fix(deps): update all non-major dependencies (!7) · Merge requests · Information Services / DevOps / Infrastructure / Terraform Modules / GCP Alert To GitLab Issue

This MR contains the following updates:

Package	Change	Type	Update
charset-normalizer (changelog)	`==3.4.2` → `==3.4.4`		patch
gitlab.developers.cam.ac.uk/uis/gcp-function/devops	`2.3.20` → `2.3.61`	module	patch
google-api-core	`==2.25.1` → `==2.29.0`		minor
google-api-python-client	`==2.172.0` → `==2.189.0`		minor
google-auth	`==2.40.3` → `==2.48.0`		minor
google-cloud-secret-manager (source)	`==2.24.0` → `==2.26.0`		minor
googleapis-common-protos (source)	`==1.70.0` → `==1.72.0`		minor
grpcio (source)	`==1.73.0` → `==1.76.0`		minor
grpcio-status	`==1.73.0` → `==1.76.0`		minor
idna (changelog)	`==3.10` → `==3.11`		minor
proto-plus	`==1.26.1` → `==1.27.1`		minor
protobuf	`==6.31.1` → `==6.33.5`		minor
pyparsing	`==3.2.3` → `==3.3.2`		minor
requests (source, changelog)	`==2.32.4` → `==2.32.5`		patch
uis/devops/continuous-delivery/ci-templates	`v7.25.16` → `v7.27.2`	repository	minor
urllib3 (changelog)	`==2.4.0` → `==2.6.3`		minor

Release Notes

jawah/charset_normalizer (charset-normalizer)

`v3.4.4`

Compare Source

Changed

Bound setuptools to a specific constraint setuptools>=68,<=81.
Raised upper bound of mypyc for the optional pre-built extension to v1.18.2

Removed

setuptools-scm as a build dependency.

Misc

Enforced hashes in dev-requirements.txt and created ci-requirements.txt for security purposes.
Additional pre-built wheels for riscv64, s390x, and armv7l architectures.
Restore multiple.intoto.jsonl in GitHub releases in addition to individual attestation file per wheel.

`v3.4.3`

Compare Source

Changed

mypy(c) is no longer a required dependency at build time if CHARSET_NORMALIZER_USE_MYPYC isn't set to 1. (#595) (#583)
automatically lower confidence on small bytes samples that are not Unicode in detect output legacy function. (#391)

Added

Custom build backend to overcome inability to mark mypy as an optional dependency in the build phase.
Support for Python 3.14

Fixed

sdist archive contained useless directories.
automatically fallback on valid UTF-16 or UTF-32 even if the md says it's noisy. (#633)

Misc

SBOM are automatically published to the relevant GitHub release to comply with regulatory changes. Each published wheel comes with its SBOM. We choose CycloneDX as the format.
Prebuilt optimized wheel are no longer distributed by default for CPython 3.7 due to a change in cibuildwheel.

uis/devops/infra/terraform/gcp-function (gitlab.developers.cam.ac.uk/uis/gcp-function/devops)

`v2.3.61`

Compare Source

Bug Fixes

deps: update copier template to v0.7.2 (f3265c3)

`v2.3.60`

Compare Source

Bug Fixes

deps: update copier template to v0.7.1 (2fd488b)

`v2.3.59`

Compare Source

Bug Fixes

deps: update devops base image logan-terraform to 545b5e2 (9e0d7f9)

`v2.3.58`

Compare Source

Bug Fixes

deps: fix conflicts on copier update (652ad7a)
deps: update copier template to v0.7.0 (11f3c69)

`v2.3.57`

Compare Source

Bug Fixes

deps: update dependency uis/devops/continuous-delivery/ci-templates to v7.25.16 (e76043d)

`v2.3.56`

Compare Source

Bug Fixes

deps: update devops base image logan-terraform to 85f7b46 (69934fb)

`v2.3.55`

Compare Source

Bug Fixes

deps: update copier template to v0.5.17 (57e9b74)
deps: update dependency uis/devops/continuous-delivery/ci-templates to v7.25.13 (67f1ba5)
deps: update dependency uis/devops/continuous-delivery/ci-templates to v7.25.15 (fc71f90)

`v2.3.53`

Compare Source

Bug Fixes

deps: update copier template to v0.5.16 (ac8d6dc)
deps: update devops base image logan-terraform to beae0d6 (cab52bc)

`v2.3.52`

Compare Source

Bug Fixes

deps: update dependency uis/devops/continuous-delivery/ci-templates to v7.25.11 (b38de08)

`v2.3.51`

Compare Source

Bug Fixes

deps: update dependency uis/devops/continuous-delivery/ci-templates to v7.25.10 (bc9e7ee)

`v2.3.50`

Compare Source

Bug Fixes

deps: update copier template to v0.5.13 (0496ec3)

`v2.3.48`

Compare Source

Bug Fixes

deps: update dependency uis/devops/continuous-delivery/ci-templates to v7.25.9 (baafb11)
deps: update devops base image logan-terraform to 6c776c6 (17f1aef)

`v2.3.47`

Compare Source

Bug Fixes

deps: update copier template to v0.5.12 (0978d32)

`v2.3.46`

Compare Source

Bug Fixes

deps: update dependency uis/devops/continuous-delivery/ci-templates to v7.25.7 (a5b967d)

`v2.3.45`

Compare Source

Bug Fixes

deps: update dependency uis/devops/continuous-delivery/ci-templates to v7.25.6 (836ed5d)

`v2.3.44`

Compare Source

Bug Fixes

deps: update copier template to v0.5.11 (ab17328)

`v2.3.43`

Compare Source

Bug Fixes

deps: update copier template to v0.5.10 (3191f3a)
deps: update dependency uis/devops/continuous-delivery/ci-templates to v7.25.5 (324d9b5)

`v2.3.42`

Compare Source

Bug Fixes

deps: update copier template to v0.5.9 (fd1c4f9)
deps: update dependency uis/devops/continuous-delivery/ci-templates to v7.25.4 (b5a8316)

`v2.3.40`

Compare Source

Bug Fixes

deps: update copier template to v0.5.8 (4b33882)
deps: update dependency uis/devops/continuous-delivery/ci-templates to v7.25.3 (dabeadc)

`v2.3.39`

Compare Source

Bug Fixes

deps: update devops base image logan-terraform to 3d21e42 (a5f6988)

`v2.3.38`

Compare Source

Bug Fixes

deps: update copier template to v0.5.7 (27a62c1)

`v2.3.37`

Compare Source

Bug Fixes

deps: update copier template to v0.5.6 (07f18a5)

`v2.3.36`

Compare Source

Bug Fixes

deps: update devops base image logan-terraform to 0bd3642 (28bd9e2)

`v2.3.35`

Compare Source

Bug Fixes

deps: update copier template to v0.5.5 (0564627)

`v2.3.34`

Compare Source

Bug Fixes

deps: update devops base image logan-terraform to 6db900a (7aaf1e5)

`v2.3.33`

Compare Source

Bug Fixes

deps: update copier template to v0.5.4 (1131546)

`v2.3.32`

Compare Source

Bug Fixes

deps: update copier template to v0.5.3 (a0def23)
deps: update dependency uis/devops/continuous-delivery/ci-templates to v7.23.7 (7b8135f)

`v2.3.31`

Compare Source

Bug Fixes

deps: update copier template to v0.5.2 (6ded4f9)
deps: update dependency uis/devops/continuous-delivery/ci-templates to v7.23.5 (564f14d)

`v2.3.30`

Compare Source

Bug Fixes

deps: update copier template to v0.5.1 (8ecf2f2)

`v2.3.29`

Compare Source

Bug Fixes

deps: update dependency uis/devops/continuous-delivery/ci-templates to v7.23.3 (f946f60)
deps: update devops base image logan-terraform to c53d413 (1f2d103)

`v2.3.28`

Compare Source

Bug Fixes

deps: update all non-major dependencies (1673f65)

`v2.3.26`

Compare Source

Bug Fixes

deps: update dependency uis/devops/continuous-delivery/ci-templates to v7.23.0 (6260bb4)
deps: update devops base image logan-terraform to 35eb8e1 (6d29ab4)

`v2.3.25`

Compare Source

Bug Fixes

deps: update copier template to v0.4.19 (e6e752e)

`v2.3.24`

Compare Source

Bug Fixes

deps: update dependency uis/devops/continuous-delivery/ci-templates to v7.22.1 (18e9c3d)

`v2.3.23`

Compare Source

Bug Fixes

deps: update copier template to v0.4.18 (fc6ed3d)

`v2.3.22`

Compare Source

Bug Fixes

deps: update copier template to v0.4.17 (48d7370)
deps: update dependency uis/devops/continuous-delivery/ci-templates to v7.22.0 (f7e5e85)

`v2.3.21`

Compare Source

Bug Fixes

deps: update all non-major dependencies (a1f9e85)
deps: update devops base image logan-terraform to v1.14 (5207010)

googleapis/python-api-core (google-api-core)

`v2.29.0`

Compare Source

Features

Auto enable mTLS when supported certificates are detected (#869) (f8bf6f9610f3e0e7580f223794c3906513e1fa73)
make parse_version_to_tuple public (#864) (c969186f2b66bde1df5e25bbedc5868e27d136f9)

Bug Fixes

flaky tests due to imprecision in floating point calculation and performance test setup (#865) (93404080f853699b9217e4b76391a13525db4e3e)
remove call to importlib.metadata.packages_distributions() for py38/py39 (#859) (628003e217d9a881d24f3316aecfd48c244a73f0)
Log version check errors (#858) (6493118cae2720696c3d0097274edfd7fe2bce67)
closes tailing streams in bidi classes. (#851) (c97b3a004044ebf8b35c2a7ba97409d7795e11b0)

`v2.28.1`

Compare Source

Bug Fixes

Remove dependency on packaging and pkg_resources (#852) (ca59a86)

`v2.28.0`

Compare Source

Features

Provide and use Python version support check (#832) (d36e896)

`v2.27.0`

Compare Source

Features

Support for async bidi streaming apis (#836) (9530548)

`v2.26.0`

Compare Source

Features

Add trove classifier for Python 3.14 (#842) (43690de)

`v2.25.2`

Compare Source

Bug Fixes

Deprecate credentials_file argument (#841) (324eb74)
Fix async tests and round-off error in test expectations (#837) (14a5978)

googleapis/google-api-python-client (google-api-python-client)

Features

analyticsadmin: Update the api b27bb76 (70dcfc9)
androidmanagement: Update the api 1dbe3b8 (70dcfc9)
apigee: Update the api 1f0d6b7 (70dcfc9)
beyondcorp: Update the api 10979e5 (70dcfc9)
bigqueryreservation: Update the api 0eede7c (70dcfc9)
bigquery: Update the api 367c996 (70dcfc9)
bigtableadmin: Update the api e913015 (70dcfc9)
compute: Update the api c95714c (70dcfc9)
contactcenterinsights: Update the api 5e6388d (70dcfc9)
container: Update the api a3da27a (70dcfc9)
datalineage: Update the api a8295f5 (70dcfc9)
dialogflow: Update the api 13cd2a7 (70dcfc9)
discoveryengine: Update the api 2c09202 (70dcfc9)
displayvideo: Update the api d975d8a (70dcfc9)
dlp: Update the api 6bbfa2e (70dcfc9)
eventarc: Update the api 7352f76 (70dcfc9)
firestore: Update the api d2f35e8 (70dcfc9)
iam: Update the api d1fc945 (70dcfc9)
integrations: Update the api b3a831c (70dcfc9)
managedkafka: Update the api 68eedb4 (70dcfc9)
metastore: Update the api e69debd (70dcfc9)
run: Update the api c45599e (70dcfc9)
secretmanager: Update the api 251eb52 (70dcfc9)
securityposture: Update the api 0300238 (70dcfc9)
testing: Update the api 73cabcc (70dcfc9)
travelimpactmodel: Update the api b63b5da (70dcfc9)
vmmigration: Update the api 4318af3 (70dcfc9)

`v2.174.0`

Compare Source

Features

addressvalidation: Update the api https://togithub.com/googleapis/google-api-python-client/commit/5e9daf51d0795a5b2b364219ad655e1a58056763 (6702f54)
aiplatform: Update the api https://togithub.com/googleapis/google-api-python-client/commit/9128db9f5b51414c6805459062db7a7888d3a1d6 (6702f54)
alloydb: Update the api https://togithub.com/googleapis/google-api-python-client/commit/93e12e03415b7bc4f497b90aaff7157d0ee7b2cf (6702f54)
androidmanagement: Update the api https://togithub.com/googleapis/google-api-python-client/commit/d9dda6d974e7afebd55911f8e8096012e362e416 (6702f54)
appengine: Update the api https://togithub.com/googleapis/google-api-python-client/commit/a9b2a680e3cde593af8e7d2d6be49612f5298d1d (6702f54)
apphub: Update the api https://togithub.com/googleapis/google-api-python-client/commit/d4e9819511b2280c689205b61f655c629a6c463a (6702f54)
bigtableadmin: Update the api https://togithub.com/googleapis/google-api-python-client/commit/015574c802125968e2ae44f9ed824b06698c0816 (6702f54)
containeranalysis: Update the api https://togithub.com/googleapis/google-api-python-client/commit/0dc959a1ffd6ed89a6b420efa06e6a23e333ced1 (6702f54)
content: Update the api https://togithub.com/googleapis/google-api-python-client/commit/a0e46dafc1548428d4c3384e2053ac1b28b6edea (6702f54)
dialogflow: Update the api https://togithub.com/googleapis/google-api-python-client/commit/60cbbb1c9cf88c9f1a2e290e9815d7407afe656d (6702f54)
discoveryengine: Update the api https://togithub.com/googleapis/google-api-python-client/commit/1c9b3d6f496ed39949cbe9da38d23d7b5eb02135 (6702f54)
healthcare: Update the api https://togithub.com/googleapis/google-api-python-client/commit/92d511d03439220155e2b6ecee62891708e91099 (6702f54)
merchantapi: Update the api https://togithub.com/googleapis/google-api-python-client/commit/3352e7d6d020691359aeaf5f47c2ecfec268e876 (6702f54)
networkservices: Update the api https://togithub.com/googleapis/google-api-python-client/commit/692d901eb41352c07e0874a8b67016dad5920fa0 (6702f54)
policysimulator: Update the api https://togithub.com/googleapis/google-api-python-client/commit/22daf37483746154ad0bbd973af6d56f3192cfa9 (6702f54)
redis: Update the api https://togithub.com/googleapis/google-api-python-client/commit/5cc349e00045322229a86555a0eb2a6b58c6a0e9 (6702f54)
retail: Update the api https://togithub.com/googleapis/google-api-python-client/commit/ef43776c4a3a68ff8f6ab8588d6ecbd84801135f (6702f54)
securitycenter: Update the api https://togithub.com/googleapis/google-api-python-client/commit/e07a589bf3ffebba5d509e442e3891b963558dcb (6702f54)
servicenetworking: Update the api https://togithub.com/googleapis/google-api-python-client/commit/b252598aaceaae8239c118652c2d3b846bd4b5c2 (6702f54)
sqladmin: Update the api https://togithub.com/googleapis/google-api-python-client/commit/db5a82e5c081c91cf4f65e3fd4957a5af6c6913c (6702f54)
tpu: Update the api https://togithub.com/googleapis/google-api-python-client/commit/f5ba3c3b323923bb965f2be289084252bb0008de (6702f54)
workloadmanager: Update the api https://togithub.com/googleapis/google-api-python-client/commit/c068dad903240aa2c3d497959c7064c461b88175 (6702f54)

Bug Fixes

admin: Update the api https://togithub.com/googleapis/google-api-python-client/commit/d97c80613c1a10541fc238618981356eb143359e (6702f54)
bigqueryreservation: Update the api https://togithub.com/googleapis/google-api-python-client/commit/f5bd50bd5e6fcd9f9624ecc54b1a8f8756f49c83 (6702f54)
chat: Update the api https://togithub.com/googleapis/google-api-python-client/commit/49c78aca5e77b5e95e6b121ab062bb4ba6ad6064 (6702f54)
workspaceevents: Update the api https://togithub.com/googleapis/google-api-python-client/commit/506382b34c8cd661b919b5607d91d3fb442fea62 (6702f54)

`v2.173.0`

Compare Source

Features

adsenseplatform: Update the api https://togithub.com/googleapis/google-api-python-client/commit/e4f767147a3a0b82145074e87c93a810a41c42e3 (1e332b2)
aiplatform: Update the api https://togithub.com/googleapis/google-api-python-client/commit/937e111e7e34c25645f93d2ba71e31b1cc373ec9 (1e332b2)
alloydb: Update the api https://togithub.com/googleapis/google-api-python-client/commit/27eaa84b48cd44c460d3950ac49f9e63c3f7fb44 (1e332b2)
analyticsadmin: Update the api https://togithub.com/googleapis/google-api-python-client/commit/afc9c6880c0fb24f8c7d6918506abcc2ef844b68 (1e332b2)
apigee: Update the api https://togithub.com/googleapis/google-api-python-client/commit/061148e351731867b61f0de768038cebbcb1bce9 (1e332b2)
appengine: Update the api https://togithub.com/googleapis/google-api-python-client/commit/7e5eeeeddbfba6bcc31aa3f54ce0a2747fa501b1 (1e332b2)
backupdr: Update the api https://togithub.com/googleapis/google-api-python-client/commit/7c2b5a7865e62f2ca2a3914d12b49fd3a075b37e (1e332b2)
beyondcorp: Update the api https://togithub.com/googleapis/google-api-python-client/commit/c52a62dd7ed54d9e068bc2e876a9c6ce7a266a78 (1e332b2)
cloudresourcemanager: Update the api https://togithub.com/googleapis/google-api-python-client/commit/fe4da5af9d90718974328f10557acec06753451b (1e332b2)
cloudsupport: Update the api https://togithub.com/googleapis/google-api-python-client/commit/b72841d1d1cda3e470dac90050aa109dcaf1f554 (1e332b2)
config: Update the api https://togithub.com/googleapis/google-api-python-client/commit/034fde8dd78ecbd983333f6ea1dca164db1a2599 (1e332b2)
container: Update the api https://togithub.com/googleapis/google-api-python-client/commit/6ff1f8cf9e35f759eabe935a446bb87dc2ac4794 (1e332b2)
datafusion: Update the api https://togithub.com/googleapis/google-api-python-client/commit/55acc319c24861224c32cc79e0876fe294c7bace (1e332b2)
dataproc: Update the api https://togithub.com/googleapis/google-api-python-client/commit/434be417aa2d96e56a01b732e92dee3a90b164cd (1e332b2)
dialogflow: Update the api https://togithub.com/googleapis/google-api-python-client/commit/3ef1de2c91931aad7a92cdafe3965260511e2fb3 (1e332b2)
discoveryengine: Update the api https://togithub.com/googleapis/google-api-python-client/commit/ba24242f0fc8b2e3ab4285c96a925633f2866250 (1e332b2)
fcm: Update the api https://togithub.com/googleapis/google-api-python-client/commit/8afa82057b37baff387eaa340bbb04c02e7f3cda (1e332b2)
firebaseappdistribution: Update the api https://togithub.com/googleapis/google-api-python-client/commit/9c51a3de64d58e9dbb8f1be776a0caf46599c63f (1e332b2)
firebaseml: Update the api https://togithub.com/googleapis/google-api-python-client/commit/a6d7f51251cb2158249dd1062c03076383c6d6c3 (1e332b2)
gkeonprem: Update the api https://togithub.com/googleapis/google-api-python-client/commit/da8a7f09ccaff62b6552452cc937e75ec329ab9f (1e332b2)
integrations: Update the api https://togithub.com/googleapis/google-api-python-client/commit/a4389380c21aa873402e69ebe20bf58af287c4c0 (1e332b2)
looker: Update the api https://togithub.com/googleapis/google-api-python-client/commit/cfcb20a840c60cd0f25a34492300e2bf3b47f74a (1e332b2)
netapp: Update the api https://togithub.com/googleapis/google-api-python-client/commit/74187c2c5e826876e48b3e00f252294218763a71 (1e332b2)
networkmanagement: Update the api https://togithub.com/googleapis/google-api-python-client/commit/8b9c87cfd5987d442d375e8ab9db50f1f05097ee (1e332b2)
networksecurity: Update the api https://togithub.com/googleapis/google-api-python-client/commit/39a6263bba9fbfbb17bd2ec82139be8d6648765c (1e332b2)
readerrevenuesubscriptionlinking: Update the api https://togithub.com/googleapis/google-api-python-client/commit/2d8d6045837abf4bfb9351edf26fcffee8f0de1b (1e332b2)
redis: Update the api https://togithub.com/googleapis/google-api-python-client/commit/28a2bc65f312c28863d70f32150dff2dc0c478a8 (1e332b2)
retail: Update the api https://togithub.com/googleapis/google-api-python-client/commit/5731c82145eee7ebb3993a1c1ca84ba9933ff64d (1e332b2)
run: Update the api https://togithub.com/googleapis/google-api-python-client/commit/c219bb5f8b15a82d5d844c84df6b014679ed72a2 (1e332b2)
securitycenter: Update the api https://togithub.com/googleapis/google-api-python-client/commit/1b9cab979f894e27bb9b7cdb9986f43f4d889ac1 (1e332b2)
sheets: Update the api https://togithub.com/googleapis/google-api-python-client/commit/74ad4942fd883e45791c9a32837093a922ce6f57 (1e332b2)
workstations: Update the api https://togithub.com/googleapis/google-api-python-client/commit/c818480f3239535ae9012d926a6be210d40b7cb9 (1e332b2)

Bug Fixes

bigquerydatatransfer: Update the api https://togithub.com/googleapis/google-api-python-client/commit/fee66fa0c7be44931b886ce72e88ec65c6cde1ee (1e332b2)
compute: Update the api https://togithub.com/googleapis/google-api-python-client/commit/5920b6fc2616340666fc879658f055d698e15248 (1e332b2)

googleapis/google-auth-library-python (google-auth)

`v2.48.0`

Compare Source

Features

add cryptography as required dependency (#1929) (52558ae2881b1e6555f6f5c0d76365c15807ead9)
Support the mTLS IAM domain for Certificate based Access (#1938) (8dcf91a1b05c85fbbd0bcee78d66e498099102ab)
add configurable GCE Metadata Server retries (#1488) (454b441b478ec62bbf1a6ad5bceb6c7cbbfd0c37)
honor NO_GCE_CHECK environment variable (#1610) (383c9827536d9376e8248370ce4c2b83e468d027)

Bug Fixes

resolve circular imports (#1942) (25c1b064545702cbef087cfcd15fbbb6ef1af74f)
removes content-header from AWS IMDS get request (#1934) (97bfea9e02ede953fc8ee154e0deed3a3cfc6dcc)
detect correct auth when ADC env var is set but empty (#1374) (bfc07e1050bd0aa86fa3b08cdf70c9b68b5fe6a2)
replace deprecated utcfromtimestamp (#1799) (e431f20cf73ccac71926a23ec454468cea92e053)
Use user_verification=preferred for ReAuth WebAuthn challenge (#1798) (3f88a24089c4ee6822d510de0db210b54260d873)

`v2.47.0`

Compare Source

Features

drop cachetools dependency in favor of simple local implementation (#1590) (5c07e1c4f52bc77a1b16fa3b7b3c5269c242f6f4)

Bug Fixes

Python 3.8 support (#1918) (60dc20014a35ec4ba71e8065b9a33ecbdbeca97a)

`v2.46.0`

Compare Source

Documentation

update urllib3 docstrings for v2 compatibility (#1903) (3f1aeea2d1014ea1d244a4c3470e52d74d55404b)

Features

Recognize workload certificate config in has_default_client_cert_source for mTLS for Agentic Identities (#1907) (0b9107d573123e358c347ffa067637f992af61b4)

Bug Fixes

add types to default and verify_token and Request init based on comments in the source code. (#1588) (59a5f588f7793b59d923a4185c8c07738da618f7)
fix the document of secure_authorized_session (#1536) (5d0014707fc359782df5ccfcaa75fd372fe9dce3)
remove setup.cfg configuration for creating universal wheels (#1693) (c767531ce05a89002d109f595187aff1fcaacfb7)
use .read() instead of .content.read() in aiohttp transport (#1899) (12f4470f808809e8abf1141f98d88ab720c3899b)
raise RefreshError for missing token in impersonated credentials (#1897) (94d04e090fdfc61926dd32bc1d65f8820b9cede5)
Fix test coverage for mtls_helper (#1886) (02e71631fe275d93825c2e957e830773e75133f7)

`v2.45.0`

Compare Source

Features

Adding Agent Identity bound token support and handling certificate mismatches with retries (#1890) (b32c934e6b0d09b94c467cd432a0a635e8b05f5c)

`v2.44.0`

Compare Source

Features

support Python 3.14 (#1822) (0f7097e78f247665b6ef0287d482033f7be2ed6d)
add ecdsa p-384 support (#1872) (39c381a5f6881b590025f36d333d12eff8dc60fc)
MDS connections use mTLS (#1856) (0387bb95713653d47e846cad3a010eb55ef2db4c)
Implement token revocation in STS client and add revoke() metho… (#1849) (d5638986ca03ee95bfffa9ad821124ed7e903e63)
Add shlex to correctly parse executable commands with spaces (#1855) (cf6fc3cced78bc1362a7fe596c32ebc9ce03c26b)

Bug Fixes

Use public refresh method for source credentials in ImpersonatedCredentials (#1884) (e0c3296f471747258f6d98d2d9bfde636358ecde)
Add temporary patch to workload cert logic to accomodate Cloud Run mis-configuration (#1880) (78de7907b8bdb7b5510e3c6fa8a3f3721e2436d7)
Delegate workload cert and key default lookup to helper function (#1877) (b0993c7edaba505d0fb0628af28760c43034c959)

`v2.43.0`

Compare Source

Features

Add public wrapper for _mtls_helper.check_use_client_cert which enables mTLS if GOOGLE_API_USE_CLIENT_CERTIFICATE is not set, when the MWID/X.509 cert sources detected (#1859) Add public wrapper for check_use_client_cert which enables mTLS if GOOGLE_API_USE_CLIENT_CERTIFICATE is not set, when the MWID/X.509 cert sources detected. Also, fix check_use_client_cert to return boolean value. Change #1848 added the check_use_client_cert method that helps know if client cert should be used for mTLS connection. However, that was in a private class, thus, created a public wrapper of the same function so that it can be used by python Client Libraries. Also, updated check_use_client_cert to return a boolean value instead of existing string value for better readability and future scope. --------- (1535eccbff0ad8f3fd6a9775316ac8b77dca66ba)
Enable mTLS if GOOGLE_API_USE_CLIENT_CERTIFICATE is not set, if the MWID/X.509 cert sources detected (#1848) The Python SDK will use a hybrid approach for mTLS enablement:

If the GOOGLE_API_USE_CLIENT_CERTIFICATE environment variable is set (either true or false), the SDK will respect that setting. This is necessary for test scenarios and users who need to explicitly control mTLS behavior.
If the GOOGLE_API_USE_CLIENT_CERTIFICATE environment variable is not set, the SDK will automatically enable mTLS only if it detects Managed Workload Identity (MWID) or X.509 Workforce Identity Federation (WIF) certificate sources. In other cases where the variable is not set, mTLS will remain disabled. ** This change also adds the helper method check_use_client_cert and it's unit test, which will be used for checking the criteria for setting the mTLS to true ** This change is only for Auth-Library, other changes will be created for Client-Library use-cases. --------- (395e405b64b56ddb82ee639958c2e8056ad2e82b)

onboard google-auth to librarian (#1838) This MR onboards google-auth library to the Librarian system. Wait for #1819. (c503eaa511357d7a76cc1e1f1d3a3be2dabd5bca)

`v2.42.1`

Compare Source

Bug Fixes

Catch ValueError for json.loads() (#1842) (b074cad)

`v2.42.0`

Compare Source

Features

Add trust boundary support for external accounts. (#1809) (36ecb1d)

Bug Fixes

Read scopes from ADC json for impersoanted cred (#1820) (62c0fc8)

`v2.41.1`

Compare Source

Bug Fixes

Suppress deprecation warning for ADC (#1815) (751ce3f)

`v2.41.0`

Compare Source

Features

Add support for cachetools 6.0 (#1773) (af18060)
Add trust boundary support for service accounts and impersonation. (#1778) (99be2ce)

Bug Fixes

Deprecating load_credentials_from_dict (58b66ec)
Deprecating load_credentials_from_file (58b66ec)
Fix type error in credentials.py for python 3.7 and 3.8 (#1805) (c30a6a7)

Documentation

Update user guide to include x509 feature. (#1802) (2d89ab4)

googleapis/google-cloud-python (google-cloud-secret-manager)

`v2.26.0`: google-cloud-secret-manager 2.26.0

Compare Source

Features

check Python and dependency versions in generated GAPICs (PiperOrigin-RevId: 8454486) (d2b35b25)
auto-enable mTLS when supported certificates are detected (PiperOrigin-RevId: 8454486) (d2b35b25)

`v2.25.0`: google-cloud-secret-manager: v2.25.0

Compare Source

Features

Add support for Python 3.14 (4763aa7)

Bug Fixes

Deprecate credentials_file argument (4763aa7)

grpc/grpc (grpcio)

`v1.76.0`

Compare Source

This is release 1.76.0 (genuine) of gRPC Core.

For gRPC documentation, see grpc.io. For previous releases, see Releases.

This release contains refinements, improvements, and bug fixes, with highlights listed below.

Core

Prioritize system CA over bundled CA. (#40583)
[event_engine] Introduce a event_engine_poller_for_python experiment. (#40243)
[metrics] add grpc.lb.backend_service label. (#40486)

C#

[csharp tools] #39374 Grpc.Tools can't process file Suffix name with Upper character. (#40072)

Python

[Python] gRPC AsyncIO: Improve CompletionQueue polling performance. (#39993)

`v1.75.1`

Compare Source

This is release gRPC Core 1.75.1 (gemini).

For gRPC documentation, see grpc.io. For previous releases, see Releases.

This release contains refinements, improvements, and bug fixes.

What's Changed

Python

Release grpcio wheels with Python 3.14 support (#40403)
Asyncio: fixes grpc shutdown race condition occurring during python interpreter finalizations. (#40447)
- This also addresses previously reported issues with empty error message on Python interpreter exit (Error in sys.excepthook:/Original exception was: empty): #36655, #38679, #33342
Python 3.14: preserve current behavior when using grpc.aio async methods outside of a running event loop. (#40750)
- Note: using async methods outside of a running event loop is discouraged by Python, and will be deprecated in future gRPC releases. Please use the asyncio.run() function (or asyncio.Runner for custom loop factories). For interactive mode, use dedicated asyncio REPL: python -m asyncio.

Full Changelog: https://github.com/grpc/grpc/compare/v1.75.0...v1.75.1

`v1.75.0`

Compare Source

This is release 1.75.0 (gemini) of gRPC Core.

For gRPC documentation, see grpc.io. For previous releases, see Releases.

This release contains refinements, improvements, and bug fixes, with highlights listed below.

Core

[Security] Cherry Pick Spiffe Verification. (#40515)
[Python][Typeguard] Part 3 - Add Typeguard to AIO stack in tests. (#40217)
[c-ares] update version to 1.34.5. (#39508)
[pick_first] fix bug that caused us to stop attempting to connect. (#40162)

C++

[OTel C++] Implement retry metrics. (#39195)

Objective-C

Fix data race by adding custom getter for state property with @synchronized locking. (#40146)

Python

gRPC Python (grpcio) now depends on typing-extensions~=4.13. (#40137)
Update musllinux wheels from musllinux_1_1 to musllinux_1_2. (#40317)
- Dropping musllinux_1_1 because it reached EOL in November 2024
- Reference on musllinux platform tags: PEP 656
grpc.aio typehint fixes. (#40215, #40217)
- Metadata type validation: Fixed metadata handling to support all sequence types (not just tuples), preventing runtime errors. Enhanced metadata type validation: isinstance(metadata, Sequence) instead of isinstance(metadata, tuple)
- Serializer parameters: Changed to Optional[SerializingFunction] for more accurate type representation
- Fixing the error in public API: ClientCallDetails.method was declared as str but always called with bytes, see InterceptedUnaryUnaryCall.
Fixes issue #40325 with grpcio failing to install on all non-Mac Apple devices internal builds. (#40347)

Ruby

Ruby: Mark credential object in channel. (#40394)
[Ruby] Add rubygems support for linux-gnu and linux-musl platforms. (#39549)

`v1.74.0`

Compare Source

This is release 1.74.0 (gee) of gRPC Core.

For gRPC documentation, see grpc.io. For previous releases, see Releases.

This release contains refinements, improvements, and bug fixes, with highlights listed below.

Core

[OTel C++, Posix EE] Plumb TCP write timestamps and metrics to OTel tracers. (#39946)
[event_engine] Implement fork support in Posix Event Engine. (#38980)
[http2] Fix GRPC_ARG_HTTP2_STREAM_LOOKAHEAD_BYTES for when BDP is disabled. (#39585)

Objective-C

[dep] Upgrade Protobuf Version 31.1. (#39916)

PHP

[PHP] Fully qualify stdClass with global namespace. (#39996)
[php] Fix PHPDoc so that UnaryCall defines the proper return type. (#37563)
fix typing of nullable parameters. (#39199)

Python

[EventEngine] Fix the issue with gRPC Python Client not reconnecting in certain situations: #38290, #39113, #39631. (#39894)
Fix gRPC Python docs website layout - use spaces optimally. (#40073)

Ruby

[Ruby] Add rubygems support for linux-gnu and linux-musl platforms . (#40174)
[ruby] enable EE fork support. (#39786)
[ruby] Return nil for c functions expected to return a VALUE. (#39214)
[ruby] remove connectivity state watch thread, fix cancellations from spurious signals. (#39409)
[ruby] Drop Ruby 3.0 support. (#39607)

`v1.73.1`

Compare Source

This is release 1.73.1 (gradient) of gRPC Core.

For gRPC documentation, see grpc.io. For previous releases, see Releases.

This release contains refinements, improvements, and bug fixes, with highlights listed below.

Python

[Backport of #39894 to v1.73.x] Fix the issue with gRPC Python Client not reconnecting in certain situations: #38290, #39113, #39631 (#39950).

kjd/idna (idna)

`v3.11`

Compare Source

googleapis/proto-plus-python (proto-plus)

`v1.27.1`

Compare Source

Bug Fixes

remove float_precision for protobuf 7 (#559) (390b9d571bb5e58879137d5ac7c4cea1978e0024)

`v1.27.0`

Compare Source

Features

Add classifier for Python 3.14 (#544) (d9f41512648c4551fc3e926649864c5dfe3964b2)

pyparsing/pyparsing (pyparsing)

`v3.3.2`

Compare Source

Defined pyparsing-specific warning classes so that they can be selectively enabled or disabled without affecting warnings raised by other libraries in the same Python app:
- PyparsingWarning - base warning for all pyparsing-specific warnings (inherits from UserWarning)
- PyparsingDeprecationWarning - warning for using deprecated features (inherits from PyparsingWarning and DeprecationWarning)
- PyparsingDiagnosticWarning - warning raised when pyparsing diagnostics are enabled and a diagnostic feature is used (inherits from PyparsingWarning)
Added as_datetime parse action to pyparsing.common - a more generalized version of the convert_to_datetime parse action (supports any expression that extracts date/time fields into "year", "month", "day", etc. results names), and validates that the parsed fields represent a valid date and time.
Added iso8601_date_validated and iso8601_datetime_validated expressions to pyparsing.common, which return a Python datetime.datetime
Various performance improvements in ParseResults class and core functions, with 10-20% performance overall.
Added regex_inverter web page (using PyScript) to demonstrate using the inv_regex.py example.
Expanded regex forms handled by the examples/inv_regex.py example:
- named capturing groups (?P<name>)
- partial repetition ({m,} and {,n})
- negated character classes ([^...])
Added SPy (Simplified Python) parser to examples.

`v3.3.1`

Compare Source

Added license info to metadata, following PEP-639. Thanks to Gedalia Pasternak and Marc Mueller for submitted issue and MR. Fixes #626.

=========================================================================================== The version 3.3.0 release will begin emitting DeprecationWarnings for pyparsing methods that have been renamed to PEP8-compliant names (introduced in pyparsing 3.0.0, in August, 2021, with legacy names retained as aliases). In preparation, I added in pyparsing 3.2.2 a utility for finding and replacing the legacy method names with the new names. This utility is located at pyparsing/tools/cvt_pep8_names.py. This script will scan all Python files specified on the command line, and if the -u option is selected, will replace all occurrences of the old method names with the new PEP8-compliant names, updating the files in place.

Here is an example that converts all the files in the pyparsing /examples directory:

  python -m pyparsing.tools.cvt_pyparsing_pep8_names -u examples/*.py

`v3.2.5`

Compare Source

JINX! Well, 3.2.4 had a bug for Word expressions that include a space character, if that expression was then copied, either directly with .copy() or by adding a results name, or included in another construct (like DelimitedList) that makes a copy internally. Issue #618, reported by mstinberg, among others - thanks, and sorry for the inconvenience.

`v3.2.4`

Compare Source

Barring any catastrophic bugs in this release, this will be the last release in the 3.2.x line. The next release, 3.3.0, will begin emitting DeprecationWarnings when the pre-PEP8 methods are used (see header notes above for more information, including available automation for converting any existing code using pyparsing with the old names).
Fixed bug when using a copy of a Word expression (either by using the explicit copy() method, or attaching a results name), and setting a new expression name, a raised ParseException still used the original expression name. Also affected Regex expressions with as_match or as_group_list = True. Reported by Waqas Ilyas, in Issue #612 - good catch!
Fixed type annotation for replace_with, to accept Any type. Fixes Issue #602, reported by esquonk.
Added locking around potential race condition in ParserElement.reset_cache, as well as other cache-related methods. Fixes Issue #604, reported by CarlosDescalziIM.
Substantial update to docstrings and doc generation in preparation for 3.3.0, great effort by FeRD, thanks!
Notable addition by FeRD to convert docstring examples to work with doctest! This was long overdue, thanks so much!

psf/requests (requests)

`v2.32.5`

Compare Source

Bugfixes

The SSLContext caching feature originally introduced in 2.32.0 has created a new class of issues in Requests that have had negative impact across a number of use cases. The Requests team has decided to revert this feature as long term maintenance of it is proving to be unsustainable in its current iteration.

Deprecations

Added support for Python 3.14.
Dropped support for Python 3.8 following its end of support.

uis/devops/continuous-delivery/ci-templates (uis/devops/continuous-delivery/ci-templates)

`v7.27.2`: 7.27.2

Compare Source

7.27.2 (2026-02-03)

`v7.27.1`: 7.27.1

Compare Source

7.27.1 (2026-02-03)

Bug Fixes

deps: update alpine/httpie:3.2.4 docker digest to bf0a912 (2fe852d)

`v7.27.0`: 7.27.0

Compare Source

7.27.0 (2026-02-02)

Features

gitlab-ci: include mandatory jobs (2342bab), closes #192

`v7.26.3`: 7.26.3

Compare Source

7.26.3 (2026-02-02)

Bug Fixes

deps: update alpine/httpie:3.2.4 docker digest to e8b8b9e (2bb77ff)

`v7.26.2`: 7.26.2

Compare Source

7.26.2 (2026-01-29)

`v7.26.1`: 7.26.1

Compare Source

7.26.1 (2026-01-29)

Bug Fixes

deps: update docker:dind docker digest to a284d31 (ab440ee)

`v7.26.0`: 7.26.0

Compare Source

7.26.0 (2026-01-28)

Features

use gitlab runner cache for pre-commit jobs (fe53b0d)

`v7.25.17`: 7.25.17

Compare Source

7.25.17 (2026-01-28)

Bug Fixes

deps: update docker:dind docker digest to 6a58fe0 (123bec6)

urllib3/urllib3 (urllib3)

`v2.6.3`

Compare Source

==================

Fixed a high-severity security issue where decompression-bomb safeguards of the streaming API were bypassed when HTTP redirects were followed. (GHSA-38jv-5279-wg99 <https://github.com/urllib3/urllib3/security/advisories/GHSA-38jv-5279-wg99>__)
Started treating Retry-After times greater than 6 hours as 6 hours by default. (#3743 <https://github.com/urllib3/urllib3/issues/3743>__)
Fixed urllib3.connection.VerifiedHTTPSConnection on Emscripten. (#3752 <https://github.com/urllib3/urllib3/issues/3752>__)

`v2.6.2`

Compare Source

==================

Fixed HTTPResponse.read_chunked() to properly handle leftover data in the decoder's buffer when reading compressed chunked responses. (#3734 <https://github.com/urllib3/urllib3/issues/3734>__)

`v2.6.1`

Compare Source

==================

Restore previously removed HTTPResponse.getheaders() and HTTPResponse.getheader() methods. (#3731 <https://github.com/urllib3/urllib3/issues/3731>__)

`v2.6.0`

Compare Source

==================

Security

Fixed a security issue where streaming API could improperly handle highly compressed HTTP content ("decompression bombs") leading to excessive resource consumption even when a small amount of data was requested. Reading small chunks of compressed data is safer and much more efficient now. (GHSA-2xpw-w6gg-jr37 <https://github.com/urllib3/urllib3/security/advisories/GHSA-2xpw-w6gg-jr37>__)
Fixed a security issue where an attacker could compose an HTTP response with virtually unlimited links in the Content-Encoding header, potentially leading to a denial of service (DoS) attack by exhausting system resources during decoding. The number of allowed chained encodings is now limited to 5. (GHSA-gm62-xv2j-4w53 <https://github.com/urllib3/urllib3/security/advisories/GHSA-gm62-xv2j-4w53>__)

.. caution::

If urllib3 is not installed with the optional urllib3[brotli] extra, but your environment contains a Brotli/brotlicffi/brotlipy package anyway, make sure to upgrade it to at least Brotli 1.2.0 or brotlicffi 1.2.0.0 to benefit from the security fixes and avoid warnings. Prefer using urllib3[brotli] to install a compatible Brotli package automatically.
If you use custom decompressors, please make sure to update them to respect the changed API of urllib3.response.ContentDecoder.

Features

Enabled retrieval, deletion, and membership testing in HTTPHeaderDict using bytes keys. (#3653 <https://github.com/urllib3/urllib3/issues/3653>__)
Added host and port information to string representations of HTTPConnection. (#3666 <https://github.com/urllib3/urllib3/issues/3666>__)
Added support for Python 3.14 free-threading builds explicitly. (#3696 <https://github.com/urllib3/urllib3/issues/3696>__)

Removals

Removed the HTTPResponse.getheaders() method in favor of HTTPResponse.headers. Removed the HTTPResponse.getheader(name, default) method in favor of HTTPResponse.headers.get(name, default). (#3622 <https://github.com/urllib3/urllib3/issues/3622>__)

Bugfixes

Fixed redirect handling in urllib3.PoolManager when an integer is passed for the retries parameter. (#3649 <https://github.com/urllib3/urllib3/issues/3649>__)
Fixed HTTPConnectionPool when used in Emscripten with no explicit port. (#3664 <https://github.com/urllib3/urllib3/issues/3664>__)
Fixed handling of SSLKEYLOGFILE with expandable variables. (#3700 <https://github.com/urllib3/urllib3/issues/3700>__)

Misc

Changed the zstd extra to install backports.zstd instead of zstandard on Python 3.13 and before. (#3693 <https://github.com/urllib3/urllib3/issues/3693>__)
Improved the performance of content decoding by optimizing BytesQueueBuffer class. (#3710 <https://github.com/urllib3/urllib3/issues/3710>__)
Allowed building the urllib3 package with newer setuptools-scm v9.x. (#3652 <https://github.com/urllib3/urllib3/issues/3652>__)
Ensured successful urllib3 builds by setting Hatchling requirement to >= 1.27.0. (#3638 <https://github.com/urllib3/urllib3/issues/3638>__)

`v2.5.0`

Compare Source

==================

Features

Added support for the compression.zstd module that is new in Python 3.14. See PEP 784 <https://peps.python.org/pep-0784/>_ for more information. (#3610 <https://github.com/urllib3/urllib3/issues/3610>__)
Added support for version 0.5 of hatch-vcs (#3612 <https://github.com/urllib3/urllib3/issues/3612>__)

Bugfixes

Fixed a security issue where restricting the maximum number of followed redirects at the urllib3.PoolManager level via the retries parameter did not work.
Made the Node.js runtime respect redirect parameters such as retries and redirects.
Raised exception for HTTPResponse.shutdown on a connection already released to the pool. (#3581 <https://github.com/urllib3/urllib3/issues/3581>__)
Fixed incorrect CONNECT statement when using an IPv6 proxy with connection_from_host. Previously would not be wrapped in []. (#3615 <https://github.com/urllib3/urllib3/issues/3615>__)

Configuration

📅 Schedule: Branch creation - Monday through Friday ( * * * * 1-5 ) in timezone Europe/London, Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever MR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This MR will be recreated if closed unmerged. Get config help if that's undesired.

If you want to rebase/retry this MR, check this box

This MR has been generated by Renovate Bot.

Edited Feb 04, 2026 by uis-devops-renovatebot