Skip to content

Bump the python group across 1 directory with 5 updates#223

Merged
mfosterw merged 1 commit intomasterfrom
dependabot/pip/python-4df1e7ae74
Jul 25, 2025
Merged

Bump the python group across 1 directory with 5 updates#223
mfosterw merged 1 commit intomasterfrom
dependabot/pip/python-4df1e7ae74

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Jul 24, 2025

Bumps the python group with 5 updates in the / directory:

Package From To
django-allauth 65.9.0 65.10.0
djangorestframework-simplejwt 5.5.0 5.5.1
ruff 0.12.2 0.12.5
coverage 7.9.2 7.10.0
rust-just 1.41.0 1.42.3

Updates django-allauth from 65.9.0 to 65.10.0

Commits

Updates djangorestframework-simplejwt from 5.5.0 to 5.5.1

Release notes

Sourced from djangorestframework-simplejwt's releases.

v5.5.1

5.5.1

Missing Migration for rest_framework_simplejwt.token_blacklist app. A previously missing migration (0013_blacklist) has now been added. This issue arose because the migration file was mistakenly not generated earlier. This migration was never part of an official release, but users following the latest master branch may have encountered it.

Notes for Users If you previously ran makemigrations in production and have a 0013_blacklist migration in your django_migrations table, follow these steps before upgrading:

  1. Roll back to the last known migration:
python manage.py migrate rest_framework_simplejwt.token_blacklist 0012
  1. Upgrade djangorestframework-simplejwt to the latest version.
  2. Apply the migrations correctly:
python manage.py migrate

Important: If other migrations depend on 0013_blacklist, be cautious when removing it. You may need to adjust or regenerate dependent migrations to ensure database integrity.

New Contributors

Full Changelog: jazzband/djangorestframework-simplejwt@v5.5.0...v5.5.1

Changelog

Sourced from djangorestframework-simplejwt's changelog.

5.5.1

Missing Migration for rest_framework_simplejwt.token_blacklist app. A previously missing migration (0013_blacklist) has now been added. This issue arose because the migration file was mistakenly not generated earlier. This migration was never part of an official release, but users following the latest master branch may have encountered it.

Notes for Users If you previously ran makemigrations in production and have a 0013_blacklist migration in your django_migrations table, follow these steps before upgrading:

  1. Roll back to the last known migration:
python manage.py migrate rest_framework_simplejwt.token_blacklist 0012
  1. Upgrade djangorestframework-simplejwt to the latest version.
  2. Apply the migrations correctly:
python manage.py migrate

Important: If other migrations depend on 0013_blacklist, be cautious when removing it. You may need to adjust or regenerate dependent migrations to ensure database integrity.

Commits

Updates ruff from 0.12.2 to 0.12.5

Release notes

Sourced from ruff's releases.

0.12.5

Release Notes

Preview features

  • [flake8-use-pathlib] Add autofix for PTH101, PTH104, PTH105, PTH121 (#19404)
  • [ruff] Support byte strings (RUF055) (#18926)

Bug fixes

  • Fix unreachable panic in parser (#19183)
  • [flake8-pyi] Skip fix if all Union members are None (PYI016) (#19416)
  • [perflint] Parenthesize generator expressions (PERF401) (#19325)
  • [pylint] Handle empty comments after line continuation (PLR2044) (#19405)

Rule changes

  • [pep8-naming] Fix N802 false positives for CGIHTTPRequestHandler and SimpleHTTPRequestHandler (#19432)

Contributors

Install ruff 0.12.5

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/astral-sh/ruff/releases/download/0.12.5/ruff-installer.sh | sh

Install prebuilt binaries via powershell script

... (truncated)

Changelog

Sourced from ruff's changelog.

0.12.5

Preview features

  • [flake8-use-pathlib] Add autofix for PTH101, PTH104, PTH105, PTH121 (#19404)
  • [ruff] Support byte strings (RUF055) (#18926)

Bug fixes

  • Fix unreachable panic in parser (#19183)
  • [flake8-pyi] Skip fix if all Union members are None (PYI016) (#19416)
  • [perflint] Parenthesize generator expressions (PERF401) (#19325)
  • [pylint] Handle empty comments after line continuation (PLR2044) (#19405)

Rule changes

  • [pep8-naming] Fix N802 false positives for CGIHTTPRequestHandler and SimpleHTTPRequestHandler (#19432)

0.12.4

Preview features

  • [flake8-type-checking, pyupgrade, ruff] Add from __future__ import annotations when it would allow new fixes (TC001, TC002, TC003, UP037, RUF013) (#19100)
  • [flake8-use-pathlib] Add autofix for PTH109 (#19245)
  • [pylint] Detect indirect pathlib.Path usages for unspecified-encoding (PLW1514) (#19304)

Bug fixes

  • [flake8-bugbear] Fix B017 false negatives for keyword exception arguments (#19217)
  • [flake8-use-pathlib] Fix false negative on direct Path() instantiation (PTH210) (#19388)
  • [flake8-django] Fix DJ008 false positive for abstract models with type-annotated abstract field (#19221)
  • [isort] Fix I002 import insertion after docstring with multiple string statements (#19222)
  • [isort] Treat form feed as valid whitespace before a semicolon (#19343)
  • [pydoclint] Fix SyntaxError from fixes with line continuations (D201, D202) (#19246)
  • [refurb] FURB164 fix should validate arguments and should usually be marked unsafe (#19136)

Rule changes

  • [flake8-use-pathlib] Skip single dots for invalid-pathlib-with-suffix (PTH210) on versions >= 3.14 (#19331)
  • [pep8_naming] Avoid false positives on standard library functions with uppercase names (N802) (#18907)
  • [pycodestyle] Handle brace escapes for t-strings in logical lines (#19358)
  • [pylint] Extend invalid string character rules to include t-strings (#19355)
  • [ruff] Allow strict kwarg when checking for starmap-zip (RUF058) in Python 3.14+ (#19333)

Documentation

0.12.3

... (truncated)

Commits
  • d13228a Bump 0.12.5 (#19528)
  • 9461d30 [ty] Rename type_api => ty_extensions (#19523)
  • 63d1d33 [ty] Added support for "go to references" in ty playground. (#19516)
  • e0149cd [ty] Return a tuple spec from the iterator protocol (#19496)
  • 2a00eca [ty] Exhaustiveness checking & reachability for match statements (#19508)
  • 3d17897 [ty] Fix narrowing and reachability of class patterns with arguments (#19512)
  • fa1df4c [ty] Implemented partial support for "find references" language server featur...
  • 89258f1 [flake8-use-pathlib] Add autofix for PTH101, PTH104, PTH105, PTH121...
  • 1dcef1a [perflint] Parenthesize generator expressions (PERF401) (#19325)
  • ba629fe [pep8-naming] Fix N802 false positives for CGIHTTPRequestHandler and `S...
  • Additional commits viewable in compare view

Updates coverage from 7.9.2 to 7.10.0

Changelog

Sourced from coverage's changelog.

Version 7.10.0 — 2025-07-24

  • A new configuration option: ":ref:config_run_patch" specifies named patches to work around some limitations in coverage measurement. These patches are available:

    • patch = _exit lets coverage save its data even when :func:os._exit() <python:os._exit> is used to abruptly end the process. This closes long-standing issue 310_ as well as its duplicates: issue 312, issue 1673, issue 1845, and issue 1941.

    • patch = subprocess measures coverage in Python subprocesses created with :mod:subprocess, :func:os.system, or one of the :func:execv <python:os.execl> or :func:spawnv <python:os.spawnl> family of functions. Closes old issue 367_ and duplicate issue 378_.

    • patch = execv adjusts the :func:execv <python:os.execl> family of functions to save coverage data before ending the current program and starting the next. Not available on Windows. Closes issue 43_ after 15 years!

  • The HTML report now dimly colors subsequent lines in multi-line statements. They used to have no color. This gives a better indication of the amount of code missing in the report. Closes issue 1308_.

  • Two new exclusion patterns are part of the defaults: ... is automatically excluded as a line and if TYPE_CHECKING: is excluded as a branch. Closes issue 831_.

  • A new command-line option: --save-signal=USR1 specifies a signal that coverage.py will listen for. When the signal is sent, the coverage data will be saved. This makes it possible to save data from within long-running processes. Thanks, Arkady Gilinsky <pull 1998_>_.

  • A new configuration option: ":ref:config_report_partial_also" is a list of regexes to add as pragmas for partial branches. This parallels the ":ref:config_report_exclude_also" setting for adding line exclusion patterns.

  • A few file path configuration settings didn't allow for tilde expansion: :ref:config_json_output, :ref:config_lcov_output and :ref:config_run_debug_file. This is now fixed.

  • Wheels are included for 3.14 now that 3.14 rc1 is available.

  • We no longer ship a PyPy-specific wheel. PyPy will install the pure-Python wheel. Closes issue 2001_.

  • In the very unusual situation of not having a current frame, coverage no

... (truncated)

Commits
  • ef59be0 build: missed an expected distribution count
  • f49f061 docs: sample HTML for 7.10.0
  • 6a7d5ca docs: prep for 7.10.0
  • 395c8cd build: provide 3.14 wheels
  • 6154fda feat: patch=execv
  • 787e5c4 test: we don't use 'expensive' as a mark now
  • 7e49831 refactor: patch=_exit without a global
  • 4d4ddd8 fix: better ellipsis exclusion regex. #831
  • d578c52 fix: don't assume we have a current frame. #2005
  • ecf53d5 docs: remind myself what the cores are
  • Additional commits viewable in compare view

Updates rust-just from 1.41.0 to 1.42.3

Release notes

Sourced from rust-just's releases.

1.42.3

Fixed

  • Run recipes from submodules in correct directory (#2829 by eisbaw)

1.42.2

Fixed

  • Fix scope lookup for nested submodules (#2820 by casey)

1.42.1

Fixed

  • Export variables to submodules (#2816 by casey)
  • Only override root-justfile variable assignments (#2815 by casey)

1.42.0

Fixed

  • Use correct scope when running recipes in submodules (#2810 by casey)

Added

  • Add [parallel] attribute to run dependencies in parallel (#2803 by casey)
  • Allow configuring cygpath with --cygpath and $JUST_CYGPATH (#2804 by hyrious)
  • Use GitHub token in install.sh if available (#2676 by jpeeler)
  • Add [metadata] recipe attribute (#2794 by wiktor-k)
  • Allow depending on recipes in submodules (#2672 by corvusrabus)

Changed

  • Allow completing multiple recipes in bash (#2764 by antirais)
  • Make global justfile filename case-insensitive (#2802 by casey)
Changelog

Sourced from rust-just's changelog.

1.42.3 - 2025-07-18

Fixed

  • Run recipes from submodules in correct directory (#2829 by eisbaw)

1.42.2 - 2025-07-15

Fixed

  • Fix scope lookup for nested submodules (#2820 by casey)

1.42.1 - 2025-07-14

Fixed

  • Export variables to submodules (#2816 by casey)
  • Only override root-justfile variable assignments (#2815 by casey)

1.42.0 - 2025-07-13

Fixed

  • Use correct scope when running recipes in submodules (#2810 by casey)

Added

  • Add [parallel] attribute to run dependencies in parallel (#2803 by casey)
  • Allow configuring cygpath with --cygpath and $JUST_CYGPATH (#2804 by hyrious)
  • Use GitHub token in install.sh if available (#2676 by jpeeler)
  • Add [metadata] recipe attribute (#2794 by wiktor-k)
  • Allow depending on recipes in submodules (#2672 by corvusrabus)

Changed

  • Allow completing multiple recipes in bash (#2764 by antirais)
  • Make global justfile filename case-insensitive (#2802 by casey)
Commits
  • 35c2418 Merge pull request #212 from gnpaone/sync-action
  • e7b818c chore: sync files from source repo
  • 0375833 Merge pull request #211 from gnpaone/npm-update
  • 27f1924 update version & modify lockfile
  • 6fb375f Merge pull request #210 from gnpaone/sync-action
  • ffc517f chore: sync files from source repo
  • 1d38792 Merge pull request #209 from gnpaone/dependabot/npm_and_yarn/npm/rust-just/ty...
  • e20edc2 npm(deps-dev): bump @​types/node in /npm/rust-just
  • 91d13dd Merge pull request #208 from gnpaone/dependabot/npm_and_yarn/npm/rust-just/ty...
  • 48b170a npm(deps-dev): bump @​typescript-eslint/eslint-plugin in /npm/rust-just
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the python group across 1 directory with 5 updates
0912575 
Bumps the python group with 5 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [django-allauth](https://github.com/sponsors/pennersr) | `65.9.0` | `65.10.0` |
| [djangorestframework-simplejwt](https://github.com/jazzband/djangorestframework-simplejwt) | `5.5.0` | `5.5.1` |
| [ruff](https://github.com/astral-sh/ruff) | `0.12.2` | `0.12.5` |
| [coverage](https://github.com/nedbat/coveragepy) | `7.9.2` | `7.10.0` |
| [rust-just](https://github.com/gnpaone/rust-just) | `1.41.0` | `1.42.3` |



Updates `django-allauth` from 65.9.0 to 65.10.0
- [Commits](https://github.com/sponsors/pennersr/commits)

Updates `djangorestframework-simplejwt` from 5.5.0 to 5.5.1
- [Release notes](https://github.com/jazzband/djangorestframework-simplejwt/releases)
- [Changelog](https://github.com/jazzband/djangorestframework-simplejwt/blob/master/CHANGELOG.md)
- [Commits](jazzband/djangorestframework-simplejwt@v5.5.0...v5.5.1)

Updates `ruff` from 0.12.2 to 0.12.5
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@0.12.2...0.12.5)

Updates `coverage` from 7.9.2 to 7.10.0
- [Release notes](https://github.com/nedbat/coveragepy/releases)
- [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst)
- [Commits](coveragepy/coveragepy@7.9.2...7.10.0)

Updates `rust-just` from 1.41.0 to 1.42.3
- [Release notes](https://github.com/gnpaone/rust-just/releases)
- [Changelog](https://github.com/gnpaone/rust-just/blob/master/CHANGELOG.md)
- [Commits](gnpaone/rust-just@1.41.0...1.42.3)

---
updated-dependencies:
- dependency-name: django-allauth
  dependency-version: 65.10.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: python
- dependency-name: djangorestframework-simplejwt
  dependency-version: 5.5.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: python
- dependency-name: ruff
  dependency-version: 0.12.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: python
- dependency-name: coverage
  dependency-version: 7.10.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: python
- dependency-name: rust-just
  dependency-version: 1.42.3
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: python
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Jul 24, 2025
@codecov
Copy link
Copy Markdown

codecov Bot commented Jul 24, 2025
edited
Loading

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 100.00%. Comparing base (9c1d8b9) to head (0912575).
Report is 3 commits behind head on master.

Additional details and impacted files 
@@            Coverage Diff            @@
##            master      #223   +/-   ##
=========================================
  Coverage   100.00%   100.00%           
=========================================
  Files           50        50           
  Lines         1881      1881           
=========================================
  Hits          1881      1881

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

@mfosterw mfosterw merged commit 44f994f into master Jul 25, 2025
4 checks passed
@mfosterw mfosterw deleted the dependabot/pip/python-4df1e7ae74 branch July 25, 2025 00:55
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python Pull requests that update Python code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@mfosterw