Skip to content

Bump the python-dependencies group across 1 directory with 7 updates #2335

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
dependabot wants to merge 1 commit into from
Closed

Bump the python-dependencies group across 1 directory with 7 updates #2335

dependabot wants to merge 1 commit into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 24, 2025
edited
Loading

Bumps the python-dependencies group with 7 updates in the / directory:

Package From To
pydantic[email] 2.12.3 2.12.4
pydantic-settings 2.11.0 2.12.0
pymongo 4.15.3 4.15.4
fastapi 0.120.1 0.121.3
starlette 0.49.1 0.50.0
mkdocs-material 9.6.22 9.7.0
griffe 1.14.0 1.15.0

Updates pydantic[email] from 2.12.3 to 2.12.4

Release notes

Sourced from pydantic[email]'s releases.

v2.12.4 2025-11-05

v2.12.4 (2025-11-05)

This is the fourth 2.12 patch release, fixing more regressions, and reverting a change in the build() method of the AnyUrl and Dsn types.

This patch release also fixes an issue with the serialization of IP address types, when serialize_as_any is used. The next patch release will try to address the remaining issues with serialize as any behavior by introducing a new polymorphic serialization feature, that should be used in most cases in place of serialize as any.

Full Changelog: pydantic/pydantic@v2.12.3...v2.12.4

Changelog

Sourced from pydantic[email]'s changelog.

v2.12.4 (2025-11-05)

GitHub release

This is the fourth 2.12 patch release, fixing more regressions, and reverting a change in the build() method of the AnyUrl and Dsn types.

This patch release also fixes an issue with the serialization of IP address types, when serialize_as_any is used. The next patch release will try to address the remaining issues with serialize as any behavior by introducing a new polymorphic serialization feature, that should be used in most cases in place of serialize as any.

Commits
  • 5c842df Prepare release v2.12.4
  • c678a71 Bump pydantic-core to v2.41.5
  • a7cd292 Bump cloudpickle to v3.1.2
  • 21f6278 Bump actions/setup-node from 5 to 6
  • 8d6be8f Bump astral-sh/setup-uv from 6 to 7
  • 17865ea Bump actions/upload-artifact from 4 to 5
  • 90ad0af Bump actions/download-artifact from 5 to 6
  • 18e6672 Drop testing under PyPy 3.9
  • 650215b Document workaround for MongoDsn default port
  • e326790 Fix example of for bytes_invalid_encoding validation error
  • Additional commits viewable in compare view

Updates pydantic-settings from 2.11.0 to 2.12.0

Release notes

Sourced from pydantic-settings's releases.

v2.12.0

What's Changed

New Contributors

Full Changelog: pydantic/pydantic-settings@v2.11.0...v2.12.0

Commits

Updates pymongo from 4.15.3 to 4.15.4

Release notes

Sourced from pymongo's releases.

PyMongo 4.15.4

Community notes: https://www.mongodb.com/community/forums/t/pymongo-4-15-4-released/331292

Changelog

Sourced from pymongo's changelog.

Changes in Version 4.15.4 (2025/10/21)

Version 4.15.4 is a bug fix release.

  • Relaxed the callback type of :meth:~pymongo.asynchronous.client_session.AsyncClientSession.with_transaction to allow the broader Awaitable type rather than only Coroutine objects.
  • Added the missing Python 3.14 trove classifier to the package metadata.

Issues Resolved ...............

See the PyMongo 4.15.4 release notes in JIRA_ for the list of resolved issues in this release.

.. _PyMongo 4.15.4 release notes in JIRA: https://jira.mongodb.org/secure/ReleaseNote.jspa?projectId=10004&version=47237

Commits
  • 07d51b1 PYTHON-5639 Prep for 4.15.4 release (#2614)
  • 477217f [TASK]-[PYTHON-5623]: [v4.15] Change with_transaction callback return type to...
  • f3ea373 PYTHON-5624 - Add Python 3.14 trove classifier (#2593)
  • a5a50a8 BUMP 4.15.4.dev0
  • See full diff in compare view

Updates fastapi from 0.120.1 to 0.121.3

Release notes

Sourced from fastapi's releases.

0.121.3

Refactors

  • ♻️ Make the result of Depends() and Security() hashable, as a workaround for other tools interacting with these internal parts. PR #14372 by @​tiangolo.

Upgrades

Docs

0.121.2

Fixes

Docs

Translations

0.121.1

Fixes

  • 🐛 Fix Depends(func, scope='function') for top level (parameterless) dependencies. PR #14301 by @​luzzodev.

Docs

  • 📝 Upate docs for advanced dependencies with yield, noting the changes in 0.121.0, adding scope. PR #14287 by @​tiangolo.

Internal

0.121.0

Features

... (truncated)

Commits

Updates starlette from 0.49.1 to 0.50.0

Release notes

Sourced from starlette's releases.

Version 0.50.0

Removed

  • Drop Python 3.9 support #3061.

Full Changelog: Kludex/starlette@0.49.3...0.50.0

Version 0.49.3

Fixed

  • Relax strictness on Middleware type #3059.

Full Changelog: Kludex/starlette@0.49.2...0.49.3

Version 0.49.2

Fixed

  • Ignore if-modified-since header if if-none-match is present in StaticFiles #3044.

Full Changelog: Kludex/starlette@0.49.1...0.49.2

Changelog

Sourced from starlette's changelog.

0.50.0 (November 1, 2025)

  • Drop Python 3.9 support #3061.

0.49.3 (November 1, 2025)

This is the last release that supports Python 3.9, which will be dropped in the next minor release.

Fixed

  • Relax strictness on Middleware type #3059.

0.49.2 (November 1, 2025)

Fixed

  • Ignore if-modified-since header if if-none-match is present in StaticFiles #3044.
Commits

Updates mkdocs-material from 9.6.22 to 9.7.0

Release notes

Sourced from mkdocs-material's releases.

mkdocs-material-9.7.0

[!WARNING]

Material for MkDocs is now in maintenance mode

This is the last release of Material for MkDocs that will receive new features. Going forward, the Material for MkDocs team focuses on Zensical, a next-gen static site generator built from first principles. We will provide critical bug fixes and security updates for Material for MkDocs for 12 months at least.

Read the full announcement on our blog

This release includes all features that were previously exclusive to the Insiders edition. These features are now freely available to everyone.

Note on deprecated plugins: The projects and typeset plugins are included in this release, but must be considered deprecated. Both plugins proved unsustainable to maintain and represent architectural dead ends. They are provided as-is without ongoing support.

Changes:

  • Added support for projects plugin (for compat, now deprecated)
  • Added support for typeset plugin (for compat, now deprecated)
  • Added support for pinned blog posts and author profiles
  • Added support for customizing pagination for blog index pages
  • Added support for customizing blog category sort order
  • Added support for staying on page when switching languages
  • Added support for disabling tags in table of contents
  • Added support for nested tags and shadow tags
  • Added support for footnote tooltips
  • Added support for instant previews
  • Added support for instant prefetching
  • Added support for custom social card layouts
  • Added support for custom social card background images
  • Added support for selectable rangs in code blocks
  • Added support for custom selectors for code annotations
  • Added support for configurable log level in privacy plugin
  • Added support for processing of external links in privacy plugin
  • Added support for automatic image optimization via optimize plugin
  • Added support for navigation paths (breadcrumbs)
  • Fixed #8519: Vector accents do not render when using KaTeX

mkdocs-material-9.6.23

  • Updated Burmese translation
Changelog

Sourced from mkdocs-material's changelog.

mkdocs-material-9.7.0 (2025-11-11)

⚠️ Material for MkDocs is now in maintenance mode

This is the last release of Material for MkDocs that will receive new features. Going forward, the Material for MkDocs team focuses on Zensical, a next-gen static site generator built from first principles. We will provide critical bug fixes and security updates for Material for MkDocs for 12 months at least.

Read the full announcement on our blog: https://squidfunk.github.io/mkdocs-material/blog/2025/11/05/zensical/

This release includes all features that were previously exclusive to the Insiders edition. These features are now freely available to everyone.

Note on deprecated plugins: The projects and typeset plugins are included in this release, but must be considered deprecated. Both plugins proved unsustainable to maintain and represent architectural dead ends. They are provided as-is without ongoing support.

Changes:

  • Added support for pinned blog posts and author profiles
  • Added support for customizing pagination for blog index pages
  • Added support for customizing blog category sort order
  • Added support for staying on page when switching languages
  • Added support for disabling tags in table of contents
  • Added support for nested tags and shadow tags
  • Added support for footnote tooltips
  • Added support for instant previews
  • Added support for instant prefetching
  • Added support for custom social card layouts
  • Added support for custom social card background images
  • Added support for selectable rangs in code blocks
  • Added support for custom selectors for code annotations
  • Added support for configurable log level in privacy plugin
  • Added support for processing of external links in privacy plugin
  • Added support for automatic image optimization via optimize plugin
  • Added support for navigation paths (breadcrumbs)
  • Fixed #8519: Vector accents do not render when using KaTeX

mkdocs-material-9.6.23 (2025-11-01)

  • Updated Burmese translation

mkdocs-material-9.6.22 (2025-10-15)

  • Updated Georgian translation

mkdocs-material-9.6.21 (2025-09-30)

... (truncated)

Commits

Updates griffe from 1.14.0 to 1.15.0

Release notes

Sourced from griffe's releases.

1.15.0

1.15.0 - 2025-11-10

Compare with 1.14.0

Features

Bug Fixes

Code Refactoring

  • Update code base for Python 3.10 (37aaf06 by Timothée Mazzucotelli).
  • Improve handling of typed dicts (5bed1be by Timothée Mazzucotelli). Issue-284, Issue-mkdocstrings-python-207, PR-414
  • Reuse private method to append search path to reduce code duplication (0a82cf5 by Timothée Mazzucotelli).
  • Don't produce an empty text section when "parsing" an empty unstyled docstring (90bd71c by Timothée Mazzucotelli).
  • Don't produce empty text section when parsing an empty Google-style docstring (1cbf2a3 by Timothée Mazzucotelli).
  • Use plain ANSI codes, don't import them from Colorama (90978b4 by Timothée Mazzucotelli).
Changelog

Sourced from griffe's changelog.

1.15.0 - 2025-11-10

Compare with 1.14.0

Features

Bug Fixes

Code Refactoring

  • Update code base for Python 3.10 (37aaf06 by Timothée Mazzucotelli).
  • Improve handling of typed dicts (5bed1be by Timothée Mazzucotelli). Issue-284, Issue-mkdocstrings-python-207, PR-414
  • Reuse private method to append search path to reduce code duplication (0a82cf5 by Timothée Mazzucotelli).
  • Don't produce an empty text section when "parsing" an empty unstyled docstring (90bd71c by Timothée Mazzucotelli).
  • Don't produce empty text section when parsing an empty Google-style docstring (1cbf2a3 by Timothée Mazzucotelli).
  • Use plain ANSI codes, don't import them from Colorama (90978b4 by Timothée Mazzucotelli).
Commits
  • 1094a9e chore: Prepare release 1.15.0
  • 37386c5 chore: Increase Yore comment version to avoid false triggers
  • 37aaf06 refactor: Update code base for Python 3.10
  • a5cd93b docs: Remove trailing spaces
  • fe0c28e chore: Remove pytest skip marker
  • c908295 tests: Sandbox Git config during tests
  • cc49b7c chore: Add encoding="utf8" everywhere
  • c7bfe4b style: Format
  • b044c15 chore: Template upgrade
  • 9debb52 fix: Make type aliases available at runtime
  • Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the python-dependencies group across 1 directory with 7 updates
34472a5 
Bumps the python-dependencies group with 7 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [pydantic[email]](https://github.com/pydantic/pydantic) | `2.12.3` | `2.12.4` |
| [pydantic-settings](https://github.com/pydantic/pydantic-settings) | `2.11.0` | `2.12.0` |
| [pymongo](https://github.com/mongodb/mongo-python-driver) | `4.15.3` | `4.15.4` |
| [fastapi](https://github.com/fastapi/fastapi) | `0.120.1` | `0.121.3` |
| [starlette](https://github.com/Kludex/starlette) | `0.49.1` | `0.50.0` |
| [mkdocs-material](https://github.com/squidfunk/mkdocs-material) | `9.6.22` | `9.7.0` |
| [griffe](https://github.com/mkdocstrings/griffe) | `1.14.0` | `1.15.0` |



Updates `pydantic[email]` from 2.12.3 to 2.12.4
- [Release notes](https://github.com/pydantic/pydantic/releases)
- [Changelog](https://github.com/pydantic/pydantic/blob/v2.12.4/HISTORY.md)
- [Commits](pydantic/pydantic@v2.12.3...v2.12.4)

Updates `pydantic-settings` from 2.11.0 to 2.12.0
- [Release notes](https://github.com/pydantic/pydantic-settings/releases)
- [Commits](pydantic/pydantic-settings@v2.11.0...v2.12.0)

Updates `pymongo` from 4.15.3 to 4.15.4
- [Release notes](https://github.com/mongodb/mongo-python-driver/releases)
- [Changelog](https://github.com/mongodb/mongo-python-driver/blob/master/doc/changelog.rst)
- [Commits](mongodb/mongo-python-driver@4.15.3...4.15.4)

Updates `fastapi` from 0.120.1 to 0.121.3
- [Release notes](https://github.com/fastapi/fastapi/releases)
- [Commits](fastapi/fastapi@0.120.1...0.121.3)

Updates `starlette` from 0.49.1 to 0.50.0
- [Release notes](https://github.com/Kludex/starlette/releases)
- [Changelog](https://github.com/Kludex/starlette/blob/main/docs/release-notes.md)
- [Commits](Kludex/starlette@0.49.1...0.50.0)

Updates `mkdocs-material` from 9.6.22 to 9.7.0
- [Release notes](https://github.com/squidfunk/mkdocs-material/releases)
- [Changelog](https://github.com/squidfunk/mkdocs-material/blob/master/CHANGELOG)
- [Commits](squidfunk/mkdocs-material@9.6.22...9.7.0)

Updates `griffe` from 1.14.0 to 1.15.0
- [Release notes](https://github.com/mkdocstrings/griffe/releases)
- [Changelog](https://github.com/mkdocstrings/griffe/blob/main/CHANGELOG.md)
- [Commits](mkdocstrings/griffe@1.14.0...1.15.0)

---
updated-dependencies:
- dependency-name: pydantic[email]
  dependency-version: 2.12.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: python-dependencies
- dependency-name: pydantic-settings
  dependency-version: 2.12.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: python-dependencies
- dependency-name: pymongo
  dependency-version: 4.15.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: python-dependencies
- dependency-name: fastapi
  dependency-version: 0.121.3
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: python-dependencies
- dependency-name: starlette
  dependency-version: 0.50.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: python-dependencies
- dependency-name: mkdocs-material
  dependency-version: 9.7.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: python-dependencies
- dependency-name: griffe
  dependency-version: 1.15.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: python-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the dependency_updates Issues pertaining to updates to our dependencies that are breaking the eager build label Nov 24, 2025
@dependabot dependabot bot requested review from CasperWA and ml-evs as code owners November 24, 2025 05:14
@dependabot dependabot bot added the dependency_updates Issues pertaining to updates to our dependencies that are breaking the eager build label Nov 24, 2025
@codecov
Copy link

codecov bot commented Nov 24, 2025
edited
Loading

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 90.66%. Comparing base (7e0afb1) to head (34472a5).

Additional details and impacted files 
@@           Coverage Diff           @@
##             main    #2335   +/-   ##
=======================================
  Coverage   90.66%   90.66%           
=======================================
  Files          75       75           
  Lines        5022     5022           
=======================================
  Hits         4553     4553           
  Misses        469      469
Flag Coverage Δ
project 90.66% <ø> (ø)
validator 90.66% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Dec 1, 2025

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Dec 1, 2025
@dependabot dependabot bot deleted the dependabot/pip/main/python-dependencies-4be8f2b897 branch December 1, 2025 06:22
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@CasperWA CasperWA Awaiting requested review from CasperWA CasperWA is a code owner

@ml-evs ml-evs Awaiting requested review from ml-evs ml-evs is a code owner

Assignees

No one assigned

Labels

dependency_updates Issues pertaining to updates to our dependencies that are breaking the eager build

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant