#8748).
Update FAQ entry about tox for tox 4.x (#8658).
Fix documentation for default format option for include and exclude value (#8852).
Add note about tox and configured credentials (#8888).
Add note and link how to install pipx (#8878).
Fix examples for poetry add with git dependencies over ssh (#8911).
Remove reference to deprecated scripts extras feature (#8903).
Change examples to prefer --only main instead of --without dev (#8921).
Mention that the develop attribute is a Poetry-specific feature and not propagated to other tools (#8971).
Fix examples for adding supplemental and secondary sources (#8953).
Add PyTorch example for explicit sources (#9006).

poetry-core (`1.9.0`)

Deprecate scripts that depend on extras (#690).
Add support for path dependencies that do not define a build system (#675).
Update list of supported licenses (#659, #669, #678, #694).
Rework list of files included in build artifacts (#666).
Fix an issue where insignificant errors were printed if the working directory is not inside a git repository (#684).
Fix an issue where the project's directory was not recognized as git repository on Windows due to an encoding issue (#685).

`v1.7.1`

Compare Source

Fixed

Fix an issue where sdists that call CLI tools of their build requirements could not be installed (#8630).
Fix an issue where sdists with symlinks could not be installed due to a broken tarfile datafilter (#8649).
Fix an issue where poetry init failed when trying to add dependencies (#8655).
Fix an issue where poetry install failed if virtualenvs.create was set to false (#8672).

`v1.7.0`

Compare Source

Added

Add official support for Python 3.12 (#7803, #8544).
Print a future warning that poetry-plugin-export will not be installed by default anymore (#8562).
Add poetry-install pre-commit hook (#8327).
Add --next-phase option to poetry version (#8089).
Print a warning when overwriting files from another package at installation (#8386).
Print a warning if the current project cannot be installed (#8369).
Report more details on build backend exceptions (#8464).

Changed

Set Poetry as user-agent for all HTTP requests (#8394).
Do not install setuptools per default in Python 3.12 (#7803).
Do not install wheel per default (#7803).
Remove setuptools and wheel when running poetry install --sync if they are not required by the project (#8600).
Improve error message about PEP-517 support (#8463).
Improve keyring handling (#8227).
Read the description field when extracting metadata from setup.py files (#8545).

Fixed

Fix an issue where dependencies of inactive extras were locked and installed (#8399).
Fix an issue where build requirements were not installed due to a race condition in the artifact cache (#8517).
Fix an issue where packages included in the system site packages were installed even though virtualenvs.options.system-site-packages was set (#8359).
Fix an issue where git dependencies' submodules with relative URLs were handled incorrectly (#8020).
Fix an issue where a failed installation of build dependencies was not noticed directly (#8479).
Fix an issue where poetry shell did not work completely with nushell (#8478).
Fix an issue where a confusing error messages was displayed when running poetry config pypi-token.pypi without a value (#8502).
Fix an issue where a cryptic error message is printed if there is no metadata entry in the lockfile (#8523).
Fix an issue with the encoding with special characters in the virtualenv's path (#8565).
Fix an issue where the connection pool size was not adjusted to the number of workers (#8559).

Docs

Improve the wording regarding a project's supported Python range (#8423).
Make pipx the preferred (first mentioned) installation method (#8090).
Add a warning about poetry self on Windows (#8090).
Fix example for poetry add with a git dependency (#8438).
Add information about auto-included files in wheels and sdist (#8555).
Fix documentation of the POETRY_REPOSITORIES_ variables docs (#8492).
Add CITATION.cff file (#8510).

poetry-core (`1.8.1`)

Add support for creating packages dynamically in the build script (#629).
Improve marker logic for extra markers (#636).
Update list of supported licenses (#635, #646).
Fix an issue where projects with extension modules were not installed in editable mode (#633).
Fix an issue where the wrong or no lib folder was added to the wheel (#634).

poetry-plugin-export (`^1.6.0`)

Add an --all-extras option (#241).
Fix an issue where git dependencies are exported with the branch name instead of the resolved commit hash (#213).

`v1.6.1`

Compare Source

Fixed

Update the minimum required version of requests (#8336).

`v1.6.0`

Compare Source

Added

Add support for repositories that do not provide a supported hash algorithm (#8118).
Add full support for duplicate dependencies with overlapping markers (#7257).
Improve performance of poetry lock for certain edge cases (#8256).
Improve performance of poetry install (#8031).
poetry check validates that specified readme files do exist (#7444).
Add a downgrading note when updating to an older version (#8176).
Add support for vox in the xonsh shell (#8203).
Add support for pre-commit hooks for projects where the pyproject.toml file is located in a subfolder (#8204).
Add support for the git+http:// scheme (#6619).

Changed

Drop support for Python 3.7 (#7674).
Move poetry lock --check to poetry check --lock and deprecate the former (#8015).
Change future warning that PyPI will only be disabled automatically if there are no primary sources (#8151).

Fixed

Fix an issue where build-system.requires were not respected for projects with build scripts (#7975).
Fix an issue where the encoding was not handled correctly when calling a subprocess (#8060).
Fix an issue where poetry show --top-level did not show top level dependencies with extras (#8076).
Fix an issue where poetry init handled projects with src layout incorrectly (#8218).
Fix an issue where Poetry wrote .pth files with the wrong encoding (#8041).
Fix an issue where poetry install did not respect the source if the same version of a package has been locked from different sources (#8304).

Docs

Document official Poetry badge (#8066).
Update configuration folder path for macOS (#8062).
Add a warning about pip ignoring lock files (#8117).
Clarify the use of the virtualenvs.in-project setting. (#8126).
Change pre-commit YAML style to be consistent with pre-commit's own examples (#8146).
Fix command for listing installed plugins (#8200).
Mention the nox-poetry package (#8173).
Add an example with a PyPI source in the pyproject.toml file (#8171).
Use reference instead of deprecated callable in the scripts example (#8211).

poetry-core (`1.7.0`)

Improve performance of marker handling (#609).
Allow | as a value separator in markers with the operators in and not in (#608).
Put pretty name (instead of normalized name) in metadata (#620).
Update list of supported licenses (#623).
Fix an issue where PEP 508 dependency specifications with names starting with a digit could not be parsed (#607).
Fix an issue where Poetry considered an unrelated .gitignore file resulting in an empty wheel (#611).

poetry-plugin-export (`^1.5.0`)

Fix an issue where markers for dependencies required by an extra were not generated correctly (#209).

yaml/pyyaml (pyyaml)

`v6.0.2`

Compare Source

What's Changed

Support for Cython 3.x and Python 3.13.

Full Changelog: https://github.com/yaml/pyyaml/compare/6.0.1...6.0.2

timothycrosley/isort (timothycrosley/isort)

`v5.13.2`

Compare Source

Apply the bracket fix from issue #471 only for use_parentheses=True (#2184) @bp72
- Confine pre-commit to stages (#2213) @davidculley
- Fixed colors extras (#2212) @staticdev

`v5.13.1`

Compare Source

Fixed integration tests (#2208) @bp72
- Fixed normalizing imports from more than one level of parent modules (issue/2152) (#2191) @bp72
- Remove optional dependencies without extras (#2207) @staticdev

`v5.13.0`

Compare Source

Cleanup deprecated extras (#2089) @staticdev
- Fixed #1989: settings lookup when working in stream based mode
- Fixed 80 line length for wemake linter (#2183) @skatromb
- Add support for Python 3.12 (#2175) @hugovk
- Fixed: add newest version to pre-commit docs (#2190) @AzulGarza
- Fixed assertions in test_git_hook (#2196) @mgorny
- Removed check for include_trailing_comma for the Hanging Indent wrap mode (#2192) @bp72
- Use the standard library tomllib on sufficiently new python (#2202) @eli-schwartz
- Update pre-commit.md version number (#2197) @nicobako
- doc: Update black_compatibility.md (#2177) @JSS95
- Fixed safety sept 2023 (#2178) @staticdev
- docs: fix black profile documentation (#2163) @nijel
- Fixed typo: indended -> indented (#2161) @vadimkerr
- Docs(configuration/options.md): fix missing trailing spaces for hard linebreak (#2157) @JoeyTeng
- Update pre-commit.md (#2148) @godiard
- chore: move configurations to pyproject.toml (#2115) @SauravMaheshkar
- Fixed typo in README (#2112) @stefmolin
- Update version in pre-commit setup to avoid installation issue with poetry (#2103) @stefmolin
- Skip .pytype directory by default. (#2098) @manueljacob
- Fixed a tip block styling in the Config Files section (#2097) @Klavionik
- Do not cache configuration files (#1995) @kaste
- Derive settings_path from --filename (#1992) @kaste
- Fixed year of version 5.12.0 in CHANGELOG.md (#2082) @DjLegolas

uis/devops/iam/identity-lib (ucam-identitylib)

`v3.3.1`

Fixed

Photo API had AllowAny permissions incorrectly set for some of the endpoints.
Importing some modules/subpackages for the Card API and Photo API previously failed to import.

uis/devops/continuous-delivery/ci-templates (uis/devops/continuous-delivery/ci-templates)