Skip to content

Bump the pip-deps group across 1 directory with 11 updates #338

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Aug 12, 2025
Merged

Bump the pip-deps group across 1 directory with 11 updates #338

merged 1 commit into from
Aug 12, 2025

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Aug 12, 2025

Bumps the pip-deps group with 11 updates in the / directory:

Package From To
pymongo 4.13.2 4.14.0
pytest-asyncio 1.0.0 1.1.0
cryptography 45.0.5 45.0.6
gitpython 3.1.44 3.1.45
botocore 1.39.4 1.40.7
boto3 1.39.4 1.40.7
freezegun 1.5.3 1.5.5
mypy 1.17.0 1.17.1
types-pyyaml 6.0.12.20250516 6.0.12.20250809
types-pytz 2025.2.0.20250516 2025.2.0.20250809
types-python-dateutil 2.9.0.20250708 2.9.0.20250809

Updates pymongo from 4.13.2 to 4.14.0

Release notes

Sourced from pymongo's releases.

PyMongo 4.14.0

Community notes: https://www.mongodb.com/community/forums/t/pymongo-4-14-released/326906

Changelog

Sourced from pymongo's changelog.

Changes in Version 4.14.0 (2025/08/06)

.. warning:: PyMongo 4.14 drops support for MongoDB 4.0. PyMongo now supports MongoDB 4.2+.

PyMongo 4.14 brings a number of changes including:

  • Dropped support for MongoDB 4.0.

  • Added preliminary support for Python 3.14 and 3.14 with free-threading. We do not yet support the following with Python 3.14:

    • Subinterpreters (concurrent.interpreters)
    • Free-threading with Encryption
    • mod_wsgi

  • Removed experimental support for free-threading support in Python 3.13.

  • Added :attr:bson.codec_options.TypeRegistry.codecs and :attr:bson.codec_options.TypeRegistry.fallback_encoder properties to allow users to directly access the type codecs and fallback encoder for a given :class:bson.codec_options.TypeRegistry.

  • Added :meth:pymongo.asynchronous.mongo_client.AsyncMongoClient.append_metadata and :meth:pymongo.mongo_client.MongoClient.append_metadata to allow instantiated MongoClients to send client metadata on-demand

  • Improved performance of selecting a server with the Primary selector.

  • Introduces a minor breaking change. When encoding :class:bson.binary.BinaryVector, a ValueError will be raised if the 'padding' metadata field is < 0 or > 7, or non-zero for any type other than PACKED_BIT.

  • Changed :meth:~pymongo.uri_parser.parse_uri's options return value to be type dict instead of _CaseInsensitiveDictionary.

Commits

Updates pytest-asyncio from 1.0.0 to 1.1.0

Release notes

Sourced from pytest-asyncio's releases.

pytest-asyncio 1.1.0

Added

  • Propagation of ContextVars from async fixtures to other fixtures and tests on Python 3.10 and older (#127)
  • Cancellation of tasks when the loop_scope ends (#200)
  • Warning when the current event loop is closed by a test

Fixed

  • Error about missing loop when calling functions requiring a loop in the finally clause of a task (#878)
  • An error that could cause duplicate warnings to be issued

Notes for Downstream Packagers

pytest-asyncio 1.1.0a1

1.1.0a1 - 2025-06-30

Added

  • Propagation of ContextVars from async fixtures to other fixtures and tests on Python 3.10 and older (#127)
  • Cancellation of tasks when the loop_scope ends (#200)
  • Warning when the current event loop is closed by a test

Fixed

  • Error about missing loop when calling functions requiring a loop in the finally clause of a task (#878)
  • An error that could cause duplicate warnings to be issued

Notes for Downstream Packagers

Commits
  • ce06c07 chore: Prepare release of v1.1.0.
  • d9a8dcc ci: Workaround missing Tag annotation during release.
  • d66e12f [pre-commit.ci] pre-commit autoupdate
  • 9e5e25f Build(deps): Bump certifi in /dependencies/docs
  • 0e63423 Build(deps): Bump hypothesis in /dependencies/default
  • bd4551c Build(deps): Bump ncipollo/release-action from 1.16.0 to 1.18.0
  • 8e20305 Build(deps): Bump hypothesis in /dependencies/default
  • b7a8ab5 Build(deps): Bump coverage from 7.9.1 to 7.9.2 in /dependencies/default
  • 8cc378d Build(deps): Bump typing-extensions in /dependencies/default
  • fb6bfbf [pre-commit.ci] pre-commit autoupdate
  • Additional commits viewable in compare view

Updates cryptography from 45.0.5 to 45.0.6

Changelog

Sourced from cryptography's changelog.

45.0.6 - 2025-08-05


* Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.5.2.

.. _v45-0-5:

Commits

Updates gitpython from 3.1.44 to 3.1.45

Release notes

Sourced from gitpython's releases.

3.1.45

What's Changed

New Contributors

... (truncated)

Commits
  • 6ba2c0a Prepare a new release
  • bbb3d00 Merge pull request #2062 from t-webber/relative_path_submodules
  • 1ee1e78 Add test case for cloning submodules with relative path
  • ec2e2c8 Allow relative path url in submodules for submodule_update
  • 4d529b7 Merge pull request #2060 from NMertsch/2023-fix-gitconfigparser-autodoc
  • 80fd2c1 Don't treat sphinx warnings as errors
  • a4aadb0 Fix name collision
  • 4c7778a Merge pull request #2057 from gitpython-developers/dependabot/github_actions/...
  • 5033c3f Merge pull request #2056 from gitpython-developers/dependabot/github_actions/...
  • 496392b Bump cygwin/cygwin-install-action from 5 to 6
  • Additional commits viewable in compare view

Updates botocore from 1.39.4 to 1.40.7

Commits
  • 9e97196 Merge branch 'release-1.40.7'
  • b9e1e61 Bumping version to 1.40.7
  • 26f0200 Update endpoints model
  • 37cd41c Update to latest models
  • 63db11e Merge branch 'release-1.40.6'
  • fd29679 Merge branch 'release-1.40.6' into develop
  • 943cf49 Bumping version to 1.40.6
  • 55341c3 Update endpoints model
  • 30ae2e5 Update to latest models
  • dcba0cc Fix DynamoDB stubber failure with unresolvable deferred credentials (#3535)
  • Additional commits viewable in compare view

Updates boto3 from 1.39.4 to 1.40.7

Commits
  • cbcab51 Merge branch 'release-1.40.7'
  • 2a50933 Bumping version to 1.40.7
  • 4aeb4f0 Add changelog entries from botocore
  • ee92fbd Merge branch 'release-1.40.6'
  • 24ed7f9 Merge branch 'release-1.40.6' into develop
  • f0a5be5 Bumping version to 1.40.6
  • 3773cf3 Add changelog entries from botocore
  • a91e94d Merge branch 'release-1.40.5'
  • d8747bb Merge branch 'release-1.40.5' into develop
  • 4a3fa2d Bumping version to 1.40.5
  • Additional commits viewable in compare view

Updates freezegun from 1.5.3 to 1.5.5

Changelog

Sourced from freezegun's changelog.

1.5.5

  • Allow parametrized arguments called 'func' (Broken in 1.5.4)

1.5.4

  • Fix: Ability to yield fixtures (broken in 1.5.3)
Commits
  • c9bf52c Increase version number
  • 0f2bd7e Merge pull request #582 from spulec/fixture-called-func
  • a608055 Allow parametrized arguments with name 'func'
  • 2bb4711 Increase version number
  • 7599eee Add 1.5.4 release notes
  • 0d00e7d Merge pull request #579 from zsh8/decorate_generator
  • 10c93f2 fix: preserve functionality in pytest yield fixtures
  • See full diff in compare view

Updates mypy from 1.17.0 to 1.17.1

Changelog

Sourced from mypy's changelog.

Mypy 1.17.1

  • Retain None as constraints bottom if no bottoms were provided (Stanislav Terliakov, PR 19485)
  • Fix "ignored exception in hasattr" in dmypy (Stanislav Terliakov, PR 19428)
  • Prevent a crash when InitVar is redefined with a method in a subclass (Stanislav Terliakov, PR 19453)

Acknowledgements

Thanks to all mypy contributors who contributed to this release:

  • Alexey Makridenko
  • Brian Schubert
  • Chad Dombrova
  • Chainfire
  • Charlie Denton
  • Charulata
  • Christoph Tyralla
  • CoolCat467
  • Donal Burns
  • Guy Wilson
  • Ivan Levkivskyi
  • johnthagen
  • Jukka Lehtosalo
  • Łukasz Kwieciński
  • Marc Mueller
  • Michael J. Sullivan
  • Mikhail Golubev
  • Sebastian Rittau
  • Shantanu
  • Stanislav Terliakov
  • wyattscarpenter

I’d also like to thank my employer, Dropbox, for supporting mypy development.

Mypy 1.16

We’ve just uploaded mypy 1.16 to the Python Package Index (PyPI). Mypy is a static type checker for Python. This release includes new features and bug fixes. You can install it as follows:

python3 -m pip install -U mypy

You can read the full documentation for this release on Read the Docs.

Different Property Getter and Setter Types

Mypy now supports using different types for a property getter and setter:

class A:
    _value: int
</tr></table>

... (truncated)

Commits

Updates types-pyyaml from 6.0.12.20250516 to 6.0.12.20250809

Commits

Updates types-pytz from 2025.2.0.20250516 to 2025.2.0.20250809

Commits

Updates types-python-dateutil from 2.9.0.20250708 to 2.9.0.20250809

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the pip-deps group across 1 directory with 11 updates
a552dbb 
Bumps the pip-deps group with 11 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [pymongo](https://github.com/mongodb/mongo-python-driver) | `4.13.2` | `4.14.0` |
| [pytest-asyncio](https://github.com/pytest-dev/pytest-asyncio) | `1.0.0` | `1.1.0` |
| [cryptography](https://github.com/pyca/cryptography) | `45.0.5` | `45.0.6` |
| [gitpython](https://github.com/gitpython-developers/GitPython) | `3.1.44` | `3.1.45` |
| [botocore](https://github.com/boto/botocore) | `1.39.4` | `1.40.7` |
| [boto3](https://github.com/boto/boto3) | `1.39.4` | `1.40.7` |
| [freezegun](https://github.com/spulec/freezegun) | `1.5.3` | `1.5.5` |
| [mypy](https://github.com/python/mypy) | `1.17.0` | `1.17.1` |
| [types-pyyaml](https://github.com/typeshed-internal/stub_uploader) | `6.0.12.20250516` | `6.0.12.20250809` |
| [types-pytz](https://github.com/typeshed-internal/stub_uploader) | `2025.2.0.20250516` | `2025.2.0.20250809` |
| [types-python-dateutil](https://github.com/typeshed-internal/stub_uploader) | `2.9.0.20250708` | `2.9.0.20250809` |



Updates `pymongo` from 4.13.2 to 4.14.0
- [Release notes](https://github.com/mongodb/mongo-python-driver/releases)
- [Changelog](https://github.com/mongodb/mongo-python-driver/blob/master/doc/changelog.rst)
- [Commits](mongodb/mongo-python-driver@4.13.2...4.14.0)

Updates `pytest-asyncio` from 1.0.0 to 1.1.0
- [Release notes](https://github.com/pytest-dev/pytest-asyncio/releases)
- [Commits](pytest-dev/pytest-asyncio@v1.0.0...v1.1.0)

Updates `cryptography` from 45.0.5 to 45.0.6
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst)
- [Commits](pyca/cryptography@45.0.5...45.0.6)

Updates `gitpython` from 3.1.44 to 3.1.45
- [Release notes](https://github.com/gitpython-developers/GitPython/releases)
- [Changelog](https://github.com/gitpython-developers/GitPython/blob/main/CHANGES)
- [Commits](gitpython-developers/GitPython@3.1.44...3.1.45)

Updates `botocore` from 1.39.4 to 1.40.7
- [Commits](boto/botocore@1.39.4...1.40.7)

Updates `boto3` from 1.39.4 to 1.40.7
- [Release notes](https://github.com/boto/boto3/releases)
- [Commits](boto/boto3@1.39.4...1.40.7)

Updates `freezegun` from 1.5.3 to 1.5.5
- [Release notes](https://github.com/spulec/freezegun/releases)
- [Changelog](https://github.com/spulec/freezegun/blob/master/CHANGELOG)
- [Commits](spulec/freezegun@1.5.3...1.5.5)

Updates `mypy` from 1.17.0 to 1.17.1
- [Changelog](https://github.com/python/mypy/blob/master/CHANGELOG.md)
- [Commits](python/mypy@v1.17.0...v1.17.1)

Updates `types-pyyaml` from 6.0.12.20250516 to 6.0.12.20250809
- [Commits](https://github.com/typeshed-internal/stub_uploader/commits)

Updates `types-pytz` from 2025.2.0.20250516 to 2025.2.0.20250809
- [Commits](https://github.com/typeshed-internal/stub_uploader/commits)

Updates `types-python-dateutil` from 2.9.0.20250708 to 2.9.0.20250809
- [Commits](https://github.com/typeshed-internal/stub_uploader/commits)

---
updated-dependencies:
- dependency-name: pymongo
  dependency-version: 4.14.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: pip-deps
- dependency-name: pytest-asyncio
  dependency-version: 1.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: pip-deps
- dependency-name: cryptography
  dependency-version: 45.0.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip-deps
- dependency-name: gitpython
  dependency-version: 3.1.45
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip-deps
- dependency-name: botocore
  dependency-version: 1.40.7
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: pip-deps
- dependency-name: boto3
  dependency-version: 1.40.7
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: pip-deps
- dependency-name: freezegun
  dependency-version: 1.5.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip-deps
- dependency-name: mypy
  dependency-version: 1.17.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip-deps
- dependency-name: types-pyyaml
  dependency-version: 6.0.12.20250809
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip-deps
- dependency-name: types-pytz
  dependency-version: 2025.2.0.20250809
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip-deps
- dependency-name: types-python-dateutil
  dependency-version: 2.9.0.20250809
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip-deps
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update python code labels Aug 12, 2025
@dependabot dependabot bot requested a review from a team as a code owner August 12, 2025 07:36
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Aug 12, 2025
@dependabot dependabot bot added the python Pull requests that update python code label Aug 12, 2025
@github-actions GitHub Actions
Copy link

⚠️ (this preview might not be accurate if the PR is not rebased on current master branch)

MCK 1.3.0 Release Notes

Bug Fixes

  • This change fixes the current complex and difficult-to-maintain architecture for stateful set containers, which relies on an "agent matrix" to map operator and agent versions which led to a sheer amount of images.
  • We solve this by shifting to a 3-container setup. This new design eliminates the need for the operator-version/agent-version matrix by adding one additional container containing all required binaries. This architecture maps to what we already do with the mongodb-database container.

Other Changes

  • Optional permissions for PersistentVolumeClaim moved to a separate role. When managing the operator with Helm it is possible to disable permissions for PersistentVolumeClaim resources by setting operator.enablePVCResize value to false (true by default). When enabled, previously these permissions were part of the primary operator role. With this change, permissions have a separate role.
  • subresourceEnabled Helm value was removed. This setting used to be true by default and made it possible to exclude subresource permissions from the operator role by specifying false as the value. We are removing this configuration option, making the operator roles always have subresource permissions. This setting was introduced as a temporary solution for this OpenShift issue. The issue has since been resolved and the setting is no longer needed.

@codeowners-service-app codeowners-service-app
Copy link

codeowners-service-app bot commented Aug 12, 2025
edited
Loading

Assigned Julien-Ben for team kubernetes-hosted because fealebenpae is out of office.
Assigned Julien-Ben for team kubernetes-hosted because lucian-tosa is out of office.

@MaciejKaras MaciejKaras added the skip-changelog Use this label in Pull Request to not require new changelog entry file label Aug 12, 2025
@MaciejKaras MaciejKaras enabled auto-merge (squash) August 12, 2025 10:37
@MaciejKaras MaciejKaras merged commit abb451b into master Aug 12, 2025
35 of 43 checks passed
@MaciejKaras MaciejKaras deleted the dependabot/pip/pip-deps-3913907209 branch August 12, 2025 11:35
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@MaciejKaras MaciejKaras MaciejKaras approved these changes

@nammn nammn nammn approved these changes

@fealebenpae fealebenpae Awaiting requested review from fealebenpae fealebenpae is a code owner automatically assigned from mongodb/kubernetes-hosted

@lucian-tosa lucian-tosa Awaiting requested review from lucian-tosa lucian-tosa is a code owner automatically assigned from mongodb/kubernetes-hosted

@Julien-Ben Julien-Ben Awaiting requested review from Julien-Ben

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file python Pull requests that update python code skip-changelog Use this label in Pull Request to not require new changelog entry file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@MaciejKaras @nammn