Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Upgrade: Bump the dependencies group with 8 updates #445

Closed
wants to merge 1 commit into from
Closed

Upgrade: Bump the dependencies group with 8 updates #445

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 1, 2024
edited
Loading

Bumps the dependencies group with 8 updates:

Package From To
aiohttp 3.9.1 3.9.3
boto3 1.34.12 1.34.32
botocore 1.34.12 1.34.32
cryptography 41.0.7 42.0.2
gitpython 3.1.40 3.1.41
marshmallow 3.20.1 3.20.2
sentry-sdk 1.39.1 1.40.0
urllib3 1.26.18 2.2.0

Updates aiohttp from 3.9.1 to 3.9.3

Release notes

Sourced from aiohttp's releases.

3.9.3

Bug fixes

  • Fixed backwards compatibility breakage (in 3.9.2) of ssl parameter when set outside of ClientSession (e.g. directly in TCPConnector) -- by :user:Dreamsorcerer.

    Related issues and pull requests on GitHub: #8097, #8098.

Miscellaneous internal changes

  • Improved test suite handling of paths and temp files to consistently use pathlib and pytest fixtures.

    Related issues and pull requests on GitHub: #3957.

3.9.2

Bug fixes

  • Fixed server-side websocket connection leak.

    Related issues and pull requests on GitHub: #7978.

  • Fixed web.FileResponse doing blocking I/O in the event loop.

    Related issues and pull requests on GitHub: #8012.

  • Fixed double compress when compression enabled and compressed file exists in server file responses.

... (truncated)

Changelog

Sourced from aiohttp's changelog.

3.9.3 (2024-01-29)

Bug fixes

  • Fixed backwards compatibility breakage (in 3.9.2) of ssl parameter when set outside of ClientSession (e.g. directly in TCPConnector) -- by :user:Dreamsorcerer.

    Related issues and pull requests on GitHub: :issue:8097, :issue:8098.

Miscellaneous internal changes

  • Improved test suite handling of paths and temp files to consistently use pathlib and pytest fixtures.

    Related issues and pull requests on GitHub: :issue:3957.

3.9.2 (2024-01-28)

Bug fixes

  • Fixed server-side websocket connection leak.

    Related issues and pull requests on GitHub: :issue:7978.

  • Fixed web.FileResponse doing blocking I/O in the event loop.

    Related issues and pull requests on GitHub: :issue:8012.

... (truncated)

Commits

Updates boto3 from 1.34.12 to 1.34.32

Changelog

Sourced from boto3's changelog.

1.34.32

  • api-change:cloudformation: [botocore] CloudFormation IaC generator allows you to scan existing resources in your account and select resources to generate a template for a new or existing CloudFormation stack.
  • api-change:elbv2: [botocore] Update elbv2 client to latest version
  • api-change:glue: [botocore] Update page size limits for GetJobRuns and GetTriggers APIs.
  • api-change:ssm: [botocore] This release adds an optional Duration parameter to StateManager Associations. This allows customers to specify how long an apply-only-on-cron association execution should run. Once the specified Duration is out all the ongoing cancellable commands or automations are cancelled.

1.34.31

  • api-change:datazone: [botocore] Add new skipDeletionCheck to DeleteDomain. Add new skipDeletionCheck to DeleteProject which also automatically deletes dependent objects
  • api-change:route53: [botocore] Update the SDKs for text changes in the APIs.

1.34.30

  • api-change:autoscaling: [botocore] EC2 Auto Scaling customers who use attribute based instance-type selection can now intuitively define their Spot instances price protection limit as a percentage of the lowest priced On-Demand instance type.
  • api-change:comprehend: [botocore] Comprehend PII analysis now supports Spanish input documents.
  • api-change:ec2: [botocore] EC2 Fleet customers who use attribute based instance-type selection can now intuitively define their Spot instances price protection limit as a percentage of the lowest priced On-Demand instance type.
  • api-change:mwaa: [botocore] This release adds MAINTENANCE environment status for Amazon MWAA environments.
  • api-change:rds: [botocore] Introduced support for the InsufficientDBInstanceCapacityFault error in the RDS RestoreDBClusterFromSnapshot and RestoreDBClusterToPointInTime API methods. This provides enhanced error handling, ensuring a more robust experience.
  • api-change:snowball: [botocore] Modified description of createaddress to include direction to add path when providing a JSON file.

1.34.29

  • api-change:connect: [botocore] Update list and string length limits for predefined attributes.
  • api-change:inspector2: [botocore] This release adds ECR container image scanning based on their lastRecordedPullTime.
  • api-change:sagemaker: [botocore] Amazon SageMaker Automatic Model Tuning now provides an API to programmatically delete tuning jobs.

1.34.28

  • api-change:acm-pca: [botocore] AWS Private CA now supports an option to omit the CDP extension from issued certificates, when CRL revocation is enabled.
  • api-change:lightsail: [botocore] This release adds support for IPv6-only instance plans.

1.34.27

  • api-change:ec2: [botocore] Introduced a new clientToken request parameter on CreateNetworkAcl and CreateRouteTable APIs. The clientToken parameter allows idempotent operations on the APIs.
  • api-change:ecs: [botocore] Documentation updates for Amazon ECS.
  • api-change:outposts: [botocore] DeviceSerialNumber parameter is now optional in StartConnection API
  • api-change:rds: [botocore] This release adds support for Aurora Limitless Database.
  • api-change:storagegateway: [botocore] Add DeprecationDate and SoftwareVersion to response of ListGateways.

... (truncated)

Commits
  • 27f44b2 Merge branch 'release-1.34.32'
  • 4d34dfe Bumping version to 1.34.32
  • db1931d Add changelog entries from botocore
  • 481ddf1 Merge branch 'release-1.34.31'
  • 04c6aa7 Merge branch 'release-1.34.31' into develop
  • 57dd57a Bumping version to 1.34.31
  • 681a75e Add changelog entries from botocore
  • a1ac699 Merge branch 'release-1.34.30'
  • d37e5ff Merge branch 'release-1.34.30' into develop
  • 3f7cb1c Bumping version to 1.34.30
  • Additional commits viewable in compare view

Updates botocore from 1.34.12 to 1.34.32

Changelog

Sourced from botocore's changelog.

1.34.32

  • api-change:cloudformation: CloudFormation IaC generator allows you to scan existing resources in your account and select resources to generate a template for a new or existing CloudFormation stack.
  • api-change:elbv2: Update elbv2 client to latest version
  • api-change:glue: Update page size limits for GetJobRuns and GetTriggers APIs.
  • api-change:ssm: This release adds an optional Duration parameter to StateManager Associations. This allows customers to specify how long an apply-only-on-cron association execution should run. Once the specified Duration is out all the ongoing cancellable commands or automations are cancelled.

1.34.31

  • api-change:datazone: Add new skipDeletionCheck to DeleteDomain. Add new skipDeletionCheck to DeleteProject which also automatically deletes dependent objects
  • api-change:route53: Update the SDKs for text changes in the APIs.

1.34.30

  • api-change:autoscaling: EC2 Auto Scaling customers who use attribute based instance-type selection can now intuitively define their Spot instances price protection limit as a percentage of the lowest priced On-Demand instance type.
  • api-change:comprehend: Comprehend PII analysis now supports Spanish input documents.
  • api-change:ec2: EC2 Fleet customers who use attribute based instance-type selection can now intuitively define their Spot instances price protection limit as a percentage of the lowest priced On-Demand instance type.
  • api-change:mwaa: This release adds MAINTENANCE environment status for Amazon MWAA environments.
  • api-change:rds: Introduced support for the InsufficientDBInstanceCapacityFault error in the RDS RestoreDBClusterFromSnapshot and RestoreDBClusterToPointInTime API methods. This provides enhanced error handling, ensuring a more robust experience.
  • api-change:snowball: Modified description of createaddress to include direction to add path when providing a JSON file.

1.34.29

  • api-change:connect: Update list and string length limits for predefined attributes.
  • api-change:inspector2: This release adds ECR container image scanning based on their lastRecordedPullTime.
  • api-change:sagemaker: Amazon SageMaker Automatic Model Tuning now provides an API to programmatically delete tuning jobs.

1.34.28

  • api-change:acm-pca: AWS Private CA now supports an option to omit the CDP extension from issued certificates, when CRL revocation is enabled.
  • api-change:lightsail: This release adds support for IPv6-only instance plans.

1.34.27

  • api-change:ec2: Introduced a new clientToken request parameter on CreateNetworkAcl and CreateRouteTable APIs. The clientToken parameter allows idempotent operations on the APIs.
  • api-change:ecs: Documentation updates for Amazon ECS.
  • api-change:outposts: DeviceSerialNumber parameter is now optional in StartConnection API
  • api-change:rds: This release adds support for Aurora Limitless Database.
  • api-change:storagegateway: Add DeprecationDate and SoftwareVersion to response of ListGateways.

... (truncated)

Commits
  • eb8972c Merge branch 'release-1.34.32'
  • 4adc32e Bumping version to 1.34.32
  • 3e5ea2e Update to latest partitions and endpoints
  • ff50dc4 Update to latest models
  • 3972982 Merge branch 'release-1.34.31'
  • 03891ec Merge branch 'release-1.34.31' into develop
  • 4170bc9 Bumping version to 1.34.31
  • 2773da2 Update to latest models
  • 0bc71c4 Merge branch 'release-1.34.30'
  • 35b20f1 Merge branch 'release-1.34.30' into develop
  • Additional commits viewable in compare view

Updates cryptography from 41.0.7 to 42.0.2

Changelog

Sourced from cryptography's changelog.

42.0.2 - 2024-01-30


* Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.2.1.
* Fixed an issue that prevented the use of Python buffer protocol objects in
  ``sign`` and ``verify`` methods on asymmetric keys.
* Fixed an issue with incorrect keyword-argument naming with ``EllipticCurvePrivateKey``
  :meth:`~cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePrivateKey.exchange`,
  ``X25519PrivateKey``
  :meth:`~cryptography.hazmat.primitives.asymmetric.x25519.X25519PrivateKey.exchange`,
  ``X448PrivateKey``
  :meth:`~cryptography.hazmat.primitives.asymmetric.x448.X448PrivateKey.exchange`,
  and ``DHPrivateKey``
  :meth:`~cryptography.hazmat.primitives.asymmetric.dh.DHPrivateKey.exchange`.

.. _v42-0-1:


42.0.1 - 2024-01-24

  • Fixed an issue with incorrect keyword-argument naming with EllipticCurvePrivateKey :meth:~cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePrivateKey.sign.
  • Resolved compatibility issue with loading certain RSA public keys in :func:~cryptography.hazmat.primitives.serialization.load_pem_public_key.

.. _v42-0-0:

42.0.0 - 2024-01-22


* **BACKWARDS INCOMPATIBLE:** Dropped support for LibreSSL < 3.7.
* **BACKWARDS INCOMPATIBLE:** Loading a PKCS7 with no content field using
  :func:`~cryptography.hazmat.primitives.serialization.pkcs7.load_pem_pkcs7_certificates`
  or
  :func:`~cryptography.hazmat.primitives.serialization.pkcs7.load_der_pkcs7_certificates`
  will now raise a ``ValueError`` rather than return an empty list.
* Parsing SSH certificates no longer permits malformed critical options with
  values, as documented in the 41.0.2 release notes.
* Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.2.0.
* Updated the minimum supported Rust version (MSRV) to 1.63.0, from 1.56.0.
* We now publish both ``py37`` and ``py39`` ``abi3`` wheels. This should
  resolve some errors relating to initializing a module multiple times per
  process.
* Support :class:`~cryptography.hazmat.primitives.asymmetric.padding.PSS` for
  X.509 certificate signing requests and certificate revocation lists with the
  keyword-only argument ``rsa_padding`` on the ``sign`` methods for
  :class:`~cryptography.x509.CertificateSigningRequestBuilder` and
  :class:`~cryptography.x509.CertificateRevocationListBuilder`.
* Added support for obtaining X.509 certificate signing request signature
  algorithm parameters (including PSS) via
</tr></table>

... (truncated)

Commits

Updates gitpython from 3.1.40 to 3.1.41

Release notes

Sourced from gitpython's releases.

3.1.41 - fix Windows security issue

The details about the Windows security issue can be found in this advisory.

Special thanks go to @​EliahKagan who reported the issue and fixed it in a single stroke, while being responsible for an incredible amount of improvements that he contributed over the last couple of months ❤️.

What's Changed

... (truncated)

Commits
  • f288738 bump patch level
  • ef3192c Merge pull request #1792 from EliahKagan/popen
  • 1f3caa3 Further clarify comment in test_hook_uses_shell_not_from_cwd
  • 3eb7c2a Move safer_popen from git.util to git.cmd
  • c551e91 Extract shared logic for using Popen safely on Windows
  • 15ebb25 Clarify comment in test_hook_uses_shell_not_from_cwd
  • f44524a Avoid spurious "location may have moved" on Windows
  • a42ea0a Cover absent/no-distro bash.exe in hooks "not from cwd" test
  • 7751436 Extract venv management from test_installation
  • 66ff4c1 Omit CWD in search for bash.exe to run hooks on Windows
  • Additional commits viewable in compare view

Updates marshmallow from 3.20.1 to 3.20.2

Changelog

Sourced from marshmallow's changelog.

3.20.2 (2024-01-09)

Bug fixes:

  • Fix Nested field type hint for lambda Schema types (:pr:2164). Thanks :user:somethingnew2-0 for the PR.

Other changes:

  • Officially support Python 3.12 (:pr:2188). Thanks :user:hugovk for the PR.
Commits
  • 154d4c1 Bump version and update changelog
  • a13e731 Bump LICENSE and fix changelog
  • 755a074 Prevent false from appearing under logo (#2221)
  • f98ad7f Bump alabaster from 0.7.13 to 0.7.15
  • 88ce4cb [pre-commit.ci] pre-commit autoupdate
  • b1857ef Bump autodocsumm from 0.2.11 to 0.2.12
  • 86b8790 [pre-commit.ci] pre-commit autoupdate (#2217)
  • 2ef3f44 Merge pull request #2215 from marshmallow-code/pre-commit_update
  • 24855ac Fix flake8 issues
  • 0547a8a Bump flake8-bugbear to 23.12.2 in pre-commit config
  • Additional commits viewable in compare view

Updates sentry-sdk from 1.39.1 to 1.40.0

Release notes

Sourced from sentry-sdk's releases.

1.40.0

Various fixes & improvements

1.39.2

Various fixes & improvements

Changelog

Sourced from sentry-sdk's changelog.

1.40.0

Various fixes & improvements

1.39.2

Various fixes & improvements

Commits

Updates urllib3 from 1.26.18 to 2.2.0

Release notes

Sourced from urllib3's releases.

2.2.0

🖥️ urllib3 now works in the browser

🎉 This release adds experimental support for using urllib3 in the browser with Pyodide! 🎉

Thanks to Joe Marshall (@​joemarshall) for contributing this feature. This change was possible thanks to work done in urllib3 v2.0 to detach our API from http.client. Please report all bugs to the urllib3 issue tracker.

🚀 urllib3 is fundraising for HTTP/2 support

urllib3 is raising ~$40,000 USD to release HTTP/2 support and ensure long-term sustainable maintenance of the project after a sharp decline in financial support for 2023. If your company or organization uses Python and would benefit from HTTP/2 support in Requests, pip, cloud SDKs, and thousands of other projects please consider contributing financially to ensure HTTP/2 support is developed sustainably and maintained for the long-haul.

Thank you for your support.

Changes

  • Added support for Emscripten and Pyodide, including streaming support in cross-origin isolated browser environments where threading is enabled. (#2951)
  • Added support for HTTPResponse.read1() method. (#3186)
  • Added rudimentary support for HTTP/2. (#3284)
  • Fixed issue where requests against urls with trailing dots were failing due to SSL errors when using proxy. (#2244)
  • Fixed HTTPConnection.proxy_is_verified and HTTPSConnection.proxy_is_verified to be always set to a boolean after connecting to a proxy. It could be None in some cases previously. (#3130)
  • Fixed an issue where headers passed in a request with json= would be mutated (#3203)
  • Fixed HTTPSConnection.is_verified to be set to False when connecting from a HTTPS proxy to an HTTP target. It was set to True previously. (#3267)
  • Fixed handling of new error message from OpenSSL 3.2.0 when configuring an HTTP proxy as HTTPS (#3268)
  • Fixed TLS 1.3 post-handshake auth when the server certificate validation is disabled (#3325)

Note for downstream distributors: To run integration tests, you now need to run the tests a second time with the --integration pytest flag. (#3181)

2.1.0

Read the v2 migration guide for help upgrading to the latest version of urllib3.

Removals

  • Removed support for the deprecated urllib3[secure] extra. (#2680)
  • Removed support for the deprecated SecureTransport TLS implementation. (#2681)
  • Removed support for the end-of-life Python 3.7. (#3143)

Bugfixes

  • Allowed loading CA certificates from memory for proxies. (#3065)
  • Fixed decoding Gzip-encoded responses which specified x-gzip content-encoding. (#3174)

2.0.7

  • Made body stripped from HTTP requests changing the request method to GET after HTTP 303 "See Other" redirect responses. (GHSA-g4mx-q9vg-27p4)

2.0.6

  • Added the Cookie header to the list of headers to strip from requests when redirecting to a different host. As before, different headers can be set via Retry.remove_headers_on_redirect. (GHSA-v845-jxx5-vc9f)

2.0.5

... (truncated)

Changelog

Sourced from urllib3's changelog.

2.2.0 (2024-01-30)

  • Added support for Emscripten and Pyodide <https://urllib3.readthedocs.io/en/latest/reference/contrib/emscripten.html>, including streaming support in cross-origin isolated browser environments where threading is enabled. ([#2951](https://github.com/urllib3/urllib3/issues/2951) <https://github.com/urllib3/urllib3/issues/2951>)
  • Added support for HTTPResponse.read1() method. ([#3186](https://github.com/urllib3/urllib3/issues/3186) <https://github.com/urllib3/urllib3/issues/3186>__)
  • Added rudimentary support for HTTP/2. ([#3284](https://github.com/urllib3/urllib3/issues/3284) <https://github.com/urllib3/urllib3/issues/3284>__)
  • Fixed issue where requests against urls with trailing dots were failing due to SSL errors when using proxy. ([#2244](https://github.com/urllib3/urllib3/issues/2244) <https://github.com/urllib3/urllib3/issues/2244>__)
  • Fixed HTTPConnection.proxy_is_verified and HTTPSConnection.proxy_is_verified to be always set to a boolean after connecting to a proxy. It could be None in some cases previously. ([#3130](https://github.com/urllib3/urllib3/issues/3130) <https://github.com/urllib3/urllib3/issues/3130>__)
  • Fixed an issue where headers passed in a request with json= would be mutated ([#3203](https://github.com/urllib3/urllib3/issues/3203) <https://github.com/urllib3/urllib3/issues/3203>__)
  • Fixed HTTPSConnection.is_verified to be set to False when connecting from a HTTPS proxy to an HTTP target. It was set to True previously. ([#3267](https://github.com/urllib3/urllib3/issues/3267) <https://github.com/urllib3/urllib3/issues/3267>__)
  • Fixed handling of new error message from OpenSSL 3.2.0 when configuring an HTTP proxy as HTTPS ([#3268](https://github.com/urllib3/urllib3/issues/3268) <https://github.com/urllib3/urllib3/issues/3268>__)
  • Fixed TLS 1.3 post-handshake auth when the server certificate validation is disabled ([#3325](https://github.com/urllib3/urllib3/issues/3325) <https://github.com/urllib3/urllib3/issues/3325>__)
  • Note for downstream distributors: To run integration tests, you now need to run the tests a second time with the --integration pytest flag. ([#3181](https://github.com/urllib3/urllib3/issues/3181) <https://github.com/urllib3/urllib3/issues/3181>__)

2.1.0 (2023-11-13)

  • Removed support for the deprecated urllib3[secure] extra. ([#2680](https://github.com/urllib3/urllib3/issues/2680) <https://github.com/urllib3/urllib3/issues/2680>__)
  • Removed support for the deprecated SecureTransport TLS implementation. ([#2681](https://github.com/urllib3/urllib3/issues/2681) <https://github.com/urllib3/urllib3/issues/2681>__)
  • Removed support for the end-of-life Python 3.7. ([#3143](https://github.com/urllib3/urllib3/issues/3143) <https://github.com/urllib3/urllib3/issues/3143>__)
  • Allowed loading CA certificates from memory for proxies. ([#3065](https://github.com/urllib3/urllib3/issues/3065) <https://github.com/urllib3/urllib3/issues/3065>__)
  • Fixed decoding Gzip-encoded responses which specified x-gzip content-encoding. ([#3174](https://github.com/urllib3/urllib3/issues/3174) <https://github.com/urllib3/urllib3/issues/3174>__)

2.0.7 (2023-10-17)

  • Made body stripped from HTTP requests changing the request method to GET after HTTP 303 "See Other" redirect responses.

2.0.6 (2023-10-02)

  • Added the Cookie header to the list of headers to strip from requests when redirecting to a different host. As before, different headers can be set via Retry.remove_headers_on_redirect.

2.0.5 (2023-09-20)

  • Allowed pyOpenSSL third-party module without any deprecation warning. ([#3126](https://github.com/urllib3/urllib3/issues/3126) <https://github.com/urllib3/urllib3/issues/3126>__)
  • Fixed default blocksize of HTTPConnection classes to match high-level classes. Previously was 8KiB, now 16KiB. ([#3066](https://github.com/urllib3/urllib3/issues/3066) <https://github.com/urllib3/urllib3/issues/3066>__)

2.0.4 (2023-07-19)

... (truncated)

Commits
  • 04df048 Release 2.2.0
  • 2aec09f Add documentation for Emscripten support
  • 6d2f0f6 Annotate response attribute length_remaining in BaseHTTPResponse (#3317)
  • d7bb83b Fix TLS 1.3 post-handshake auth
  • 8c8e26d Hide H2Connection inside _LockedObject (#3318)
  • 26a07db Make BaseHTTPResponse a base class of HTTP2Response (#3311)
  • 71e7c35 Allow testing HTTP/1.1 and HTTP/2 in the same test (#3310)
  • 89ed0d6 Add test-pypy 3.8 3.9 3.10 nox sessions (#3304)
  • fb6cf2d Pin to pypy-3.9-v7.3.13 to not timeout CI
  • 03f7b65 Skip memray on pypy (#3286)
  • Additional commits viewable in compare view

Most Recent Ignore Conditions Applied to This Pull Request
Dependency Name Ignore Conditions
boto3 [< 1.25, > 1.24.17]
botocore [< 1.28, > 1.27.17]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless yo...

Description has been truncated

@dependabot
Upgrade: Bump the dependencies group with 8 updates
c8a38f7 
Bumps the dependencies group with 8 updates:

| Package | From | To |
| --- | --- | --- |
| [aiohttp](https://github.com/aio-libs/aiohttp) | `3.9.1` | `3.9.3` |
| [boto3](https://github.com/boto/boto3) | `1.34.12` | `1.34.32` |
| [botocore](https://github.com/boto/botocore) | `1.34.12` | `1.34.32` |
| [cryptography](https://github.com/pyca/cryptography) | `41.0.7` | `42.0.2` |
| [gitpython](https://github.com/gitpython-developers/GitPython) | `3.1.40` | `3.1.41` |
| [marshmallow](https://github.com/marshmallow-code/marshmallow) | `3.20.1` | `3.20.2` |
| [sentry-sdk](https://github.com/getsentry/sentry-python) | `1.39.1` | `1.40.0` |
| [urllib3](https://github.com/urllib3/urllib3) | `1.26.18` | `2.2.0` |


Updates `aiohttp` from 3.9.1 to 3.9.3
- [Release notes](https://github.com/aio-libs/aiohttp/releases)
- [Changelog](https://github.com/aio-libs/aiohttp/blob/master/CHANGES.rst)
- [Commits](aio-libs/aiohttp@v3.9.1...v3.9.3)

Updates `boto3` from 1.34.12 to 1.34.32
- [Release notes](https://github.com/boto/boto3/releases)
- [Changelog](https://github.com/boto/boto3/blob/develop/CHANGELOG.rst)
- [Commits](boto/boto3@1.34.12...1.34.32)

Updates `botocore` from 1.34.12 to 1.34.32
- [Changelog](https://github.com/boto/botocore/blob/develop/CHANGELOG.rst)
- [Commits](boto/botocore@1.34.12...1.34.32)

Updates `cryptography` from 41.0.7 to 42.0.2
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst)
- [Commits](pyca/cryptography@41.0.7...42.0.2)

Updates `gitpython` from 3.1.40 to 3.1.41
- [Release notes](https://github.com/gitpython-developers/GitPython/releases)
- [Changelog](https://github.com/gitpython-developers/GitPython/blob/main/CHANGES)
- [Commits](gitpython-developers/GitPython@3.1.40...3.1.41)

Updates `marshmallow` from 3.20.1 to 3.20.2
- [Changelog](https://github.com/marshmallow-code/marshmallow/blob/dev/CHANGELOG.rst)
- [Commits](marshmallow-code/marshmallow@3.20.1...3.20.2)

Updates `sentry-sdk` from 1.39.1 to 1.40.0
- [Release notes](https://github.com/getsentry/sentry-python/releases)
- [Changelog](https://github.com/getsentry/sentry-python/blob/master/CHANGELOG.md)
- [Commits](getsentry/sentry-python@1.39.1...1.40.0)

Updates `urllib3` from 1.26.18 to 2.2.0
- [Release notes](https://github.com/urllib3/urllib3/releases)
- [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst)
- [Commits](urllib3/urllib3@1.26.18...2.2.0)

---
updated-dependencies:
- dependency-name: aiohttp
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: boto3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: botocore
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: cryptography
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: dependencies
- dependency-name: gitpython
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: marshmallow
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: sentry-sdk
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: urllib3
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Feb 1, 2024
@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Mar 1, 2024

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Mar 1, 2024
@dependabot dependabot bot deleted the dependabot/pip/dependencies-28281307a9 branch March 1, 2024 13:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants