Skip to content

chore(deps): bump the python-runtime group in /backend with 6 updates #585

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

chore(deps): bump the python-runtime group in /backend with 6 updates #585

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Aug 27, 2025
edited
Loading

Bumps the python-runtime group in /backend with 6 updates:

Package From To
fastapi 0.104.1 0.115.6
githubkit 0.11.1 0.13.1
uvicorn 0.23.2 0.35.0
neo4j 5.14.0 5.28.2
python-multipart 0.0.7 0.0.20
apscheduler 3.10.4 3.11.0

Updates fastapi from 0.104.1 to 0.115.6

Release notes

Sourced from fastapi's releases.

0.115.6

Fixes

  • 🐛 Preserve traceback when an exception is raised in sync dependency with yield. PR #5823 by @​sombek.

Refactors

  • ♻️ Update tests and internals for compatibility with Pydantic >=2.10. PR #12971 by @​tamird.

Docs

  • 📝 Update includes format in docs with an automated script. PR #12950 by @​tiangolo.
  • 📝 Update includes for docs/de/docs/advanced/using-request-directly.md. PR #12685 by @​alissadb.
  • 📝 Update includes for docs/de/docs/how-to/conditional-openapi.md. PR #12689 by @​alissadb.

Translations

  • 🌐 Add Traditional Chinese translation for docs/zh-hant/docs/async.md. PR #12990 by @​ILoveSorasakiHina.
  • 🌐 Add Traditional Chinese translation for docs/zh-hant/docs/tutorial/query-param-models.md. PR #12932 by @​Vincy1230.
  • 🌐 Add Korean translation for docs/ko/docs/advanced/testing-dependencies.md. PR #12992 by @​Limsunoh.
  • 🌐 Add Korean translation for docs/ko/docs/advanced/websockets.md. PR #12991 by @​kwang1215.
  • 🌐 Add Portuguese translation for docs/pt/docs/tutorial/response-model.md. PR #12933 by @​AndreBBM.
  • 🌐 Add Korean translation for docs/ko/docs/advanced/middlewares.md. PR #12753 by @​nahyunkeem.
  • 🌐 Add Korean translation for docs/ko/docs/advanced/openapi-webhooks.md. PR #12752 by @​saeye.
  • 🌐 Add Chinese translation for docs/zh/docs/tutorial/query-param-models.md. PR #12931 by @​Vincy1230.
  • 🌐 Add Russian translation for docs/ru/docs/tutorial/query-param-models.md. PR #12445 by @​gitgernit.
  • 🌐 Add Korean translation for docs/ko/docs/tutorial/query-param-models.md. PR #12940 by @​jts8257.
  • 🔥 Remove obsolete tutorial translation to Chinese for docs/zh/docs/tutorial/sql-databases.md, it references files that are no longer on the repo. PR #12949 by @​tiangolo.

Internal

0.115.5

Refactors

Docs

... (truncated)

Commits
  • bb8c2a6 🔖 Release version 0.115.6
  • 905ec1e 📝 Update release notes
  • 4f81575 🐛 Preserve traceback when exception is raised in sync dependency with yield...
  • 8255edf 📝 Update release notes
  • 53c8784 🌐 Add Traditional Chinese translation for docs/zh-hant/docs/async.md (#12990)
  • 2971352 📝 Update release notes
  • 8376228 🌐 Add Traditional Chinese translation for `docs/zh-hant/docs/tutorial/query-p...
  • 6c7873c 📝 Update release notes
  • d75b81c 🌐 Add Korean translation for docs/ko/docs/advanced/testing-dependencies.md ...
  • 206037c 📝 Update release notes
  • Additional commits viewable in compare view

Updates githubkit from 0.11.1 to 0.13.1

Release notes

Sourced from githubkit's releases.

Release 0.13.1

What's Changed

Full Changelog: yanyongyu/githubkit@v0.13.0...v0.13.1

Release 0.13.0

What's Changed

[!CAUTION] Breaking Change The classic project rest APIs are deprecated by GitHub officially. The namespace is renamed from projects to projects_classic.

Full Changelog: yanyongyu/githubkit@v0.12.16...v0.13.0

Release 0.12.16

What's Changed

Full Changelog: yanyongyu/githubkit@v0.12.15...v0.12.16

Release 0.12.15

What's Changed

Full Changelog: yanyongyu/githubkit@v0.12.14...v0.12.15

Release 0.12.14

What's Changed

Full Changelog: yanyongyu/githubkit@v0.12.13...v0.12.14

Release 0.12.13

What's Changed

... (truncated)

Commits

Updates uvicorn from 0.23.2 to 0.35.0

Release notes

Sourced from uvicorn's releases.

Version 0.35.0

Added

Changed

New Contributors

Full Changelog: Kludex/uvicorn@0.34.3...0.35.0

Version 0.34.3

What's Changed

New Contributors

Full Changelog: Kludex/uvicorn@0.34.2...0.34.3

Version 0.34.2

What's Changed

New Contributors

Full Changelog: Kludex/uvicorn@0.34.1...0.34.2

Version 0.34.1

What's Changed

New Contributors

Full Changelog: Kludex/uvicorn@0.34.0...0.34.1

Version 0.34.0

What's Changed

... (truncated)

Changelog

Sourced from uvicorn's changelog.

0.35.0 (June 28, 2025)

Added

  • Add WebSocketsSansIOProtocol (#2540)

Changed

  • Refine help message for option --proxy-headers (#2653)

0.34.3 (June 1, 2025)

Fixed

  • Don't include cwd() when non-empty --reload-dirs is passed (#2598)
  • Apply get_client_addr formatting to WebSocket logging (#2636)

0.34.2 (April 19, 2025)

Fixed

  • Flush stdout buffer on Windows to trigger reload (#2604)

0.34.1 (April 13, 2025)

Deprecated

  • Deprecate ServerState in the main module (#2581)

0.34.0 (December 15, 2024)

Added

  • Add content-length to 500 response in wsproto implementation (#2542)

Removed

  • Drop support for Python 3.8 (#2543)

0.33.0 (December 14, 2024)

Removed

  • Remove WatchGod support for --reload (#2536)

0.32.1 (November 20, 2024)

Fixed

  • Drop ASGI spec version to 2.3 on HTTP scope (#2513)

... (truncated)

Commits

Updates neo4j from 5.14.0 to 5.28.2

Release notes

Sourced from neo4j's releases.

Neo4j Python Driver 5.28.2 (LTS)

https://github.com/neo4j/neo4j-python-driver/wiki/5.x-changelog#5282-lts

Neo4j Python Driver 5.28.1 (LTS)

https://github.com/neo4j/neo4j-python-driver/wiki/5.x-changelog#5281-lts

Neo4j Python Driver 5.28.0 (LTS)

https://github.com/neo4j/neo4j-python-driver/wiki/5.x-changelog#5280-lts

Neo4j Python Driver 5.27.0

https://github.com/neo4j/neo4j-python-driver/wiki/5.x-changelog#5270

Neo4j Python Driver 5.26.0

https://github.com/neo4j/neo4j-python-driver/wiki/5.x-changelog#5260

Neo4j Python Driver 5.25.0

https://github.com/neo4j/neo4j-python-driver/wiki/5.x-changelog#5250

Neo4j Python Driver 5.24.0

https://github.com/neo4j/neo4j-python-driver/wiki/5.x-changelog#5240

Neo4j Python Driver 5.23.1

https://github.com/neo4j/neo4j-python-driver/wiki/5.x-changelog#5231

Neo4j Python Driver 5.23.0

https://github.com/neo4j/neo4j-python-driver/wiki/5.x-changelog#5230

Neo4j Python Driver 5.22.0

https://github.com/neo4j/neo4j-python-driver/wiki/5.x-changelog#5220

Neo4j Python Driver 5.21.0

https://github.com/neo4j/neo4j-python-driver/wiki/5.x-changelog#5210

Neo4j Python Driver 5.20.0

https://github.com/neo4j/neo4j-python-driver/wiki/5.x-changelog#5200

Neo4j Python Driver 5.19.0

https://github.com/neo4j/neo4j-python-driver/wiki/5.x-changelog#5190

Neo4j Python Driver 5.18.0

https://github.com/neo4j/neo4j-python-driver/wiki/5.x-changelog#5180

Neo4j Python Driver 5.17.0

https://github.com/neo4j/neo4j-python-driver/wiki/5.x-changelog#5170

Neo4j Python Driver 5.16.0

https://github.com/neo4j/neo4j-python-driver/wiki/5.x-changelog#5160

Neo4j Python Driver 5.15.0

https://github.com/neo4j/neo4j-python-driver/wiki/5.x-changelog#5150

... (truncated)

Changelog

Sourced from neo4j's changelog.

Neo4j Driver Change Log (breaking/major changes only)

See also https://github.com/neo4j/neo4j-python-driver/wiki for a full changelog.

NEXT RELEASE

  • No breaking or major changes.

Version 6.0

  • Python 3.7, 3.8, and 3.9 support has been dropped.
  • Remove deprecated package alias neo4j-driver. Use pip install neo4j instead.
  • Remove setup.py. Please use a recent enough packaging/build tool that supports pyproject.toml
  • Remove deprecated modules:
    • neo4j.conf
    • neo4j.data
    • neo4j.meta
    • neo4j.packstream
    • neo4j.routing
    • neo4j.time.arithmetic
    • neo4j.time.clock_implementation
    • neo4j.time.hydration
    • neo4j.time.metaclasses
    • neo4j.work
    • neo4j.work.query
    • neo4j.work.summary
  • Remove deprecated exports from neo4j:
    • log, Config, PoolConfig, SessionConfig, WorkspaceConfig (internal - no replacement)
    • SummaryNotificationPosition (use SummaryInputPosition instead)
  • api.Version has been removed as it's unused now.
    ServerInfo.protocol_version now is a tuple[int, int] insteadof a api.Version. This should be drop-in replacement is most cases:
    • Version was a sup-type of tuple[int, int]
    • ServerInfo.protocol_version was already documented and typed as tuple[int, int]
    • Version's additional methods were undocumented and shouldn't have been used
  • Changed errors raised under certain circumstances
    • ConfigurationError if the passed auth parameters is not valid (instead of AuthError)
      • This improves the differentiation between DriverError for client-side errors and Neo4jError for server-side errors.
    • access_mode configuration option
      • ValueError on invalid value (instead of ClientError)
      • Consistently check the value (also for non-routing drivers)
    • neo4j.exceptions.UnsupportedServerProduct if no common bolt protocol version could be negotiated with the server (instead of internal neo4j._exceptions.BoltHandshakeError).
      UnsupportedServerProduct is now a subclass of ConfigurationError (instead of Exception directly).
    • connection_acquisition_timeout configuration option
      • Raise ValueError on invalid values (instead of ClientError).
      • Consistently restrict the value to be strictly positive
      • New ConnectionAcquisitionTimeoutError (subclass of DriverError) instead of ClientError (subclass of Neo4jError) the timeout is exceeded.
        • This improves the differentiation between DriverError for client-side errors and Neo4jError for server-side

... (truncated)

Commits
  • f4fcf70 Bump dependencies (#1228)
  • 41ec710 Docs: specify applicability of is_retryable (#1218)
  • 6b15c21 Merge pull request #1202 from robsdedude/fix/driver-stuck-on-recursion-error-...
  • fd27e88 Fix driver stuck on RecursionError on COMMIT SUCCESS
  • 6ca5da1 Keep neo4j.time.ZeroDate (#1190)
  • af02e2f Make mypy on Python 3.7 happy again (#1158)
  • bba9345 mypy: fix ParamSpec usage (#1155)
  • cffe34e TestKit: check package build is free of errors and warnings (#1152)
  • 9d1efce API docs: Driver.close is not concurrency-safe (#1147)
  • ade8d05 Minor: formatting in testkit backend config.json
  • Additional commits viewable in compare view

Updates python-multipart from 0.0.7 to 0.0.20

Release notes

Sourced from python-multipart's releases.

Version 0.0.20

What's Changed

New Contributors

Full Changelog: Kludex/python-multipart@0.0.19...0.0.20

Version 0.0.19

What's Changed

Full Changelog: Kludex/python-multipart@0.0.18...0.0.19

Version 0.0.18

What's Changed

Full Changelog: Kludex/python-multipart@0.0.17...0.0.18

Version 0.0.17

What's Changed

Full Changelog: Kludex/python-multipart@0.0.16...0.0.17

Version 0.0.16

What's Changed

Full Changelog: Kludex/python-multipart@0.0.15...0.0.16

Version 0.0.15

What's Changed

  • Replace FutureWarning to PendingDeprecationWarning #174.
  • Add missing files to SDist #171.

... (truncated)

Changelog

Sourced from python-multipart's changelog.

0.0.20 (2024-12-16)

  • Handle messages containing only end boundary #142.

0.0.19 (2024-11-30)

  • Don't warn when CRLF is found after last boundary on MultipartParser #193.

0.0.18 (2024-11-28)

  • Hard break if found data after last boundary on MultipartParser #189.

0.0.17 (2024-10-31)

  • Handle PermissionError in fallback code for old import name #182.

0.0.16 (2024-10-27)

  • Add dunder attributes to multipart package #177.

0.0.15 (2024-10-27)

  • Replace FutureWarning to PendingDeprecationWarning #174.
  • Add missing files to SDist #171.

0.0.14 (2024-10-24)

  • Fix import scheme for multipart module (#168).

0.0.13 (2024-10-20)

  • Rename import to python_multipart #166.

0.0.12 (2024-09-29)

  • Improve error message when boundary character does not match #124.
  • Add mypy strict typing #140.
  • Enforce 100% coverage #159.

0.0.11 (2024-09-28)

  • Improve performance, especially in data with many CR-LF #137.
  • Handle invalid CRLF in header name #141.

0.0.10 (2024-09-21)

  • Support on_header_begin #103.
  • Improve type hints on FormParser #104.
  • Fix OnFileCallback type #106.
  • Improve type hints #110.

... (truncated)

Commits

Updates apscheduler from 3.10.4 to 3.11.0

Release notes

Sourced from apscheduler's releases.

3.11.0

  • Dropped support for Python 3.6 and 3.7
  • Added support for ZoneInfo time zones and deprecated support for pytz time zones
  • Added CalendarIntervalTrigger, backported from the 4.x series
  • Added the ability to export and import jobs via scheduler.export_jobs() and scheduler.import_jobs(), respectively
  • Removed the dependency on six
  • Changed ProcessPoolExecutor to spawn new subprocesses from scratch instead of forking on all platform
  • Fixed AsyncIOScheduler inadvertently creating a defunct event loop at start, leading to the scheduler not working at all
  • Fixed ProcessPoolExecutor not respecting the passed keyword arguments when a broken pool was being replaced
Changelog

Sourced from apscheduler's changelog.

Version history

To find out how to migrate your application from a previous version of APScheduler, see the :doc:migration section <migration>.

3.11.0

  • Dropped support for Python 3.6 and 3.7
  • Added support for ZoneInfo time zones and deprecated support for pytz time zones
  • Added CalendarIntervalTrigger, backported from the 4.x series
  • Added the ability to export and import jobs via scheduler.export_jobs() and scheduler.import_jobs(), respectively
  • Removed the dependency on six
  • Changed ProcessPoolExecutor to spawn new subprocesses from scratch instead of forking on all platform
  • Fixed AsyncIOScheduler inadvertently creating a defunct event loop at start, leading to the scheduler not working at all
  • Fixed ProcessPoolExecutor not respecting the passed keyword arguments when a broken pool was being replaced

3.10.4

  • Fixed incorrect module name being generated for references to class methods via a subclass where the subclass does not override the method

3.10.3

  • Fixed TypeError related to entry point iteration on Python 3.9 (PR by CrypticDriver)

3.10.2

  • Ensured consistent support for both PySide and PyQt (v6 to v2) on QtScheduler
  • Replaced uses of the deprecated pkg_resources module with importlib.metadata (PR by Ran Benita)
  • Fixed scheduling class methods like B.methodname where the B class inherits from class A and methodname is a class method of class A
  • Fixed scheduler sleeping for too long (and thus jobs missing their scheduled run times) if its wakeup cycle takes too much time (fix by kbasten)

3.10.1

  • Fixed TypeError: arguments did not match any overloaded call: in QtScheduler due to wait_time being float and not an integer which QT needs it to be

3.10.0

  • Fixed compatibility with SQLAlchemy 2.0 and bumped minimum supported version to 1.4

... (truncated)

Commits
  • 6c72a51 Backported release job from master
  • 4b96510 Added the release version
  • fcec69c Added user's guide section for export/import
  • 50f67c8 Added scheduler methods for job export/import
  • 40431e5 Removed the obsolete timedelta_seconds function
  • 9483bb4 Rearranged triggers tests to better match the master branch
  • ac55c86 Fixed project links to point to the correct branch on RTD
  • 811e973 Changed version history formatting to match the master branch
  • f3c68df Pass pool_kwargs to the replacement process pool too
  • 4584091 Removed unwarranted classifier
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the python-runtime group in /backend with 6 updates
322381f 
Bumps the python-runtime group in /backend with 6 updates:

| Package | From | To |
| --- | --- | --- |
| [fastapi](https://github.com/fastapi/fastapi) | `0.104.1` | `0.115.6` |
| [githubkit](https://github.com/yanyongyu/githubkit) | `0.11.1` | `0.13.1` |
| [uvicorn](https://github.com/encode/uvicorn) | `0.23.2` | `0.35.0` |
| [neo4j](https://github.com/neo4j/neo4j-python-driver) | `5.14.0` | `5.28.2` |
| [python-multipart](https://github.com/Kludex/python-multipart) | `0.0.7` | `0.0.20` |
| [apscheduler](https://github.com/agronholm/apscheduler) | `3.10.4` | `3.11.0` |


Updates `fastapi` from 0.104.1 to 0.115.6
- [Release notes](https://github.com/fastapi/fastapi/releases)
- [Commits](fastapi/fastapi@0.104.1...0.115.6)

Updates `githubkit` from 0.11.1 to 0.13.1
- [Release notes](https://github.com/yanyongyu/githubkit/releases)
- [Commits](yanyongyu/githubkit@v0.11.1...v0.13.1)

Updates `uvicorn` from 0.23.2 to 0.35.0
- [Release notes](https://github.com/encode/uvicorn/releases)
- [Changelog](https://github.com/encode/uvicorn/blob/master/docs/release-notes.md)
- [Commits](Kludex/uvicorn@0.23.2...0.35.0)

Updates `neo4j` from 5.14.0 to 5.28.2
- [Release notes](https://github.com/neo4j/neo4j-python-driver/releases)
- [Changelog](https://github.com/neo4j/neo4j-python-driver/blob/6.x/CHANGELOG.md)
- [Commits](neo4j/neo4j-python-driver@5.14.0...5.28.2)

Updates `python-multipart` from 0.0.7 to 0.0.20
- [Release notes](https://github.com/Kludex/python-multipart/releases)
- [Changelog](https://github.com/Kludex/python-multipart/blob/master/CHANGELOG.md)
- [Commits](Kludex/python-multipart@0.0.7...0.0.20)

Updates `apscheduler` from 3.10.4 to 3.11.0
- [Release notes](https://github.com/agronholm/apscheduler/releases)
- [Changelog](https://github.com/agronholm/apscheduler/blob/3.11.0/docs/versionhistory.rst)
- [Commits](agronholm/apscheduler@3.10.4...3.11.0)

---
updated-dependencies:
- dependency-name: fastapi
  dependency-version: 0.115.6
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: python-runtime
- dependency-name: githubkit
  dependency-version: 0.13.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: python-runtime
- dependency-name: uvicorn
  dependency-version: 0.35.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: python-runtime
- dependency-name: neo4j
  dependency-version: 5.28.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: python-runtime
- dependency-name: python-multipart
  dependency-version: 0.0.20
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: python-runtime
- dependency-name: apscheduler
  dependency-version: 3.11.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: python-runtime
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot requested a review from a team as a code owner August 27, 2025 05:05
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
backend dependencies
Projects
🧬✎ Taxonomy Editor (General)
Status: New issues
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants