Skip to content

DPDB: Bump the all-dependencies group with 3 updates#376

Merged
ThomasPedleyNHS merged 1 commit into
masterfrom
dependabot/pip/all-dependencies-f8f24971e8
Jun 24, 2026
Merged

DPDB: Bump the all-dependencies group with 3 updates#376
ThomasPedleyNHS merged 1 commit into
masterfrom
dependabot/pip/all-dependencies-f8f24971e8

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 24, 2026

Copy link
Copy Markdown
Contributor

Bumps the all-dependencies group with 3 updates: semver, black and pip-licenses.

Updates semver from 2.13.0 to 3.0.4

Release notes

Sourced from semver's releases.

3.0.4

Documentation: https://python-semver.rtfd.io/en/3.0.4/ PyPI: https://pypi.org/project/semver/3.0.4/ Full Changelog: python-semver/python-semver@3.0.3...3.0.4

What's Changed

New Contributors

Thanks to @​RobPasMue and @​mgorny ❤️

3.0.3

Documentation: https://python-semver.rtfd.io/en/3.0.3/ PyPI: https://pypi.org/project/semver/3.0.3/ (yanked release) Full Changelog: python-semver/python-semver@3.0.2...3.0.3

What's Changed

New Contributors

3.0.2

Documentation: https://python-semver.rtfd.io/en/3.0.2/ PyPI: https://pypi.org/project/semver/3.0.2/ Full Changelog: python-semver/python-semver@3.0.1...3.0.2 Full Changelog between last 2 release and 3: python-semver/python-semver@3.0.1...3.0.2

What's Changed

... (truncated)

Changelog

Sourced from semver's changelog.

Version 3.0.4

:Released: 2025-01-24 :Maintainer: Tom Schraitle

Bug Fixes

  • :gh:459: Fix 3.0.3:

    • :pr:457: Re-enable Trove license identifier
    • :pr:456: Fix source dist file

Version 3.0.3

:Released: 2025-01-18 :Maintainer: Tom Schraitle

Bug Fixes

  • :pr:453: The check in _comparator does not match the check in :meth:Version.compare. This breaks comparision with subclasses.

Improved Documentation

  • :pr:435: Several small improvements for documentation:

    • Add meta description to improve SEO
    • Use canonicals on ReadTheDocs (commit 87f639f)
    • Pin versions for reproducable doc builds (commit 03fb990)
    • Add missing :file:.readthedocs.yaml file (commit ec9348a)
    • Correct some smaller issues when building (commit f65feab)
  • :pr:436: Move search box more at the top. This makes it easier for users as if the TOC is long, the search box isn't visible anymore.

... (truncated)

Commits
  • 6adf876 Merge pull request #459 from python-semver/fix-3.0.3
  • bae0b7c Fix #459: Fix 3.0.3
  • 486e489 Merge pull request #454 from python-semver/release/3.0.3
  • cc4ae07 Change version to 3.0.3
  • 15aa6a6 Merge pull request #453 from viccie30/fix-subclass-comparison
  • bc41390 Fix comparison with subclasses
  • bd97cfc Require validation for bug issue template
  • 2eeefcb Merge pull request #451 from python-semver/improve-issue-templates2
  • 06fe49f Turn our Markdown templates into YAML
  • 37e80d7 Merge pull request #447 from tomschr/modernize-project
  • Additional commits viewable in compare view

Updates black from 26.3.1 to 26.5.1

Release notes

Sourced from black's releases.

26.5.1

Stable style

  • Fix unstable formatting of annotated assignments whose subscript annotation contains an inline comment (e.g. x: list[ # pyright: ignore[...]) (#5130)
  • Preserve inline comments (including # type: ignore) immediately before a # fmt: skip line, avoiding AST equivalence failures (#5139)

Packaging

  • Correct the version in the published executables (#5137)

Documentation

  • Add Neovim integration guide covering conform.nvim, ALE, and simple command approaches (#5124)

26.5.0

Highlights

  • Add support for unpacking in comprehensions (PEP 798) and for lazy imports (PEP 810), both new syntactic features in Python 3.15 (#5048)
  • Python 3.15 is now supported. Compiled wheels are not yet provided for Python 3.15, so performance may be slower than on existing Python versions. Wheels will be provided once Python 3.15 is later in its release cycle. (#5127)

Stable style

  • Fix # fmt: skip being ignored in nested if expressions with parenthesized in clauses (#4903)
  • Add syntactic support for Python 3.15 (#5048)
  • Fix crash when an f-string follows a # fmt: off comment inside brackets (#5097)
  • Preserve multiline compound statement headers when # fmt: skip is placed on the colon line (#5117)

Preview style

  • Improve heuristics around whether blank lines should appear before, within and after groups of same-name decorated functions (such as @overload groups) in .pyi stub files (#5021)
  • Fix blank lines being removed between a function and a decorated class in .pyi stub files (#5092)
  • Prevent string merger from creating unsplittable long lines when a pragma comment (e.g. # type: ignore) follows the closing bracket (#5096)

Packaging

Output

... (truncated)

Changelog

Sourced from black's changelog.

Version 26.5.1

Stable style

  • Fix unstable formatting of annotated assignments whose subscript annotation contains an inline comment (e.g. x: list[ # pyright: ignore[...]) (#5130)
  • Preserve inline comments (including # type: ignore) immediately before a # fmt: skip line, avoiding AST equivalence failures (#5139)

Packaging

  • Correct the version in the published executables (#5137)

Documentation

  • Add Neovim integration guide covering conform.nvim, ALE, and simple command approaches (#5124)

Version 26.5.0

Highlights

  • Add support for unpacking in comprehensions (PEP 798) and for lazy imports (PEP 810), both new syntactic features in Python 3.15 (#5048)
  • Python 3.15 is now supported. Compiled wheels are not yet provided for Python 3.15, so performance may be slower than on existing Python versions. Wheels will be provided once Python 3.15 is later in its release cycle. (#5127)

Stable style

  • Fix # fmt: skip being ignored in nested if expressions with parenthesized in clauses (#4903)
  • Add syntactic support for Python 3.15 (#5048)
  • Fix crash when an f-string follows a # fmt: off comment inside brackets (#5097)
  • Preserve multiline compound statement headers when # fmt: skip is placed on the colon line (#5117)

Preview style

  • Improve heuristics around whether blank lines should appear before, within and after groups of same-name decorated functions (such as @overload groups) in .pyi stub files (#5021)
  • Fix blank lines being removed between a function and a decorated class in .pyi stub files (#5092)
  • Prevent string merger from creating unsplittable long lines when a pragma comment (e.g. # type: ignore) follows the closing bracket (#5096)

Packaging

... (truncated)

Commits

Updates pip-licenses from 2.3.0 to 5.5.5

Release notes

Sourced from pip-licenses's releases.

5.5.5

Patch Notes for 5.5.5

Combines recent pre-releases (including 5.5.2-5.5.4) to deliver significant codebase cleanup and lays the groundwork for upcoming changes planned for version v6.0.

What's Changed

  • (RC-3) Additional tweaks to CHANGELOG and various comments.
  • (RC-2) Updated Copyright lines and made note of new maintainer
  • (RC-1) Reverts experiments from PR #313 to prepare for a proper release.

Full Changelog: raimon49/pip-licenses@v-5.5.4...v-5.5.5

5.5.4

[!IMPORTANT] PRE-RELEASE UPDATE This is an early pre-release to bring the default branch closer to upcoming development changes.

Patch Notes for 5.5.4

Notable Changes

Fixes #288. See GHI #288 & PR #313 for more info and relevant discussion.

  • Implements/Configures support for prek
  • Implements additional support for typing
    • Extended recent ruff configurations
      • Aligned ruff rules for style a more black compatible experience
      • Enabled rules for linting type annotations with ruff
    • Added new type annotations through-out the codebase, including for test-code
    • Added new experimental linter that aims to support the entire Python Typing spec.
  • Updated and re-tooled development dependencies
    • Refactored tooling with more robust handling of pinning the known filelock dependency across python versions
    • Several version bumps (still targeting Python 3.9+)
    • re-factored/re-tooled the Makefile for developer workflows

Impacted GHI

  • Closes #288 (Wontfix)
    • Closes #314 (fixed)
    • Closes #315 (fixed)
  • Contributes to #319

Included and superseded PRs

  • Includes & supersedes #298
  • Includes & supersedes #304
  • Includes & supersedes #305
  • Includes & supersedes #306

... (truncated)

Changelog

Sourced from pip-licenses's changelog.

5.5.5

  • Updated cc lines and officially made note of change in maintainers

5.5.4

  • Expanded typing annotations through-out codebase
  • Configured prek/pre-commit for CI linting and local developer workflows
  • Additional configuration following v5.5.2's migration of linters
    • Fine tune ruff to enforce typing and black style opinions (Code style remains PEP-8 aligned)
    • Cleanup/gitignore for ruff
  • Fixed a typo in previous changelog

5.5.3

  • Aligned parsing logic with PEP 753
  • Refactored to better leverage f-strings to improve performance slightly
  • Fixed various warnings in tests
  • Got rid of historical Python 3.5 left-overs

5.5.2

  • Added support for multi-line allow-only and fail-on arguments
    • Relaxed parsing of most whitespace around semicolon delimiter
  • Added simple SECURITY.md policy document
  • Fixed a duplication behavior in output when a package was found at multiple paths (e.g., symlinks)
  • Fixed issue where lowercase license filenames were ignored
  • Improved project Makefile stability for developers
  • Migrated from the linters black and isort to ruff
    • Code style remains PEP-8 aligned, but should be slightly more readable.
    • Linting configuration remains in pyproject.toml
  • Updated CONTRIBUTORS.md guide with related changes

5.5.1

  • Fixed typographical issue in README examples, closing GHI #209.
  • Fixed typographical issue in docstring found by codespell.
  • Aligned Project URLs in pyproject.toml with PEP 753
  • Brought pyproject.toml (e.g., packaging metadata) into alignment with PEP 639 and related packaging guidance.
    • Improved MANIFEST.in to setuptools-scm build logic with better filtering, closing GHI #266
  • Fixed a regression in linting via black by deprecating support for python 3.9, closing GHI #264
    • Applied black 26.1.0suggestions to codebase, closing GHI #269

5.5.0

  • Replace dependency on tomli with builtin tomllib for Python 3.11
  • Added support for License-Expression metadata field, see PEP 639
  • Added --from=expression option
  • Breaking change: The --from=all output now includes the License-Expression value
  • Fixed KeyError with --partial and --allow-only if a license matches multiple allowed licenses.

... (truncated)

Commits
  • a870ce4 Apply suggestions from self code review of v5.5.5-rc3
  • 187bca9 Version bump to v5.5.5
  • 55279ab Fix for deployment GHA
  • cada4a6 Update changelog and bump version to 5.5.4
  • aa4f1ef cherrypick commit 'd6c980189c4a845e2c6fcfe5607cf6677f1d156c' into no-feature-...
  • 08e5a25 cherrypick commit '3ccf905e2ea97386fed87884e915e65945e36b63' into no-feature-...
  • 1f3e51b Merge commit '32d1ef1dcfaa424476d31a3ddf1dbcc34a60f2c6' into no-feature-prek-...
  • 40d48a6 Merge branch 'fix-type-annotation-warnings-from-ruff-315' into no-feature-pre...
  • 708d00a Merge branch 'fix-warning-in-generated-dev-requirementstxt-file-314' into no-...
  • 94dfd7e cherrypick commit '0ae66a5000a454a359c38dd70d69b79377fdba64' into no-feature-...
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the all-dependencies group with 3 updates: [semver](https://github.com/python-semver/python-semver), [black](https://github.com/psf/black) and [pip-licenses](https://github.com/raimon49/pip-licenses).


Updates `semver` from 2.13.0 to 3.0.4
- [Release notes](https://github.com/python-semver/python-semver/releases)
- [Changelog](https://github.com/python-semver/python-semver/blob/master/CHANGELOG.rst)
- [Commits](python-semver/python-semver@2.13.0...3.0.4)

Updates `black` from 26.3.1 to 26.5.1
- [Release notes](https://github.com/psf/black/releases)
- [Changelog](https://github.com/psf/black/blob/main/CHANGES.md)
- [Commits](psf/black@26.3.1...26.5.1)

Updates `pip-licenses` from 2.3.0 to 5.5.5
- [Release notes](https://github.com/raimon49/pip-licenses/releases)
- [Changelog](https://github.com/raimon49/pip-licenses/blob/master/CHANGELOG.md)
- [Commits](raimon49/pip-licenses@v-2.3.0...v-5.5.5)

---
updated-dependencies:
- dependency-name: semver
  dependency-version: 3.0.4
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: all-dependencies
- dependency-name: black
  dependency-version: 26.5.1
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: all-dependencies
- dependency-name: pip-licenses
  dependency-version: 5.5.5
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: all-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Jun 24, 2026
@ThomasPedleyNHS ThomasPedleyNHS merged commit 6e4b266 into master Jun 24, 2026
8 checks passed
@dependabot dependabot Bot deleted the dependabot/pip/all-dependencies-f8f24971e8 branch June 24, 2026 10:50
@sonarqubecloud

Copy link
Copy Markdown

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file python Pull requests that update Python code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants