Skip to content

Deps: Bump the python-packages group with 7 updates #110

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
greenbonebot merged 1 commit into from
Dec 8, 2025
Merged

Deps: Bump the python-packages group with 7 updates #110

greenbonebot merged 1 commit into from
Dec 8, 2025

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Dec 8, 2025

Bumps the python-packages group with 7 updates:

Package From To
fastapi 0.123.0 0.124.0
black 25.11.0 25.12.0
greenlet 3.2.4 3.3.0
librt 0.6.3 0.7.3
platformdirs 4.5.0 4.5.1
psycopg 3.2.13 3.3.2
ruff 0.14.7 0.14.8

Updates fastapi from 0.123.0 to 0.124.0

Release notes

Sourced from fastapi's releases.

0.124.0

Features

Internal

0.123.10

Fixes

0.123.9

Fixes

  • 🐛 Fix OAuth2 scopes in OpenAPI in extra corner cases, parent dependency with scopes, sub-dependency security scheme without scopes. PR #14459 by @​tiangolo.

0.123.8

Fixes

  • 🐛 Fix OpenAPI security scheme OAuth2 scopes declaration, deduplicate security schemes with different scopes. PR #14455 by @​tiangolo.

0.123.7

Fixes

  • 🐛 Fix evaluating stringified annotations in Python 3.10. PR #11355 by @​chaen.

0.123.6

Fixes

  • 🐛 Fix support for functools wraps and partial combined, for async and regular functions and classes in path operations and dependencies. PR #14448 by @​tiangolo.

0.123.5

Features

  • ✨ Allow using dependables with functools.partial(). PR #9753 by @​lieryan.
  • ✨ Add support for wrapped functions (e.g. @functools.wraps()) used with forward references. PR #5077 by @​lucaswiman.
  • ✨ Handle wrapped dependencies. PR #9555 by @​phy1729.

Fixes

  • 🐛 Fix optional sequence handling with new union syntax from Python 3.10. PR #14430 by @​Viicos.

Refactors

  • 🔥 Remove dangling extra condiitonal no longer needed. PR #14435 by @​tiangolo.
  • ♻️ Refactor internals, update is_coroutine check to reuse internal supported variants (unwrap, check class). PR #14434 by @​tiangolo.

... (truncated)

Commits
  • b5ca132 🔖 Release version 0.124.0
  • a2cef70 📝 Update release notes
  • 5b62456 ✏️ Fix typo in scripts/mkdocs_hooks.py (#14457)
  • dbd34f1 📝 Update release notes
  • e1117f7 🚸 Improve tracebacks by adding endpoint metadata (#14306)
  • 08b09e5 🔖 Release version 0.123.10
  • e7d7038 📝 Update release notes
  • da0ffab 🐛 Fix using class (not instance) dependency that has __call__ method (#14458)
  • 5161694 📝 Update release notes
  • 812a192 🐛 Fix separate_input_output_schemas=False with computed_field (#14453)
  • Additional commits viewable in compare view

Updates black from 25.11.0 to 25.12.0

Release notes

Sourced from black's releases.

25.12.0

Please test out the draft 2026 style in version 26.1a1! This style will be finalized in the January release (26.1.0). Most of the changes in --preview will be in the 2026 stable style, but not all. Please share your feedback!

This release (25.12.0) will still produce the 2025 style.

Highlights

  • Black no longer supports running with Python 3.9 (#4842)

Stable style

  • Fix bug where comments preceding # fmt: off/# fmt: on blocks were incorrectly removed, particularly affecting Jupytext's # %% [markdown] comments (#4845)
  • Fix crash when multiple # fmt: skip comments are used in a multi-part if-clause, on string literals, or on dictionary entries with long lines (#4872)
  • Fix possible crash when fmt: directives aren't on the top level (#4856)

Preview style

  • Fix fmt: skip skipping the line after instead of the line it's on (#4855)
  • Remove unnecessary parentheses from the left-hand side of assignments while preserving magic trailing commas and intentional multiline formatting (#4865)
  • Fix fix_fmt_skip_in_one_liners crashing on with statements (#4853)
  • Fix fix_fmt_skip_in_one_liners crashing on annotated parameters (#4854)
  • Fix new lines being added after imports with # fmt: skip on them (#4894)

Packaging

  • Releases now include arm64 Windows binaries and wheels (#4814)

Integrations

  • Add output-file input to GitHub Action psf/black to write formatter output to a file for artifact capture and log cleanliness (#4824)
Changelog

Sourced from black's changelog.

25.12.0

Highlights

  • Black no longer supports running with Python 3.9 (#4842)

Stable style

  • Fix bug where comments preceding # fmt: off/# fmt: on blocks were incorrectly removed, particularly affecting Jupytext's # %% [markdown] comments (#4845)
  • Fix crash when multiple # fmt: skip comments are used in a multi-part if-clause, on string literals, or on dictionary entries with long lines (#4872)
  • Fix possible crash when fmt: directives aren't on the top level (#4856)

Preview style

  • Fix fmt: skip skipping the line after instead of the line it's on (#4855)
  • Remove unnecessary parentheses from the left-hand side of assignments while preserving magic trailing commas and intentional multiline formatting (#4865)
  • Fix fix_fmt_skip_in_one_liners crashing on with statements (#4853)
  • Fix fix_fmt_skip_in_one_liners crashing on annotated parameters (#4854)
  • Fix new lines being added after imports with # fmt: skip on them (#4894)

Packaging

  • Releases now include arm64 Windows binaries and wheels (#4814)

Integrations

  • Add output-file input to GitHub Action psf/black to write formatter output to a file for artifact capture and log cleanliness (#4824)
Commits

Updates greenlet from 3.2.4 to 3.3.0

Changelog

Sourced from greenlet's changelog.

3.3.0 (2025-12-04)

  • Drop support for Python 3.9.

  • Switch to distributing manylinux_2_28 wheels instead of manylinux2014 wheels. Likewise, switch from musllinux_1_1 to 1_2.

  • Add initial support for free-threaded builds of CPython 3.14. Due to limitations, we do not distribute binary wheels for free-threaded CPython on Windows. (Free-threaded CPython 3.13 may work, but is untested and unsupported.)

    .. caution::

    Under some rare scenarios with free-threaded 3.14, the interpreter may crash on accessing a variable or attribute or when shutting down. If this happens, try disabling the thread-local bytecode cache. See the greenlet documentation for more details. See PR 472 by T. Wouters <https://github.com/python-greenlet/greenlet/pull/472>_ for the initial free-threaded support and a discussion of the current known issues.

Commits
  • 0f90431 Preparing release 3.3.0
  • 296058a Tweak changelog. [skip ci]
  • d4392ab fixup
  • e6fead2 Update docs regarding free-threading.
  • d5b1346 3.14: Save/restore PyInterpreterFrame.stackpointer.
  • b54c4bd Fix some crashes with CPython assertions enabled, pointing to things we were ...
  • 47e9925 Add a test that we're not enabling the GIL.
  • 0778d50 Use our Python allocator on free-threaded builds, but do it correctly with Py...
  • 5f661f4 Add free-threaded CI builds and manylinux builds; update manylinux away from ...
  • 5331b0a Merge pull request #475 from clin1234/capi
  • Additional commits viewable in compare view

Updates librt from 0.6.3 to 0.7.3

Commits

Updates platformdirs from 4.5.0 to 4.5.1

Release notes

Sourced from platformdirs's releases.

4.5.1

What's Changed

Full Changelog: tox-dev/platformdirs@4.5.0...4.5.1

Commits

Updates psycopg from 3.2.13 to 3.3.2

Changelog

Sourced from psycopg's changelog.

.. currentmodule:: psycopg

.. index:: single: Release notes single: News

psycopg release notes

Current release

Psycopg 3.3.2 ^^^^^^^^^^^^^

Fix race condition in adapters at startup (:ticket:[#1230](https://github.com/psycopg/psycopg/issues/1230)).

Psycopg 3.3.1 ^^^^^^^^^^^^^

Fix iteration on server-side cursors (:ticket:[#1226](https://github.com/psycopg/psycopg/issues/1226)).

Psycopg 3.3.0

.. rubric:: New top-level features

  • Add :ref:template strings queries \<template-strings> (:ticket:[#1054](https://github.com/psycopg/psycopg/issues/1054)).
  • More flexible :ref:composite adaptation<adapt-composite>: it is now possible to adapt Python objects to PostgreSQL composites and back even if they are not sequences or if they take keyword arguments (:ticket:[#932](https://github.com/psycopg/psycopg/issues/932), 🎫[#1202](https://github.com/psycopg/psycopg/issues/1202)).
  • Cursors are now iterators_, not just iterables_. This means you can call next\ (cur) or anext\ (cur), which is useful as a :ref:type-safe expression <typing-fetchone> (:ticket:[#1064](https://github.com/psycopg/psycopg/issues/1064)).
  • Add Cursor.set_result() and Cursor.results() to move across the result sets of queries executed though ~Cursor.executemany() or ~Cursor.execute() with multiple statements (:tickets:[#1080](https://github.com/psycopg/psycopg/issues/1080), [#1170](https://github.com/psycopg/psycopg/issues/1170)).
  • Add :ref:transaction-status to report the status during and after a ~Connection.transaction() block (:ticket:[#969](https://github.com/psycopg/psycopg/issues/969)).
  • Allow to change loaders using ~adapt.AdaptersMap.register_loader() on Cursor.adapters after a query result has been already returned (:ticket:[#884](https://github.com/psycopg/psycopg/issues/884)).

.. rubric:: New libpq wrapper features

  • Add pq.PGconn.used_gssapi attribute and Capabilities.has_used_gssapi() function (:ticket:[#1138](https://github.com/psycopg/psycopg/issues/1138)).
  • Add ConnectionInfo.full_protocol_version attribute,

... (truncated)

Commits
  • bc9e7bd chore: bump psycopg package version to 3.3.2
  • 3bcabb4 Merge pull request #1231 from noirbee/fix/1230-adapter-get-dumper-race-condition
  • 08bfe00 fix(adapters): avoid race condition when replacing class name with itself
  • 7be710e fix: mark external libpq C functions as noexcept nogil
  • 6a24300 docs: larger font for 3.3.0 release
  • 5a60a1e chore: bump psycopg package version to 3.3.2.dev1
  • 9bdd78c chore: bump psycopg package version to 3.3.1
  • 4d27426 Merge branch 'fix/server-cursor-iter'
  • b9b82e8 fix: fix iteration on server-side cursor
  • 2a75357 fix: add test to verify iteration in server-side cursor broken
  • Additional commits viewable in compare view

Updates ruff from 0.14.7 to 0.14.8

Release notes

Sourced from ruff's releases.

0.14.8

Release Notes

Released on 2025-12-04.

Preview features

  • [flake8-bugbear] Catch yield expressions within other statements (B901) (#21200)
  • [flake8-use-pathlib] Mark fixes unsafe for return type changes (PTH104, PTH105, PTH109, PTH115) (#21440)

Bug fixes

  • Fix syntax error false positives for await outside functions (#21763)
  • [flake8-simplify] Fix truthiness assumption for non-iterable arguments in tuple/list/set calls (SIM222, SIM223) (#21479)

Documentation

  • Suggest using --output-file option in GitLab integration (#21706)

Other changes

  • [syntax-error] Default type parameter followed by non-default type parameter (#21657)

Contributors

Install ruff 0.14.8

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/astral-sh/ruff/releases/download/0.14.8/ruff-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy Bypass -c "irm https://github.com/astral-sh/ruff/releases/download/0.14.8/ruff-installer.ps1 | iex"

Download ruff 0.14.8

File Platform Checksum
ruff-aarch64-apple-darwin.tar.gz Apple Silicon macOS checksum
ruff-x86_64-apple-darwin.tar.gz Intel macOS checksum

... (truncated)

Changelog

Sourced from ruff's changelog.

0.14.8

Released on 2025-12-04.

Preview features

  • [flake8-bugbear] Catch yield expressions within other statements (B901) (#21200)
  • [flake8-use-pathlib] Mark fixes unsafe for return type changes (PTH104, PTH105, PTH109, PTH115) (#21440)

Bug fixes

  • Fix syntax error false positives for await outside functions (#21763)
  • [flake8-simplify] Fix truthiness assumption for non-iterable arguments in tuple/list/set calls (SIM222, SIM223) (#21479)

Documentation

  • Suggest using --output-file option in GitLab integration (#21706)

Other changes

  • [syntax-error] Default type parameter followed by non-default type parameter (#21657)

Contributors

Commits
  • 9d4f1c6 Bump 0.14.8 (#21791)
  • 326025d [ty] Always register rename provider if client doesn't support dynamic regist...
  • 3aefe85 [ty] Ensure rename CursorTest calls can_rename before renaming (#21790)
  • b8ecc83 Fix clippy errors on main (#21788)
  • 6491932 [ty] Fix crash when hovering an unknown string annotation (#21782)
  • a9f2bb4 [ty] Don't send publish diagnostics for clients supporting pull diagnostics (...
  • e2b72fb [ty] cleanup test path (#21781)
  • 14fce0d [ty] Improve the display of various special-form types (#21775)
  • 8ebecb2 [ty] Add subdiagnostic hint if the user wrote X = Any rather than X: Any ...
  • 45ac30a [ty] Teach ty the meaning of desperation (try ancestor pyproject.tomls as...
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Deps: Bump the python-packages group with 7 updates
b14ae9b 
Bumps the python-packages group with 7 updates:

| Package | From | To |
| --- | --- | --- |
| [fastapi](https://github.com/fastapi/fastapi) | `0.123.0` | `0.124.0` |
| [black](https://github.com/psf/black) | `25.11.0` | `25.12.0` |
| [greenlet](https://github.com/python-greenlet/greenlet) | `3.2.4` | `3.3.0` |
| [librt](https://github.com/mypyc/librt) | `0.6.3` | `0.7.3` |
| [platformdirs](https://github.com/tox-dev/platformdirs) | `4.5.0` | `4.5.1` |
| [psycopg](https://github.com/psycopg/psycopg) | `3.2.13` | `3.3.2` |
| [ruff](https://github.com/astral-sh/ruff) | `0.14.7` | `0.14.8` |


Updates `fastapi` from 0.123.0 to 0.124.0
- [Release notes](https://github.com/fastapi/fastapi/releases)
- [Commits](fastapi/fastapi@0.123.0...0.124.0)

Updates `black` from 25.11.0 to 25.12.0
- [Release notes](https://github.com/psf/black/releases)
- [Changelog](https://github.com/psf/black/blob/main/CHANGES.md)
- [Commits](psf/black@25.11.0...25.12.0)

Updates `greenlet` from 3.2.4 to 3.3.0
- [Changelog](https://github.com/python-greenlet/greenlet/blob/master/CHANGES.rst)
- [Commits](python-greenlet/greenlet@3.2.4...3.3.0)

Updates `librt` from 0.6.3 to 0.7.3
- [Commits](mypyc/librt@v0.6.3...v0.7.3)

Updates `platformdirs` from 4.5.0 to 4.5.1
- [Release notes](https://github.com/tox-dev/platformdirs/releases)
- [Changelog](https://github.com/tox-dev/platformdirs/blob/main/CHANGES.rst)
- [Commits](tox-dev/platformdirs@4.5.0...4.5.1)

Updates `psycopg` from 3.2.13 to 3.3.2
- [Changelog](https://github.com/psycopg/psycopg/blob/master/docs/news.rst)
- [Commits](psycopg/psycopg@3.2.13...3.3.2)

Updates `ruff` from 0.14.7 to 0.14.8
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@0.14.7...0.14.8)

---
updated-dependencies:
- dependency-name: fastapi
  dependency-version: 0.124.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: python-packages
- dependency-name: black
  dependency-version: 25.12.0
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: python-packages
- dependency-name: greenlet
  dependency-version: 3.3.0
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: python-packages
- dependency-name: librt
  dependency-version: 0.7.3
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: python-packages
- dependency-name: platformdirs
  dependency-version: 4.5.1
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: python-packages
- dependency-name: psycopg
  dependency-version: 3.3.2
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: python-packages
- dependency-name: ruff
  dependency-version: 0.14.8
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: python-packages
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Dec 8, 2025
@dependabot dependabot bot requested review from a team as code owners December 8, 2025 04:14
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Dec 8, 2025
@greenbonebot greenbonebot enabled auto-merge (rebase) December 8, 2025 04:14
@greenbonebot
Copy link
Member

greenbonebot commented Dec 8, 2025

Scanning the following files:

poetry.lock
pyproject.toml

Scan: 'poetry.lock'

Nothing detected in poetry.lock
Scan took 0.02 seconds

Scan: 'pyproject.toml'

Nothing detected in pyproject.toml
Scan took 0.00 seconds

@greenbonebot greenbonebot merged commit 33363ba into main Dec 8, 2025
9 of 12 checks passed
@greenbonebot greenbonebot deleted the dependabot/pip/python-packages-1553a5c0b2 branch December 8, 2025 06:01
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@bjoernricks bjoernricks bjoernricks approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python Pull requests that update Python code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@greenbonebot @bjoernricks