Bump the workflows-dependencies group across 1 directory with 5 updates by dependabot[bot] · Pull Request #89 · statisticsnorway/ssb-konjunk

dependabot · 2025-03-01T03:36:00Z

Bumps the workflows-dependencies group with 5 updates in the /.github/workflows directory:

Package	From	To
pip	`24.3.1`	`25.0.1`
nox	`2024.10.9`	`2025.2.9`
nox-poetry	`1.0.3`	`1.2.0`
poetry	`1.8.4`	`2.1.1`
virtualenv	`20.28.0`	`20.29.2`

Updates pip from 24.3.1 to 25.0.1

Changelog

Sourced from pip's changelog.

25.0.1 (2025-02-09)

Bug Fixes

Fix an unsupported type annotation on Python 3.10 and earlier. ([#13181](https://github.com/pypa/pip/issues/13181) <https://github.com/pypa/pip/issues/13181>_)

Fix a regression where truststore would never be used while installing build dependencies. ([#13186](https://github.com/pypa/pip/issues/13186) <https://github.com/pypa/pip/issues/13186>_)

25.0 (2025-01-26)

Deprecations and Removals

Deprecate the no-python-version-warning flag as it has long done nothing since Python 2 support was removed in pip 21.0. ([#13154](https://github.com/pypa/pip/issues/13154) <https://github.com/pypa/pip/issues/13154>_)

Features

Prefer to display :pep:639 License-Expression in pip show if metadata version is at least 2.4. ([#13112](https://github.com/pypa/pip/issues/13112) <https://github.com/pypa/pip/issues/13112>_)

Support :pep:639 License-Expression and License-File metadata fields in JSON output. pip inspect and pip install --report now emit license_expression and license_file fields in the metadata object, if the corresponding fields are present in the installed METADATA file. ([#13134](https://github.com/pypa/pip/issues/13134) <https://github.com/pypa/pip/issues/13134>_)

Files in the network cache will inherit the read/write permissions of pip's cache directory (in addition to the current user retaining read/write access). This enables a single cache to be shared among multiple users. ([#11012](https://github.com/pypa/pip/issues/11012) <https://github.com/pypa/pip/issues/11012>_)

Return the size, along with the number, of files cleared on pip cache purge and pip cache remove ([#12176](https://github.com/pypa/pip/issues/12176) <https://github.com/pypa/pip/issues/12176>_)

Cache python-requires checks while filtering potential installation candidates. ([#13128](https://github.com/pypa/pip/issues/13128) <https://github.com/pypa/pip/issues/13128>_)

Optimize package collection by avoiding unnecessary URL parsing and other processing. ([#13132](https://github.com/pypa/pip/issues/13132) <https://github.com/pypa/pip/issues/13132>_)

Bug Fixes

Reorder the encoding detection when decoding a requirements file, relying on UTF-8 over the locale encoding by default, matching the documented behaviour. ([#12771](https://github.com/pypa/pip/issues/12771) <https://github.com/pypa/pip/issues/12771>_)

The pip version self check is disabled on EXTERNALLY-MANAGED environments. ([#11820](https://github.com/pypa/pip/issues/11820) <https://github.com/pypa/pip/issues/11820>_)

Fix a security bug allowing a specially crafted wheel to execute code during installation. ([#13079](https://github.com/pypa/pip/issues/13079) <https://github.com/pypa/pip/issues/13079>_)

The inclusion of packaging 24.2 changes how pre-release specifiers with < and > behave. Including a pre-release version with these specifiers now implies accepting pre-releases (e.g., <2.0dev can include 1.0rc1). To avoid implying pre-releases, avoid specifying them (e.g., use <2.0). The exception is !=, which never implies pre-releases. ([#13163](https://github.com/pypa/pip/issues/13163) <https://github.com/pypa/pip/issues/13163>_)

The --cert and --client-cert command-line options are now respected while installing build dependencies. Consequently, the private _PIP_STANDALONE_CERT environment variable is no longer used. ([#5502](https://github.com/pypa/pip/issues/5502) <https://github.com/pypa/pip/issues/5502>_)

... (truncated)

Commits

bc7c88c Bump for release
ebd0a52 Don't pass --cert to build subprocesses unless also given on CLI
aea8629 Fix locate_file() type hints for older Pythons
e612988 Add build-project.py compatibility note
202344e Update the release process docs
dc696c2 Patch out EXTERNALLY-MANAGED for self-check tests (#13179)
f47b587 Bump for release
74a7f33 Update AUTHORS.txt
a008888 Merge pull request #13171 from pypa/dependabot/github_actions/github-actions-...
d265fb7 Merge pull request #13174 from ichard26/changelog
Additional commits viewable in compare view

Updates nox from 2024.10.9 to 2025.2.9

Release notes

Sourced from nox's releases.

2025.02.09 💝

This release improves PEP 723 support, including adding dependencies to the noxfile itself ("plugins"). It adds the long-awaited "requires" option, allowing sessions to require other sessions. And it brings further improvements to the pyproject.toml support, including helpers for dependency-groups and Python version lists.

We'd like to thank the following folks who contributed to this release:

@btemplep (first contribution)

@chirizxc (first contribution)

@davidhewitt (first contribution)

@gschaffner (first contribution)

@henryiii

@oliversen (first contribution)

New features:

Support PEP 723 noxfiles by @henryiii in wntrblm/nox#881

Expose main as nox.main by @henryiii in wntrblm/nox#878 (followup fix: wntrblm/nox#884)

Support session dependencies (requires) by @gschaffner in wntrblm/nox#631

Helper to get dependency-groups by @henryiii in wntrblm/nox#876

Helper to get the Python listing by @henryiii in wntrblm/nox#877

Add a "pyproject.toml" default for load_toml by @henryiii in wntrblm/nox#917

Bugfixes:

Correct virtualenv bin dir under mingw python by @davidhewitt in wntrblm/nox#901

Allow pypy-* to be used as well for pypy* (matching GHA) by @henryiii in wntrblm/nox#913

Don't trigger a background update process for virtualenv by @henryiii in wntrblm/nox#918

Include encoding for consistent behavior (default in Python 3.15+) by @henryiii in wntrblm/nox#891

Outer env issues fixed by @henryiii in wntrblm/nox#874

Support noxfile being a symlink by @henryiii in wntrblm/nox#829

Drop PyPy from the default list for the GitHub Action by @henryiii in wntrblm/nox#916

Bugfixes related to uv support:

Catch PermissionError from popen when UV is not installed by @btemplep in wntrblm/nox#908

Use uv python install only with uv backend by @oliversen in wntrblm/nox#900

Handle "uvx" like "uv" by @henryiii in wntrblm/nox#920

Support broken uv (via pyenv) by @henryiii in wntrblm/nox#922

Tox-to-nox script:

Drop support for tox 3 by @henryiii in wntrblm/nox#910

Switch pkgutil for importlib-resources by @henryiii in wntrblm/nox#887

Correctly separate command-line arguments by @chirizxc in wntrblm/nox#906

Improved noxfile validation:

Error if invalid reuse_venv set by @henryiii in wntrblm/nox#872

Error with helpful message if invalid option is set via nox.options by @henryiii in wntrblm/nox#871 (followup fix: wntrblm/nox#921)

Validate entries in nox.config, too, using attrs by @henryiii in wntrblm/nox#880

... (truncated)

Changelog

Sourced from nox's changelog.

Changelog

2025.02.09

This release improves PEP 723 support, including adding dependencies to the noxfile itself ("plugins"). It adds the long-awaited "requires" option, allowing sessions to require other sessions. And it brings further improvements to the pyproject.toml support, including helpers for dependency-groups and Python version lists.

We'd like to thank the following folks who contributed to this release:

@btemplep (first contribution)

@chirizxc (first contribution)

@davidhewitt (first contribution)

@gschaffner (first contribution)

@henryiii

@oliversen (first contribution)

New features:

Support PEP 723 noxfiles by @henryiii in wntrblm/nox#881

Expose main as nox.main by @henryiii in wntrblm/nox#878 (followup fix: wntrblm/nox#884)

Support session dependencies (requires) by @gschaffner in wntrblm/nox#631

Helper to get dependency-groups by @henryiii in wntrblm/nox#876

Helper to get the Python listing by @henryiii in wntrblm/nox#877

Add a "pyproject.toml" default for load_toml by @henryiii in wntrblm/nox#917

Bugfixes:

Correct virtualenv bin dir under mingw python by @davidhewitt in wntrblm/nox#901

Allow pypy-* to be used as well for pypy* (matching GHA) by @henryiii in wntrblm/nox#913

Don't trigger a background update process for virtualenv by @henryiii in wntrblm/nox#918

Include encoding for consistent behavior (default in Python 3.15+) by @henryiii in wntrblm/nox#891

Outer env issues fixed by @henryiii in wntrblm/nox#874

Support noxfile being a symlink by @henryiii in wntrblm/nox#829

Drop PyPy from the default list for the GitHub Action by @henryiii in wntrblm/nox#916

Bugfixes related to uv support:

Catch PermissionError from popen when UV is not installed by @btemplep in wntrblm/nox#908

Use uv python install only with uv backend by @oliversen in wntrblm/nox#900

Handle "uvx" like "uv" by @henryiii in wntrblm/nox#920

Support broken uv (via pyenv) by @henryiii in wntrblm/nox#922

Tox-to-nox script:

Drop support for tox 3 by @henryiii in wntrblm/nox#910

Switch pkgutil for importlib-resources by @henryiii in wntrblm/nox#887

Correctly separate command-line arguments by @chirizxc in wntrblm/nox#906

Improved noxfile validation:

Error if invalid reuse_venv set by @henryiii in wntrblm/nox#872

... (truncated)

Commits

a74da2c Release 2025.02.09
433ad2f docs: prepare for first 2025 release (#923)
b92b294 ci: trusted publisher (#924)
ae83927 ci: add some suggestions from zizmor (#925)
c628755 fix: support broken uv (via pyenv) (#922)
97e5a38 fix: don't over-validate lists (#921)
97e0fad fix: handle uvx like uv (#920)
223c8c6 fix: add a pyproject.toml default for load_toml (#917)
101d7c4 fix(gha): drop PyPy from the default list for the GitHub Action (#916)
beab6c3 feat: support PEP 723 noxfiles (#881)
Additional commits viewable in compare view

Updates nox-poetry from 1.0.3 to 1.2.0

Release notes

Sourced from nox-poetry's releases.

v1.2.0

Changes

Release 1.2.0 (#1316) @edgarrmondragon

Update release workflow (#1315) @edgarrmondragon

Use build PEP 517 build frontend to build the package (#1303) @edgarrmondragon

Enable FIPS compliance by calling blake2b with usedforsecurity=False (#1307) @davemcphee

Use Python 3.13 and Ubuntu 24.04 for RTD build (#1309) @edgarrmondragon

Drop support for Python 3.8 (#1302) @edgarrmondragon

Update tested Poetry versions (#1295) @edgarrmondragon

Cancel in-progress runs for the same branch or in retries of the same workflow run (#1286) @edgarrmondragon

Trigger test workflow only in PRs and pushes to main (#1282) @edgarrmondragon

Fix Dependabot group patterns (#1281) @edgarrmondragon

chore: Group dependabot updates (#1278) @edgarrmondragon

📦 Dependencies

⬆️ Bump the lockfile-dev group with 2 updates (#1314) @dependabot[bot]

Bump actions/upload-artifact from 4.6.0 to 4.6.1 in the actions group (#1312) @dependabot[bot]

Bump sphinx from 8.2.0 to 8.2.1 in /docs in the docs group (#1313) @dependabot[bot]

⬆️ Bump the lockfile-dev group across 1 directory with 6 updates (#1311) @dependabot[bot]

⬆️ Bump sphinx from 8.1.3 to 8.2.0 in /docs in the docs group (#1304) @dependabot[bot]

⬆️ Bump actions/cache from 4.2.0 to 4.2.1 in the actions group (#1305) @dependabot[bot]

⬆️ Bump the lockfile-runtime group across 1 directory with 2 updates (#1297) @dependabot[bot]

Bump myst-parser from 4.0.0 to 4.0.1 in /docs in the docs group (#1299) @dependabot[bot]

Bump poetry from 2.0.1 to 2.1.1 in /.github/workflows in the ci group (#1301) @dependabot[bot]

⬆️ [dev]: Bump safety from 3.2.14 to 3.3.0 in the lockfile-dev group (#1300) @dependabot[bot]

Bump the actions group across 1 directory with 4 updates (#1290) @dependabot[bot]

⬆️ [dev]: Bump the lockfile-dev group across 1 directory with 6 updates (#1293) @dependabot[bot]

Bump the ci group across 1 directory with 3 updates (#1296) @dependabot[bot]

Bump the actions group with 8 updates (#1285) @dependabot[bot]

Bump the ci group in /.github/workflows with 3 updates (#1283) @dependabot[bot]

⬆️ Bump the lockfile-runtime group with 6 updates (#1280) @dependabot[bot]

Bump the docs group in /docs with 3 updates (#1284) @dependabot[bot]

⬆️ Bump the lockfile-dev group with 23 updates (#1279) @dependabot[bot]

⬆️ [dev]: Bump charset-normalizer from 3.3.2 to 3.4.1 (#1238) @dependabot[bot]

⬆️ [dev]: Bump certifi from 2024.8.30 to 2024.12.14 (#1240) @dependabot[bot]

Bump virtualenv from 20.26.3 to 20.29.1 in /.github/workflows (#1235) @dependabot[bot]

⬆️ [dev]: Bump rich from 13.9.2 to 13.9.4 (#1236) @dependabot[bot]

⬆️ [dev]: Bump click from 8.1.7 to 8.1.8 (#1237) @dependabot[bot]

Bump actions/setup-python from 4.6.1 to 5.3.0 (#1233) @dependabot[bot]

v1.1.0

Changes

Features

Support Poetry 2.0 and PEP 621 (#1223) @edgarrmondragon

feat: add support for tags in session decorator (#1220) @mariuswinger

... (truncated)

Commits

b9b6dcf 🔖 Release 1.2.0 (#1316)
0afa261 Update release workflow (#1315)
43abbd4 Merge pull request #1314 from cjolowicz/dependabot/pip/lockfile-dev-9a05e95988
33fd3bf ⬆️ Bump the lockfile-dev group with 2 updates
c6a024a Merge pull request #1312 from cjolowicz/dependabot/github_actions/actions-19a...
d4df64e Merge pull request #1313 from cjolowicz/dependabot/pip/docs/docs-13bf812558
d4e3e1c Bump sphinx from 8.2.0 to 8.2.1 in /docs in the docs group
698b427 Bump actions/upload-artifact from 4.6.0 to 4.6.1 in the actions group
af0c06b Merge pull request #1311 from cjolowicz/dependabot/pip/lockfile-dev-c3028c24da
a836160 ⬆️ Bump the lockfile-dev group across 1 directory with 6 updates
Additional commits viewable in compare view

Updates poetry from 1.8.4 to 2.1.1

Release notes

Sourced from poetry's releases.

2.1.1

Fixed

Fix an issue where poetry env use python does not choose the Python from the PATH (#10187).

poetry-core (2.1.1)

Fix an issue where simplifying a python_version marker resulted in an invalid marker (#838).

2.1.0

Added

Make build command build-system agnostic (#10059, #10092).

Add a --config-settings option to poetry build (#10059).

Add support for defining config-settings when building dependencies (#10129).

Add (experimental) commands to manage Python installations (#10112).

Use findpython to find the Python interpreters (#10097).

Add a --no-truncate option to poetry show (#9580).

Re-add support for passwords with empty usernames (#10088).

Add better error messages (#10053, #10065, #10126, #10127, #10132).

Changed

poetry new defaults to "src" layout by default (#10135).

Improve performance of locking dependencies (#10111, #10114, #10138, #10146).

Deprecate adding sources without specifying --priority (#10134).

Fixed

Fix an issue where global options were not handled correctly when positioned after command options (#10021, #10067, #10128).

Fix an issue where building a dependency from source failed because of a conflict between build-system dependencies that were not required for the target environment (#10048).

Fix an issue where poetry init was not able to find a package on PyPI while adding dependencies interactively (#10055).

Fix an issue where the @latest descriptor was incorrectly passed to the core requirement parser (#10069).

Fix an issue where Boolean environment variables set to True (in contrast to true) were interpreted as false (#10080).

Fix an issue where poetry env activate reported a misleading error message (#10087).

Fix an issue where adding an optional dependency with poetry add --optional would not correctly update the lock file (#10076).

Fix an issue where pip was not installed/updated before other dependencies resulting in a race condition (#10102).

Fix an issue where Poetry freezes when multiple threads attempt to unlock the keyring simultaneously (#10062).

Fix an issue where markers with extras were not locked correctly (#10119).

Fix an issue where self-referential extras were not resolved correctly (#10106).

Fix an issue where Poetry could not be run from a zipapp (#10074).

Fix an issue where installation failed with a permission error when using the system environment as a user without write access to system site packages (#9014).

Fix an issue where a version of a dependency that is not compatible with the project's python constraint was locked. (#10141).

Fix an issue where Poetry wrongly reported that the current project's supported Python range is not compatible with some of the required packages Python requirement (#10157).

Fix an issue where the requested extras of a dependency were ignored if the same dependency (with same extras) was specified in multiple groups (#10158).

Docs

Sort commands by name in the CLI reference (#10035).

Add missing documentation for env commands (#10027).

... (truncated)

Changelog

Sourced from poetry's changelog.

[2.1.1] - 2025-02-16

Fixed

Fix an issue where poetry env use python does not choose the Python from the PATH (#10187).

poetry-core (2.1.1)

Fix an issue where simplifying a python_version marker resulted in an invalid marker (#838).

[2.1.0] - 2025-02-15

Added

Make build command build-system agnostic (#10059, #10092).

Add a --config-settings option to poetry build (#10059).

Add support for defining config-settings when building dependencies (#10129).

Add (experimental) commands to manage Python installations (#10112).

Use findpython to find the Python interpreters (#10097).

Add a --no-truncate option to poetry show (#9580).

Re-add support for passwords with empty usernames (#10088).

Add better error messages (#10053, #10065, #10126, #10127, #10132).

Changed

poetry new defaults to "src" layout by default (#10135).

Improve performance of locking dependencies (#10111, #10114, #10138, #10146).

Deprecate adding sources without specifying --priority (#10134).

Fixed

Fix an issue where global options were not handled correctly when positioned after command options (#10021, #10067, #10128).

Fix an issue where building a dependency from source failed because of a conflict between build-system dependencies that were not required for the target environment (#10048).

Fix an issue where poetry init was not able to find a package on PyPI while adding dependencies interactively (#10055).

Fix an issue where the @latest descriptor was incorrectly passed to the core requirement parser (#10069).

Fix an issue where Boolean environment variables set to True (in contrast to true) were interpreted as false (#10080).

Fix an issue where poetry env activate reported a misleading error message (#10087).

Fix an issue where adding an optional dependency with poetry add --optional would not correctly update the lock file (#10076).

Fix an issue where pip was not installed/updated before other dependencies resulting in a race condition (#10102).

... (truncated)

Commits

6e61c8b release: bump version to 2.1.1
b0cfe12 chore: update poetry-core (#10188)
1791aa4 fix "env use python" to use Python in PATH (#10187)
36e1c63 release: bump version to 2.1.0
0d2c606 chore: update dependencies and actions (#10182)
3986d76 Fix: Documentation/help inconsistency. (#10173)
2d59bf6 --no-truncate flag in show command (#9580)
8a1ed35 feat(cli): introduce python management commands (#10112)
4b91883 chore: update cirrus.ci image (#10175)
26a6b8a [pre-commit.ci] pre-commit autoupdate (#10168)
Additional commits viewable in compare view

Updates virtualenv from 20.28.0 to 20.29.2

Release notes

Sourced from virtualenv's releases.

20.29.2

What's Changed

release 20.29.1 by @gaborbernat in pypa/virtualenv#2828

Remove old virtualenv wheel by @gaborbernat in pypa/virtualenv#2842

Bump pip to 25.0.1 by @gaborbernat in pypa/virtualenv#2843

Full Changelog: pypa/virtualenv@20.29.1...20.29.2

20.29.1

What's Changed

release 20.29.0 by @gaborbernat in pypa/virtualenv#2824

Simplify Solution to --python command-line flag precedence by @DK96-OS in pypa/virtualenv#2826

Change PyInfo cache versioning mechanism by @robsdedude in pypa/virtualenv#2827

New Contributors

@DK96-OS made their first contribution in pypa/virtualenv#2826

Full Changelog: pypa/virtualenv@20.29.0...20.29.1

20.29.0

What's Changed

release 20.28.1 by @gaborbernat in pypa/virtualenv#2818

Makes --python command-line flag take precedence over env var by @filiplajszczak in pypa/virtualenv#2821

Add free-threaded Python support by @robsdedude in pypa/virtualenv#2809

Upgrade embeded setuptools by @gaborbernat in pypa/virtualenv#2823

New Contributors

@filiplajszczak made their first contribution in pypa/virtualenv#2821

@robsdedude made their first contribution in pypa/virtualenv#2809

Full Changelog: pypa/virtualenv@20.28.1...20.29.0

20.28.1

What's Changed

release 20.28.0 by @gaborbernat in pypa/virtualenv#2807

Skip tcsh tests on broken tcsh versions by @gaborbernat in pypa/virtualenv#2817

Full Changelog: pypa/virtualenv@20.28.0...20.28.1

Changelog

Sourced from virtualenv's changelog.

v20.29.2 (2025-02-10)

Bugfixes - 20.29.2
- Remove old virtualenv wheel from the source distribution - by :user:`gaborbernat`. (:issue:`2841`)
- Upgrade embedded wheel pip to ``25.0.1`` from ``24.3.1`` - by :user:`gaborbernat`. (:issue:`2843`)
v20.29.1 (2025-01-17)
Bugfixes - 20.29.1
Fix PyInfo cache incompatibility warnings - by :user:robsdedude. (:issue:2827)

v20.29.0 (2025-01-15)

Features - 20.29.0
- Add support for selecting free-threaded Python interpreters, e.g., `python3.13t`. (:issue:`2809`)
Bugfixes - 20.29.0
Upgrade embedded wheels:

setuptools to 75.8.0 from 75.6.0 (:issue:2823)

v20.28.1 (2025-01-02)

Bugfixes - 20.28.1
- Skip tcsh tests on broken tcsh versions - by :user:`gaborbernat`. (:issue:`2814`)

Commits

ca670cd release 20.29.2
a2d2c3e Merge pull request #2843 from gaborbernat/bump-2-10
6203457 Merge pull request #2842 from gaborbernat/remove-whl
d8a68e6 Bump pip to 25.0.1
7b8fde4 Remove old virtualenv wheel
cb02b4f Merge pull request #2837 from pypa/pre-commit-ci-update-config
8332db8 [pre-commit.ci] pre-commit autoupdate
192cef7 [pre-commit.ci] pre-commit autoupdate (#2833)
a6a5c45 [pre-commit.ci] pre-commit autoupdate (#2830)
d409f6a release 20.29.1 (#2828)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the workflows-dependencies group with 5 updates in the /.github/workflows directory: | Package | From | To | | --- | --- | --- | | [pip](https://github.com/pypa/pip) | `24.3.1` | `25.0.1` | | [nox](https://github.com/wntrblm/nox) | `2024.10.9` | `2025.2.9` | | [nox-poetry](https://github.com/cjolowicz/nox-poetry) | `1.0.3` | `1.2.0` | | [poetry](https://github.com/python-poetry/poetry) | `1.8.4` | `2.1.1` | | [virtualenv](https://github.com/pypa/virtualenv) | `20.28.0` | `20.29.2` | Updates `pip` from 24.3.1 to 25.0.1 - [Changelog](https://github.com/pypa/pip/blob/main/NEWS.rst) - [Commits](pypa/pip@24.3.1...25.0.1) Updates `nox` from 2024.10.9 to 2025.2.9 - [Release notes](https://github.com/wntrblm/nox/releases) - [Changelog](https://github.com/wntrblm/nox/blob/main/CHANGELOG.md) - [Commits](wntrblm/nox@2024.10.09...2025.02.09) Updates `nox-poetry` from 1.0.3 to 1.2.0 - [Release notes](https://github.com/cjolowicz/nox-poetry/releases) - [Commits](cjolowicz/nox-poetry@v1.0.3...v1.2.0) Updates `poetry` from 1.8.4 to 2.1.1 - [Release notes](https://github.com/python-poetry/poetry/releases) - [Changelog](https://github.com/python-poetry/poetry/blob/main/CHANGELOG.md) - [Commits](python-poetry/poetry@1.8.4...2.1.1) Updates `virtualenv` from 20.28.0 to 20.29.2 - [Release notes](https://github.com/pypa/virtualenv/releases) - [Changelog](https://github.com/pypa/virtualenv/blob/main/docs/changelog.rst) - [Commits](pypa/virtualenv@20.28.0...20.29.2) --- updated-dependencies: - dependency-name: pip dependency-type: direct:production update-type: version-update:semver-major dependency-group: workflows-dependencies - dependency-name: nox dependency-type: direct:production update-type: version-update:semver-major dependency-group: workflows-dependencies - dependency-name: nox-poetry dependency-type: direct:production update-type: version-update:semver-minor dependency-group: workflows-dependencies - dependency-name: poetry dependency-type: direct:production update-type: version-update:semver-major dependency-group: workflows-dependencies - dependency-name: virtualenv dependency-type: direct:production update-type: version-update:semver-minor dependency-group: workflows-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>

…s-dependencies-743578c882

lbissb

ok

dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Mar 1, 2025

Merge branch 'main' into dependabot/pip/dot-github/workflows/workflow…

d69b09c

…s-dependencies-743578c882

lbissb approved these changes Feb 12, 2026

View reviewed changes

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump the workflows-dependencies group across 1 directory with 5 updates#89

Bump the workflows-dependencies group across 1 directory with 5 updates#89
dependabot[bot] wants to merge 2 commits intomainfrom
dependabot/pip/dot-github/workflows/workflows-dependencies-743578c882

dependabot bot commented on behalf of github Mar 1, 2025

v20.29.1 (2025-01-17)

Uh oh!

lbissb left a comment

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

dependabot bot commented on behalf of github Mar 1, 2025

25.0.1 (2025-02-09)

Bug Fixes

25.0 (2025-01-26)

Deprecations and Removals

Features

Bug Fixes

2025.02.09 💝

Changelog

2025.02.09

v1.2.0

Changes

📦 Dependencies

v1.1.0

Changes

Features

2.1.1

Fixed

poetry-core (2.1.1)

2.1.0

Added

Changed

Fixed

Docs

[2.1.1] - 2025-02-16

Fixed

poetry-core (2.1.1)

[2.1.0] - 2025-02-15

Added

Changed

Fixed

20.29.2

What's Changed

20.29.1

What's Changed

New Contributors

20.29.0

What's Changed

New Contributors

20.28.1

What's Changed

v20.29.2 (2025-02-10)

v20.29.1 (2025-01-17)

v20.29.0 (2025-01-15)

v20.28.1 (2025-01-02)

Uh oh!

lbissb left a comment

Choose a reason for hiding this comment

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

poetry-core (`2.1.1`)

poetry-core (`2.1.1`)