⬆️ Bump the production-dependencies group across 1 directory with 22 updates #66

dependabot · 2024-08-17T11:15:48Z

Updates the requirements on certifi, cffi, coverage, cryptography, django, django-alive, django-allauth, django-crispy-forms, django-storages, marshmallow, packaging, pillow, psycopg, psycopg-binary, pyjwt, pytest, sqlparse, typing-extensions, urllib3, whitenoise, django-allauth[socialaccount] and psycopg[binary] to permit the latest version.
Updates certifi from 2024.6.2 to 2024.7.4

Commits

bd81538 2024.07.04 (#295)
06a2cbf Bump peter-evans/create-pull-request from 6.0.5 to 6.1.0 (#294)
13bba02 Bump actions/checkout from 4.1.6 to 4.1.7 (#293)
e8abcd0 Bump pypa/gh-action-pypi-publish from 1.8.14 to 1.9.0 (#292)
See full diff in compare view

Updates cffi from 1.16.0 to 1.17.0

Release notes

Sourced from cffi's releases.

v1.17.0

Add support for Python 3.13.

Free-threaded CPython builds (i.e. python3.13t and the 3.13t ABI) are not currently supported.

In API mode, when you get a function from a C library by writing fn = lib.myfunc, you get an object of a special type for performance reasons, instead of a <cdata 'C-function-type'>. Before version 1.17 you could only call such objects. You could write ffi.addressof(lib, "myfunc") in order to get a real <cdata> object, based on the idea that in these cases in C you'd usually write &myfunc instead of myfunc. In version 1.17, the special object lib.myfunc can now be passed in many places where CFFI expects a regular <cdata> object. For example, you can now pass it as a callback to a C function call, or write it inside a C structure field of the correct pointer-to-function type, or use ffi.cast() or ffi.typeof() on it.

Full Changelog: python-cffi/cffi@v1.16.0...v1.17.0

v1.17.0rc1

Add support for Python 3.13.

In API mode, when you get a function from a C library by writing fn = lib.myfunc, you get an object of a special type for performance reasons, instead of a object. For example, you can now pass it as a callback to a C function call, or write it inside a C structure field of the correct pointer-to-function type, or use ffi.cast() or ffi.typeof() on it.

Build wheels for musllinux aarch64.

Commits

74731f9 Release 1.17.0 (#108)
181fa00 1.17.0rc1 release (#80)
772528e Add 3.13 to trove classifiers (#72)
e36042d 1.17.0b1 prep (#79)
39bdab2 avoid null-pointer-subtraction error (#78)
d7f750b Mention the systemd issue with old-style callbacks (#74)
56f7609 Build aarch64 musllinux wheel (#69)
e59ec8f Win32: pass the flags from dlopen() to LoadLibraryEx() (#65)
0619e5e remove binary cruft (#63)
640e89f rearrange code to make PyPy testing happier (#59)
Additional commits viewable in compare view

Updates coverage from 7.5.3 to 7.6.1

Changelog

Sourced from coverage's changelog.

Version 7.6.1 — 2024-08-04

Fix: coverage used to fail when measuring code using :func:runpy.run_path <python:runpy.run_path> with a :class:Path <python:pathlib.Path> argument. This is now fixed, thanks to Ask Hjorth Larsen <pull 1819_>_.

Fix: backslashes preceding a multi-line backslashed string could confuse the HTML report. This is now fixed, thanks to LiuYinCarl <pull 1828_>_.

Now we publish wheels for Python 3.13, both regular and free-threaded.

.. _pull 1819: nedbat/coveragepy#1819 .. _pull 1828: nedbat/coveragepy#1828

.. _changes_7-6-0:

Version 7.6.0 — 2024-07-11

Exclusion patterns can now be multi-line, thanks to Daniel Diniz <pull 1807_>. This enables many interesting exclusion use-cases, including those requested in issues 118 <issue 118_> (entire files), 996 <issue 996_>_ (multiple lines only when appearing together), 1741 <issue 1741_>_ (remainder of a function), and 1803 <issue 1803_>_ (arbitrary sequence of marked lines). See the :ref:multi_line_exclude section of the docs for more details and examples.

The JSON report now includes per-function and per-class coverage information. Thanks to Daniel Diniz <pull 1809_>_ for getting the work started. This closes issue 1793_ and issue 1532_.

Fixed an incorrect calculation of "(no class)" lines in the HTML classes report.

Python 3.13.0b3 is supported.

.. _issue 118: nedbat/coveragepy#118 .. _issue 996: nedbat/coveragepy#996 .. _issue 1532: nedbat/coveragepy#1532 .. _issue 1741: nedbat/coveragepy#1741 .. _issue 1793: nedbat/coveragepy#1793 .. _issue 1803: nedbat/coveragepy#1803 .. _pull 1807: nedbat/coveragepy#1807 .. _pull 1809: nedbat/coveragepy#1809

.. _changes_7-5-4:

Version 7.5.4 — 2024-06-22

... (truncated)

Commits

29f5898 docs: sample HTML for 7.6.1
9b829f1 docs: prep for 7.6.1
ebbb6a2 build: wheels for 3.13rc1
3872525 chore: make upgrade
7a27f40 test: fix a test on free-threading, use abiflags to get site-packages path co...
2b53664 build: include gil/nogil in the version banner
da1682f docs: changelog and contributor for #1828
dc819ff test: two tests for #1828
9aaa404 fix: properly handle backslash before multi-line string (#1828)
9c50270 chore: make upgrade
Additional commits viewable in compare view

Updates cryptography from 42.0.8 to 43.0.0

Changelog

Sourced from cryptography's changelog.

43.0.0 - 2024-07-20


* **BACKWARDS INCOMPATIBLE:** Support for OpenSSL less than 1.1.1e has been
  removed.  Users on older version of OpenSSL will need to upgrade.
* **BACKWARDS INCOMPATIBLE:** Dropped support for LibreSSL < 3.8.
* Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.3.1.
* Updated the minimum supported Rust version (MSRV) to 1.65.0, from 1.63.0.
* :func:`~cryptography.hazmat.primitives.asymmetric.rsa.generate_private_key`
  now enforces a minimum RSA key size of 1024-bit. Note that 1024-bit is still
  considered insecure, users should generally use a key size of 2048-bits.
* :func:`~cryptography.hazmat.primitives.serialization.pkcs7.serialize_certificates`
  now emits ASN.1 that more closely follows the recommendations in :rfc:`2315`.
* Added new :doc:`/hazmat/decrepit/index` module which contains outdated and
  insecure cryptographic primitives.
  :class:`~cryptography.hazmat.primitives.ciphers.algorithms.CAST5`,
  :class:`~cryptography.hazmat.primitives.ciphers.algorithms.SEED`,
  :class:`~cryptography.hazmat.primitives.ciphers.algorithms.IDEA`, and
  :class:`~cryptography.hazmat.primitives.ciphers.algorithms.Blowfish`, which were
  deprecated in 37.0.0, have been added to this module. They will be removed
  from the ``cipher`` module in 45.0.0.
* Moved :class:`~cryptography.hazmat.primitives.ciphers.algorithms.TripleDES`
  and :class:`~cryptography.hazmat.primitives.ciphers.algorithms.ARC4` into
  :doc:`/hazmat/decrepit/index` and deprecated them in the ``cipher`` module.
  They will be removed from the ``cipher`` module in 48.0.0.
* Added support for deterministic
  :class:`~cryptography.hazmat.primitives.asymmetric.ec.ECDSA` (:rfc:`6979`)
* Added support for client certificate verification to the
  :mod:`X.509 path validation <cryptography.x509.verification>` APIs in the
  form of :class:`~cryptography.x509.verification.ClientVerifier`,
  :class:`~cryptography.x509.verification.VerifiedClient`, and
  ``PolicyBuilder``
  :meth:`~cryptography.x509.verification.PolicyBuilder.build_client_verifier`.
* Added Certificate
  :attr:`~cryptography.x509.Certificate.public_key_algorithm_oid`
  and Certificate Signing Request
  :attr:`~cryptography.x509.CertificateSigningRequest.public_key_algorithm_oid`
  to determine the :class:`~cryptography.hazmat._oid.PublicKeyAlgorithmOID`
  Object Identifier of the public key found inside the certificate.
* Added :attr:`~cryptography.x509.InvalidityDate.invalidity_date_utc`, a
  timezone-aware alternative to the naïve ``datetime`` attribute
  :attr:`~cryptography.x509.InvalidityDate.invalidity_date`.
* Added support for parsing empty DN string in
  :meth:`~cryptography.x509.Name.from_rfc4514_string`.
* Added the following properties that return timezone-aware ``datetime`` objects:
  :meth:`~cryptography.x509.ocsp.OCSPResponse.produced_at_utc`,
  :meth:`~cryptography.x509.ocsp.OCSPResponse.revocation_time_utc`,
  :meth:`~cryptography.x509.ocsp.OCSPResponse.this_update_utc`,
  :meth:`~cryptography.x509.ocsp.OCSPResponse.next_update_utc`,
  :meth:`~cryptography.x509.ocsp.OCSPSingleResponse.revocation_time_utc`,
</tr></table>

... (truncated)

Commits

ebf14f2 bump for 43.0.0 and update changelog (#11311)
42788a0 Fix exchange with keys that had Q automatically computed (#11309)
2dbdfb8 don't assign unused name (#11310)
ccc66e6 Bump openssl from 0.10.64 to 0.10.65 in /src/rust (#11308)
4310c87 Bump sphinxcontrib-qthelp from 1.0.7 to 1.0.8 (#11307)
f66a9c4 Bump sphinxcontrib-htmlhelp from 2.0.5 to 2.0.6 (#11306)
a8fcf18 Bump openssl-sys from 0.9.102 to 0.9.103 in /src/rust (#11305)
2fe32b2 Bump mypy from 1.10.1 to 1.11.0 (#11303)
ee24e82 Bump setuptools from 71.0.3 to 71.0.4 in /.github/requirements (#11304)
7249ccd Bump portable-atomic from 1.6.0 to 1.7.0 in /src/rust (#11302)
Additional commits viewable in compare view

Updates django from 5.0.6 to 5.1

Commits

373cb30 [5.1.x] Bumped version for 5.1 release.
8baab82 [5.1.x] Finalized release notes for Django 5.1.
d5ad743 [5.1.x] Fixed i18n.tests.TranslationTests.test_plural to use correct French t...
380c6e6 [5.1.x] Updated translations from Transifex.
d787e44 [5.1.x] Added CVE-2024-41989, CVE-2024-41990, CVE-2024-41991, and CVE-2024-42...
e2583fb [5.1.x] Fixed CVE-2024-42005 -- Mitigated QuerySet.values() SQL injection att...
bd807c0 [5.1.x] Fixed CVE-2024-41991 -- Prevented potential ReDoS in django.utils.htm...
0c1a890 [5.1.x] Fixed CVE-2024-41990 -- Mitigated potential DoS in urlize and urlizet...
0504af6 [5.1.x] Fixed CVE-2024-41989 -- Prevented excessive memory consumption in flo...
2ba4f4b [5.1.x] Fixed #35657 -- Made FileField handle db_default values.
Additional commits viewable in compare view

Updates django-alive from 1.2.1 to 1.2.2

Release notes

Sourced from django-alive's releases.

1.2.2

What's Changed

update testing to current Django and Python, run it in GitHub actions by @PetrDlouhy in lincolnloop/django-alive#14

New Contributors

@PetrDlouhy made their first contribution in lincolnloop/django-alive#14

Full Changelog: lincolnloop/django-alive@1.2.1...1.2.2

Changelog

Sourced from django-alive's changelog.

1.2.2 (unreleased)

Add GitHub Action for running tests against supported versions

Commits

a4640e5 add an unreleased section to CHANGELOG.md
24f8466 add work to release from GitHub Actions to CHANGELOG.md
d8b769f add a GitHub Action for publishing to PyPI and GitHub
450a6e4 update CHANGELOG with recent changes
3ac220c update supported Python versions in documentation
09b0bd3 Merge pull request #14 from PetrDlouhy/update_django50
ade132b update testing to current Django and Python, run it in GitHub actions
608fd0a Update test badge
d1899fd Back to development: 1.2.2
See full diff in compare view

Updates django-allauth from 0.63.3 to 64.1.0

Changelog

Sourced from django-allauth's changelog.

64.1.0 (2024-08-15)

Note worthy changes

Headless: When trying to login while a user is already logged in, you now get a 409.

Limited the maximum allowed time for a login to go through the various login stages. This limits, for example, the time span that the 2FA stage remains available. See settings.ACCOUNT_LOGIN_TIMEOUT.

Security notice

Headless: When a user was not fully logged in, for example, because (s)he was in the process of completing the 2FA process, calling logout would not wipe the session containing the partially logged in user.

64.0.0 (2024-07-31)

Note worthy changes

The 0.x.y version numbers really did not do justice to the state of the project, and we are way past the point where a version 1.0 would be applicable. Additionally, 64 is a nice round number. Therefore, the version numbering is changed from 0.x.y to x.y.z. We will use a loose form of semantic versioning. However, please be aware that feature releases may occasionally include minor documented backwards incompatibilities. Always read the release notes before upgrading.

Added support for WebAuthn based security keys and passkey login. Note that this is currently disabled by default.

Headless: The TOTP URI is now available in the MFA activation response.

Headless: When trying to sign up while a user is already logged in, you now get a 409.

Headless: You can now alter the user data payload by overriding the newly introduced serialize_user() adapter method.

Headless: The token strategy now allows for exposing refresh tokens and any other information you may need (such as e.g. expires_in).

... (truncated)

Commits

d6e07b2 feat: Django 5.1
b7eaefd chore: Release 64.1.0
4b13c66 feat(mfa): AuthenticateView to use form class from setting
bd3ae52 chore(i18n): Sync translations
63bc165 feat(account): Login timeout
4303cbe fix(headless): Logout should remove partial login
20d1334 chore(mfa): add tags to submit button
c970b33 tests(socialaccount): Test storing tokens vs email authentication
907ffe6 chore(i18n): korean translations
ef8743c fix(socialaccount): OAuth 1.0 vs storing tokens without app instance
Additional commits viewable in compare view

Updates django-crispy-forms from 2.1 to 2.3

Release notes

Sourced from django-crispy-forms's releases.

2.3

What's Changed

Fixed unexpected addition the 'active' css_class to AccordionGroup

2.2

Added support for Django 5.1.

Allowed pass through of context when rendering a Fieldset layout object.

Full Changelog: django-crispy-forms/django-crispy-forms@2.1...2.2

Changelog

Sourced from django-crispy-forms's changelog.

2.3 (2024-07-19)

Fixed a bug in AccordionGroup rendering then it gets an unexpected css class active.

2.2 (2024-06-15)

Added support for Django 5.1.

Allowed pass through of context when rendering a Fieldset layout object.

Commits

e07622d Version 2.3. (#1396)
64f4b21 Fixed unexpected addition the 'active' css_class to AccordionGroup (#1394)
4f454cd Version 2.2. (#1392)
086afbb Fix documentation of Field's constructor (#1375)
f9d67d3 Allowed pass through of context when rendering a Fieldset layout object. ...
255a08f Added Django 5.1 support. (#1390)
bce28b2 Keep GitHub Actions up to date with GitHub's Dependabot (#1387)
6d50351 Create FUNDING.yml
See full diff in compare view

Updates django-storages from 1.14.3 to 1.14.4

Changelog

Sourced from django-storages's changelog.

1.14.4 (2024-07-09)

S3

Pull AWS_SESSION_TOKEN from the environment ([#1399](https://github.com/jschneier/django-storages/issues/1399)_)

Fix newline handling for text mode files ([#1381](https://github.com/jschneier/django-storages/issues/1381)_)

Do not sign URLs when querystring_auth=False e.g public buckets or static files ([#1402](https://github.com/jschneier/django-storages/issues/1402)_)

Cache CloudFront Signers ([#1417](https://github.com/jschneier/django-storages/issues/1417)_)

Azure

Fix collectstatic --clear ([#1403](https://github.com/jschneier/django-storages/issues/1403)_)

Add mode kwarg to .url() to support creation of signed URLs for upload ([#1414](https://github.com/jschneier/django-storages/issues/1414)_)

Fix fetching user delegation key when custom domain is enabled ([#1418](https://github.com/jschneier/django-storages/issues/1418)_)

SFTP

Add implementations of get_(modified|accessed)_time ([#1347](https://github.com/jschneier/django-storages/issues/1347)_)

Dropbox

Add support for Python 3.12 ([#1421](https://github.com/jschneier/django-storages/issues/1421)_)

FTP

Conform to BaseStorage interface ([#1423](https://github.com/jschneier/django-storages/issues/1423)_)

Add FTP_ALLOW_OVERWRITE setting ([#1424](https://github.com/jschneier/django-storages/issues/1424)_)

.. _#1399: jschneier/django-storages#1399 .. _#1381: jschneier/django-storages#1381 .. _#1402: jschneier/django-storages#1402 .. _#1403: jschneier/django-storages#1403 .. _#1414: jschneier/django-storages#1414 .. _#1417: jschneier/django-storages#1417 .. _#1418: jschneier/django-storages#1418 .. _#1347: jschneier/django-storages#1347 .. _#1421: jschneier/django-storages#1421 .. _#1423: jschneier/django-storages#1423 .. _#1424: jschneier/django-storages#1424

Commits

b37d53e Release version 1.14.4 (#1428)
a79a304 [sftp] Cleanup duplicated properties (#1426)
cd42c17 [dropbox] Remove dead prefix removal code (#1425)
855e58d [ftp] Add FTP_ALLOW_OVERWRITE setting (#1424)
fe759bf [ftp] Conform to BaseStorage interface (#1423)
a531947 [general] Write overwriting files in terms of .exists() (#1422)
0041eb2 [dropbox] Add support for Python3.12 (#1421)
4cd12e0 [sftp] Format times to UTC (#1420)
ea25226 [sftp] Add implementations of get_(modified|accessed)_time (#1347)
6c494a0 [docs/scaleway] Create Scaleway docs (#1419)
Additional commits viewable in compare view

Updates marshmallow from 3.21.2 to 3.21.3

Changelog

Sourced from marshmallow's changelog.

3.21.3 (2024-06-05)

Bug fixes:

Fix memory leak that prevented schema instances from getting GC'd (:pr:2277). Thanks :user:mrcljx for the PR.

Commits

b9646e3 Bump version and update changelog
99103a6 Remove leaky lru_cache (#2277)
47205b5 [pre-commit.ci] pre-commit autoupdate (#2276)
aaecd5b [pre-commit.ci] pre-commit autoupdate
c592536 [pre-commit.ci] pre-commit autoupdate (#2269)
ee0c903 [pre-commit.ci] pre-commit autoupdate
d4fd5a4 [pre-commit.ci] pre-commit autoupdate
See full diff in compare view

Updates packaging from 24.0 to 24.1

Release notes

Sourced from packaging's releases.

24.1

What's Changed

pyupgrade/black/isort/flake8 → ruff by @DimitriPapadopoulos in pypa/packaging#769

Add support for Python 3.13 and drop EOL 3.7 by @hugovk in pypa/packaging#783

Bump the github-actions group with 4 updates by @dependabot in pypa/packaging#782

Fix typo in _parser docstring by @pradyunsg in pypa/packaging#784

Modernise type annotations using FA rules from ruff by @pradyunsg in pypa/packaging#785

Document markers.default_environment() by @edgarrmondragon in pypa/packaging#753

Bump the github-actions group with 3 updates by @dependabot in pypa/packaging#789

Work around platform.python_version() returning non PEP 440 compliant version for non-tagged CPython builds by @sbidoul in pypa/packaging#802

New Contributors

@dependabot made their first contribution in pypa/packaging#782

@edgarrmondragon made their first contribution in pypa/packaging#753

Full Changelog: pypa/packaging@24.0...24.1

Changelog

Sourced from packaging's changelog.

24.1 - 2024-06-10
No unreleased changes.

Commits

85442b8 Bump for release
3e67fc7 Work around platform.python_version() returning non PEP 440 compliant versi...
32deafe Bump the github-actions group with 3 updates (#789)
e0dda88 Document markers.default_environment() (#753)
cc938f9 Modernise type annotations using FA rules from ruff (#785)
757f559 Fix typo in _parser docstring (#784)
ec9f203 Bump the github-actions group with 4 updates (#782)
5cbe1e4 Add support for Python 3.13 and drop EOL 3.7 (#783)
cb8fd38 pyupgrade/black/isort/flake8 → ruff (#769)
e8002b1 Bump for development
See full diff in compare view

Updates pillow from 10.3.0 to 10.4.0

Release notes

Sourced from pillow's releases.

10.4.0

https://pillow.readthedocs.io/en/stable/releasenotes/10.4.0.html

Changes

Raise FileNotFoundError if show_file() path does not exist #8178 [@radarhere]

Improved reading 16-bit TGA images with colour #7965 [@Yay295]

Fixed processing multiple JPEG EXIF markers #8127 [@radarhere]

Do not preserve EXIFIFD tag by default when saving TIFF images #8110 [@radarhere]

Added ImageFont.load_default_imagefont() #8086 [@radarhere]

Added Image.WARN_POSSIBLE_FORMATS #8063 [@radarhere]

Do not presume "xmp" info simply because "XML:com.adobe.xmp" info exists #8173 [@radarhere]

Remove zero-byte end padding when parsing any XMP data #8171 [@radarhere]

Do not detect Ultra HDR images as MPO #8056 [@radarhere]

Raise SyntaxError specific to JP2 #8146 [@Yay295]

Do not use first frame duration for other frames when saving APNG images #8104 [@radarhere]

Consider I;16 pixel size when using a 1 mode mask #8112 [@radarhere]

When saving multiple PNG frames, convert to mode rather than raw mode #8087 [@radarhere]

Added byte support to FreeTypeFont #8141 [@radarhere]

Allow float center for rotate operations #8114 [@radarhere]

Do not read layers immediately when opening PSD images #8039 [@radarhere]

Restore original thread state #8065 [@radarhere]

Read IM and TIFF images as RGB, rather than RGBX #7997 [@radarhere]

Only preserve TIFF IPTC_NAA_CHUNK tag if type is BYTE or UNDEFINED #7948 [@radarhere]

Prevent extra EPS header validations #8144 [@Yay295]

Clarify ImageDraw2 error message when size is missing #8165 [@radarhere]

Support unpacking more rawmodes to RGBA palettes #7966 [@radarhere]

Removed support for Qt 5 #8159 [@radarhere]

Improve ImageFont.freetype support for XDG directories on Linux #8135 [@mamg22]

Improved consistency of XMP handling #8069 [@radarhere]

Use pkg-config to help find libwebp and raqm #8142 [@radarhere]

Renamed C transform2 to transform #8113 [@radarhere]

Updated nasm to 2.16.03 #7990 [@radarhere]

[pre-commit.ci] pre-commit autoupdate #8100 [@pre-commit-ci]

Updated ImageCms.createProfile colorTemp default and docstring #8096 [@radarhere]

Added ImageDraw circle() #8085 [@void4]

Don't reuse variable name #8082 [@Yay295]

Use functools.cached_property in GifImagePlugin #8037 [@radarhere]

Add mypy target to Makefile #8077 [@Yay295]

Added Python 3.13 beta wheels #8071 [@radarhere]

Parse _version contents instead of using exec() #8050 [@radarhere]

Lint fixes #8068 [@radarhere]

Fix type errors #8064 [@radarhere]

Added MPEG accept function #7999 [@radarhere]

Added more modes to Image.MODES #7984 [@radarhere]

[pre-commit.ci] pre-commit autoupdate #8044 [@pre-commit-ci]

Do not use percent format in strings #8045 [@radarhere]

Changed string formatting to f-strings #8043 [@mrKazzila]

Removed direct invocation of setup.py #8027 [@radarhere]

Update ExifTags.py #8020 [@CTimmerman]

... (truncated)

Changelog

Sourced from pillow's changelog.

10.4.0 (2024-07-01)

Raise FileNotFoundError if show_file() path does not exist #8178 [radarhere]

Improved reading 16-bit TGA images with colour #7965 [Yay295, radarhere]

Deprecate non-image ImageCms modes #8031 [radarhere]

Fixed processing multiple JPEG EXIF markers #8127 [radarhere]

Do not preserve EXIFIFD tag by default when saving TIFF images #8110 [radarhere]

Added ImageFont.load_default_imagefont() #8086 [radarhere]

Added Image.WARN_POSSIBLE_FORMATS #8063 [radarhere]

Remove zero-byte end padding when parsing any XMP data #8171 [radarhere]

Do not detect Ultra HDR images as MPO #8056 [radarhere]

Raise SyntaxError specific to JP2 #8146 [Yay295, radarhere]

Do not use first frame duration for other frames when saving APNG images #8104 [radarhere]

Consider I;16 pixel size when using a 1 mode mask #8112 [radarhere]

When saving multiple PNG frames, convert to mode rather than raw mode #8087 [radarhere]

Added byte support to FreeTypeFont #8141 [radarhere]

Allow float center for rotate operations #8114 [radarhere]

Do not read layers immediately when opening PSD images #8039 [radarhere]

... (truncated)

Commits

9b4fae7 10.4.0 version bump
b55d74b Update CHANGES.rst [ci skip]
8daf550 Merge pull request #8178 from radarhere/imageshow
c6d8c58 Merge pull request #7965 from Yay295/patch-3
c9ec76a Raise FileNotFoundError if show_file() path does not exist
b48d175 Update CHANGES.rst [ci skip]
4d6dff3 Merge pull request #8031 from radarhere/imagingcms_modes
70b3815 Merge pull request #8127 from radarhere/multiple_exif_markers
88cd6d4 Rearranged comments
41426a6 Merge pull request #8110 from radarhere/exififd
Additional commits viewable in compare view

Updates psycopg from 3.1.19 to 3.2.1

Changelog

Sourced from psycopg's changelog.

.. currentmodule:: psycopg

.. index:: single: Release notes single: News

psycopg release notes

Future releases

Psycopg 3.2.2 (unreleased) ^^^^^^^^^^^^^^^^^^^^^^^^^^

Drop !TypeDef specifications as string from public modules, as they cannot be composed by users as !typing objects previously could (:ticket:[#860](https://github.com/psycopg/psycopg/issues/860)).

Current release

Psycopg 3.2.1 ^^^^^^^^^^^^^

Fix packaging metadata breaking [c], [binary] dependencies (:ticket:[#853](https://github.com/psycopg/psycopg/issues/853)).

Psycopg 3.2

.. rubric:: New top-level features

Add support for integer, floating point, boolean NumPy scalar types__ (:ticket:[#332](https://github.com/psycopg/psycopg/issues/332)).

Add !timeout and !stop_after parameters to Connection.notifies() (:ticket:340).

Allow dumpers to return !None, to be converted to NULL (:ticket:[#377](https://github.com/psycopg/psycopg/issues/377)).

Add :ref:raw-query-cursors to execute queries using placeholders in PostgreSQL format ($1, $2...) (:tickets:[#560](https://github.com/psycopg/psycopg/issues/560), [#839](https://github.com/psycopg/psycopg/issues/839)).

Add capabilities object to :ref:inspect the libpq capabilities <capabilities> (:ticket:[#772](https://github.com/psycopg/psycopg/issues/772)).

Add ~rows.scalar_row to return scalar values from a query (:ticket:[#723](https://github.com/psycopg/psycopg/issues/723)).

Add ~Connection.cancel_safe() for encrypted and non-blocking cancellation when using libpq v17. Use such method internally to implement !KeyboardInterrupt and ~cursor.copy termination (:ticket:[#754](https://github.com/psycopg/psycopg/issues/754)).

The !context parameter of sql objects ~sql.Composable.as_string() and ~sql.Composable.as_bytes() methods is now optional (:ticket:[#716](https://github.com/psycopg/psycopg/issues/716)).

Add ~Connection.set_autocommit() on sync connections, and similar

... (truncated)

Commits

bb47d39 chore: bump psycopg package version to 3.2.1
55490a2 fix: fix versions in packaging metadata
1cbc42a docs: fix title level of major releases
06a6e5e docs: mention dropping Python 3.7 in psycopg 3.2 release
ea3735d docs: better organization of the 3.2 release notes
896eee2 chore: bump psycopg package version to 3.2.0
2e2f4d7 chore: bump psycopg package version to 3.1.20
7369d3b Merge pull request #846 ...
Description has been truncated

…updates Updates the requirements on [certifi](https://github.com/certifi/python-certifi), [cffi](https://github.com/python-cffi/cffi), [coverage](https://github.com/nedbat/coveragepy), [cryptography](https://github.com/pyca/cryptography), [django](https://github.com/django/django), [django-alive](https://github.com/lincolnloop/django-alive), [django-allauth](https://github.com/pennersr/django-allauth), [django-crispy-forms](https://github.com/django-crispy-forms/django-crispy-forms), [django-storages](https://github.com/jschneier/django-storages), [marshmallow](https://github.com/marshmallow-code/marshmallow), [packaging](https://github.com/pypa/packaging), [pillow](https://github.com/python-pillow/Pillow), [psycopg](https://github.com/psycopg/psycopg), [psycopg-binary](https://github.com/psycopg/psycopg), [pyjwt](https://github.com/jpadilla/pyjwt), [pytest](https://github.com/pytest-dev/pytest), [sqlparse](https://github.com/andialbrecht/sqlparse), [typing-extensions](https://github.com/python/typing_extensions), [urllib3](https://github.com/urllib3/urllib3), [whitenoise](https://github.com/evansd/whitenoise), [django-allauth[socialaccount]](https://github.com/pennersr/django-allauth) and [psycopg[binary]](https://github.com/psycopg/psycopg) to permit the latest version. Updates `certifi` from 2024.6.2 to 2024.7.4 - [Commits](certifi/python-certifi@2024.06.02...2024.07.04) Updates `cffi` from 1.16.0 to 1.17.0 - [Release notes](https://github.com/python-cffi/cffi/releases) - [Commits](python-cffi/cffi@v1.16.0...v1.17.0) Updates `coverage` from 7.5.3 to 7.6.1 - [Release notes](https://github.com/nedbat/coveragepy/releases) - [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst) - [Commits](nedbat/coveragepy@7.5.3...7.6.1) Updates `cryptography` from 42.0.8 to 43.0.0 - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](pyca/cryptography@42.0.8...43.0.0) Updates `django` from 5.0.6 to 5.1 - [Commits](django/django@5.0.6...5.1) Updates `django-alive` from 1.2.1 to 1.2.2 - [Release notes](https://github.com/lincolnloop/django-alive/releases) - [Changelog](https://github.com/lincolnloop/django-alive/blob/main/CHANGELOG.md) - [Commits](lincolnloop/django-alive@1.2.1...1.2.2) Updates `django-allauth` from 0.63.3 to 64.1.0 - [Changelog](https://github.com/pennersr/django-allauth/blob/main/ChangeLog.rst) - [Commits](pennersr/django-allauth@0.63.3...64.1.0) Updates `django-crispy-forms` from 2.1 to 2.3 - [Release notes](https://github.com/django-crispy-forms/django-crispy-forms/releases) - [Changelog](https://github.com/django-crispy-forms/django-crispy-forms/blob/main/CHANGELOG.md) - [Commits](django-crispy-forms/django-crispy-forms@2.1...2.3) Updates `django-storages` from 1.14.3 to 1.14.4 - [Changelog](https://github.com/jschneier/django-storages/blob/master/CHANGELOG.rst) - [Commits](jschneier/django-storages@1.14.3...1.14.4) Updates `marshmallow` from 3.21.2 to 3.21.3 - [Changelog](https://github.com/marshmallow-code/marshmallow/blob/dev/CHANGELOG.rst) - [Commits](marshmallow-code/marshmallow@3.21.2...3.21.3) Updates `packaging` from 24.0 to 24.1 - [Release notes](https://github.com/pypa/packaging/releases) - [Changelog](https://github.com/pypa/packaging/blob/main/CHANGELOG.rst) - [Commits](pypa/packaging@24.0...24.1) Updates `pillow` from 10.3.0 to 10.4.0 - [Release notes](https://github.com/python-pillow/Pillow/releases) - [Changelog](https://github.com/python-pillow/Pillow/blob/main/CHANGES.rst) - [Commits](python-pillow/Pillow@10.3.0...10.4.0) Updates `psycopg` from 3.1.19 to 3.2.1 - [Changelog](https://github.com/psycopg/psycopg/blob/master/docs/news.rst) - [Commits](psycopg/psycopg@3.1.19...3.2.1) Updates `psycopg-binary` from 3.1.19 to 3.2.1 - [Changelog](https://github.com/psycopg/psycopg/blob/master/docs/news.rst) - [Commits](psycopg/psycopg@3.1.19...3.2.1) Updates `pyjwt` from 2.8.0 to 2.9.0 - [Release notes](https://github.com/jpadilla/pyjwt/releases) - [Changelog](https://github.com/jpadilla/pyjwt/blob/master/CHANGELOG.rst) - [Commits](jpadilla/pyjwt@2.8.0...2.9.0) Updates `pytest` from 8.2.2 to 8.3.2 - [Release notes](https://github.com/pytest-dev/pytest/releases) - [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst) - [Commits](pytest-dev/pytest@8.2.2...8.3.2) Updates `sqlparse` from 0.5.0 to 0.5.1 - [Changelog](https://github.com/andialbrecht/sqlparse/blob/master/CHANGELOG) - [Commits](andialbrecht/sqlparse@0.5.0...0.5.1) Updates `typing-extensions` from 4.12.1 to 4.12.2 - [Release notes](https://github.com/python/typing_extensions/releases) - [Changelog](https://github.com/python/typing_extensions/blob/main/CHANGELOG.md) - [Commits](python/typing_extensions@4.12.1...4.12.2) Updates `urllib3` from 2.2.1 to 2.2.2 - [Release notes](https://github.com/urllib3/urllib3/releases) - [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst) - [Commits](urllib3/urllib3@2.2.1...2.2.2) Updates `whitenoise` from 6.6.0 to 6.7.0 - [Changelog](https://github.com/evansd/whitenoise/blob/main/docs/changelog.rst) - [Commits](evansd/whitenoise@6.6.0...6.7.0) Updates `django-allauth[socialaccount]` to 64.1.0 - [Changelog](https://github.com/pennersr/django-allauth/blob/main/ChangeLog.rst) - [Commits](pennersr/django-allauth@0.63.0...64.1.0) Updates `psycopg[binary]` to 3.2.1 - [Changelog](https://github.com/psycopg/psycopg/blob/master/docs/news.rst) - [Commits](psycopg/psycopg@3.1...3.2.1) --- updated-dependencies: - dependency-name: certifi dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: cffi dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: coverage dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: cryptography dependency-type: direct:production update-type: version-update:semver-major dependency-group: production-dependencies - dependency-name: django dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: django-alive dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-dependencies - dependency-name: django-allauth dependency-type: direct:production update-type: version-update:semver-major dependency-group: production-dependencies - dependency-name: django-crispy-forms dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: django-storages dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-dependencies - dependency-name: marshmallow dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-dependencies - dependency-name: packaging dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: pillow dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: psycopg dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: psycopg-binary dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: pyjwt dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: pytest dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: sqlparse dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-dependencies - dependency-name: typing-extensions dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-dependencies - dependency-name: urllib3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-dependencies - dependency-name: whitenoise dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: django-allauth[socialaccount] dependency-type: direct:production dependency-group: production-dependencies - dependency-name: psycopg[binary] dependency-type: direct:production dependency-group: production-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Aug 17, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

⬆️ Bump the production-dependencies group across 1 directory with 22 updates #66

⬆️ Bump the production-dependencies group across 1 directory with 22 updates #66

dependabot bot commented on behalf of github Aug 17, 2024

⬆️ Bump the production-dependencies group across 1 directory with 22 updates #66

Are you sure you want to change the base?

⬆️ Bump the production-dependencies group across 1 directory with 22 updates #66

Conversation

dependabot bot commented on behalf of github Aug 17, 2024

v1.17.0

v1.17.0rc1

Version 7.6.1 — 2024-08-04

Version 7.6.0 — 2024-07-11

1.2.2

What's Changed

New Contributors

1.2.2 (unreleased)

Note worthy changes

Security notice

Note worthy changes

2.3

What's Changed

2.2

2.3 (2024-07-19)

2.2 (2024-06-15)

S3

Azure

SFTP

Dropbox

FTP

24.1

What's Changed

New Contributors

10.4.0

Changes

10.4.0 (2024-07-01)

psycopg release notes

Future releases

Current release

Psycopg 3.2

`psycopg` release notes