chore(deps): update all non-major dependencies by renovate[bot] · Pull Request #3397 · python-gitlab/python-gitlab · GitHub
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Footer
You can’t perform that action at this time.
This PR contains the following updates:
Note: The pre-commit manager in Renovate is not supported by the pre-commit maintainers or community. Please do not report any problems there, instead create a Discussion in the Renovate repository if you have any questions.
Release Notes
actions/stale (actions/stale)v10.3.0
Compare Source
psf/black (black)v26.5.1
Compare Source
Stable style- Fix unstable formatting of annotated assignments whose subscript annotation contains
- Preserve inline comments (including # type: ignore) immediately before a
Packagingan inline comment (e.g. x: list[ # pyright: ignore[...]) (#5130)
# fmt: skip line, avoiding AST equivalence failures (#5139)
- Correct the version in the published executables (#5137)
Documentation(#5124)
v26.5.0
Compare Source
Highlights- Add support for unpacking in comprehensions (PEP 798) and for lazy imports (PEP 810),
- Python 3.15 is now supported. Compiled wheels are not yet provided for Python 3.15, so
Stable styleboth new syntactic features in Python 3.15 (#5048)
performance may be slower than on existing Python versions. Wheels will be provided
once Python 3.15 is later in its release cycle. (#5127)
- Fix # fmt: skip being ignored in nested if expressions with parenthesized in
- Add syntactic support for Python 3.15 (#5048)
- Fix crash when an f-string follows a # fmt: off comment inside brackets (#5097)
- Preserve multiline compound statement headers when # fmt: skip is placed on the
Preview styleclauses (#4903)
colon line (#5117)
- Improve heuristics around whether blank lines should appear before, within and after
- Fix blank lines being removed between a function and a decorated class in .pyi stub
- Prevent string merger from creating unsplittable long lines when a pragma comment
Packaginggroups of same-name decorated functions (such as @overload groups) in .pyi stub
files (#5021)
files (#5092)
(e.g. # type: ignore) follows the closing bracket (#5096)
- Run CI on 3.15 (#5127)
Output- Improve parse error readability by showing multi-line output with an error pointer.
- Add SourceASTParseError to distinguish source parse failures from internal safety
Blackd(#5068)
errors, improving error reporting when Black's lenient parser accepts input that
ast.parse() rejects (#5080)
- Return HTTP 400 (Bad Request) for source parse failures instead of HTTP 500, keeping
IntegrationsHTTP 500 only for genuine internal safety errors (#5080)
- Added documentation for doctest formatting tools and updated the integrations index to
Documentationmatch (#4916)
- Use "Version X.Y.Z" headings in changelog for stable permalink anchors on ReadTheDocs
- Note in the editor integrations that the SublimeText sublack plugin is archived and
codecov/codecov-action (codecov/codecov-action)(#5063)
unmaintained (#5082)
v6.0.1
Compare Source
commitizen-tools/commitizen (commitizen)v4.16.2
Compare Source
v4.16.2 (2026-05-15)
Fixv4.16.1
Compare Source
v4.16.1 (2026-05-15)
Fixv4.16.0
Compare Source
v4.16.0 (2026-05-12)
Featv4.15.1
Compare Source
v4.15.1 (2026-05-06)
Fix- security: prevent command injection via shell=True (CWE-78) (#1941)
coveragepy/coveragepy (coverage)v7.14.0
Compare Source
Feature: now when running one of the reporting commands, if there are
parallel data files that need combining, they will be implicitly combined
before creating the report. There is no option to avoid the combination; let
us know if you have a use case that requires it. Thanks, Tim Hatch <pull 2162_>. Closes issue 1781.
Fix: the output from combine was too verbose, listing each file
considered. Now it shows a single line with the counts of files combined,
files skipped, and files with errors. The -q flag suppresses this line.
The old detailed lines are available with the new --debug=combine option.
Fix: running a Python file through a symlink now sets the sys.path correctly,
matching regular Python behavior. Fixes issue 2157_.
Fix: Collector.flush_data could fail with "RuntimeError: Set changed
size during iteration" when a tracer in another thread added a line to the
per-file set that add_lines (or add_arcs) was iterating. The values
passed to CoverageData are now snapshotted via dict.copy() and
set.copy(), which are atomic under the GIL. Thanks, Alex Vandiver <pull 2165_>_.
Fix: the soft keyword lazy is now bolded in HTML reports.
We are no longer testing eventlet support. Eventlet started issuing stern
deprecation warnings that break our tests. Our support code is still there.
.. _issue 1781: #1781
.. _issue 2157: #2157
.. _pull 2162: #2162
.. _pull 2165: #2165
.. _changes_7-13-5:
dessant/lock-threads (dessant/lock-threads)v6.0.1
Compare Source
Learn more about this release from the changelog.
maxbrunet/pre-commit-renovate (maxbrunet/pre-commit-renovate)v43.150.0
Compare Source
See https://github.com/renovatebot/renovate/releases/tag/43.150.0 for more changes
executablebooks/MyST-Parser (myst-parser)v5.1.0
Compare Source
✨ New Features- ✨ Add "alert" syntax extension for GFM alerts (e.g. > [!NOTE]), see by gh-user:chrisjsewell in gh-pr:1128
- ✨ Add "gfm_autolink" syntax extension for GFM autolinks, see by gh-user:chrisjsewell in gh-pr:1128
- ✨ Add myst_strikethrough_single_tilde config option to allow single tilde (~) for strikethrough by gh-user:chrisjsewell in gh-pr:1128
- ✨ Add myst_colon_fence_exact_match config option to require the closing colon fence to have exactly the same number of colons as the opening, see by gh-user:chrisjsewell in gh-pr:1128
👌 Improvements- 👌 Update myst_gfm_only mode to use the unified gfm_plugin, which now includes GFM autolinks, alerts, and improved strikethrough/tasklist handling by gh-user:chrisjsewell in gh-pr:1128
- 👌 Improve MathJax 4 compatibility for Sphinx 9 by gh-user:chrisjsewell in gh-pr:1110
- 👌 Stop directive-option parsing at colon fences, fixing nested colon fence directives by gh-user:chrisjsewell in gh-pr:1133
🐛 Bug Fixes- 🐛 Use docname instead of source path in warning locations by gh-user:chrisjsewell in gh-pr:1114
- 🐛 Correctly encode & in Markdown URLs by not HTML-escaping refuri by gh-user:chrisjsewell in gh-pr:1126
- 🐛 Fix RemovedInSphinx10Warning for inventory item iteration by gh-user:chrisjsewell in gh-pr:1129
- 🐛 Pin mdit-py-plugins>=0.6.1 for nested field list fix by gh-user:chrisjsewell in gh-pr:1134
⬆️ Dependency UpgradesFull Changelog: v5.0.0...v5.1.0
psf/requests (requests)v2.34.2
Compare Source
with MutableMapping and inferred dict types. Users calling
Request.headers.update() may need to narrow typing in their code. (#7441)
v2.34.1
Compare Source
Bugfixes
and Sequence. (#7436)
Request.headers typing to improve handling for users. (#7431)
for users. (#7437)
weren't being properly detected as Iterables. (#7433)
v2.34.0
Compare Source
Announcements
Requests 2.34.0 introduces inline types, replacing those provided by
typeshed. Public API types should be fully compatible with mypy, pyright,
and ty. We believe types are comprehensive but if you find issues, please
report them to the pinned tracking issue.
Special thanks to @bastimeyer, @cthoyt, @edgarrmondragon, and @srittau for
helping review and test the types ahead of the release. (#7272)
Improvements
security considerations. (#7310)
should be able to start testing prior to its release in October. (#7422)
Bugfixes
- Response.history no longer contains a reference to itself, preventing
- Requests no longer performs greedy matching on no_proxy domains. The
- Requests no longer incorrectly strips duplicate leading slashes in
getsentry/responses (responses)accidental looping when traversing the history list. (#7328)
proxy_bypass implementation has been updated with CPython's fix from
bpo-39057. (#7427)
URI paths. This should address user issues with specific presigned
URLs. Note the full fix requires urllib3 2.7.0+. (#7315)
v0.26.1
Compare Source
content_type is now used.
matching.
Configuration
📅 Schedule: (UTC)
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.
👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.
This PR was generated by Mend Renovate. View the repository job log.