Skip to content

chore(deps): bump the deps-production group with 7 updates #227

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Nov 24, 2025
Merged

chore(deps): bump the deps-production group with 7 updates #227

merged 1 commit into from
Nov 24, 2025

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 24, 2025

Bumps the deps-production group with 7 updates:

Package From To
pymongo 4.15.3 4.15.4
annotated-doc 0.0.3 0.0.4
click 8.3.0 8.3.1
fastapi 0.121.1 0.121.3
pydantic-settings 2.11.0 2.12.0
redis 7.0.1 7.1.0
starlette 0.49.3 0.50.0

Updates pymongo from 4.15.3 to 4.15.4

Release notes

Sourced from pymongo's releases.

PyMongo 4.15.4

Community notes: https://www.mongodb.com/community/forums/t/pymongo-4-15-4-released/331292

Changelog

Sourced from pymongo's changelog.

Changes in Version 4.15.4 (2025/10/21)

Version 4.15.4 is a bug fix release.

  • Relaxed the callback type of :meth:~pymongo.asynchronous.client_session.AsyncClientSession.with_transaction to allow the broader Awaitable type rather than only Coroutine objects.
  • Added the missing Python 3.14 trove classifier to the package metadata.

Issues Resolved ...............

See the PyMongo 4.15.4 release notes in JIRA_ for the list of resolved issues in this release.

.. _PyMongo 4.15.4 release notes in JIRA: https://jira.mongodb.org/secure/ReleaseNote.jspa?projectId=10004&version=47237

Commits
  • 07d51b1 PYTHON-5639 Prep for 4.15.4 release (#2614)
  • 477217f [TASK]-[PYTHON-5623]: [v4.15] Change with_transaction callback return type to...
  • f3ea373 PYTHON-5624 - Add Python 3.14 trove classifier (#2593)
  • a5a50a8 BUMP 4.15.4.dev0
  • See full diff in compare view

Updates annotated-doc from 0.0.3 to 0.0.4

Release notes

Sourced from annotated-doc's releases.

0.0.4

Fixes

  • 👷 Switch to dynamic versioning with pdm build system. PR #19 by @​svlandeg.

Upgrades

Internal

Changelog

Sourced from annotated-doc's changelog.

0.0.4

Fixes

  • 👷 Switch to dynamic versioning with pdm build system. PR #19 by @​svlandeg.

Upgrades

Internal

Commits
  • a6b2d38 🔖 Release version 0.0.4
  • fa933ab 📝 Update release notes
  • 715f1ea 👷 Switch to dynamic versioning with pdm build system (#19)
  • bba5142 📝 Update release notes
  • ee5b2cf ➕ Add typing-extensions to test requirements for Python < 3.9 (#12)
  • 17c5fb8 📝 Update release notes
  • f57a403 ⬆ Bump ruff from 0.14.1 to 0.14.3 (#17)
  • 7dd21fb 📝 Update release notes
  • daef259 📝 Update release notes
  • 3ea0d95 ⬆ Bump actions/upload-artifact from 4 to 5 (#14)
  • Additional commits viewable in compare view

Updates click from 8.3.0 to 8.3.1

Release notes

Sourced from click's releases.

8.3.1

This is the Click 8.3.1 fix release, which fixes bugs but does not otherwise change behavior and should not result in breaking changes compared to the latest feature release.

PyPI: https://pypi.org/project/click/8.3.1/ Changes: https://click.palletsprojects.com/page/changes/#version-8-3-1 Milestone: https://github.com/pallets/click/milestone/28

  • Don't discard pager arguments by correctly using subprocess.Popen. #3039 #3055
  • Replace Sentinel.UNSET default values by None as they're passed through the Context.invoke() method. #3066 #3065 #3068
  • Fix conversion of Sentinel.UNSET happening too early, which caused incorrect behavior for multiple parameters using the same name. #3071 #3079
  • Fix rendering when prompt and confirm parameter prompt_suffix is empty. #3019 #3021
  • When Sentinel.UNSET is found during parsing, it will skip calls to type_cast_value. #3069 #3090
  • Hide Sentinel.UNSET values as None when looking up for other parameters through the context inside parameter callbacks. #3136 #3137
Changelog

Sourced from click's changelog.

Version 8.3.1

Released 2025-11-15

  • Don't discard pager arguments by correctly using subprocess.Popen. :issue:3039 :pr:3055
  • Replace Sentinel.UNSET default values by None as they're passed through the Context.invoke() method. :issue:3066 :issue:3065 :pr:3068
  • Fix conversion of Sentinel.UNSET happening too early, which caused incorrect behavior for multiple parameters using the same name. :issue:3071 :pr:3079
  • Hide Sentinel.UNSET values as None when looking up for other parameters through the context inside parameter callbacks. :issue:3136 :pr:3137
  • Fix rendering when prompt and confirm parameter prompt_suffix is empty. :issue:3019 :pr:3021
  • When Sentinel.UNSET is found during parsing, it will skip calls to type_cast_value. :issue:3069 :pr:3090
Commits
  • 1d038f2 release version 8.3.1
  • 03f3889 Fix Ruff UP038 warning (#3141)
  • 3867781 Fix Ruff UP038 warning
  • b91bb95 Provide altered context to callbacks to hide UNSET values as None (#3137)
  • 437e1e3 Temporarily provide a fake context to the callback to hide UNSET values as ...
  • ea70da4 Don't test using a file in docs/ (#3102)
  • e27b307 Make uv run --all-extras pyright --verifytypes click pass (#3072)
  • a92c573 Fix test_edit to work with BSD sed (#3129)
  • bd131e1 Fix test_edit to work with BSD sed
  • 0b5c6b7 Add Best practices section (#3127)
  • Additional commits viewable in compare view

Updates fastapi from 0.121.1 to 0.121.3

Release notes

Sourced from fastapi's releases.

0.121.3

Refactors

  • ♻️ Make the result of Depends() and Security() hashable, as a workaround for other tools interacting with these internal parts. PR #14372 by @​tiangolo.

Upgrades

Docs

0.121.2

Fixes

Docs

Translations

Commits

Updates pydantic-settings from 2.11.0 to 2.12.0

Release notes

Sourced from pydantic-settings's releases.

v2.12.0

What's Changed

New Contributors

Full Changelog: pydantic/pydantic-settings@v2.11.0...v2.12.0

Commits

Updates redis from 7.0.1 to 7.1.0

Release notes

Sourced from redis's releases.

7.1.0

Changes

🚀 New Features

  • Adding MSETEX command support. (#3823)
  • Adding CLAIM option to XREADGROUP command + unit tests (#3825)
  • Apply routing and response aggregation policies in OSS Cluster mode (#3834)

🧪 Experimental Features

  • Adding support for CAS/CAD commands. (#3837)
  • Adding support for HYBRID search. (#3813 #3843)

🔥 Breaking changes (in experimental features)

  • Replace default health check and failure detector with custom (#3822)

🐛 Bug Fixes

  • Add **options to parse functions for sentinel (#3831)
  • Generating unique command cache key (#3765)

🧰 Maintenance

  • Adding Redis 8.4 RC1 image to test matrix. (#3820)
  • Remove Python 3.9 support. Add Python 3.14 support. (#3814)
  • Sync readme with 7.0.1 and update lib version to latest stable released version - 7.0.1 (#3821)
  • Bump rojopolis/spellcheck-github-actions from 0.52.0 to 0.53.0 (#3827)
  • Bump actions/upload-artifact from 4 to 5 (#3828)
  • Bump github/codeql-action from 3 to 4 (#3829)
  • Fixing flaky tests (#3833 #3838)
  • Update 8.4 RC image tag to 8.4-RC1-pre.2 for pipeline test matrix (#3832)
  • Add missing f-string when returning an error. (#3841)
  • Adding latest 8.4 image to test matrix. Updating the Hybrid VSIM query format to be in sync with spec after srv issue was fixed. (#3843)
  • Expand cluster READ_COMMANDS with additional read-only commands and reorganize the list of commands by category (#3845)
  • Update Type Hints for List Command Parameters from str to KeyT (#3848)
  • Changing log level to be debug for failed maintenance notification enablement when enabled='auto' (#3851)
  • Added custom event handler section (#3853)
  • Changing current version to 8.4 as it is already GA (#3854)

We'd like to thank all the contributors who worked on this release! @​ShubhamKaudewar @​matthewwiese @​peperon @​vladvildanov @​petyaslavova

Commits
  • f7c1755 Changing current version to 8.4 as it is already GA (#3854)
  • 2235cc7 Added custom event handler section (#3853)
  • 8cc50a5 Changing log level to be debug for failed maintenance notification enablement...
  • d1769a2 #3612 Generating unique command cache key (#3765)
  • b49dce1 Update Type Hints for List Command Parameters from str to KeyT (#3848)
  • 46ff042 Expand cluster READ_COMMANDS with additional read-only commands and reorganiz...
  • dc47675 Updating lib version to 7.1.0 and added note in README that Python 3.9 suppor...
  • f026c1e Adding latest 8.4 image to test matrix. Updating the Hybrid VSIM query format...
  • a5ab18f Adding support for HYBRID search. (#3813)
  • e6fb505 Adding support for CAS/CAD commands. (#3837)
  • Additional commits viewable in compare view

Updates starlette from 0.49.3 to 0.50.0

Release notes

Sourced from starlette's releases.

Version 0.50.0

Removed

  • Drop Python 3.9 support #3061.

Full Changelog: Kludex/starlette@0.49.3...0.50.0

Changelog

Sourced from starlette's changelog.

0.50.0 (November 1, 2025)

  • Drop Python 3.9 support #3061.
Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the deps-production group with 7 updates
bf780f1 
Bumps the deps-production group with 7 updates:

| Package | From | To |
| --- | --- | --- |
| [pymongo](https://github.com/mongodb/mongo-python-driver) | `4.15.3` | `4.15.4` |
| [annotated-doc](https://github.com/fastapi/annotated-doc) | `0.0.3` | `0.0.4` |
| [click](https://github.com/pallets/click) | `8.3.0` | `8.3.1` |
| [fastapi](https://github.com/fastapi/fastapi) | `0.121.1` | `0.121.3` |
| [pydantic-settings](https://github.com/pydantic/pydantic-settings) | `2.11.0` | `2.12.0` |
| [redis](https://github.com/redis/redis-py) | `7.0.1` | `7.1.0` |
| [starlette](https://github.com/Kludex/starlette) | `0.49.3` | `0.50.0` |


Updates `pymongo` from 4.15.3 to 4.15.4
- [Release notes](https://github.com/mongodb/mongo-python-driver/releases)
- [Changelog](https://github.com/mongodb/mongo-python-driver/blob/master/doc/changelog.rst)
- [Commits](mongodb/mongo-python-driver@4.15.3...4.15.4)

Updates `annotated-doc` from 0.0.3 to 0.0.4
- [Release notes](https://github.com/fastapi/annotated-doc/releases)
- [Changelog](https://github.com/fastapi/annotated-doc/blob/main/release-notes.md)
- [Commits](fastapi/annotated-doc@0.0.3...0.0.4)

Updates `click` from 8.3.0 to 8.3.1
- [Release notes](https://github.com/pallets/click/releases)
- [Changelog](https://github.com/pallets/click/blob/main/CHANGES.rst)
- [Commits](pallets/click@8.3.0...8.3.1)

Updates `fastapi` from 0.121.1 to 0.121.3
- [Release notes](https://github.com/fastapi/fastapi/releases)
- [Commits](fastapi/fastapi@0.121.1...0.121.3)

Updates `pydantic-settings` from 2.11.0 to 2.12.0
- [Release notes](https://github.com/pydantic/pydantic-settings/releases)
- [Commits](pydantic/pydantic-settings@v2.11.0...v2.12.0)

Updates `redis` from 7.0.1 to 7.1.0
- [Release notes](https://github.com/redis/redis-py/releases)
- [Changelog](https://github.com/redis/redis-py/blob/master/CHANGES)
- [Commits](redis/redis-py@v7.0.1...v7.1.0)

Updates `starlette` from 0.49.3 to 0.50.0
- [Release notes](https://github.com/Kludex/starlette/releases)
- [Changelog](https://github.com/Kludex/starlette/blob/main/docs/release-notes.md)
- [Commits](Kludex/starlette@0.49.3...0.50.0)

---
updated-dependencies:
- dependency-name: pymongo
  dependency-version: 4.15.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: deps-production
- dependency-name: annotated-doc
  dependency-version: 0.0.4
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: deps-production
- dependency-name: click
  dependency-version: 8.3.1
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: deps-production
- dependency-name: fastapi
  dependency-version: 0.121.3
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: deps-production
- dependency-name: pydantic-settings
  dependency-version: 2.12.0
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: deps-production
- dependency-name: redis
  dependency-version: 7.1.0
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: deps-production
- dependency-name: starlette
  dependency-version: 0.50.0
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: deps-production
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update python code labels Nov 24, 2025
@dependabot dependabot bot requested a review from a team as a code owner November 24, 2025 02:27
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update python code labels Nov 24, 2025
@john-gom john-gom merged commit 543d0fc into main Nov 24, 2025
5 checks passed
@john-gom john-gom deleted the dependabot/pip/deps-production-55a922fcf9 branch November 24, 2025 08:49
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@john-gom john-gom john-gom approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python Pull requests that update python code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@john-gom