FAQ | This is a LIVE service | Changelog

Skip to content
Snippets Groups Projects

fix(deps): update all non-major dependencies

Open fix(deps): update all non-major dependencies
renovate/all-minor-patch into main
Open uis-devops-renovatebot requested to merge renovate/all-minor-patch into main

This MR contains the following updates:

Package Type Update Change
cachecontrol dependencies minor ^0.13.1 -> ^0.14.0
coverage dev minor 7.4.3 -> 7.7.0
django (changelog) dependencies patch 4.2.11 -> 4.2.20
django-ucamlookup dependencies minor >=3.0.5,<3.1.0 -> >=3.1.0,<3.2.0
djangorestframework (source, changelog) dependencies minor 3.14.0 -> 3.15.2
editorconfig-checker/editorconfig-checker.python repository patch 2.7.2 -> 2.7.3
geddit dependencies minor 1.0.2 -> 1.1.0
google-auth dependencies minor 2.28.1 -> 2.38.0
mock (source) dev minor 5.1.0 -> 5.2.0
pre-commit dev minor 3.6.2 -> 3.8.0
pre-commit/mirrors-mypy repository minor v1.4.1 -> v1.15.0
pre-commit/pre-commit-hooks repository minor v4.4.0 -> v4.6.0
psf/black repository minor 23.3.0 -> 23.12.1
pycqa/flake8 repository minor 6.0.0 -> 6.1.0
python-poetry/poetry repository minor 1.5.1 -> 1.8.5
pyyaml (source) dependencies patch 6.0.1 -> 6.0.2
registry.gitlab.developers.cam.ac.uk/uis/devops/infra/dockerimages/python final minor 3.10-slim -> 3.13-slim
timothycrosley/isort repository minor 5.12.0 -> 5.13.2
ucam-identitylib dependencies patch 3.3.0 -> 3.3.1
uis/devops/continuous-delivery/ci-templates repository minor v3.6.0 -> v3.8.2

Note: The pre-commit manager in Renovate is not supported by the pre-commit maintainers or community. Please do not report any problems there, instead create a Discussion in the Renovate repository if you have any questions.

Release Notes

psf/cachecontrol (cachecontrol)

v0.14.2

Compare Source

  • Eliminate a race condition when overwriting cache entries.
  • Fix a requests object leak when doing caching on a streamed response

v0.14.1

Compare Source

What's Changed

New Contributors

Full Changelog: https://github.com/psf/cachecontrol/compare/v0.14.0...v0.14.1

v0.14.0

Compare Source

What's Changed

New Contributors

Full Changelog: https://github.com/psf/cachecontrol/compare/v0.13.1...v0.14.0

nedbat/coveragepy (coverage)

v7.7.0

Compare Source

  • The Coverage object has a new method, :meth:.Coverage.branch_stats for getting simple branch information for a module. Closes issue 1888_.

  • The :class:Coverage constructor<.Coverage> now has a plugins parameter for passing in plugin objects directly, thanks to Alex Gaynor <pull 1919_>_.

  • Many constant tests in if statements are now recognized as being optimized away. For example, previously if 13: would have been considered a branch with one path not taken. Now it is understood as always true and no coverage is missing.

  • The experimental sys.monitoring support now works for branch coverage if you are using Python 3.14.0 alpha 6 or newer. This should reduce the overhead coverage.py imposes on your test suite. Set the environment variable COVERAGE_CORE=sysmon to try it out.

  • Confirmed support for PyPy 3.11. Thanks Michał Górny.

.. _issue 1888: https://github.com/nedbat/coveragepy/issues/1888 .. _pull 1919: https://github.com/nedbat/coveragepy/pull/1919

.. _changes_7-6-12:

v7.6.12

Compare Source

  • Fix: some aarch64 distributions were missing (issue 1927_). These are now building reliably.

.. _issue 1927: https://github.com/nedbat/coveragepy/issues/1927

.. _changes_7-6-11:

v7.6.11

Compare Source

  • Fix: a memory leak in CTracer has been fixed. The details are in issue 1924_ and pytest-dev 676_. This should reduce the memory footprint for everyone even if it hadn't caused a problem before.

  • We now ship a py3-none-any.whl wheel file. Thanks, Russell Keith-Magee <pull 1914_>_.

.. _pull 1914: https://github.com/nedbat/coveragepy/pull/1914 .. _issue 1924: https://github.com/nedbat/coveragepy/issues/1924 .. _pytest-dev 676: https://github.com/pytest-dev/pytest-cov/issues/676

.. _changes_7-6-10:

v7.6.10

Compare Source

  • Fix: some descriptions of missing branches in HTML and LCOV reports were incorrect when multi-line statements were involved (issue 1874_ and issue 1875_). These are now fixed.

  • Fix: Python 3.14 defers evaluation of annotations <pep649_>_ by moving them into separate code objects. That code is rarely executed, so coverage.py would mark them as missing, as reported in issue 1908_. Now they are ignored by coverage automatically.

  • Fixed an obscure and mysterious problem on PyPy 3.10 seemingly involving mocks, imports, and trace functions: issue 1902_. To be honest, I don't understand the problem or the solution, but git bisect helped find it, and now it's fixed.

  • Docs: re-wrote the :ref:subprocess page to put multiprocessing first and to highlight the correct use of :class:multiprocessing.Pool <python:multiprocessing.pool.Pool>.

.. _issue 1874: https://github.com/nedbat/coveragepy/issues/1874 .. _issue 1875: https://github.com/nedbat/coveragepy/issues/1875 .. _issue 1902: https://github.com/nedbat/coveragepy/issues/1902 .. _issue 1908: https://github.com/nedbat/coveragepy/issues/1908 .. _pep649: https://docs.python.org/3.14/whatsnew/3.14.html#pep-649-deferred-evaluation-of-annotations

.. _changes_7-6-9:

v7.6.9

Compare Source

  • Fix: Tomas Uribe fixed <pull 1901_>_ a performance problem in the XML report. Large code bases should produce XML reports much faster now.

.. _pull 1901: https://github.com/nedbat/coveragepy/pull/1901

.. _changes_7-6-8:

v7.6.8

Compare Source

  • Fix: the LCOV report code assumed that a branch line that took no branches meant that the entire line was unexecuted. This isn't true in a few cases: the line might always raise an exception, or might have been optimized away. Fixes issue 1896_.

  • Fix: similarly, the HTML report will now explain that a line that jumps to none of its expected destinations must have always raised an exception. Previously, it would say something nonsensical like, "line 4 didn't jump to line 5 because line 4 was never true, and it didn't jump to line 7 because line 4 was always true." This was also shown in issue 1896_.

.. _issue 1896: https://github.com/nedbat/coveragepy/issues/1896

.. _changes_7-6-7:

v7.6.7

Compare Source

  • Fix: ugh, the other assert from 7.6.5 can also be encountered in the wild, so it's been restored to a conditional. Sorry for the churn.

.. _changes_7-6-6:

v7.6.6

Compare Source

  • One of the new asserts from 7.6.5 caused problems in real projects, as reported in issue 1891_. The assert has been removed.

.. _issue 1891: https://github.com/nedbat/coveragepy/issues/1891

.. _changes_7-6-5:

v7.6.5

Compare Source

  • Fix: fine-tuned the exact Python version (3.12.6) when exiting from with statements changed how they traced. This affected whether people saw the fix for issue 1880_.

  • Fix: isolate our code more from mocking in the os module that in rare cases can cause bizarre behavior <pytest-cov-666_>_.

  • Refactor: some code unreachable code paths in parser.py were changed to asserts. If you encounter any of these, please let me know!

.. _pytest-cov-666: https://github.com/pytest-dev/pytest-cov/issues/666

.. _changes_7-6-4:

v7.6.4

Compare Source

  • Fix: multi-line with statements could cause contained branches to be incorrectly marked as missing (issue 1880_). This is now fixed.

.. _issue 1880: https://github.com/nedbat/coveragepy/issues/1880

.. _changes_7-6-3:

v7.6.3

Compare Source

  • Fix: nested context managers could incorrectly be analyzed to flag a missing branch on the last context manager, as described in issue 1876_. This is now fixed.

  • Fix: the missing branch message about not exiting a module had an extra "didn't," as described in issue 1873_. This is now fixed.

.. _issue 1873: https://github.com/nedbat/coveragepy/issues/1873 .. _issue 1876: https://github.com/nedbat/coveragepy/issues/1876

.. _changes_7-6-2:

v7.6.2

Compare Source

  • Dropped support for Python 3.8 and PyPy 3.8.

  • Fix: a final wildcard match/case clause assigning to a name (case _ as value) was incorrectly marked as a missing branch. This is now fixed, closing issue 1860_.

  • Fewer things are considered branches now. Lambdas, comprehensions, and generator expressions are no longer marked as missing branches if they don't complete execution. Closes issue 1852_.

  • Fix: the HTML report didn't properly show multi-line f-strings that end with a backslash continuation. This is now fixed, closing issue 1836, thanks to LiuYinCarl and Marco Ricci <pull 1838_>.

  • Fix: the LCOV report now has correct line numbers (fixing issue 1846) and better branch descriptions for BRDA records (fixing issue 1850). There are other changes to lcov also, including a new configuration option :ref:line_checksums <config_lcov_line_checksums> to control whether line checksums are included in the lcov report. The default is false. To keep checksums set it to true. All this work is thanks to Zack Weinberg (pull 1849_ and pull 1851_).

  • Fixed the docs for multi-line regex exclusions, closing issue 1863_.

  • Fixed a potential crash in the C tracer, closing issue 1835, thanks to Jan Kühle <pull 1843_>.

.. _issue 1835: https://github.com/nedbat/coveragepy/issues/1835 .. _issue 1836: https://github.com/nedbat/coveragepy/issues/1836 .. _pull 1838: https://github.com/nedbat/coveragepy/pull/1838 .. _pull 1843: https://github.com/nedbat/coveragepy/pull/1843 .. _issue 1846: https://github.com/nedbat/coveragepy/issues/1846 .. _pull 1849: https://github.com/nedbat/coveragepy/pull/1849 .. _issue 1850: https://github.com/nedbat/coveragepy/issues/1850 .. _pull 1851: https://github.com/nedbat/coveragepy/pull/1851 .. _issue 1852: https://github.com/nedbat/coveragepy/issues/1852 .. _issue 1860: https://github.com/nedbat/coveragepy/issues/1860 .. _issue 1863: https://github.com/nedbat/coveragepy/issues/1863

.. _changes_7-6-1:

v7.6.1

Compare Source

  • Fix: some descriptions of missing branches in HTML and LCOV reports were incorrect when multi-line statements were involved (issue 1874_ and issue 1875_). These are now fixed.

  • Fix: Python 3.14 defers evaluation of annotations <pep649_>_ by moving them into separate code objects. That code is rarely executed, so coverage.py would mark them as missing, as reported in issue 1908_. Now they are ignored by coverage automatically.

  • Fixed an obscure and mysterious problem on PyPy 3.10 seemingly involving mocks, imports, and trace functions: issue 1902_. To be honest, I don't understand the problem or the solution, but git bisect helped find it, and now it's fixed.

  • Docs: re-wrote the :ref:subprocess page to put multiprocessing first and to highlight the correct use of :class:multiprocessing.Pool <python:multiprocessing.pool.Pool>.

.. _issue 1874: https://github.com/nedbat/coveragepy/issues/1874 .. _issue 1875: https://github.com/nedbat/coveragepy/issues/1875 .. _issue 1902: https://github.com/nedbat/coveragepy/issues/1902 .. _issue 1908: https://github.com/nedbat/coveragepy/issues/1908 .. _pep649: https://docs.python.org/3.14/whatsnew/3.14.html#pep-649-deferred-evaluation-of-annotations

.. _changes_7-6-9:

v7.6.0

Compare Source

  • Exclusion patterns can now be multi-line, thanks to Daniel Diniz <pull 1807_>. This enables many interesting exclusion use-cases, including those requested in issues 118 <issue 118_> (entire files), 996 <issue 996_>_ (multiple lines only when appearing together), 1741 <issue 1741_>_ (remainder of a function), and 1803 <issue 1803_>_ (arbitrary sequence of marked lines). See the :ref:multi_line_exclude section of the docs for more details and examples.

  • The JSON report now includes per-function and per-class coverage information. Thanks to Daniel Diniz <pull 1809_>_ for getting the work started. This closes issue 1793_ and issue 1532_.

  • Fixed an incorrect calculation of "(no class)" lines in the HTML classes report.

  • Python 3.13.0b3 is supported.

.. _issue 118: https://github.com/nedbat/coveragepy/issues/118 .. _issue 996: https://github.com/nedbat/coveragepy/issues/996 .. _issue 1532: https://github.com/nedbat/coveragepy/issues/1532 .. _issue 1741: https://github.com/nedbat/coveragepy/issues/1741 .. _issue 1793: https://github.com/nedbat/coveragepy/issues/1793 .. _issue 1803: https://github.com/nedbat/coveragepy/issues/1803 .. _pull 1807: https://github.com/nedbat/coveragepy/pull/1807 .. _pull 1809: https://github.com/nedbat/coveragepy/pull/1809

.. _changes_7-5-4:

v7.5.4

Compare Source

  • If you attempt to combine statement coverage data with branch coverage data, coverage.py used to fail with the message "Can't combine arc data with line data" or its reverse, "Can't combine line data with arc data." These messages used internal terminology, making it hard for people to understand the problem. They are now changed to mention "branch coverage data" and "statement coverage data."

  • Fixed a minor branch coverage problem with wildcard match/case cases using names or guard clauses.

  • Started testing on 3.13 free-threading (nogil) builds of Python. I'm not claiming full support yet. Closes issue 1799_.

.. _issue 1799: https://github.com/nedbat/coveragepy/issues/1799

.. _changes_7-5-3:

v7.5.3

Compare Source

  • Performance improvements for combining data files, especially when measuring line coverage. A few different quadratic behaviors were eliminated. In one extreme case of combining 700+ data files, the time dropped from more than three hours to seven minutes. Thanks for Kraken Tech for funding the fix.

  • Performance improvements for generating HTML reports, with a side benefit of reducing memory use, closing issue 1791_. Thanks to Daniel Diniz for helping to diagnose the problem.

.. _issue 1791: https://github.com/nedbat/coveragepy/issues/1791

.. _changes_7-5-2:

v7.5.2

Compare Source

  • Fix: nested matches of exclude patterns could exclude too much code, as reported in issue 1779_. This is now fixed.

  • Changed: previously, coverage.py would consider a module docstring to be an executable statement if it appeared after line 1 in the file, but not executable if it was the first line. Now module docstrings are never counted as executable statements. This can change coverage.py's count of the number of statements in a file, which can slightly change the coverage percentage reported.

  • In the HTML report, the filter term and "hide covered" checkbox settings are remembered between viewings, thanks to Daniel Diniz <pull 1776_>_.

  • Python 3.13.0b1 is supported.

  • Fix: parsing error handling is improved to ensure bizarre source files are handled gracefully, and to unblock oss-fuzz fuzzing, thanks to Liam DeVoe <pull 1788_>. Closes issue 1787.

.. _pull 1776: https://github.com/nedbat/coveragepy/pull/1776 .. _issue 1779: https://github.com/nedbat/coveragepy/issues/1779 .. _issue 1787: https://github.com/nedbat/coveragepy/issues/1787 .. _pull 1788: https://github.com/nedbat/coveragepy/pull/1788

.. _changes_7-5-1:

v7.5.1

Compare Source

  • Fix: a pragma comment on the continuation lines of a multi-line statement now excludes the statement and its body, the same as if the pragma is on the first line. This closes issue 754. The fix was contributed by Daniel Diniz <pull 1773_>.

  • Fix: very complex source files like this one <resolvent_lookup_>_ could cause a maximum recursion error when creating an HTML report. This is now fixed, closing issue 1774_.

  • HTML report improvements:

    • Support files (JavaScript and CSS) referenced by the HTML report now have hashes added to their names to ensure updated files are used instead of stale cached copies.

    • Missing branch coverage explanations that said "the condition was never false" now read "the condition was always true" because it's easier to understand.

    • Column sort order is remembered better as you move between the index pages, fixing issue 1766. Thanks, Daniel Diniz <pull 1768_>.

.. _resolvent_lookup: https://github.com/sympy/sympy/blob/130950f3e6b3f97fcc17f4599ac08f70fdd2e9d4/sympy/polys/numberfields/resolvent_lookup.py .. _issue 754: https://github.com/nedbat/coveragepy/issues/754 .. _issue 1766: https://github.com/nedbat/coveragepy/issues/1766 .. _pull 1768: https://github.com/nedbat/coveragepy/pull/1768 .. _pull 1773: https://github.com/nedbat/coveragepy/pull/1773 .. _issue 1774: https://github.com/nedbat/coveragepy/issues/1774

.. _changes_7-5-0:

v7.5.0

Compare Source

  • Added initial support for function and class reporting in the HTML report. There are now three index pages which link to each other: files, functions, and classes. Other reports don't yet have this information, but it will be added in the future where it makes sense. Feedback gladly accepted! Finishes issue 780_.

  • Other HTML report improvements:

    • There is now a "hide covered" checkbox to filter out 100% files, finishing issue 1384_.

    • The index page is always sorted by one of its columns, with clearer indications of the sorting.

    • The "previous file" shortcut key didn't work on the index page, but now it does, fixing issue 1765_.

  • The debug output showing which configuration files were tried now shows absolute paths to help diagnose problems where settings aren't taking effect, and is renamed from "attempted_config_files" to the more logical "config_files_attempted."

  • Python 3.13.0a6 is supported.

.. _issue 780: https://github.com/nedbat/coveragepy/issues/780 .. _issue 1384: https://github.com/nedbat/coveragepy/issues/1384 .. _issue 1765: https://github.com/nedbat/coveragepy/issues/1765

.. _changes_7-4-4:

v7.4.4

Compare Source

  • Fix: in some cases, even with [run] relative_files=True, a data file could be created with absolute path names. When combined with other relative data files, it was random whether the absolute file names would be made relative or not. If they weren't, then a file would be listed twice in reports, as detailed in issue 1752_. This is now fixed: absolute file names are always made relative when combining. Thanks to Bruno Rodrigues dos Santos for support.

  • Fix: the last case of a match/case statement had an incorrect message if the branch was missed. It said the pattern never matched, when actually the branch is missed if the last case always matched.

  • Fix: clicking a line number in the HTML report now positions more accurately.

  • Fix: the report:format setting was defined as a boolean, but should be a string. Thanks, Tanaydin Sirin <pull 1754_>_. It is also now documented on the :ref:configuration page <config_report_format>.

.. _issue 1752: https://github.com/nedbat/coveragepy/issues/1752 .. _pull 1754: https://github.com/nedbat/coveragepy/pull/1754

.. _changes_7-4-3:

django/django (django)

v4.2.20

Compare Source

v4.2.19

Compare Source

v4.2.18

Compare Source

v4.2.17

Compare Source

v4.2.16

Compare Source

v4.2.15

Compare Source

v4.2.14

Compare Source

v4.2.13

Compare Source

v4.2.12

Compare Source

uis/devops/django/ucamlookup (django-ucamlookup)

v3.1.0

  • Upgraded to support django 4.2
  • Support for django 2.2 removed
encode/django-rest-framework (djangorestframework)

v3.15.2

Compare Source

v3.15.1: Version 3.15.1

Compare Source

What's Changed

New Contributors

Full Changelog: https://github.com/encode/django-rest-framework/compare/3.15.0...3.15.1

v3.15.0

Compare Source

editorconfig-checker/editorconfig-checker.python (editorconfig-checker/editorconfig-checker.python)

v2.7.3

Compare Source

googleapis/google-auth-library-python (google-auth)

v2.38.0

Compare Source

Features
  • Adding domain-wide delegation flow in impersonated credential (#​1624) (34ee3fe)
Documentation
  • Add warnings regarding consuming externally sourced credentials (d049370)

v2.37.0

Compare Source

Features

v2.36.0

Compare Source

Features
Bug Fixes

v2.35.0

Compare Source

Features
Bug Fixes

v2.34.0

Compare Source

Features
  • auth: Update get_client_ssl_credentials to support X.509 workload certs (#​1558) (18c2ec1)
Bug Fixes

v2.33.0

Compare Source

Features
  • Implement async StaticCredentials using access tokens (#​1559) (dc17dfc)
  • Implement base classes for credentials and request sessions (#​1551) (036dac4)
Bug Fixes
  • metadata: Enhance retry logic for metadata server access in _metadata.py (#​1545) (61c2432)
Documentation

v2.32.0

Compare Source

Features

v2.31.0

Compare Source

Features
Bug Fixes

v2.30.0

Compare Source

Features
Bug Fixes

v2.29.0

Compare Source

Features
  • Adds support for custom suppliers in AWS and Identity Pool credentials (#​1496) (3af1768)
Bug Fixes
  • Refactor tech debt in aws and identity pool credentials (#​1501) (ce435b0)

v2.28.2

Compare Source

Bug Fixes
testing-cabal/mock (mock)

v5.2.0

Compare Source

This is release is in memory of Michael Foord__, who originally authored the mock package and passed away in January 2025.

__ https://discuss.python.org/t/in-memoriam-michael-foord-1974-2025/78317

  • gh-65454: :func:unittest.mock.Mock.attach_mock no longer triggers a call to a PropertyMock being attached.

  • gh-117765: Improved documentation for :func:unittest.mock.patch.dict

  • gh-124176: Add support for :func:dataclasses.dataclass in :func:unittest.mock.create_autospec. Now create_autospec will check for potential dataclasses and use :func:dataclasses.fields function to retrieve the spec information.

  • gh-123934: Fix :class:unittest.mock.MagicMock reseting magic methods return values after .reset_mock(return_value=True) was called.

  • gh-90848: Fixed :func:unittest.mock.create_autospec to configure parent mock with keyword arguments.

  • gh-113569: Indicate if there were no actual calls in unittest :meth:~unittest.mock.Mock.assert_has_calls failure.

  • gh-122858: Deprecate :func:!asyncio.iscoroutinefunction in favor of :func:inspect.iscoroutinefunction.

  • gh-104745: Limit starting a patcher (from :func:unittest.mock.patch or :func:unittest.mock.patch.object) more than once without stopping it

  • gh-75988: Fixed :func:unittest.mock.create_autospec to pass the call through to the wrapped object to return the real result.

  • gh-119600: Fix :func:unittest.mock.patch to not read attributes of the target when new_callable is set. Patch by Robert Collins.

  • gh-113407: Fix import of :mod:unittest.mock when CPython is built without docstrings.

  • gh-120732: Fix name passing to :class:unittest.mock.Mock object when using :func:unittest.mock.create_autospec.

pre-commit/pre-commit (pre-commit)

v3.8.0

Compare Source

==================

Features

v3.7.1

Compare Source

==================

Fixes

v3.7.0

Compare Source

==================

Features
  • Use a tty for docker and docker_image hooks when --color is specified.
Fixes
Updating
  • The per-hook behaviour of fail_fast was fixed. If you want the pre-3.7.0 behaviour, add fail_fast: true to all hooks before the last fail_fast hook.
pre-commit/mirrors-mypy (pre-commit/mirrors-mypy)

v1.15.0

Compare Source

v1.14.1

Compare Source

v1.14.0

Compare Source

v1.13.0

Compare Source

v1.12.1

Compare Source

v1.12.0

Compare Source

v1.11.2

Compare Source

v1.11.1

Compare Source

v1.11.0

Compare Source

v1.10.1

Compare Source

v1.10.0

Compare Source

v1.9.0

Compare Source

v1.8.0

Compare Source

v1.7.1

Compare Source

v1.7.0

Compare Source

v1.6.1

Compare Source

v1.6.0

Compare Source

v1.5.1

Compare Source

v1.5.0

Compare Source

pre-commit/pre-commit-hooks (pre-commit/pre-commit-hooks)

v4.6.0: pre-commit-hooks v4.6.0

Compare Source

Features
Migrating

v4.5.0: pre-commit-hooks v4.5.0

Compare Source

Features
Fixes

Migrating

psf/black (psf/black)

v23.12.1

Compare Source

Packaging
  • Fixed a bug that included dependencies from the d extra by default (#​4108)

v23.12.0

Compare Source

Highlights

It's almost 2024, which means it's time for a new edition of Black's stable style! Together with this release, we'll put out an alpha release 24.1a1 showcasing the draft 2024 stable style, which we'll finalize in the January release. Please try it out and share your feedback.

This release (23.12.0) will still produce the 2023 style. Most but not all of the changes in --preview mode will be in the 2024 stable style.

Stable style
  • Fix bug where # fmt: off automatically dedents when used with the --line-ranges option, even when it is not within the specified line range. (#​4084)
  • Fix feature detection for parenthesized context managers (#​4104)
Preview style
  • Prefer more equal signs before a break when splitting chained assignments (#​4010)
  • Standalone form feed characters at the module level are no longer removed (#​4021)
  • Additional cases of immediately nested tuples, lists, and dictionaries are now indented less (#​4012)
  • Allow empty lines at the beginning of all blocks, except immediately before a docstring (#​4060)
  • Fix crash in preview mode when using a short --line-length (#​4086)
  • Keep suites consisting of only an ellipsis on their own lines if they are not functions or class definitions (#​4066) (#​4103)
Configuration
  • --line-ranges now skips Black's internal stability check in --safe mode. This avoids a crash on rare inputs that have many unformatted same-content lines. (#​4034)
Packaging
Integrations

v23.11.0

Compare Source

Highlights
  • Support formatting ranges of lines with the new --line-ranges command-line option (#​4020)
Stable style
  • Fix crash on formatting bytes strings that look like docstrings (#​4003)
  • Fix crash when whitespace followed a backslash before newline in a docstring (#​4008)
  • Fix standalone comments inside complex blocks crashing Black (#​4016)
  • Fix crash on formatting code like await (a ** b) (#​3994)
  • No longer treat leading f-strings as docstrings. This matches Python's behaviour and fixes a crash (#​4019)
Preview style
  • Multiline dicts and lists that are the sole argument to a function are now indented less (#​3964)
  • Multiline unpacked dicts and lists as the sole argument to a function are now also indented less (#​3992)
  • In f-string debug expressions, quote types that are visible in the final string are now preserved (#​4005)
  • Fix a bug where long case blocks were not split into multiple lines. Also enable general trailing comma rules on case blocks (#​4024)
  • Keep requiring two empty lines between module-level docstring and first function or class definition (#​4028)
  • Add support for single-line format skip with other comments on the same line (#​3959)
Configuration
  • Consistently apply force exclusion logic before resolving symlinks (#​4015)
  • Fix a bug in the matching of absolute path names in --include (#​3976)
Performance
  • Fix mypyc builds on arm64 on macOS (#​4017)
Integrations
  • Black's pre-commit integration will now run only on git hooks appropriate for a code formatter (#​3940)

v23.10.1

Compare Source

Highlights
  • Maintenance release to get a fix out for GitHub Action edge case (#​3957)
Preview style
  • Fix merging implicit multiline strings that have inline comments (#​3956)
  • Allow empty first line after block open before a comment or compound statement (#​3967)
Packaging
  • Change Dockerfile to hatch + compile black (#​3965)
Integrations
  • The summary output for GitHub workflows is now suppressible using the summary parameter. (#​3958)
  • Fix the action failing when Black check doesn't pass (#​3957)
Documentation

v23.10.0

Compare Source

Stable style
  • Fix comments getting removed from inside parenthesized strings (#​3909)
Preview style
  • Fix long lines with power operators getting split before the line length (#​3942)
  • Long type hints are now wrapped in parentheses and properly indented when split across multiple lines (#​3899)
  • Magic trailing commas are now respected in return types. (#​3916)
  • Require one empty line after module-level docstrings. (#​3932)
  • Treat raw triple-quoted strings as docstrings (#​3947)
Configuration
  • Fix cache versioning logic when BLACK_CACHE_DIR is set (#​3937)
Parser
  • Fix bug where attributes named type were not accepted inside match statements (#​3950)
  • Add support for PEP 695 type aliases containing lambdas and other unusual expressions (#​3949)
Output
  • Black no longer attempts to provide special errors for attempting to format Python 2 code (#​3933)
  • Black will more consistently print stacktraces on internal errors in verbose mode (#​3938)
Integrations
  • The action output displayed in the job summary is now wrapped in Markdown (#​3914)

v23.9.1

Compare Source

Due to various issues, the previous release (23.9.0) did not include compiled mypyc wheels, which make Black significantly faster. These issues have now been fixed, and this release should come with compiled wheels once again.

There will be no wheels for Python 3.12 due to a bug in mypyc. We will provide 3.12 wheels in a future release as soon as the mypyc bug is fixed.

Packaging
Performance
  • Store raw tuples instead of NamedTuples in Black's cache, improving performance and decreasing the size of the cache (#​3877)

v23.9.0

Compare Source

Preview style
  • More concise formatting for dummy implementations (#​3796)
  • In stub files, add a blank line between a statement with a body (e.g an if sys.version_info > (3, x):) and a function definition on the same level (#​3862)
  • Fix a bug whereby spaces were removed from walrus operators within subscript(#​3823)
Configuration
  • Black now applies exclusion and ignore logic before resolving symlinks (#​3846)
Performance
  • Avoid importing IPython if notebook cells do not contain magics (#​3782)
  • Improve caching by comparing file hashes as fallback for mtime and size (#​3821)
Blackd
  • Fix an issue in blackd with single character input (#​3558)
Integrations
  • Black now has an official pre-commit mirror. Swapping https://github.com/psf/black to https://github.com/psf/black-pre-commit-mirror in your .pre-commit-config.yaml will make Black about 2x faster (#​3828)
  • The .black.env folder specified by ENV_PATH will now be removed on the completion of the GitHub Action (#​3759)

v23.7.0

Compare Source

Highlights
  • Runtime support for Python 3.7 has been removed. Formatting 3.7 code will still be supported until further notice (#​3765)
Stable style
  • Fix a bug where an illegal trailing comma was added to return type annotations using PEP 604 unions (#​3735)
  • Fix several bugs and crashes where comments in stub files were removed or mishandled under some circumstances (#​3745)
  • Fix a crash with multi-line magic comments like type: ignore within parentheses (#​3740)
  • Fix error in AST validation when Black removes trailing whitespace in a type comment (#​3773)
Preview style
  • Implicitly concatenated strings used as function args are no longer wrapped inside parentheses (#​3640)
  • Remove blank lines between a class definition and its docstring (#​3692)
Configuration
  • The --workers argument to Black can now be specified via the BLACK_NUM_WORKERS environment variable (#​3743)
  • .pytest_cache, .ruff_cache and .vscode are now excluded by default (#​3691)
  • Fix Black not honouring pyproject.toml settings when running --stdin-filename and the pyproject.toml found isn't in the current working directory (#​3719)
  • Black will now error if exclude and extend-exclude have invalid data types in pyproject.toml, instead of silently doing the wrong thing (#​3764)
Packaging
  • Upgrade mypyc from 0.991 to 1.3 (#​3697)
  • Remove patching of Click that mitigated errors on Python 3.6 with LANG=C (#​3768)
Parser
  • Add support for the new PEP 695 syntax in Python 3.12 (#​3703)
Performance
  • Speed up Black significantly when the cache is full (#​3751)
  • Avoid importing IPython in a case where we wouldn't need it (#​3748)
Output
  • Use aware UTC datetimes internally, avoids deprecation warning on Python 3.12 (#​3728)
  • Change verbose logging to exactly mirror Black's logic for source discovery (#​3749)
Blackd
  • The blackd argument parser now shows the default values for options in their help text (#​3712)
Integrations
Documentation
  • Add a CITATION.cff file to the root of the repository, containing metadata on how to cite this software (#​3723)
  • Update the classes and exceptions documentation in Developer reference to match the latest code base (#​3755)
pycqa/flake8 (pycqa/flake8)

v6.1.0

Compare Source

python-poetry/poetry (python-poetry/poetry)

v1.8.5

Compare Source

Changed
  • Require pkginfo>=1.12 to fix an issue with an unknown metadata version 2.4 (#​9888).
  • Do not fail if the unknown metadata version is only a minor version update (#​9888).

v1.8.4

Compare Source

Added
  • Add official support for Python 3.13 (#​9523).
Changed
  • Require virtualenv>=20.26.6 to mitigate potential command injection when running poetry shell in untrusted projects (#​9757).
poetry-core (1.9.1)
  • Add 3.13 to the list of available Python versions (#​747).

v1.8.3

Compare Source

Added
  • Add support for untagged CPython builds with versions ending with a + (#​9207).
Changed
  • Require pkginfo>=1.10 to ensure support for packages with metadata version 2.3 (#​9130).
  • Improve locking on FIPS systems (#​9152).
Fixed
  • Fix an issue where unrecognized package metadata versions silently resulted in empty dependencies (#​9203, #​9226).
  • Fix an issue where trailing slashes in git URLs where not handled correctly (#​9205).
  • Fix an issue where poetry self commands printed a warning that the current project cannot be installed (#​9302).
  • Fix an issue where poetry install sporadically failed with a KeyError due to a race condition (#​9335).
Docs
  • Fix incorrect information about poetry shell (#​9060).
  • Add a git subdirectory example to poetry add (#​9080).
  • Mention interactive credential configuration (#​9074).
  • Add notes for optional advanced installation steps (#​9098).
  • Add reference to configuration credentials in documentation of poetry publish (#​9110).
  • Improve documentation for configuring credentials via environment variables (#​9121).
  • Remove misleading wording around virtual environments (#​9213).
  • Remove outdated advice regarding seeding keyring backends (#​9164).
  • Add a pyproject.toml example for a dependency with multiple extras (#​9138).
  • Clarify help of poetry add (#​9230).
  • Add a note how to configure credentials for TestPyPI for poetry publish (#​9255).
  • Fix information about the --readme option in poetry new (#​9260).
  • Clarify what is special about the Python constraint in dependencies (#​9256).
  • Update how to uninstall plugins via pipx (#​9320).

v1.8.2

Compare Source

Fixed
  • Harden lazy-wheel error handling if the index server is behaving badly in an unexpected way (#​9051).
  • Improve lazy-wheel error handling if the index server does not handle HTTP range requests correctly (#​9082).
  • Improve lazy-wheel error handling if the index server pretends to support HTTP range requests but does not respect them (#​9084).
  • Improve lazy-wheel to allow redirects for HEAD requests (#​9087).
  • Improve debug logging for lazy-wheel errors (#​9059).
  • Fix an issue where the hash of a metadata file could not be calculated correctly due to an encoding issue (#​9049).
  • Fix an issue where poetry add failed in non-package mode if no project name was set (#​9046).
  • Fix an issue where a hint to non-package mode was not compliant with the final name of the setting (#​9073).

v1.8.1

Compare Source

Fixed
  • Update the minimum required version of packaging (#​9031).
  • Handle unexpected responses from servers that do not support HTTP range requests with negative offsets more robust (#​9030).
Docs
  • Rename master branch to main (#​9022).

v1.8.0

Compare Source

Added
  • Add a non-package mode for use cases where Poetry is only used for dependency management (#​8650).
  • Add support for PEP 658 to fetch metadata without having to download wheels (#​5509).
  • Add a lazy-wheel config option (default: true) to reduce wheel downloads during dependency resolution (#​8815, #​8941).
  • Improve performance of dependency resolution by using shallow copies instead of deep copies (#​8671).
  • poetry check validates that no unknown sources are referenced in dependencies (#​8709).
  • Add archive validation during installation for further hash algorithms (#​8851).
  • Add a to key in tool.poetry.packages to allow custom subpackage names (#​8791).
  • Add a config option to disable keyring (#​8910).
  • Add a --sync option to poetry update (#​8931).
  • Add an --output option to poetry build (#​8828).
  • Add a --dist-dir option to poetry publish (#​8828).
Changed
  • The implicit PyPI source is disabled if at least one primary source is configured (#​8771).
  • Deprecate source priority default (#​8771).
  • Upgrade the warning about an inconsistent lockfile to an error (#​8737).
  • Deprecate setting installer.modern-installation to false (#​8988).
  • Drop support for pip<19 (#​8894).
  • Require requests-toolbelt>=1 (#​8680).
  • Allow platformdirs 4.x (#​8668).
  • Allow and require xattr 1.x on macOS (#​8801).
  • Improve venv shell activation in fish (#​8804).
  • Rename system to base in output of poetry env info (#​8832).
  • Use pretty name in output of poetry version (#​8849).
  • Improve error handling for invalid entries in tool.poetry.scripts (#​8898).
  • Improve verbose output for dependencies with extras during dependency resolution (#​8834).
  • Improve message about an outdated lockfile (#​8962).
Fixed
  • Fix an issue where poetry shell failed when Python has been installed with MSYS2 (#​8644).
  • Fix an issue where Poetry commands failed in a terminal with a non-UTF-8 encoding (#​8608).
  • Fix an issue where a missing project name caused an incomprehensible error message (#​8691).
  • Fix an issue where Poetry failed to install an sdist path dependency (#​8682).
  • Fix an issue where poetry install failed because an unused extra was not available (#​8548).
  • Fix an issue where poetry install --sync did not remove an unrequested extra (#​8621).
  • Fix an issue where poetry init did not allow specific characters in the author field (#​8779).
  • Fix an issue where Poetry could not download sdists from misconfigured servers (#​8701).
  • Fix an issue where metadata of sdists that call CLI tools of their build requirements could not be determined (#​8827).
  • Fix an issue where Poetry failed to use the currently activated environment (#​8831).
  • Fix an issue where poetry shell failed in zsh if a space was in the venv path (#​7245).
  • Fix an issue where scripts with extras could not be installed (#​8900).
  • Fix an issue where explicit sources where not propagated correctly (#​8835).
  • Fix an issue where debug prints where swallowed when using a build script (#​8760).
  • Fix an issue where explicit sources of locked dependencies where not propagated correctly (#​8948).
  • Fix an issue where Poetry's own environment was falsely identified as system environment (#​8970).
  • Fix an issue where dependencies from a setup.py were ignored silently (#​9000).
  • Fix an issue where environment variables for virtualenv.options were ignored (#​9015).
  • Fix an issue where virtualenvs.options.no-pip and virtualenvs.options.no-setuptools were not normalized (#​9015).
Docs
  • Replace deprecated --no-dev with --without dev in the FAQ (#​8659).
  • Recommend poetry-check instead of the deprecated poetry-lock pre-commit hook (#​8675).
  • Clarify the names of the environment variables to provide credentials for repositories (#​8782).
  • Add note how to install several version of Poetry in parallel (#​8814).
  • Improve description of poetry show --why (#​8817).
  • Improve documentation of poetry update (#​8706).
  • Add a warning about passing variables that may start with a hyphen via command line (#​8850).
  • Mention that the virtual environment in which Poetry itself is installed should not be activated (#​8833).
  • Add note about poetry run and externally managed environments (#​8748).
  • Update FAQ entry about tox for tox 4.x (#​8658).
  • Fix documentation for default format option for include and exclude value (#​8852).
  • Add note about tox and configured credentials (#​8888).
  • Add note and link how to install pipx (#​8878).
  • Fix examples for poetry add with git dependencies over ssh (#​8911).
  • Remove reference to deprecated scripts extras feature (#​8903).
  • Change examples to prefer --only main instead of --without dev (#​8921).
  • Mention that the develop attribute is a Poetry-specific feature and not propagated to other tools (#​8971).
  • Fix examples for adding supplemental and secondary sources (#​8953).
  • Add PyTorch example for explicit sources (#​9006).
poetry-core (1.9.0)
  • Deprecate scripts that depend on extras (#​690).
  • Add support for path dependencies that do not define a build system (#​675).
  • Update list of supported licenses (#​659, #​669, #​678, #​694).
  • Rework list of files included in build artifacts (#​666).
  • Fix an issue where insignificant errors were printed if the working directory is not inside a git repository (#​684).
  • Fix an issue where the project's directory was not recognized as git repository on Windows due to an encoding issue (#​685).

v1.7.1

Compare Source

Fixed
  • Fix an issue where sdists that call CLI tools of their build requirements could not be installed (#​8630).
  • Fix an issue where sdists with symlinks could not be installed due to a broken tarfile datafilter (#​8649).
  • Fix an issue where poetry init failed when trying to add dependencies (#​8655).
  • Fix an issue where poetry install failed if virtualenvs.create was set to false (#​8672).

v1.7.0

Compare Source

Added
  • Add official support for Python 3.12 (#​7803, #​8544).
  • Print a future warning that poetry-plugin-export will not be installed by default anymore (#​8562).
  • Add poetry-install pre-commit hook (#​8327).
  • Add --next-phase option to poetry version (#​8089).
  • Print a warning when overwriting files from another package at installation (#​8386).
  • Print a warning if the current project cannot be installed (#​8369).
  • Report more details on build backend exceptions (#​8464).
Changed
  • Set Poetry as user-agent for all HTTP requests (#​8394).
  • Do not install setuptools per default in Python 3.12 (#​7803).
  • Do not install wheel per default (#​7803).
  • Remove setuptools and wheel when running poetry install --sync if they are not required by the project (#​8600).
  • Improve error message about PEP-517 support (#​8463).
  • Improve keyring handling (#​8227).
  • Read the description field when extracting metadata from setup.py files (#​8545).
Fixed
  • Fix an issue where dependencies of inactive extras were locked and installed (#​8399).
  • Fix an issue where build requirements were not installed due to a race condition in the artifact cache (#​8517).
  • Fix an issue where packages included in the system site packages were installed even though virtualenvs.options.system-site-packages was set (#​8359).
  • Fix an issue where git dependencies' submodules with relative URLs were handled incorrectly (#​8020).
  • Fix an issue where a failed installation of build dependencies was not noticed directly (#​8479).
  • Fix an issue where poetry shell did not work completely with nushell (#​8478).
  • Fix an issue where a confusing error messages was displayed when running poetry config pypi-token.pypi without a value (#​8502).
  • Fix an issue where a cryptic error message is printed if there is no metadata entry in the lockfile (#​8523).
  • Fix an issue with the encoding with special characters in the virtualenv's path (#​8565).
  • Fix an issue where the connection pool size was not adjusted to the number of workers (#​8559).
Docs
  • Improve the wording regarding a project's supported Python range (#​8423).
  • Make pipx the preferred (first mentioned) installation method (#​8090).
  • Add a warning about poetry self on Windows (#​8090).
  • Fix example for poetry add with a git dependency (#​8438).
  • Add information about auto-included files in wheels and sdist (#​8555).
  • Fix documentation of the POETRY_REPOSITORIES_ variables docs (#​8492).
  • Add CITATION.cff file (#​8510).
poetry-core (1.8.1)
  • Add support for creating packages dynamically in the build script (#​629).
  • Improve marker logic for extra markers (#​636).
  • Update list of supported licenses (#​635, #​646).
  • Fix an issue where projects with extension modules were not installed in editable mode (#​633).
  • Fix an issue where the wrong or no lib folder was added to the wheel (#​634).
poetry-plugin-export (^1.6.0)
  • Add an --all-extras option (#​241).
  • Fix an issue where git dependencies are exported with the branch name instead of the resolved commit hash (#​213).

v1.6.1

Compare Source

Fixed
  • Update the minimum required version of requests (#​8336).

v1.6.0

Compare Source

Added
  • Add support for repositories that do not provide a supported hash algorithm (#​8118).
  • Add full support for duplicate dependencies with overlapping markers (#​7257).
  • Improve performance of poetry lock for certain edge cases (#​8256).
  • Improve performance of poetry install (#​8031).
  • poetry check validates that specified readme files do exist (#​7444).
  • Add a downgrading note when updating to an older version (#​8176).
  • Add support for vox in the xonsh shell (#​8203).
  • Add support for pre-commit hooks for projects where the pyproject.toml file is located in a subfolder (#​8204).
  • Add support for the git+http:// scheme (#​6619).
Changed
  • Drop support for Python 3.7 (#​7674).
  • Move poetry lock --check to poetry check --lock and deprecate the former (#​8015).
  • Change future warning that PyPI will only be disabled automatically if there are no primary sources (#​8151).
Fixed
  • Fix an issue where build-system.requires were not respected for projects with build scripts (#​7975).
  • Fix an issue where the encoding was not handled correctly when calling a subprocess (#​8060).
  • Fix an issue where poetry show --top-level did not show top level dependencies with extras (#​8076).
  • Fix an issue where poetry init handled projects with src layout incorrectly (#​8218).
  • Fix an issue where Poetry wrote .pth files with the wrong encoding (#​8041).
  • Fix an issue where poetry install did not respect the source if the same version of a package has been locked from different sources (#​8304).
Docs
  • Document official Poetry badge (#​8066).
  • Update configuration folder path for macOS (#​8062).
  • Add a warning about pip ignoring lock files (#​8117).
  • Clarify the use of the virtualenvs.in-project setting. (#​8126).
  • Change pre-commit YAML style to be consistent with pre-commit's own examples (#​8146).
  • Fix command for listing installed plugins (#​8200).
  • Mention the nox-poetry package (#​8173).
  • Add an example with a PyPI source in the pyproject.toml file (#​8171).
  • Use reference instead of deprecated callable in the scripts example (#​8211).
poetry-core (1.7.0)
  • Improve performance of marker handling (#​609).
  • Allow | as a value separator in markers with the operators in and not in (#​608).
  • Put pretty name (instead of normalized name) in metadata (#​620).
  • Update list of supported licenses (#​623).
  • Fix an issue where PEP 508 dependency specifications with names starting with a digit could not be parsed (#​607).
  • Fix an issue where Poetry considered an unrelated .gitignore file resulting in an empty wheel (#​611).
poetry-plugin-export (^1.5.0)
  • Fix an issue where markers for dependencies required by an extra were not generated correctly (#​209).
yaml/pyyaml (pyyaml)

v6.0.2

Compare Source

What's Changed

  • Support for Cython 3.x and Python 3.13.

Full Changelog: https://github.com/yaml/pyyaml/compare/6.0.1...6.0.2

timothycrosley/isort (timothycrosley/isort)

v5.13.2

Compare Source

v5.13.1

Compare Source

v5.13.0

Compare Source

uis/devops/iam/identity-lib (ucam-identitylib)

v3.3.1

Fixed
  • Photo API had AllowAny permissions incorrectly set for some of the endpoints.
  • Importing some modules/subpackages for the Card API and Photo API previously failed to import.
uis/devops/continuous-delivery/ci-templates (uis/devops/continuous-delivery/ci-templates)

v3.8.2

Compare Source

Fixed
  • terraform-pipeline.yml: tflint rule terraform_standard_module_structure is now disabled.

v3.8.1

Compare Source

Fixed

  • terraform-pipeline.yml: tflint job updated and now compatible with tflint v0.40.0+

v3.8.0

Compare Source

Changed

  • terraform-pipeline.yml: tfsec job replaced with trivy as tfsec is now deprecated.

v3.7.1

Compare Source

Fixed
  • artifact-registry.yml: added before_script to fix "docker in docker" service startup.

v3.7.0

Compare Source

Added
  • artifact-registry.yml: add support for code repositories with multiple apps.

v3.6.1

Compare Source

Fixed
  • check_latest_tag_in_changelog now correctly identifies the latest tag in the CHANGELOG, when there isn't a space after the closing square bracket.

Configuration

:date: Schedule: Branch creation - "* * * * 1-5" in timezone Europe/London, Automerge - At any time (no schedule defined).

:vertical_traffic_light: Automerge: Disabled by config. Please merge this manually once you are satisfied.

:recycle: Rebasing: Whenever MR becomes conflicted, or you tick the rebase/retry checkbox.

:ghost: Immortal: This MR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this MR, check this box

This MR has been generated by Renovate Bot.

Edited by uis-devops-renovatebot

Merge request reports

Loading
Loading

Activity

Filter activity
  • Approvals
  • Assignees & reviewers
  • Comments (from bots)
  • Comments (from users)
  • Commits & branches
  • Edits
  • Labels
  • Lock status
  • Mentions
  • Merge request status
  • Tracking
Please register or sign in to reply