Skip to content

chore(deps-dev): bump the python-dependencies group across 1 directory with 5 updates #677

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Aug 12, 2025
Merged

chore(deps-dev): bump the python-dependencies group across 1 directory with 5 updates #677

merged 1 commit into from
Aug 12, 2025

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Aug 11, 2025
edited
Loading

Bumps the python-dependencies group with 5 updates in the /.github/actions/codecov-cli directory:

Package From To
codecov-cli 11.0.3 11.1.0
anyio 4.9.0 4.10.0
certifi 2025.7.14 2025.8.3
charset-normalizer 3.4.2 3.4.3
regex 2024.11.6 2025.7.34

Updates codecov-cli from 11.0.3 to 11.1.0

Release notes

Sourced from codecov-cli's releases.

Release v0.1.1_test

What's Changed

Full Changelog: codecov/codecov-cli@v0.1.0...v0.1.1_test

Commits

Updates anyio from 4.9.0 to 4.10.0

Release notes

Sourced from anyio's releases.

4.10.0

  • Added the feed_data() method to the BufferedByteReceiveStream class, allowing users to inject data directly into the buffer
  • Added various class methods to wrap existing sockets as listeners or socket streams:
    • SocketListener.from_socket()
    • SocketStream.from_socket()
    • UNIXSocketStream.from_socket()
    • UDPSocket.from_socket()
    • ConnectedUDPSocket.from_socket()
    • UNIXDatagramSocket.from_socket()
    • ConnectedUNIXDatagramSocket.from_socket()
  • Added a hierarchy of connectable stream classes for transparently connecting to various remote or local endpoints for exchanging bytes or objects
  • Added context manager mix-in classes (anyio.ContextManagerMixin and anyio.AsyncContextManagerMixin) to help write classes that embed other context managers, particularly cancel scopes or task groups (#905; PR by @​agronholm and @​tapetersen)
  • Added the ability to specify the thread name in start_blocking_portal() (#818; PR by @​davidbrochart)
  • Added anyio.notify_closing to allow waking anyio.wait_readable and anyio.wait_writable before closing a socket. Among other things, this prevents an OSError on the ProactorEventLoop. (#896; PR by @​graingert)
  • Incorporated several documentation improvements from the EuroPython 2025 sprint (special thanks to the sprinters: Emmanuel Okedele, Jan Murre, Euxenia Miruna Goia and Christoffer Fjord)
  • Added a documentation page explaining why one might want to use AnyIO's APIs instead of asyncio's
  • Updated the to_interpreters module to use the public concurrent.interpreters API on Python 3.14 or later
  • Fixed anyio.Path.copy() and anyio.Path.copy_into() failing on Python 3.14.0a7
  • Fixed return annotation of __aexit__ on async context managers. CMs which can suppress exceptions should return bool, or None otherwise. (#913; PR by @​Enegg)
  • Fixed rollover boundary check in SpooledTemporaryFile so that rollover only occurs when the buffer size exceeds max_size (#915; PR by @​11kkw)
  • Migrated testing and documentation dependencies from extras to dependency groups
  • Fixed compatibility of anyio.to_interpreter with Python 3.14.0b2 (#926; PR by @​hroncok)
  • Fixed SyntaxWarning on Python 3.14 about return in finally (#816)
  • Fixed RunVar name conflicts. RunVar instances with the same name should not share storage (#880; PR by @​vimfu)
  • Renamed the BrokenWorkerIntepreter exception to BrokenWorkerInterpreter. The old name is available as a deprecated alias. (#938; PR by @​ayussh-verma)
  • Fixed an edge case in CapacityLimiter on asyncio where a task, waiting to acquire a limiter gets cancelled and is subsequently granted a token from the limiter, but before the cancellation is delivered, and then fails to notify the next waiting task (#947)
Changelog

Sourced from anyio's changelog.

Version history

This library adheres to Semantic Versioning 2.0 <http://semver.org/>_.

4.10.0

  • Added the feed_data() method to the BufferedByteReceiveStream class, allowing users to inject data directly into the buffer

  • Added various class methods to wrap existing sockets as listeners or socket streams:

    • SocketListener.from_socket()
    • SocketStream.from_socket()
    • UNIXSocketStream.from_socket()
    • UDPSocket.from_socket()
    • ConnectedUDPSocket.from_socket()
    • UNIXDatagramSocket.from_socket()
    • ConnectedUNIXDatagramSocket.from_socket()

  • Added a hierarchy of connectable stream classes for transparently connecting to various remote or local endpoints for exchanging bytes or objects

  • Added context manager mix-in classes (anyio.ContextManagerMixin and anyio.AsyncContextManagerMixin) to help write classes that embed other context managers, particularly cancel scopes or task groups ([#905](https://github.com/agronholm/anyio/issues/905) <https://github.com/agronholm/anyio/pull/905>_; PR by @​agronholm and @​tapetersen)

  • Added the ability to specify the thread name in start_blocking_portal() ([#818](https://github.com/agronholm/anyio/issues/818) <https://github.com/agronholm/anyio/issues/818>_; PR by @​davidbrochart)

  • Added anyio.notify_closing to allow waking anyio.wait_readable and anyio.wait_writable before closing a socket. Among other things, this prevents an OSError on the ProactorEventLoop. ([#896](https://github.com/agronholm/anyio/issues/896) <https://github.com/agronholm/anyio/pull/896>_; PR by @​graingert)

  • Incorporated several documentation improvements from the EuroPython 2025 sprint (special thanks to the sprinters: Emmanuel Okedele, Jan Murre, Euxenia Miruna Goia and Christoffer Fjord)

  • Added a documentation page explaining why one might want to use AnyIO's APIs instead of asyncio's

  • Updated the to_interpreters module to use the public concurrent.interpreters API on Python 3.14 or later

  • Fixed anyio.Path.copy() and anyio.Path.copy_into() failing on Python 3.14.0a7

  • Fixed return annotation of __aexit__ on async context managers. CMs which can suppress exceptions should return bool, or None otherwise. ([#913](https://github.com/agronholm/anyio/issues/913) <https://github.com/agronholm/anyio/pull/913>_; PR by @​Enegg)

  • Fixed rollover boundary check in SpooledTemporaryFile so that rollover only occurs when the buffer size exceeds max_size ([#915](https://github.com/agronholm/anyio/issues/915) <https://github.com/agronholm/anyio/pull/915>_; PR by @​11kkw)

  • Migrated testing and documentation dependencies from extras to dependency groups

  • Fixed compatibility of anyio.to_interpreter with Python 3.14.0b2 ([#926](https://github.com/agronholm/anyio/issues/926) <https://github.com/agronholm/anyio/issues/926>_; PR by @​hroncok)

  • Fixed SyntaxWarning on Python 3.14 about return in finally ([#816](https://github.com/agronholm/anyio/issues/816) <https://github.com/agronholm/anyio/issues/816>_)

... (truncated)

Commits
  • 0cf55b8 Bumped up the version
  • b029df5 Updated the to_interpreter module to use the public API on Python 3.14 (#956)
  • 01f02cf Incorporated EP2025 sprint feedback and added a new section (#955)
  • d896480 [pre-commit.ci] pre-commit autoupdate (#954)
  • 0282b81 Added the BufferedByteReceiveStream.feed_data() method (#945)
  • 19e5477 Fixed a cancellation edge case for asyncio CapacityLimiter (#952)
  • 4666df3 [pre-commit.ci] pre-commit autoupdate (#946)
  • 38c2567 [pre-commit.ci] pre-commit autoupdate (#942)
  • 3db73ac Add missing imports for Readcting to cancellation in worker threads example (...
  • 2eda004 Added an example on how to use move_on_after() with shielding
  • Additional commits viewable in compare view

Updates certifi from 2025.7.14 to 2025.8.3

Commits

Updates charset-normalizer from 3.4.2 to 3.4.3

Release notes

Sourced from charset-normalizer's releases.

Version 3.4.3

3.4.3 (2025-08-09)

Changed

  • mypy(c) is no longer a required dependency at build time if CHARSET_NORMALIZER_USE_MYPYC isn't set to 1. (#595) (#583)
  • automatically lower confidence on small bytes samples that are not Unicode in detect output legacy function. (#391)

Added

  • Custom build backend to overcome inability to mark mypy as an optional dependency in the build phase.
  • Support for Python 3.14

Fixed

  • sdist archive contained useless directories.
  • automatically fallback on valid UTF-16 or UTF-32 even if the md says it's noisy. (#633)

Misc

  • SBOM are automatically published to the relevant GitHub release to comply with regulatory changes. Each published wheel comes with its SBOM. We choose CycloneDX as the format.
  • Prebuilt optimized wheel are no longer distributed by default for CPython 3.7 due to a change in cibuildwheel.
Changelog

Sourced from charset-normalizer's changelog.

3.4.3 (2025-08-09)

Changed

  • mypy(c) is no longer a required dependency at build time if CHARSET_NORMALIZER_USE_MYPYC isn't set to 1. (#595) (#583)
  • automatically lower confidence on small bytes samples that are not Unicode in detect output legacy function. (#391)

Added

  • Custom build backend to overcome inability to mark mypy as an optional dependency in the build phase.
  • Support for Python 3.14

Fixed

  • sdist archive contained useless directories.
  • automatically fallback on valid UTF-16 or UTF-32 even if the md says it's noisy. (#633)

Misc

  • SBOM are automatically published to the relevant GitHub release to comply with regulatory changes. Each published wheel comes with its SBOM. We choose CycloneDX as the format.
  • Prebuilt optimized wheel are no longer distributed by default for CPython 3.7 due to a change in cibuildwheel.
Commits
  • 46f662d Release 3.4.3 (#638)
  • 1a059b2 🔧 skip building on freethreaded as we're not confident it is stable
  • 2275e3d 📝 final note in CHANGELOG.md
  • c96acdf 📝 update release date on CHANGELOG.md
  • 43e5460 📝 update README.md
  • f277074 🔧 automatically lower confidence on small bytes str on non Unicode res...
  • 15ae241 🐛 automatically fallback on valid UTF-16 or UTF-32 even if the md says it...
  • 37397c1 🔧 enable 3.14 in nox test_mypyc session
  • cb82537 ⏪ revert license due to compat python 3.7 issue setuptools
  • 6a2efeb 🎨 fix linter errors
  • Additional commits viewable in compare view

Updates regex from 2024.11.6 to 2025.7.34

Changelog

Sourced from regex's changelog.

Version: 2025.7.34

Git issue 575: Issues with ASCII/Unicode modifiers

Version: 2025.7.33

Updated main.yml and pyproject.toml.

Version: 2025.7.32

Git issue 580: Regression in v2025.7.31: \P{L} no longer matches in simple patterns

Version: 2025.7.31

Further updates to main.yml.

Version: 2025.7.30

Updated main.yml and pyproject.toml.

Version: 2025.7.29

Git issue 572: Inline ASCII modifier doesn't seem to affect anything

Version: 2025.5.19

Changed how main.yml skips unwanted Arch builds.

Version: 2025.5.18

Updated main.yml to build Windows ARM64/aarch64 wheel.

Updated licence text format in pyproject.toml.

Version: 2025.2.13

Dropping support for Python 3.8 and removing it from main.yml.

Version: 2025.2.12

Further fixes to main.yml.

Version: 2025.2.11

Updated main.yml to Artifacts v4.

Version: 2025.2.10

Git issue 551: Infinite loop on V1 search

... (truncated)

Commits
  • 23ca191 Git issue 575: Issues with ASCII/Unicode modifiers
  • 88fee85 Updated main.yml and pyproject.toml.
  • 7ebda8c Merge pull request #582 from facelessuser/bugfix/setuptools
  • 26d6efc Setup failure scenario
  • a4a6d94 Git issue 580: Regression in v2025.7.31: \P{L} no longer matches in simple pa...
  • becb0d4 Updated version and added changes to changelog.txt.
  • 457bcd3 Merge pull request #577 from facelessuser/bugfix/linux
  • 0d045f7 No need to upload source in manylinux
  • f2d385b Fix aarch64, ppc64le, s390x, and source dist
  • 4bc46f1 Merge pull request #574 from facelessuser/bugfix/wheels
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Aug 11, 2025
@dependabot dependabot bot requested a review from a team as a code owner August 11, 2025 21:07
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Aug 11, 2025
@github-actions github-actions bot added the conventional-commit/chore Maintenance work that does not show up in the release notes label Aug 11, 2025
@RomainMuller
Copy link
Contributor

RomainMuller commented Aug 12, 2025

@dependabot rebase

@dependabot
chore(deps-dev): bump the python-dependencies group across 1 director…
4ef46d6 
…y with 5 updates

Bumps the python-dependencies group with 5 updates in the /.github/actions/codecov-cli directory:

| Package | From | To |
| --- | --- | --- |
| [codecov-cli](https://github.com/codecov/codecov-cli) | `11.0.3` | `11.1.0` |
| [anyio](https://github.com/agronholm/anyio) | `4.9.0` | `4.10.0` |
| [certifi](https://github.com/certifi/python-certifi) | `2025.7.14` | `2025.8.3` |
| [charset-normalizer](https://github.com/jawah/charset_normalizer) | `3.4.2` | `3.4.3` |
| [regex](https://github.com/mrabarnett/mrab-regex) | `2024.11.6` | `2025.7.34` |



Updates `codecov-cli` from 11.0.3 to 11.1.0
- [Release notes](https://github.com/codecov/codecov-cli/releases)
- [Commits](https://github.com/codecov/codecov-cli/commits)

Updates `anyio` from 4.9.0 to 4.10.0
- [Release notes](https://github.com/agronholm/anyio/releases)
- [Changelog](https://github.com/agronholm/anyio/blob/master/docs/versionhistory.rst)
- [Commits](agronholm/anyio@4.9.0...4.10)

Updates `certifi` from 2025.7.14 to 2025.8.3
- [Commits](certifi/python-certifi@2025.07.14...2025.08.03)

Updates `charset-normalizer` from 3.4.2 to 3.4.3
- [Release notes](https://github.com/jawah/charset_normalizer/releases)
- [Changelog](https://github.com/jawah/charset_normalizer/blob/master/CHANGELOG.md)
- [Commits](jawah/charset_normalizer@3.4.2...3.4.3)

Updates `regex` from 2024.11.6 to 2025.7.34
- [Changelog](https://github.com/mrabarnett/mrab-regex/blob/hg/changelog.txt)
- [Commits](mrabarnett/mrab-regex@2024.11.6...2025.7.34)

---
updated-dependencies:
- dependency-name: codecov-cli
  dependency-version: 11.1.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: python-dependencies
- dependency-name: anyio
  dependency-version: 4.10.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: python-dependencies
- dependency-name: certifi
  dependency-version: 2025.8.3
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: python-dependencies
- dependency-name: charset-normalizer
  dependency-version: 3.4.3
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: python-dependencies
- dependency-name: regex
  dependency-version: 2025.7.34
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: python-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/pip/dot-github/actions/codecov-cli/python-dependencies-2d0efe465b branch from 0a76f74 to 4ef46d6 Compare August 12, 2025 14:12
@RomainMuller RomainMuller enabled auto-merge August 12, 2025 14:39
@RomainMuller RomainMuller added this pull request to the merge queue Aug 12, 2025
Merged via the queue into main with commit e061d12 Aug 12, 2025
59 checks passed
@RomainMuller RomainMuller deleted the dependabot/pip/dot-github/actions/codecov-cli/python-dependencies-2d0efe465b branch August 12, 2025 14:56
@codecov
Copy link

codecov bot commented Aug 12, 2025

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 65.72%. Comparing base (b5eac0e) to head (4ef46d6).
⚠️ Report is 2 commits behind head on main.

Additional details and impacted files 
@@            Coverage Diff             @@
##             main     #677      +/-   ##
==========================================
- Coverage   67.33%   65.72%   -1.62%     
==========================================
  Files         113      113              
  Lines        7926     7926              
==========================================
- Hits         5337     5209     -128     
- Misses       2070     2192     +122     
- Partials      519      525       +6
Components Coverage Δ
Generators 80.24% <ø> (ø)
Instruments ∅ <ø> (∅)
Go Driver 75.81% <ø> (-0.70%) ⬇️
Toolexec Driver 67.53% <ø> (-3.31%) ⬇️
Aspects 71.91% <ø> (-2.42%) ⬇️
Injector 72.79% <ø> (-2.08%) ⬇️
Job Server 65.91% <ø> (-0.27%) ⬇️
Other 65.72% <ø> (-1.62%) ⬇️
see 26 files with indirect coverage changes
🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@RomainMuller RomainMuller RomainMuller approved these changes

Assignees

No one assigned

Labels

conventional-commit/chore Maintenance work that does not show up in the release notes dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@RomainMuller