Skip to content

chore(deps): Bump the uv-dependencies group with 7 updates #98

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

chore(deps): Bump the uv-dependencies group with 7 updates #98

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 1, 2025
edited
Loading

Bumps the uv-dependencies group with 7 updates:

Package From To
pydantic 2.11.7 2.11.9
sse-starlette 2.3.6 3.0.2
starlette 0.46.2 0.48.0
uvicorn 0.35.0 0.37.0
python-socketio 5.13.0 5.14.0
ruff 0.12.0 0.13.2
types-requests 2.32.4.20250611 2.32.4.20250913

Updates pydantic from 2.11.7 to 2.11.9

Release notes

Sourced from pydantic's releases.

v2.11.9 2025-09-13

What's Changed

Fixes

Full Changelog: pydantic/pydantic@v2.11.8...v2.11.9

v2.11.8 2025-09-13

v2.11.8 (2025-09-13)

What's Changed

Fixes

Full Changelog: pydantic/pydantic@v2.11.7...v2.11.8

Changelog

Sourced from pydantic's changelog.

v2.11.9 (2025-09-13)

GitHub release

What's Changed

Fixes

v2.11.8 (2025-09-13)

GitHub release

What's Changed

Fixes

Commits

Updates sse-starlette from 2.3.6 to 3.0.2

Release notes

Sourced from sse-starlette's releases.

v3.0.2

Full Changelog: sysid/sse-starlette@v3.0.1...v3.0.2

v3.0.1

Full Changelog: sysid/sse-starlette@v3.0.0...v3.0.1

v3.0.0

What's New in v3.0.0

No breaking changes expected.

Major Thread Safety Improvements

  • Multi-Threading Support: SSE now works correctly in multi-threaded applications
  • Multi-Loop Support: Full compatibility with multiple asyncio event loops
  • Automatic Test Isolation: No more manual state resets needed in tests
  • Context-Local Events: Replaced global state with context-aware event management

Development Experience

  • Modern APIs: Updated to Starlette's lifespan parameter (no more deprecation warnings)
  • Clean Testing: Improved pytest configuration and dependency management

Full Changelog: sysid/sse-starlette@v2.4.1...v3.0.0

v2.4.1

Full Changelog: sysid/sse-starlette@v2.4.0...v2.4.1

v2.4.0

What's Changed

New Contributors

Full Changelog: sysid/sse-starlette@v2.3.6...v2.4.0

Commits
  • e3c205f Bump version to 3.0.2
  • 0336217 chore: removed tox from project
  • 32adde7 Bump version to 3.0.1
  • cf0e93e chore: remove deprecated codecov
  • 160fc11 Bump version to 3.0.0
  • 6ca8f65 update README.md
  • 721bf2d fix: uv sync
  • 9ee0f36 Merge pull request #141 from sysid/issue-140-avoid-global-object
  • 573e91a test: Fix deprecation warnings and improve test configuration
  • e88832f feat: Replace global AppStatus.should_exit_event with context-local events
  • Additional commits viewable in compare view

Updates starlette from 0.46.2 to 0.48.0

Release notes

Sourced from starlette's releases.

Version 0.48.0

Added

  • Add official Python 3.14 support #3013.

Changed

New Contributors

Full Changelog: Kludex/starlette@0.47.3...0.48.0

Version 0.47.3

Fixed

New Contributors

Full Changelog: Kludex/starlette@0.47.2...0.47.3

0.47.2

Fixed

  • Make UploadFile check for future rollover #2962.

New Contributors

Full Changelog: Kludex/starlette@0.47.1...0.47.2

Version 0.47.1

Fixed

  • Use Self in TestClient.__enter__ #2951
  • Allow async exception handlers to type-check #2949

Full Changelog: Kludex/starlette@0.47.0...0.47.1

... (truncated)

Changelog

Sourced from starlette's changelog.

0.48.0 (September 13, 2025)

Added

  • Add official Python 3.14 support #3013.

Changed

0.47.3 (August 24, 2025)

Fixed

  • Use asyncio.iscoroutinefunction for Python 3.12 and older #2984.

0.47.2 (July 20, 2025)

Fixed

  • Make UploadFile check for future rollover #2962.

0.47.1 (June 21, 2025)

Fixed

  • Use Self in TestClient.__enter__ #2951.
  • Allow async exception handlers to type-check #2949.

0.47.0 (May 29, 2025)

Added

  • Add support for ASGI pathsend extension #2671.
  • Add partitioned attribute to Response.set_cookie #2501.

Changed

  • Change methods parameter type from list[str] to Collection[str] #2903.
  • Replace import typing by from typing import ... in the whole codebase #2867.

Fixed

  • Mark ExceptionMiddleware.http_exception as async to prevent thread creation #2922.
Commits

Updates uvicorn from 0.35.0 to 0.37.0

Release notes

Sourced from uvicorn's releases.

Version 0.37.0

What's Changed

New Contributors

Full Changelog: Kludex/uvicorn@0.36.1...0.37.0

Version 0.36.1

What's Changed

Full Changelog: Kludex/uvicorn@0.36.0...0.36.1

Version 0.36.0

Added

New Contributors

Full Changelog: Kludex/uvicorn@0.35.0...0.36.0

Changelog

Sourced from uvicorn's changelog.

0.37.0 (September 23, 2025)

Added

  • Add --timeout-worker-healthcheck option (#2711)
  • Add os.PathLike[str] type to ssl_ca_certs (#2676)

0.36.1 (September 23, 2025)

Fixed

  • Raise an exception when calling removed Config.setup_event_loop() (#2709)

0.36.0 (September 20, 2025)

Added

  • Support custom IOLOOPs (#2435)
  • Allow to provide importable string in --http, --ws and --loop (#2658)
Commits

Updates python-socketio from 5.13.0 to 5.14.0

Release notes

Sourced from python-socketio's releases.

Release 5.14.0

See CHANGES.md for release notes.

Changelog

Sourced from python-socketio's changelog.

python-socketio change log

Release 5.14.0 - 2025-09-30

  • Replace pickle with json in message queue communications #1502 (commit)
  • Add support for Valkey in the Redis client managers #1488 (commit) (thanks phi-friday!)
  • Keep track of which namespaces failed to connect #1496 (commit)
  • Fixed transport property of the simple clients to be a string as documented #1499 (commit)
  • SimpleClient.call does not raise TimeoutError on timeout #1501 (commit) (thanks James Thistlewood!)
  • Wait for client to end background tasks on disconnect #1500 (commit)
  • Better error logging for the Redis managers #1479 (commit) (thanks Eugnee!)
  • Channel was not properly initialized in several pubsub client managers #1476 (commit) (thanks Eugnee!)
  • Add message queue deployment recommendations for security (commit)
  • Add missing async on session examples for the async server #1465 (commit) (thanks Func!)
  • Add SPDX license identifier #1453 (commit) (thanks Marc Mueller!)

Release 5.13.0 - 2025-04-12

  • Eliminate race conditions on disconnect #1441 (commit)
  • Preserve exception context in Client.connect and AsyncClient.connect #1450 (commit) (thanks Tim Van Baak!)
  • Allow custom client subclasses to be used in SimpleClient and AsyncSimpleClient #1432 (commit)
  • Add support for Redis Sentinel URLs in RedisManager and AsyncRedisManager #1448 (commit)
  • Remove incorrect reference to an asyncio installation extra in documentation #1449 (commit)

Release 5.12.1 - 2024-12-29

  • Fix admin instrumentation support of disconnect reasons #1423 (commit)
  • Stop using deprecated datetime functions (commit)
  • Enable admin instrumentation by default in WSGI and ASGI examples (commit)
  • Fixed broken gevent URL in documentation #1427 (commit) (thanks Carlos Guerrero!)

Release 5.12.0 - 2024-12-18

  • Added a reason argument to the disconnect handler #1422 (commit)
  • Prevented starting multiple tasks for reconnection #1369 (commit) (thanks humayunsr!)
  • Fixed AsyncClient::wait() unexpected return after success reconnect #1407 (commit) (thanks Arseny!)
  • Removed old constructs from old and unsupported Python versions (commit)
  • Removed dependency on unittest.TestCase base class in unit tests (commit)
  • Adopted pyenv-asyncio for async unit tests (commit)
  • Adopted unittest.mock.AsyncMock in async unit tests (commit)
  • Fix typo with AsyncClient.connect example #1403 (commit) (thanks Peter Bierma!)
  • Documentation typo #1421 (commit) (thanks Masen Furer!)
  • Renamed flask-socketio references to python-socketio in documentation #1377 (commit)
  • Added Python 3.13 CI builds (commit)

Release 5.11.4 - 2024-09-02

  • Prevent crash when client sends empty event (commit)
  • Add missing to argument in manager's emit() method #1374 (commit) (thanks Pavieł Michalkievič!)
  • Reorganization of server documentation #1350 (commit)

... (truncated)

Commits
  • 400200e Release 5.14.0
  • 53f6be0 Replace pickle with json (#1502)
  • a59c6f5 Fix: SimpleClient.call does not raise TimeoutError on timeout (#1501)
  • f61e0be wait for client to end background tasks on disconnect (#1500)
  • 23556fb Fixed transport property of the simple clients to be a string as documented (...
  • e59acf1 Address failures of test suite on Mac (#1497)
  • 36a8922 Add support for valkey in the Redis client managers (#1488)
  • 5dc2aea keep track of which namespaces failed to connect (#1496)
  • b3da354 Add message queue deployment recommendations
  • 3625fe8 Bump eventlet from 0.35.2 to 0.40.3 in /examples/server/wsgi (#1491) #nolog
  • Additional commits viewable in compare view

Updates ruff from 0.12.0 to 0.13.2

Release notes

Sourced from ruff's releases.

0.13.2

Release Notes

Released on 2025-09-25.

Preview features

  • [flake8-async] Implement blocking-path-method (ASYNC240) (#20264)
  • [flake8-bugbear] Implement map-without-explicit-strict (B912) (#20429)
  • [flake8-bultins] Detect class-scope builtin shadowing in decorators, default args, and attribute initializers (A003) (#20178)
  • [ruff] Implement logging-eager-conversion (RUF065) (#19942)
  • Include .pyw files by default when linting and formatting (#20458)

Bug fixes

  • Deduplicate input paths (#20105)
  • [flake8-comprehensions] Preserve trailing commas for single-element lists (C409) (#19571)
  • [flake8-pyi] Avoid syntax error from conflict with PIE790 (PYI021) (#20010)
  • [flake8-simplify] Correct fix for positive maxsplit without separator (SIM905) (#20056)
  • [pyupgrade] Fix UP008 not to apply when __class__ is a local variable (#20497)
  • [ruff] Fix B004 to skip invalid hasattr/getattr calls (#20486)
  • [ruff] Replace -nan with nan when using the value to construct a Decimal (FURB164 ) (#20391)

Documentation

  • Add 'Finding ways to help' to CONTRIBUTING.md (#20567)
  • Update import path to ruff-wasm-web (#20539)
  • [flake8-bandit] Clarify the supported hashing functions (S324) (#20534)

Other changes

  • [playground] Allow hover quick fixes to appear for overlapping diagnostics (#20527)
  • [playground] Fix non‑BMP code point handling in quick fixes and markers (#20526)

Contributors

Install ruff 0.13.2

... (truncated)

Changelog

Sourced from ruff's changelog.

0.13.2

Released on 2025-09-25.

Preview features

  • [flake8-async] Implement blocking-path-method (ASYNC240) (#20264)
  • [flake8-bugbear] Implement map-without-explicit-strict (B912) (#20429)
  • [flake8-bultins] Detect class-scope builtin shadowing in decorators, default args, and attribute initializers (A003) (#20178)
  • [ruff] Implement logging-eager-conversion (RUF065) (#19942)
  • Include .pyw files by default when linting and formatting (#20458)

Bug fixes

  • Deduplicate input paths (#20105)
  • [flake8-comprehensions] Preserve trailing commas for single-element lists (C409) (#19571)
  • [flake8-pyi] Avoid syntax error from conflict with PIE790 (PYI021) (#20010)
  • [flake8-simplify] Correct fix for positive maxsplit without separator (SIM905) (#20056)
  • [pyupgrade] Fix UP008 not to apply when __class__ is a local variable (#20497)
  • [ruff] Fix B004 to skip invalid hasattr/getattr calls (#20486)
  • [ruff] Replace -nan with nan when using the value to construct a Decimal (FURB164 ) (#20391)

Documentation

  • Add 'Finding ways to help' to CONTRIBUTING.md (#20567)
  • Update import path to ruff-wasm-web (#20539)
  • [flake8-bandit] Clarify the supported hashing functions (S324) (#20534)

Other changes

  • [playground] Allow hover quick fixes to appear for overlapping diagnostics (#20527)
  • [playground] Fix non‑BMP code point handling in quick fixes and markers (#20526)

Contributors

0.13.1

... (truncated)

Commits
  • b0bdf03 Bump 0.13.2 (#20576)
  • 7331d39 Update rooster to 0.1.0 (#20575)
  • 529e5fa [ty] Ecosystem analyzer: timing report (#20571)
  • efbb80f [ty] Remove hack in protocol satisfiability check (#20568)
  • 9f3cffc Add 'Finding ways to help' to CONTRIBUTING.md (#20567)
  • 21be94a [ty] Explicitly test assignability/subtyping between unions of nominal types ...
  • b7d5dc9 [ty] Add tests for interactions of @classmethod, @staticmethod, and proto...
  • e1bb74b [ty] Match variadic argument to variadic parameter (#20511)
  • edeb458 [ty] fallback to resolve_real_module in file_to_module (#20461)
  • bea92c8 [ty] More precise type inference for dictionary literals (#20523)
  • Additional commits viewable in compare view

Updates types-requests from 2.32.4.20250611 to 2.32.4.20250913

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code labels Oct 1, 2025
@dependabot dependabot bot requested a review from a team as a code owner October 1, 2025 14:57
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code labels Oct 1, 2025
This was referenced Oct 1, 2025
Closed
Closed
Closed
@dependabot
chore(deps): Bump the uv-dependencies group with 7 updates
8ef567a 
Bumps the uv-dependencies group with 7 updates:

| Package | From | To |
| --- | --- | --- |
| [pydantic](https://github.com/pydantic/pydantic) | `2.11.7` | `2.11.9` |
| [sse-starlette](https://github.com/sysid/sse-starlette) | `2.3.6` | `3.0.2` |
| [starlette](https://github.com/Kludex/starlette) | `0.46.2` | `0.48.0` |
| [uvicorn](https://github.com/Kludex/uvicorn) | `0.35.0` | `0.37.0` |
| [python-socketio](https://github.com/miguelgrinberg/python-socketio) | `5.13.0` | `5.14.0` |
| [ruff](https://github.com/astral-sh/ruff) | `0.12.0` | `0.13.2` |
| [types-requests](https://github.com/typeshed-internal/stub_uploader) | `2.32.4.20250611` | `2.32.4.20250913` |


Updates `pydantic` from 2.11.7 to 2.11.9
- [Release notes](https://github.com/pydantic/pydantic/releases)
- [Changelog](https://github.com/pydantic/pydantic/blob/v2.11.9/HISTORY.md)
- [Commits](pydantic/pydantic@v2.11.7...v2.11.9)

Updates `sse-starlette` from 2.3.6 to 3.0.2
- [Release notes](https://github.com/sysid/sse-starlette/releases)
- [Changelog](https://github.com/sysid/sse-starlette/blob/main/CHANGELOG.md)
- [Commits](sysid/sse-starlette@v2.3.6...v3.0.2)

Updates `starlette` from 0.46.2 to 0.48.0
- [Release notes](https://github.com/Kludex/starlette/releases)
- [Changelog](https://github.com/Kludex/starlette/blob/main/docs/release-notes.md)
- [Commits](Kludex/starlette@0.46.2...0.48.0)

Updates `uvicorn` from 0.35.0 to 0.37.0
- [Release notes](https://github.com/Kludex/uvicorn/releases)
- [Changelog](https://github.com/Kludex/uvicorn/blob/main/docs/release-notes.md)
- [Commits](Kludex/uvicorn@0.35.0...0.37.0)

Updates `python-socketio` from 5.13.0 to 5.14.0
- [Release notes](https://github.com/miguelgrinberg/python-socketio/releases)
- [Changelog](https://github.com/miguelgrinberg/python-socketio/blob/main/CHANGES.md)
- [Commits](miguelgrinberg/python-socketio@v5.13.0...v5.14.0)

Updates `ruff` from 0.12.0 to 0.13.2
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@0.12.0...0.13.2)

Updates `types-requests` from 2.32.4.20250611 to 2.32.4.20250913
- [Commits](https://github.com/typeshed-internal/stub_uploader/commits)

---
updated-dependencies:
- dependency-name: pydantic
  dependency-version: 2.11.9
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: uv-dependencies
- dependency-name: sse-starlette
  dependency-version: 3.0.2
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: uv-dependencies
- dependency-name: starlette
  dependency-version: 0.48.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: uv-dependencies
- dependency-name: uvicorn
  dependency-version: 0.37.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: uv-dependencies
- dependency-name: python-socketio
  dependency-version: 5.14.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: uv-dependencies
- dependency-name: ruff
  dependency-version: 0.13.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: uv-dependencies
- dependency-name: types-requests
  dependency-version: 2.32.4.20250913
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: uv-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/uv/uv-dependencies-3a37eacc69 branch from 68652ed to 8ef567a Compare October 1, 2025 17:45
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants