Skip to content

Bump the pip-deps group across 1 directory with 8 updates #326

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Bump the pip-deps group across 1 directory with 8 updates #326

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Aug 8, 2025

Bumps the pip-deps group with 8 updates in the / directory:

Package From To
pymongo 4.13.2 4.14.0
pytest-asyncio 1.0.0 1.1.0
cryptography 45.0.5 45.0.6
gitpython 3.1.44 3.1.45
botocore 1.39.4 1.40.5
boto3 1.39.4 1.40.5
freezegun 1.5.3 1.5.4
mypy 1.17.0 1.17.1

Updates pymongo from 4.13.2 to 4.14.0

Release notes

Sourced from pymongo's releases.

PyMongo 4.14.0

Community notes: https://www.mongodb.com/community/forums/t/pymongo-4-14-released/326906

Changelog

Sourced from pymongo's changelog.

Changes in Version 4.14.0 (2025/08/06)

.. warning:: PyMongo 4.14 drops support for MongoDB 4.0. PyMongo now supports MongoDB 4.2+.

PyMongo 4.14 brings a number of changes including:

  • Dropped support for MongoDB 4.0.

  • Added preliminary support for Python 3.14 and 3.14 with free-threading. We do not yet support the following with Python 3.14:

    • Subinterpreters (concurrent.interpreters)
    • Free-threading with Encryption
    • mod_wsgi

  • Removed experimental support for free-threading support in Python 3.13.

  • Added :attr:bson.codec_options.TypeRegistry.codecs and :attr:bson.codec_options.TypeRegistry.fallback_encoder properties to allow users to directly access the type codecs and fallback encoder for a given :class:bson.codec_options.TypeRegistry.

  • Added :meth:pymongo.asynchronous.mongo_client.AsyncMongoClient.append_metadata and :meth:pymongo.mongo_client.MongoClient.append_metadata to allow instantiated MongoClients to send client metadata on-demand

  • Improved performance of selecting a server with the Primary selector.

  • Introduces a minor breaking change. When encoding :class:bson.binary.BinaryVector, a ValueError will be raised if the 'padding' metadata field is < 0 or > 7, or non-zero for any type other than PACKED_BIT.

  • Changed :meth:~pymongo.uri_parser.parse_uri's options return value to be type dict instead of _CaseInsensitiveDictionary.

Commits

Updates pytest-asyncio from 1.0.0 to 1.1.0

Release notes

Sourced from pytest-asyncio's releases.

pytest-asyncio 1.1.0

Added

  • Propagation of ContextVars from async fixtures to other fixtures and tests on Python 3.10 and older (#127)
  • Cancellation of tasks when the loop_scope ends (#200)
  • Warning when the current event loop is closed by a test

Fixed

  • Error about missing loop when calling functions requiring a loop in the finally clause of a task (#878)
  • An error that could cause duplicate warnings to be issued

Notes for Downstream Packagers

pytest-asyncio 1.1.0a1

1.1.0a1 - 2025-06-30

Added

  • Propagation of ContextVars from async fixtures to other fixtures and tests on Python 3.10 and older (#127)
  • Cancellation of tasks when the loop_scope ends (#200)
  • Warning when the current event loop is closed by a test

Fixed

  • Error about missing loop when calling functions requiring a loop in the finally clause of a task (#878)
  • An error that could cause duplicate warnings to be issued

Notes for Downstream Packagers

Commits
  • ce06c07 chore: Prepare release of v1.1.0.
  • d9a8dcc ci: Workaround missing Tag annotation during release.
  • d66e12f [pre-commit.ci] pre-commit autoupdate
  • 9e5e25f Build(deps): Bump certifi in /dependencies/docs
  • 0e63423 Build(deps): Bump hypothesis in /dependencies/default
  • bd4551c Build(deps): Bump ncipollo/release-action from 1.16.0 to 1.18.0
  • 8e20305 Build(deps): Bump hypothesis in /dependencies/default
  • b7a8ab5 Build(deps): Bump coverage from 7.9.1 to 7.9.2 in /dependencies/default
  • 8cc378d Build(deps): Bump typing-extensions in /dependencies/default
  • fb6bfbf [pre-commit.ci] pre-commit autoupdate
  • Additional commits viewable in compare view

Updates cryptography from 45.0.5 to 45.0.6

Changelog

Sourced from cryptography's changelog.

45.0.6 - 2025-08-05


* Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.5.2.

.. _v45-0-5:

Commits

Updates gitpython from 3.1.44 to 3.1.45

Release notes

Sourced from gitpython's releases.

3.1.45

What's Changed

New Contributors

... (truncated)

Commits
  • 6ba2c0a Prepare a new release
  • bbb3d00 Merge pull request #2062 from t-webber/relative_path_submodules
  • 1ee1e78 Add test case for cloning submodules with relative path
  • ec2e2c8 Allow relative path url in submodules for submodule_update
  • 4d529b7 Merge pull request #2060 from NMertsch/2023-fix-gitconfigparser-autodoc
  • 80fd2c1 Don't treat sphinx warnings as errors
  • a4aadb0 Fix name collision
  • 4c7778a Merge pull request #2057 from gitpython-developers/dependabot/github_actions/...
  • 5033c3f Merge pull request #2056 from gitpython-developers/dependabot/github_actions/...
  • 496392b Bump cygwin/cygwin-install-action from 5 to 6
  • Additional commits viewable in compare view

Updates botocore from 1.39.4 to 1.40.5

Commits
  • 8a1acfd Merge branch 'release-1.40.5'
  • efd4d43 Bumping version to 1.40.5
  • a61e933 Update to latest models
  • 3594ee3 Merge branch 'release-1.40.4'
  • b6b8781 Merge branch 'release-1.40.4' into develop
  • ef99ca6 Bumping version to 1.40.4
  • 160a948 Update endpoints model
  • e81fe4f Update to latest models
  • 21afbfc Merge branch 'release-1.40.3'
  • d95cbb2 Merge branch 'release-1.40.3' into develop
  • Additional commits viewable in compare view

Updates boto3 from 1.39.4 to 1.40.5

Commits
  • a91e94d Merge branch 'release-1.40.5'
  • 4a3fa2d Bumping version to 1.40.5
  • fcb006f Add changelog entries from botocore
  • b7bfc90 Merge branch 'release-1.40.4'
  • 4d4ddba Merge branch 'release-1.40.4' into develop
  • a092acc Bumping version to 1.40.4
  • 8a912ef Add changelog entries from botocore
  • beb14ee Update set_credentials to no longer pass aws_account_id (#4586)
  • 8a46af6 Only pass aws_account_id to botocore when explicitly set (#4585)
  • 3868a64 Merge branch 'release-1.40.3'
  • Additional commits viewable in compare view

Updates freezegun from 1.5.3 to 1.5.4

Changelog

Sourced from freezegun's changelog.

1.5.4

  • Fix: Ability to yield fixtures (broken in 1.5.3)
Commits

Updates mypy from 1.17.0 to 1.17.1

Changelog

Sourced from mypy's changelog.

Mypy 1.17.1

  • Retain None as constraints bottom if no bottoms were provided (Stanislav Terliakov, PR 19485)
  • Fix "ignored exception in hasattr" in dmypy (Stanislav Terliakov, PR 19428)
  • Prevent a crash when InitVar is redefined with a method in a subclass (Stanislav Terliakov, PR 19453)

Acknowledgements

Thanks to all mypy contributors who contributed to this release:

  • Alexey Makridenko
  • Brian Schubert
  • Chad Dombrova
  • Chainfire
  • Charlie Denton
  • Charulata
  • Christoph Tyralla
  • CoolCat467
  • Donal Burns
  • Guy Wilson
  • Ivan Levkivskyi
  • johnthagen
  • Jukka Lehtosalo
  • Łukasz Kwieciński
  • Marc Mueller
  • Michael J. Sullivan
  • Mikhail Golubev
  • Sebastian Rittau
  • Shantanu
  • Stanislav Terliakov
  • wyattscarpenter

I’d also like to thank my employer, Dropbox, for supporting mypy development.

Mypy 1.16

We’ve just uploaded mypy 1.16 to the Python Package Index (PyPI). Mypy is a static type checker for Python. This release includes new features and bug fixes. You can install it as follows:

python3 -m pip install -U mypy

You can read the full documentation for this release on Read the Docs.

Different Property Getter and Setter Types

Mypy now supports using different types for a property getter and setter:

class A:
    _value: int
</tr></table>

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the pip-deps group across 1 directory with 8 updates
31e6f3e 
Bumps the pip-deps group with 8 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [pymongo](https://github.com/mongodb/mongo-python-driver) | `4.13.2` | `4.14.0` |
| [pytest-asyncio](https://github.com/pytest-dev/pytest-asyncio) | `1.0.0` | `1.1.0` |
| [cryptography](https://github.com/pyca/cryptography) | `45.0.5` | `45.0.6` |
| [gitpython](https://github.com/gitpython-developers/GitPython) | `3.1.44` | `3.1.45` |
| [botocore](https://github.com/boto/botocore) | `1.39.4` | `1.40.5` |
| [boto3](https://github.com/boto/boto3) | `1.39.4` | `1.40.5` |
| [freezegun](https://github.com/spulec/freezegun) | `1.5.3` | `1.5.4` |
| [mypy](https://github.com/python/mypy) | `1.17.0` | `1.17.1` |



Updates `pymongo` from 4.13.2 to 4.14.0
- [Release notes](https://github.com/mongodb/mongo-python-driver/releases)
- [Changelog](https://github.com/mongodb/mongo-python-driver/blob/master/doc/changelog.rst)
- [Commits](mongodb/mongo-python-driver@4.13.2...4.14.0)

Updates `pytest-asyncio` from 1.0.0 to 1.1.0
- [Release notes](https://github.com/pytest-dev/pytest-asyncio/releases)
- [Commits](pytest-dev/pytest-asyncio@v1.0.0...v1.1.0)

Updates `cryptography` from 45.0.5 to 45.0.6
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst)
- [Commits](pyca/cryptography@45.0.5...45.0.6)

Updates `gitpython` from 3.1.44 to 3.1.45
- [Release notes](https://github.com/gitpython-developers/GitPython/releases)
- [Changelog](https://github.com/gitpython-developers/GitPython/blob/main/CHANGES)
- [Commits](gitpython-developers/GitPython@3.1.44...3.1.45)

Updates `botocore` from 1.39.4 to 1.40.5
- [Commits](boto/botocore@1.39.4...1.40.5)

Updates `boto3` from 1.39.4 to 1.40.5
- [Release notes](https://github.com/boto/boto3/releases)
- [Commits](boto/boto3@1.39.4...1.40.5)

Updates `freezegun` from 1.5.3 to 1.5.4
- [Release notes](https://github.com/spulec/freezegun/releases)
- [Changelog](https://github.com/spulec/freezegun/blob/master/CHANGELOG)
- [Commits](spulec/freezegun@1.5.3...1.5.4)

Updates `mypy` from 1.17.0 to 1.17.1
- [Changelog](https://github.com/python/mypy/blob/master/CHANGELOG.md)
- [Commits](python/mypy@v1.17.0...v1.17.1)

---
updated-dependencies:
- dependency-name: pymongo
  dependency-version: 4.14.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: pip-deps
- dependency-name: pytest-asyncio
  dependency-version: 1.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: pip-deps
- dependency-name: cryptography
  dependency-version: 45.0.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip-deps
- dependency-name: gitpython
  dependency-version: 3.1.45
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip-deps
- dependency-name: botocore
  dependency-version: 1.40.5
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: pip-deps
- dependency-name: boto3
  dependency-version: 1.40.5
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: pip-deps
- dependency-name: freezegun
  dependency-version: 1.5.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip-deps
- dependency-name: mypy
  dependency-version: 1.17.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip-deps
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update python code labels Aug 8, 2025
@dependabot dependabot bot requested a review from a team as a code owner August 8, 2025 14:52
@dependabot dependabot bot requested review from anandsyncs and Julien-Ben August 8, 2025 14:52
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update python code labels Aug 8, 2025
@github-actions GitHub Actions
Copy link

github-actions bot commented Aug 8, 2025

⚠️ (this preview might not be accurate if the PR is not rebased on current master branch)

MCK 1.3.0 Release Notes

Bug Fixes

  • This change fixes the current complex and difficult-to-maintain architecture for stateful set containers, which relies on an "agent matrix" to map operator and agent versions which led to a sheer amount of images.
  • We solve this by shifting to a 3-container setup. This new design eliminates the need for the operator-version/agent-version matrix by adding one additional container containing all required binaries. This architecture maps to what we already do with the mongodb-database container.

Other Changes

  • Optional permissions for PersistentVolumeClaim moved to a separate role. When managing the operator with Helm it is possible to disable permissions for PersistentVolumeClaim resources by setting operator.enablePVCResize value to false (true by default). When enabled, previously these permissions were part of the primary operator role. With this change, permissions have a separate role.
  • subresourceEnabled Helm value was removed. This setting used to be true by default and made it possible to exclude subresource permissions from the operator role by specifying false as the value. We are removing this configuration option, making the operator roles always have subresource permissions. This setting was introduced as a temporary solution for this OpenShift issue. The issue has since been resolved and the setting is no longer needed.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@anandsyncs anandsyncs Awaiting requested review from anandsyncs anandsyncs is a code owner automatically assigned from mongodb/kubernetes-hosted

@Julien-Ben Julien-Ben Awaiting requested review from Julien-Ben Julien-Ben is a code owner automatically assigned from mongodb/kubernetes-hosted

At least 2 approving reviews are required to merge this pull request.

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file python Pull requests that update python code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants