chore(deps): bump the dependencies group across 1 directory with 7 updates

[dependabot]

Bumps the dependencies group with 7 updates in the / directory:

Package	From	To
fhir-resources	7.1.0	8.0.0
sqlalchemy	2.0.37	2.0.38
pydantic	2.10.5	2.10.6
fastapi	0.115.6	0.115.8
numpy	2.2.2	2.2.3
pytz	2024.2	2025.1
cython	3.0.11	3.0.12

Updates fhir-resources from 7.1.0 to 8.0.0

Changelog

Sourced from fhir-resources's changelog.

8.0.0 (2024-12-25)

• The minimum required version for fhir-core is 1.0.0, which obviously comes with new features and bug fixes. For example xml serialization/deserialization. See changes log here <https://github.com/nazrulworld/fhir-core/blob/1.0.0/HISTORY.rst#100-2024-12-25>_

• Issue #168 nazrulworld/fhir.resources#166

8.0.0b4 (2024-10-24)

• PR#160 <https://github.com/nazrulworld/fhir.resources/pull/160>_ switch the type of Element.id from id to string for R4B [cybernop]

8.0.0b3 (2024-10-10)

• Minimum version of fhir-core package have been updated.
• All of fhir resources are regenerated for to comply with the optionality of fhir model's field. Issue nazrulworld/fhir.resources#164

8.0.0b2 (2024-10-02)

• Issue [#164](https://github.com/nazrulworld/fhir.resources/issues/164) <https://github.com/nazrulworld/fhir.resources/issues/164>_ get_fhir_model_class is now available and can be imported from base package. For example from fhir.resources import get_fhir_model_class or from fhir.resources.STU3 import get_fhir_model_class

8.0.0b1 (2024-08-05)

Breaking

• Drop support for python 3.7

• FHIR DTU2 packages are no longer available.

Commits

• 2de36c7 Preparing release 8.0.0
• 1115f8b ✨ setup py has been updated, including Manifest file.
• fa483dc ✨ The minimum required version for fhir-core is 1.0.0
• e2c8ca4 📝 updated readme
• c5a8e5f Back to development: 8.0.0b5
• 0380993 Preparing release 8.0.0b4
• eeafae8 ✨ minimum fhir-core version requirement has been updated.
• bd1b754 📝 documents are updater for PR #160
• cb5b4c8 Merge pull request #160 from cybernop/fix/element-id
• a309dff switch the type of Element.id from id to string for R4B
• Additional commits viewable in compare view

Updates sqlalchemy from 2.0.37 to 2.0.38

Release notes

Sourced from sqlalchemy's releases.

2.0.38

Released: February 6, 2025

engine

• [engine] [bug] Fixed event-related issue where invoking Engine.execution_options() on a Engine multiple times while making use of event-registering parameters such as isolation_level would lead to internal errors involving event registration.

  References: #12289

sql

• [sql] [bug] Reorganized the internals by which the .c collection on a FromClause gets generated so that it is resilient against the collection being accessed in concurrent fashion. An example is creating a Alias or Subquery and accessing it as a module level variable. This impacts the Oracle dialect which uses such module-level global alias objects but is of general use as well.

  References: #12302

• [sql] [bug] Fixed SQL composition bug which impacted caching where using a None value inside of an in_() expression would bypass the usual "expanded bind parameter" logic used by the IN construct, which allows proper caching to take place.

  References: #12314

postgresql

• [postgresql] [usecase] [asyncio] Added an additional asyncio.shield() call within the connection terminate process of the asyncpg driver, to mitigate an issue where terminate would be prevented from completing under the anyio concurrency library.

  References: #12077

• [postgresql] [bug] Adjusted the asyncpg connection wrapper so that the connection.transaction() call sent to asyncpg sends None for isolation_level if not otherwise set in the SQLAlchemy dialect/wrapper, thereby allowing asyncpg to make use of the server level setting for isolation_level in the absense of a client-level setting. Previously, this behavior of asyncpg was blocked by a hardcoded read_committed.

... (truncated)

Commits

• See full diff in compare view

Updates pydantic from 2.10.5 to 2.10.6

Release notes

Sourced from pydantic's releases.

v2.10.6 2025-01-23

What's Changed

Fixes

• Fix JSON Schema reference collection with 'examples' keys by @​Viicos in #11325
• Fix url python serialization by @​sydney-runkle in #11331

Full Changelog: pydantic/pydantic@v2.10.5...v2.10.6

Changelog

Sourced from pydantic's changelog.

v2.10.6 (2025-01-23)

GitHub release

What's Changed

Fixes

• Fix JSON Schema reference collection with 'examples' keys by @​Viicos in #11325
• Fix url python serialization by @​sydney-runkle in #11331

Commits

• df05e69 Bump version to v2.10.6 (#11334)
• 4160826 Fix url python serialization (#11331)
• f94e842 Fix JSON Schema reference collection with "examples" keys (#11325)
• See full diff in compare view

Updates fastapi from 0.115.6 to 0.115.8

Release notes

Sourced from fastapi's releases.

0.115.8

Fixes

• 🐛 Fix OAuth2PasswordRequestForm and OAuth2PasswordRequestFormStrict fixed grant_type "password" RegEx. PR #9783 by @​skarfie123.

Refactors

• ✅ Simplify tests for body_multiple_params . PR #13237 by @​alejsdev.
• ♻️ Move duplicated code portion to a static method in the APIKeyBase super class. PR #3142 by @​ShahriyarR.
• ✅ Simplify tests for request_files. PR #13182 by @​alejsdev.

Docs

• 📝 Change the word "unwrap" to "unpack" in docs/en/docs/tutorial/extra-models.md. PR #13061 by @​timothy-jeong.
• 📝 Update Request Body's tutorial002 to deal with tax=0 case. PR #13230 by @​togogh.
• 👥 Update FastAPI People - Experts. PR #13269 by @​tiangolo.

Translations

• 🌐 Add Japanese translation for docs/ja/docs/environment-variables.md. PR #13226 by @​k94-ishi.
• 🌐 Add Russian translation for docs/ru/docs/advanced/async-tests.md. PR #13227 by @​Rishat-F.
• 🌐 Update Russian translation for docs/ru/docs/tutorial/dependencies/dependencies-in-path-operation-decorators.md. PR #13252 by @​Rishat-F.
• 🌐 Add Russian translation for docs/ru/docs/tutorial/bigger-applications.md. PR #13154 by @​alv2017.

Internal

• ⬆️ Add support for Python 3.13. PR #13274 by @​tiangolo.
• ⬆️ Upgrade AnyIO max version for tests, new range: >=3.2.1,<5.0.0. PR #13273 by @​tiangolo.
• 🔧 Update Sponsors badges. PR #13271 by @​tiangolo.
• ♻️ Fix notify_translations.py empty env var handling for PR label events vs workflow_dispatch. PR #13272 by @​tiangolo.
• ♻️ Refactor and move scripts/notify_translations.py, no need for a custom GitHub Action. PR #13270 by @​tiangolo.
• 🔨 Update FastAPI People Experts script, refactor and optimize data fetching to handle rate limits. PR #13267 by @​tiangolo.
• ⬆ Bump pypa/gh-action-pypi-publish from 1.12.3 to 1.12.4. PR #13251 by @​dependabot[bot].

0.115.7

Upgrades

• ⬆️ Upgrade python-multipart to >=0.0.18. PR #13219 by @​DanielKusyDev.
• ⬆️ Bump Starlette to allow up to 0.45.0: >=0.40.0,<0.46.0. PR #13117 by @​Kludex.
• ⬆️ Upgrade jinja2 to >=3.1.5. PR #13194 by @​DanielKusyDev.

Refactors

• ✅ Simplify tests for websockets. PR #13202 by @​alejsdev.
• ✅ Simplify tests for request_form_models . PR #13183 by @​alejsdev.
• ✅ Simplify tests for separate_openapi_schemas. PR #13201 by @​alejsdev.
• ✅ Simplify tests for security. PR #13200 by @​alejsdev.
• ✅ Simplify tests for schema_extra_example. PR #13197 by @​alejsdev.
• ✅ Simplify tests for request_model. PR #13195 by @​alejsdev.
• ✅ Simplify tests for request_forms_and_files. PR #13185 by @​alejsdev.

... (truncated)

Commits

• 7128971 🔖 Release version 0.115.8
• 55f8a44 📝 Update release notes
• 83ab6ac 📝 Change the word "unwrap" to "unpack" in `docs/en/docs/tutorial/extra-models...
• 3d02a92 📝 Update release notes
• 1b00f8a ✅ Simplify tests for body_multiple_params (#13237)
• d97647f 📝 Update release notes
• 9667ce8 📝 Update Request Body's tutorial002 to deal with tax=0 case (#13230)
• 0541693 📝 Update release notes
• 041b2e1 📝 Update release notes
• 30b270b ♻️ Move duplicated code portion to a static method in the APIKeyBase super ...
• Additional commits viewable in compare view

Updates numpy from 2.2.2 to 2.2.3

Release notes

Sourced from numpy's releases.

2.2.3 (Feb 13, 2025)

NumPy 2.2.3 Release Notes

NumPy 2.2.3 is a patch release that fixes bugs found after the 2.2.2 release. The majority of the changes are typing improvements and fixes for free threaded Python. Both of those areas are still under development, so if you discover new problems, please report them.

This release supports Python versions 3.10-3.13.

Contributors

A total of 9 people contributed to this release. People with a "+" by their names contributed a patch for the first time.

• !amotzop
• Charles Harris
• Chris Sidebottom
• Joren Hammudoglu
• Matthew Brett
• Nathan Goldbaum
• Raghuveer Devulapalli
• Sebastian Berg
• Yakov Danishevsky +

Pull requests merged

A total of 21 pull requests were merged for this release.

• #28185: MAINT: Prepare 2.2.x for further development
• #28201: BUG: fix data race in a more minimal way on stable branch
• #28208: BUG: Fix from_float_positional errors for huge pads
• #28209: BUG: fix data race in np.repeat
• #28212: MAINT: Use VQSORT_COMPILER_COMPATIBLE to determine if we should...
• #28224: MAINT: update highway to latest
• #28236: BUG: Add cpp atomic support (#28234)
• #28237: BLD: Compile fix for clang-cl on WoA
• #28243: TYP: Avoid upcasting float64 in the set-ops
• #28249: BLD: better fix for clang / ARM compiles
• #28266: TYP: Fix timedelta64.__divmod__ and timedelta64.__mod__...
• #28274: TYP: Fixed missing typing information of set_printoptions
• #28278: BUG: backport resource cleanup bugfix from gh-28273
• #28282: BUG: fix incorrect bytes to stringdtype coercion
• #28283: TYP: Fix scalar constructors
• #28284: TYP: stub numpy.matlib
• #28285: TYP: stub the missing numpy.testing modules
• #28286: CI: Fix the github label for TYP: PR's and issues
• #28305: TYP: Backport typing updates from main
• #28321: BUG: fix race initializing legacy dtype casts
• #28324: CI: update test_moderately_small_alpha

... (truncated)

Commits

• a274561 Merge pull request #28322 from charris/prepare-2.2.3
• 5ab0f71 REL: Prepare for the NumPy 2.2.3 release [wheel build]
• 010ad9b Merge pull request #28324 from charris/update-test_dirichlet_moderately_small...
• 6338746 CI: update test_moderately_small_alpha [wheel build]
• 56f8d5b Merge pull request #28321 from charris/backport-28290
• 48515a3 MAINT: Update some testing files from main
• 96ca7e3 MAINT: respond to code review
• c20ac88 MAINT: use a try/finally to make the deadlock protection more robust
• d494647 MAINT: fix indentation and clarify comment
• 3f8fbd6 MAINT: go back to try/except
• Additional commits viewable in compare view

Updates pytz from 2024.2 to 2025.1

Commits

• 00ad7f1 Bump version numbers to 2025.1 / 2025a
• f3a8f38 IANA 2025a
• 7abdc14 Squashed 'tz/' changes from 6903dde39e..5ad5cfba5b
• See full diff in compare view

Updates cython from 3.0.11 to 3.0.12

Changelog

Sourced from cython's changelog.

3.0.12 (2025-02-11)

Bugs fixed

• Release 3.0.11 introduced some incorrect noexcept warnings. (Github issue :issue:6335)

• Conditional assignments to variables using the walrus operator could crash. (Github issue :issue:6094)

• Dict assignments to struct members with reserved C names could generate invalid C code.

• Fused ctuples with the same entry types but different sizes could fail to compile. (Github issue :issue:6328)

• In Py3, pyximport was not searching sys.path when looking for importable source files. (Github issue :issue:5615)

• Using & 0 on integers produced with int.from_bytes() could read invalid memory on Python 3.10. (Github issue :issue:6480)

• Modules could fail to compile in PyPy 3.11 due to missing CPython specific header files. Patch by Matti Picus. (Github issue :issue:6482)

• Minor fix in C++ partial_sum() declaration.

Commits

• c7dae70 Fix release date.
• b161c72 Prepare release of 3.0.12.
• 45c9825 Update changelog.
• b9a5b70 Exclude failing CI target macos-13/Py2.7.
• 07d7cc1 Fix spelling errors
• 0824349 Fix test in Py2.7.
• 20ebc99 Fix test in Py2.7.
• 20f6e4f Do not include CPython 'internal/*.h' files in PyPy (GH-6482)
• 0237382 Fix libcpp partial_sum definition
• 8522862 Backport ufunc Numpy2 fix
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[glichtner]

@dependabot ignore fhir-resources major version

[dependabot]

OK, I won't notify you about version 8.x.x of fhir-resources again, unless you unignore it.

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.