Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump the production-dependencies group across 1 directory with 7 updates #1597

Closed
wants to merge 1 commit into from
Closed

Bump the production-dependencies group across 1 directory with 7 updates #1597

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 31, 2025
edited
Loading

Bumps the production-dependencies group with 7 updates in the / directory:

Package From To
grpcio 1.69.0 1.70.0
structlog 24.4.0 25.1.0
boto3 1.35.98 1.36.10
marshmallow 3.25.1 3.26.0
google-cloud-storage 2.19.0 3.0.0
google-cloud-pubsub 2.27.2 2.28.0
cachetools 5.5.0 5.5.1

Updates grpcio from 1.69.0 to 1.70.0

Release notes

Sourced from grpcio's releases.

Release v1.70.0

This is release 1.70.0 (genius) of gRPC Core.

For gRPC documentation, see grpc.io. For previous releases, see Releases.

This release contains refinements, improvements, and bug fixes, with highlights listed below.

Core

  • [BoringSSL] Update third_party/boringssl-with-bazel. (#38274)

C++

  • gRPC C++ begins to require C++17 or later to build and use gRPC C++. You may need the following settings

Release v1.70.0-pre1

This is a prerelease of gRPC Core 1.70.0 (genius).

For gRPC documentation, see grpc.io. For previous releases, see Releases.

This prerelease contains refinements, improvements, and bug fixes.

Commits
  • 93571f6 [Backport to 1.70.x] Updated python requirements (#38524)
  • 9d3bef7 [Revert] "[ruby] [backport-1.70.x] Build/test ruby 3.4 and build native gems ...
  • 6788979 [Release] Bump version to 1.70.0 (on v1.70.x branch) (#38509)
  • 2d2d80b [Backport] Php & Dart interop test fixes (#38463) (#38507)
  • ab2222d [ruby] [backport-1.70.x] Build/test ruby 3.4 and build native gems with Ruby ...
  • f1e4dfa [Backport-to-1.70.x] Fix python build script to handle C and C++ std options ...
  • 6c8df89 [Release] Bump version to 1.70.0-pre1 (on v1.70.x branch) (#38407)
  • 9eb9ebd [Release] Bump core version to 45.0.0 for upcoming release (#38403)
  • df95cf9 [benchmark] Match case of excluded scenario. (#38390)
  • 048ea42 [CI] Re-enabled modernize-unary-static-assert (#38333)
  • Additional commits viewable in compare view

Updates structlog from 24.4.0 to 25.1.0

Release notes

Sourced from structlog's releases.

25.1.0

Highlights

Lots of updates to exception handling that I hope will stabilize a bit now.

Full changelog below!

Special Thanks

This release would not be possible without my generous sponsors! Thank you to all of you making sustainable maintenance possible! If you would like to join them, go to https://github.com/sponsors/hynek and check out the sweet perks!

Above and Beyond

Variomedia AG (@variomedia), Tidelift (@tidelift), Klaviyo (@klaviyo), FilePreviews (@filepreviews), Privacy Solutions GmbH (@privacy-solutions), Gedankenspieler (@Gedankenspieler), Daniel Fortunov (@asqui), Kevin P. Fleming (@kpfleming), and Polar (@polarsource).

Maintenance Sustainers

Buttondown (@buttondown), Christopher Dignam (@chdsbd), Stefan Hagen (@sthagen), Magnus Watn (@magnuswatn), David Cramer (@dcramer), Jesse Snyder (@jessesnyder), Rivo Laks (@rivol), Chris Withers (@cjw296), Mike Fiedler (@miketheman), Duncan Hill (@cricalix), Colin Marquardt (@cmarqu), Pieter Swinkels (@swinkels), Nick Libertini (@libertininick), Moving Content AG (@moving-content), ProteinQure (@ProteinQure), The Westervelt Company (@westerveltco), Sławomir Ehlert (@slafs), Mostafa Khalil (@khadrawy), Filip Mularczyk (@mukiblejlok), Thomas Klinger (@thmsklngr), Andreas Poehlmann (@ap--), August Bigelow (@atbigelow), Carlton Gibson (@carltongibson), and Roboflow (@roboflow).

Not to forget 11 more amazing humans who chose to be generous but anonymous!

Full Changelog

Added

  • Add structlog.stdlib.render_to_log_args_and_kwargs processor. Same as structlog.stdlib.render_to_log_kwargs, but also allows to pass positional arguments to logging. With it, you do not need to add structlog.stdlib.PositionalArgumentsFormatter processor to format positional arguments from structlog loggers. #668

  • Native loggers now have is_enabled_for() and get_effective_level() methods that mirror the behavior of the standard library's logging.Logger.isEnabledFor() and logging.Logger.getEffectiveLevel(). #689

Changed

  • structlog.typing.BindableLogger protocol now returns Self instead of BindableLogger. This adds a dependency on typing-extensions for Pythons older than 3.11. #642 #659

  • structlog.dev.ConsoleRenderer will quote string value with special characters. #647

  • structlog.stdlib.recreate_defaults() now also adds structlog.stdlib.PositionalArgumentsFormatter. In default native mode, this is done by the loggers at the edge.

  • structlog.make_filtering_bound_logger() now also accepts a string for min_level.

Fixed

  • Fix handling calls to {logger}.exception() outside of exception blocks. Depending on the structlog configuration, this either resulted in an event dict key exception: "MISSING" or lead to an error. Now, an invalid or missing exc_info will just be ignored. This means, that calling {logger}.exception() outside of an exception block is basically the same as calling {logger}.error(). #634 #680

  • Instantiating structlog.dev.ConsoleRenderer does not mutate the passed styles dict anymore. #669

  • The native FilteringBoundLogger.fatal() method now maps to the critical level, as it does in the standard library. Note that the level is discouraged to use there, so we recommend to stick to error() or critical(). #677

... (truncated)

Changelog

Sourced from structlog's changelog.

25.1.0 - 2025-01-16

Added

  • Add structlog.stdlib.render_to_log_args_and_kwargs processor. Same as structlog.stdlib.render_to_log_kwargs, but also allows to pass positional arguments to logging. With it, you do not need to add structlog.stdlib.PositionalArgumentsFormatter processor to format positional arguments from structlog loggers. #668

  • Native loggers now have is_enabled_for() and get_effective_level() methods that mirror the behavior of the standard library's logging.Logger.isEnabledFor() and logging.Logger.getEffectiveLevel(). #689

Changed

  • structlog.typing.BindableLogger protocol now returns Self instead of BindableLogger. This adds a dependency on typing-extensions for Pythons older than 3.11. #642 #659

  • structlog.dev.ConsoleRenderer will quote string value with special characters. #647

  • structlog.stdlib.recreate_defaults() now also adds structlog.stdlib.PositionalArgumentsFormatter. In default native mode, this is done by the loggers at the edge.

  • structlog.make_filtering_bound_logger() now also accepts a string for min_level.

Fixed

  • Fix handling calls to {logger}.exception() outside of exception blocks. Depending on the structlog configuration, this either resulted in an event dict key exception: "MISSING" or lead to an error. Now, an invalid or missing exc_info will just be ignored. This means, that calling {logger}.exception() outside of an exception block is basically the same as calling {logger}.error(). #634 #680

  • Instantiating structlog.dev.ConsoleRenderer does not mutate the passed styles dict anymore. #669

  • The native FilteringBoundLogger.fatal() method now maps to the critical level, as it does in the standard library. Note that the level is discouraged to use there, so we recommend to stick to error() or critical(). #677

  • structlog.tracebacks.ExceptionDictTransformer now actually accepts None for locals_max_length and locals_max_string. #675

Commits
  • a38a5ac Prepare 25.1.0
  • c5803e8 Consistency
  • 3eab3e9 Fix changelog headings
  • 02d072a Makes no difference
  • 4350cdd Try if test PyPI will deduct the correct license with lower 2.3 metadata
  • bc147a4 Only build in RTD and only doctests in CI (#691)
  • e97b839 native loggers: add is_enabled_for & get_effective_level (#689)
  • 8688c32 docs: use uv & 3.13 for build (#690)
  • c7a6a10 Allow make_filtering_bound_logger to receive a str for level
  • d43b2cb Inter is cliche now
  • Additional commits viewable in compare view

Updates boto3 from 1.35.98 to 1.36.10

Commits
  • 7893a06 Merge branch 'release-1.36.10'
  • f147d86 Bumping version to 1.36.10
  • 07397a2 Add changelog entries from botocore
  • 6003754 Merge branch 'release-1.36.9'
  • 622fdef Merge branch 'release-1.36.9' into develop
  • 76e9059 Bumping version to 1.36.9
  • 4383c56 Add changelog entries from botocore
  • c74aae5 Merge branch 'release-1.36.8'
  • 81af4d6 Merge branch 'release-1.36.8' into develop
  • 6b0f641 Bumping version to 1.36.8
  • Additional commits viewable in compare view

Updates marshmallow from 3.25.1 to 3.26.0

Changelog

Sourced from marshmallow's changelog.

3.26.0 (2025-01-22)

Features:

  • Typing: Add type annotations and improved documentation for class Meta <marshmallow.Schema.Meta> options (:pr:2760).
  • Typing: Improve type coverage of marshmallow.Schema.SchemaMeta (:pr:2761).
  • Typing: marshmallow.Schema.loads parameter allows bytes and bytesarray (:pr:2769).

Bug fixes:

  • Respect data_key when schema validators raise a ValidationError <marshmallow.exceptions.ValidationError> with a field_name argument (:issue:2170). Thanks :user:matejsp for reporting.
  • Correctly handle multiple @post_load <marshmallow.post_load> methods where one method appends to the data and another passes pass_original=True (:issue:1755). Thanks :user:ghostwheel42 for reporting.
  • URL fields now properly validate file paths (:issue:2249). Thanks :user:0xDEC0DE for reporting and fixing.

Documentation:

  • Add :doc:upgrading guides <upgrading> for 3.24 and 3.26 (:pr:2780).
  • Various documentation improvements (:pr:2757, :pr:2759, :pr:2765, :pr:2774, :pr:2778, :pr:2783, :pr:2796).

Deprecations:

  • The ordered class Meta <marshmallow.Schema.Meta> option is deprecated (:issue:2146, :pr:2762). Field order is already preserved by default. Set marshmallow.Schema.dict_class to collections.OrderedDict to maintain the previous behavior.
Commits

Updates google-cloud-storage from 2.19.0 to 3.0.0

Release notes

Sourced from google-cloud-storage's releases.

v3.0.0

3.0.0 (2025-01-28)

⚠ BREAKING CHANGES

Please consult the README for details on this major version release.

  • The default checksum strategy for uploads has changed from None to "auto" (#1383)
  • The default checksum strategy for downloads has changed from "md5" to "auto" (#1383)
  • Deprecated positional argument "num_retries" has been removed (#1377)
  • Deprecated argument "text_mode" has been removed (#1379)
  • Blob.download_to_filename() now deletes the empty destination file on a 404 (#1394)
  • Media operations now use the same retry backoff, timeout and custom predicate system as non-media operations, which may slightly impact default retry behavior (#1385)
  • Retries are now enabled by default for uploads, blob deletes and blob metadata updates (#1400)

Features

  • Add "auto" checksum option and make default (#1383) (5375fa0)
  • Blob.download_to_filename() deletes the empty destination file on a 404 (#1394) (066be2d)
  • Enable custom predicates for media operations (#1385) (f3517bf)
  • Integrate google-resumable-media (#1283) (bd917b4)
  • Retry by default for uploads, blob deletes, metadata updates (#1400) (0426005)

Bug Fixes

  • Cancel upload when BlobWriter exits with exception (#1243) (df107d2)
  • Changed name of methods Blob.from_string() and Bucket.from_string() to from_uri() (#1335) (58c1d03)
  • Correctly calculate starting offset for retries of ranged reads (#1376) (7b6c9a0)
  • Filter download_kwargs in BlobReader (#1411) (0c21210)
  • Remove deprecated num_retries argument (#1377) (58b5040)
  • Remove deprecated text_mode argument (#1379) (4d20a8e)

Documentation

  • Correct formatting and update README.rst (#1427) (2945853)
  • Fix issue with exceptions.py documentation (#1328) (22b8c30)

v3.0.0rc1

3.0.0rc1 (2024-12-12)

⚠ BREAKING CHANGES

  • The default checksum strategy for uploads has changed from None to "auto" (#1383) (5375fa0)
  • The default checksum strategy for downloads has changed from "md5" to "auto" (#1383) (5375fa0)
  • Deprecated positional argument "num_retries" has been removed (#1377) (58b5040)
  • Deprecated argument "text_mode" has been removed (#1379) (4d20a8e)
  • Media operation retries now work identically to other retries, which may impact default retry settings (#1385) (f3517bf)
  • Blob.download_to_filename() deletes the empty destination file on a 404

... (truncated)

Changelog

Sourced from google-cloud-storage's changelog.

3.0.0 (2025-01-28)

⚠ BREAKING CHANGES

Please consult the README for details on this major version release.

  • The default checksum strategy for uploads has changed from None to "auto" (#1383)
  • The default checksum strategy for downloads has changed from "md5" to "auto" (#1383)
  • Deprecated positional argument "num_retries" has been removed (#1377)
  • Deprecated argument "text_mode" has been removed (#1379)
  • Blob.download_to_filename() now deletes the empty destination file on a 404 (#1394)
  • Media operations now use the same retry backoff, timeout and custom predicate system as non-media operations, which may slightly impact default retry behavior (#1385)
  • Retries are now enabled by default for uploads, blob deletes and blob metadata updates (#1400)

Features

  • Add "auto" checksum option and make default (#1383) (5375fa0)
  • Blob.download_to_filename() deletes the empty destination file on a 404 (#1394) (066be2d)
  • Enable custom predicates for media operations (#1385) (f3517bf)
  • Integrate google-resumable-media (#1283) (bd917b4)
  • Retry by default for uploads, blob deletes, metadata updates (#1400) (0426005)

Bug Fixes

  • Cancel upload when BlobWriter exits with exception (#1243) (df107d2)
  • Changed name of methods Blob.from_string() and Bucket.from_string() to from_uri() (#1335) (58c1d03)
  • Correctly calculate starting offset for retries of ranged reads (#1376) (7b6c9a0)
  • Filter download_kwargs in BlobReader (#1411) (0c21210)
  • Remove deprecated num_retries argument (#1377) (58b5040)
  • Remove deprecated text_mode argument (#1379) (4d20a8e)

Documentation

  • Correct formatting and update README.rst (#1427) (2945853)
  • Fix issue with exceptions.py documentation (#1328) (22b8c30)
Commits
  • f2cc9c5 chore(main): release 3.0.0 (#1393)
  • 71455bc samples: add OTel Tracing quickstart (#1371)
  • 2945853 Docs: Correct formatting and update README.rst (#1427)
  • 0426005 feat: Retry by default for uploads, blob deletes, metadata updates (#1400)
  • 0c21210 fix: filter download_kwargs in BlobReader (#1411)
  • c2a2ce5 chore(python): exclude .github/workflows/unittest.yml in renovate config (#1407)
  • ffa0734 chore(deps): update all dependencies (#1405)
  • 2e94ad0 chore(python): Update the python version in docs presubmit to use 3.10 (#1403)
  • 4e9a382 feat!: Release as 3.0.0 (#1396)
  • 066be2d feat: download_to_filename deletes the empty file on a 404 (#1394)
  • Additional commits viewable in compare view

Updates google-cloud-pubsub from 2.27.2 to 2.28.0

Release notes

Sourced from google-cloud-pubsub's releases.

v2.28.0

2.28.0 (2025-01-30)

Features

  • Add support for message transforms to Topic and Subscription (#1274) (e5e2f3f)

Bug Fixes

v2.27.3

2.27.3 (2025-01-24)

Bug Fixes

  • Stop using api_core default timeouts in publish since they are broken (#1326) (ba2c2ee)
Changelog

Sourced from google-cloud-pubsub's changelog.

2.28.0 (2025-01-30)

Features

  • Add support for message transforms to Topic and Subscription (#1274) (e5e2f3f)

Bug Fixes

2.27.3 (2025-01-24)

Bug Fixes

  • Stop using api_core default timeouts in publish since they are broken (#1326) (ba2c2ee)
Commits
  • f2281f7 chore(main): release 2.28.0 (#1351)
  • e5e2f3f feat: add support for message transforms to Topic and Subscription (#1274)
  • fc45eb5 chore(python): fix docs publish build (#1327)
  • 16ea766 fix: get channel target for a gRPC request (#1339)
  • 59965a4 fix: set creds only if transport not provided (#1348)
  • 32d0998 chore(main): release 2.27.3 (#1350)
  • ba2c2ee fix: Stop using api_core default timeouts in publish since they are broken (#...
  • 8adb133 chore(python): exclude .github/workflows/unittest.yml in renovate config (#1323)
  • See full diff in compare view

Updates cachetools from 5.5.0 to 5.5.1

Changelog

Sourced from cachetools's changelog.

v5.5.1 (2025-01-21)

  • Add documentation regarding caching of exceptions.

  • Officially support Python 3.13.

  • Update CI environment.

Commits
  • b072920 Release v5.5.1.
  • efc3633 Fix #138: Add documentation regarding caching of exceptions.
  • d5c6892 Officially support Python 3.13.
  • a34b9c5 Merge remote-tracking branch 'origin/dependabot/github_actions/actions/setup-...
  • 9c122a2 Merge remote-tracking branch 'origin/dependabot/github_actions/actions/checko...
  • d44c984 Create FUNDING.yml
  • 49bff17 Bump actions/checkout from 4.1.7 to 4.2.0
  • 85c6026 Bump actions/setup-python from 5.1.1 to 5.2.0
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the production-dependencies group across 1 directory with 7 updates
00efce2 
Bumps the production-dependencies group with 7 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [grpcio](https://github.com/grpc/grpc) | `1.69.0` | `1.70.0` |
| [structlog](https://github.com/hynek/structlog) | `24.4.0` | `25.1.0` |
| [boto3](https://github.com/boto/boto3) | `1.35.98` | `1.36.10` |
| [marshmallow](https://github.com/marshmallow-code/marshmallow) | `3.25.1` | `3.26.0` |
| [google-cloud-storage](https://github.com/googleapis/python-storage) | `2.19.0` | `3.0.0` |
| [google-cloud-pubsub](https://github.com/googleapis/python-pubsub) | `2.27.2` | `2.28.0` |
| [cachetools](https://github.com/tkem/cachetools) | `5.5.0` | `5.5.1` |



Updates `grpcio` from 1.69.0 to 1.70.0
- [Release notes](https://github.com/grpc/grpc/releases)
- [Changelog](https://github.com/grpc/grpc/blob/master/doc/grpc_release_schedule.md)
- [Commits](grpc/grpc@v1.69.0...v1.70.0)

Updates `structlog` from 24.4.0 to 25.1.0
- [Release notes](https://github.com/hynek/structlog/releases)
- [Changelog](https://github.com/hynek/structlog/blob/main/CHANGELOG.md)
- [Commits](hynek/structlog@24.4.0...25.1.0)

Updates `boto3` from 1.35.98 to 1.36.10
- [Release notes](https://github.com/boto/boto3/releases)
- [Commits](boto/boto3@1.35.98...1.36.10)

Updates `marshmallow` from 3.25.1 to 3.26.0
- [Changelog](https://github.com/marshmallow-code/marshmallow/blob/dev/CHANGELOG.rst)
- [Commits](marshmallow-code/marshmallow@3.25.1...3.26.0)

Updates `google-cloud-storage` from 2.19.0 to 3.0.0
- [Release notes](https://github.com/googleapis/python-storage/releases)
- [Changelog](https://github.com/googleapis/python-storage/blob/main/CHANGELOG.md)
- [Commits](googleapis/python-storage@v2.19.0...v3.0.0)

Updates `google-cloud-pubsub` from 2.27.2 to 2.28.0
- [Release notes](https://github.com/googleapis/python-pubsub/releases)
- [Changelog](https://github.com/googleapis/python-pubsub/blob/main/CHANGELOG.md)
- [Commits](googleapis/python-pubsub@v2.27.2...v2.28.0)

Updates `cachetools` from 5.5.0 to 5.5.1
- [Changelog](https://github.com/tkem/cachetools/blob/master/CHANGELOG.rst)
- [Commits](tkem/cachetools@v5.5.0...v5.5.1)

---
updated-dependencies:
- dependency-name: grpcio
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: structlog
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: production-dependencies
- dependency-name: boto3
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: marshmallow
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: google-cloud-storage
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: production-dependencies
- dependency-name: google-cloud-pubsub
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: cachetools
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Jan 31, 2025
@dependabot dependabot bot requested a review from a team as a code owner January 31, 2025 08:54
@ons-eq-team
Copy link
Contributor

Benchmark Results

Percentile Averages:
50th: 88ms
90th: 254ms
95th: 437ms
99th: 818ms
99.9th: 1326ms
GETs (99th): 1028ms
POSTs (99th): 577ms

PDF: 8500ms
Session: 12000ms

Total Requests: 65,122
Total Failures: 0
Error Percentage: 0.0%

@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Feb 7, 2025

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Feb 7, 2025
@dependabot dependabot bot deleted the dependabot/pip/main/production-dependencies-e81ec73f23 branch February 7, 2025 08:49
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file python Pull requests that update Python code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@ons-eq-team