Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump poetry from 1.2.2 to 1.3.2 in /.github/workflows #95

Open
wants to merge 1 commit into
base: main
Choose a base branch
from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 11, 2023

Bumps poetry from 1.2.2 to 1.3.2.

Release notes

Sourced from poetry's releases.

1.3.2

Fixed

  • Fix a performance regression when locking dependencies from PyPI (#7232).
  • Fix an issue where passing a relative path via -C, --directory fails (#7266).

Docs

  • Update docs to reflect the removal of the deprecated get-poetry.py installer from the repository (#7288).
  • Add clarifications for virtualenvs.path settings (#7286).

1.3.1

Fixed

  • Fix an issue where an explicit dependency on lockfile was missing, resulting in a broken Poetry in rare circumstances (7169).

1.3.0

Added

  • Mark the lock file with an @generated comment as used by common tooling (#2773).
  • poetry check validates trove classifiers and warns for deprecations (#2881).
  • Introduce a top level -C, --directory option to set the working path (#6810).

Changed

  • New lock file format (version 2.0) (#6393).
  • Path dependency metadata is unconditionally re-locked (#6843).
  • URL dependency hashes are locked (#7121).
  • poetry update and poetry lock should now resolve dependencies more similarly (#6477).
  • poetry publish will report more useful errors when a file does not exist (#4417).
  • poetry add will check for duplicate entries using canonical names (#6832).
  • Wheels are preferred to source distributions when gathering metadata (#6547).
  • Git dependencies of extras are only fetched if the extra is requested (#6615).
  • Invoke pip with --no-input to prevent hanging without feedback (#6724, #6966).
  • Invoke pip with --isolated to prevent the influence of user configuration (#6531).
  • Interrogate environments with Python in isolated (-I) mode (#6628).
  • Raise an informative error when multiple version constraints overlap and are incompatible (#7098).

Fixed

  • Fix an issue where concurrent instances of Poetry would corrupt the artifact cache (#6186).
  • Fix an issue where Poetry can hang after being interrupted due to stale locking in cache (#6471).
  • Fix an issue where the output of commands executed with --dry-run contained duplicate entries (#4660).
  • Fix an issue where requests's pool size did not match the number of installer workers (#6805).
  • Fix an issue where poetry show --outdated failed with a runtime error related to direct origin dependencies (#6016).
  • Fix an issue where only the last command of an ApplicationPlugin is registered (#6304).
  • Fix an issue where git dependencies were fetched unnecessarily when running poetry lock --no-update (#6131).
  • Fix an issue where stdout was polluted with messages that should go to stderr (#6429).
  • Fix an issue with poetry shell activation and zsh (#5795).
  • Fix an issue where a url dependencies were shown as outdated (#6396).
  • Fix an issue where the source field of a dependency with extras was ignored (#6472).

... (truncated)

Changelog

Sourced from poetry's changelog.

[1.2.2] - 2022-10-10

Added

  • Add forward compatibility for lock file format 2.0, which will be used by Poetry 1.3 (#6608).

Changed

  • Allow poetry lock to re-generate the lock file when invalid or incompatible (#6753).

Fixed

  • Fix an issue where the deprecated JSON API was used to query PyPI for available versions of a package (#6081).
  • Fix an issue where versions were escaped wrongly when building the wheel name (#6476).
  • Fix an issue where the installation of dependencies failed if pip is a dependency and is updated in parallel to other dependencies (#6582).
  • Fix an issue where the names of extras were not normalized according to PEP 685 (#6541).
  • Fix an issue where sdist names were not normalized (#6621).
  • Fix an issue where invalid constraints, which are ignored, were only reported in a debug message instead of a warning (#6730).
  • Fix an issue where poetry shell was broken in git bash on Windows (#6560).

Docs

  • Rework the README and contribution docs (#6552).
  • Fix for inconsistent docs for multiple-constraint dependencies (#6604).
  • Rephrase plugin configuration (#6557).
  • Add a note about publishable repositories to publish (#6641).
  • Fix the path for lazy-loaded bash completion (#6656).
  • Fix a reference to the invalid option --require (#6672).
  • Add a PowerShell one-liner to the basic usage section (#6683).
  • Fix the minimum poetry version in the example for plugins (#6739).

poetry-core (1.3.2)

  • Add 3.11 to the list of available Python versions (#477).
  • Fix an issue where caret constraints of pre-releases with a major version of 0 resulted in an empty version range (#475).

poetry-plugin-export (^1.1.2)

  • Add support for exporting constraints.txt files (#128).
  • Fix an issue where a relative path passed via -o was not interpreted relative to the current working directory (#130).

[1.2.1] - 2022-09-16

Changed

  • Bump poetry-core to 1.2.0.
  • Bump poetry-plugin-export to ^1.0.7.

Fixed

... (truncated)

Commits
  • 7889f70 release: bump version to 1.3.2
  • 3a1ecbd docs: update for get-poetry.py removal
  • 4446ef1 ci: update skip job for 3.11 GA
  • 350882c docs: add clarification to virtualenvs.path
  • 2c24016 refactor(repository): always raise PackageNotFound in _get_page instead of re...
  • 619b661 performance: cache pages of PyPI repository in the same way as for legacy rep...
  • 914e0a8 [1.3] fix: as_uri() can only be applied to an absolute path (#7272)
  • 7859b60 ci: check lock file
  • 9a4bf9f release: bump version to 1.3.1
  • f8e24fc tests: make tests forward compatible with simplified marker simplification (#...
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Jan 11, 2023
Bumps [poetry](https://github.com/python-poetry/poetry) from 1.2.2 to 1.3.2.
- [Release notes](https://github.com/python-poetry/poetry/releases)
- [Changelog](https://github.com/python-poetry/poetry/blob/master/CHANGELOG.md)
- [Commits](python-poetry/poetry@1.2.2...1.3.2)

---
updated-dependencies:
- dependency-name: poetry
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/pip/dot-github/workflows/poetry-1.3.2 branch from 80f1a65 to 8674199 Compare January 13, 2023 01:51
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file python Pull requests that update Python code
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants