Bump the pip-minor-patch group across 1 directory with 15 updates

[dependabot]

Bumps the pip-minor-patch group with 15 updates in the / directory:

Package	From	To
uvicorn	0.29.0	0.30.3
aiohttp	3.9.5	3.10.0
sentry-sdk	2.0.1	2.12.0
alembic	1.13.1	1.13.2
icalendar	5.0.12	5.0.13
aiosmtplib	3.0.1	3.0.2
email-validator	2.1.1	2.2.0
jinja2	3.1.3	3.1.4
redis	5.0.4	5.0.8
flake8	7.0.0	7.1.0
mypy	1.10.0	1.11.1
pytest	8.2.0	8.3.2
coverage	7.5.0	7.6.0
pytest-asyncio	0.23.6	0.23.8
ruff	0.4.2	0.5.5

Updates uvicorn from 0.29.0 to 0.30.3

Release notes

Sourced from uvicorn's releases.

Version 0.30.3

Fixed

• Suppress KeyboardInterrupt from CLI and programmatic usage (#2384)
• ClientDisconnect inherits from OSError instead of IOError (#2393)

---

Full Changelog: encode/uvicorn@0.30.2...0.30.3

0.30.2

Added

• Add reason support to websocket.disconnect event (#2324)

Fixed

• Iterate subprocesses in-place on the process manager (#2373)

---

Full Changelog: encode/uvicorn@0.30.1...0.30.2

Version 0.30.1

Fixed

• Allow horizontal tabs \t in response header values (#2345)

---

Full Changelog: encode/uvicorn@0.30.0...0.30.1

Version 0.30.0

Added

• New multiprocess manager (#2183)
• Allow ConfigParser or a io.IO[Any] on log_config (#1976)

Fixed

• Suppress side effects of signal propagation (#2317)
• Send content-length header on 5xx (#2304)

Deprecated

• Deprecate the uvicorn.workers module (#2302)

---

Full Changelog: encode/uvicorn@0.29.0...0.30.0

Changelog

Sourced from uvicorn's changelog.

0.30.3 (2024-07-20)

Fixed

• Suppress KeyboardInterrupt from CLI and programmatic usage (#2384)
• ClientDisconnect inherits from OSError instead of IOError (#2393)

0.30.2 (2024-07-20)

Added

• Add reason support to websocket.disconnect event (#2324)

Fixed

• Iterate subprocesses in-place on the process manager (#2373)

0.30.1 (2024-06-02)

Fixed

• Allow horizontal tabs \t in response header values (#2345)

0.30.0 (2024-05-28)

Added

• New multiprocess manager (#2183)
• Allow ConfigParser or a io.IO[Any] on log_config (#1976)

Fixed

• Suppress side-effects of signal propagation (#2317)
• Send content-length header on 5xx (#2304)

Deprecated

• Deprecate the uvicorn.workers module (#2302)

Commits

• 5bf788f Version 0.30.3 (#2395)
• 8f4c8a7 Add 100% clean coverage (#2394)
• 9baded3 Bump the python-packages group with 9 updates (#2376)
• 9279825 ClientDisconnect inherits from OSError instead of IOError (#2393)
• 875f6c6 Suppress KeyboardInterrupt from CLI and programmatic usage (#2384)
• ca24e1b Version 0.30.2 (#2380)
• c23cd24 Iterate subprocesses in-place (#2373)
• d79f285 docs(readme): add granian as an alternative (#2359)
• 4e9f48d Add reason support on WebSocketDisconnectEvent (#2324)
• 44a3071 Version 0.30.1 (#2349)
• Additional commits viewable in compare view

Updates aiohttp from 3.9.5 to 3.10.0

Release notes

Sourced from aiohttp's releases.

3.10.0

Bug fixes

• Fixed server response headers for Content-Type and Content-Encoding for static compressed files -- by :user:steverep.

  Server will now respond with a Content-Type appropriate for the compressed file (e.g. "application/gzip"), and omit the Content-Encoding header. Users should expect that most clients will no longer decompress such responses by default.

  Related issues and pull requests on GitHub: #4462.

• Fixed duplicate cookie expiration calls in the CookieJar implementation

  Related issues and pull requests on GitHub: #7784.

• Adjusted FileResponse to check file existence and access when preparing the response -- by :user:steverep.

  The :py:class:~aiohttp.web.FileResponse class was modified to respond with 403 Forbidden or 404 Not Found as appropriate. Previously, it would cause a server error if the path did not exist or could not be accessed. Checks for existence, non-regular files, and permissions were expected to be done in the route handler. For static routes, this now permits a compressed file to exist without its uncompressed variant and still be served. In addition, this changes the response status for files without read permission to 403, and for non-regular files from 404 to 403 for consistency.

  Related issues and pull requests on GitHub: #8182.

• Fixed AsyncResolver to match ThreadedResolver behavior -- by :user:bdraco.

  On system with IPv6 support, the :py:class:~aiohttp.resolver.AsyncResolver would not fallback to providing A records when AAAA records were not available. Additionally, unlike the :py:class:~aiohttp.resolver.ThreadedResolver, the :py:class:~aiohttp.resolver.AsyncResolver did not handle link-local addresses correctly.

... (truncated)

Changelog

Sourced from aiohttp's changelog.

3.10.0 (2024-07-30)

Bug fixes

• Fixed server response headers for Content-Type and Content-Encoding for static compressed files -- by :user:steverep.

  Server will now respond with a Content-Type appropriate for the compressed file (e.g. "application/gzip"), and omit the Content-Encoding header. Users should expect that most clients will no longer decompress such responses by default.

  Related issues and pull requests on GitHub: :issue:4462.

• Fixed duplicate cookie expiration calls in the CookieJar implementation

  Related issues and pull requests on GitHub: :issue:7784.

• Adjusted FileResponse to check file existence and access when preparing the response -- by :user:steverep.

  The :py:class:~aiohttp.web.FileResponse class was modified to respond with 403 Forbidden or 404 Not Found as appropriate. Previously, it would cause a server error if the path did not exist or could not be accessed. Checks for existence, non-regular files, and permissions were expected to be done in the route handler. For static routes, this now permits a compressed file to exist without its uncompressed variant and still be served. In addition, this changes the response status for files without read permission to 403, and for non-regular files from 404 to 403 for consistency.

  Related issues and pull requests on GitHub: :issue:8182.

• Fixed AsyncResolver to match ThreadedResolver behavior -- by :user:bdraco.

  On system with IPv6 support, the :py:class:~aiohttp.resolver.AsyncResolver would not fallback to providing A records when AAAA records were not available.

... (truncated)

Commits

• 7f29851 Release 3.10.0 (attempt 2) (#8552)
• fc201e8 Release 3.10.0 (#8550)
• 305f67a Release 3.10.0rc0 (#8545)
• ed8de3a [PR #8541/a561fa99 backport][3.10] Cleanup for #8495 (#8544)
• df57b9f [3.10] Handle 403 and 404 issues in FileResponse class (#8538) (#8539)
• 3baa6de [PR #8535/7108d646 backport][3.10] Small speed up to cookiejar filter_cookies...
• 5621ecf Bump pytest from 8.3.1 to 8.3.2 (#8536)
• 9b9cec2 Release 3.10.0b1 (#8533)
• 088f734 [3.10] Downgrade upload/download artifact to v3 to fix CI (#8532)
• 948a4c5 Release 3.10.0b0 (#8531)
• Additional commits viewable in compare view

Updates sentry-sdk from 2.0.1 to 2.12.0

Release notes

Sourced from sentry-sdk's releases.

2.12.0

Various fixes & improvements

• API: Expose the scope getters to top level API and use them everywhere (#3357) by @​sl0thentr0py
• API: push_scope deprecation warning (#3355) (#3355) by @​szokeasaurusrex
• API: Replace push_scope (#3353, #3354) by @​szokeasaurusrex
• API: Deprecate, avoid, or stop using configure_scope (#3348, #3349, #3350, #3351) by @​szokeasaurusrex
• OTel: Remove experimental autoinstrumentation (#3239) by @​sentrivana
• Graphene: Add span for grapqhl operation (#2788) by @​czyber
• AI: Add async support for ai_track decorator (#3376) by @​czyber
• CI: Workaround bug preventing Django test runs (#3371) by @​szokeasaurusrex
• CI: Remove Django setuptools pin (#3378) by @​szokeasaurusrex
• Tests: Test with Django 5.1 RC (#3370) by @​sentrivana
• Broaden add_attachment type (#3342) by @​szokeasaurusrex
• Add span data to the transactions trace context (#3374) by @​antonpirker
• Gracefully fail attachment path not found case (#3337) by @​sl0thentr0py
• Document attachment parameters (#3342) by @​szokeasaurusrex
• Bump checkouts/data-schemas from 0feb234 to 6d2c435 (#3369) by @​dependabot
• Bump checkouts/data-schemas from 88273a9 to 0feb234 (#3252) by @​dependabot

2.11.0

Various fixes & improvements

• Add disabled_integrations (#3328) by @​sentrivana

  Disabling individual integrations is now much easier. Instead of disabling all automatically enabled integrations and specifying the ones you want to keep, you can now use the new disabled_integrations config option to provide a list of integrations to disable:

  import sentry_sdk
  from sentry_sdk.integrations.flask import FlaskIntegration
  sentry_sdk.init(
  # Do not use the Flask integration even if Flask is installed.
  disabled_integrations=[
  FlaskIntegration(),
  ],
  )

• Use operation name as transaction name in Strawberry (#3294) by @​sentrivana

• WSGI integrations respect SCRIPT_NAME env variable (#2622) by @​sarvaSanjay

• Make Django DB spans have origin auto.db.django (#3319) by @​antonpirker

• Sort breadcrumbs by time before sending (#3307) by @​antonpirker

• Fix KeyError('sentry-monitor-start-timestamp-s') (#3278) by @​Mohsen-Khodabakhshi

• Set MongoDB tags directly on span data (#3290) by @​0Calories

• Lower logger level for some messages (#3305) by @​sentrivana and @​antonpirker

• Emit deprecation warnings from Hub API (#3280) by @​szokeasaurusrex

• Clarify that instrumenter is internal-only (#3299) by @​szokeasaurusrex

• Support Django 5.1 (#3207) by @​sentrivana

• Remove apparently unnecessary if (#3298) by @​szokeasaurusrex

... (truncated)

Changelog

Sourced from sentry-sdk's changelog.

2.12.0

Various fixes & improvements

• API: Expose the scope getters to top level API and use them everywhere (#3357) by @​sl0thentr0py
• API: push_scope deprecation warning (#3355) (#3355) by @​szokeasaurusrex
• API: Replace push_scope (#3353, #3354) by @​szokeasaurusrex
• API: Deprecate, avoid, or stop using configure_scope (#3348, #3349, #3350, #3351) by @​szokeasaurusrex
• OTel: Remove experimental autoinstrumentation (#3239) by @​sentrivana
• Graphene: Add span for grapqhl operation (#2788) by @​czyber
• AI: Add async support for ai_track decorator (#3376) by @​czyber
• CI: Workaround bug preventing Django test runs (#3371) by @​szokeasaurusrex
• CI: Remove Django setuptools pin (#3378) by @​szokeasaurusrex
• Tests: Test with Django 5.1 RC (#3370) by @​sentrivana
• Broaden add_attachment type (#3342) by @​szokeasaurusrex
• Add span data to the transactions trace context (#3374) by @​antonpirker
• Gracefully fail attachment path not found case (#3337) by @​sl0thentr0py
• Document attachment parameters (#3342) by @​szokeasaurusrex
• Bump checkouts/data-schemas from 0feb234 to 6d2c435 (#3369) by @​dependabot
• Bump checkouts/data-schemas from 88273a9 to 0feb234 (#3252) by @​dependabot

2.11.0

Various fixes & improvements

• Add disabled_integrations (#3328) by @​sentrivana

  Disabling individual integrations is now much easier. Instead of disabling all automatically enabled integrations and specifying the ones you want to keep, you can now use the new disabled_integrations config option to provide a list of integrations to disable:

  import sentry_sdk
  from sentry_sdk.integrations.flask import FlaskIntegration
  sentry_sdk.init(
  # Do not use the Flask integration even if Flask is installed.
  disabled_integrations=[
  FlaskIntegration(),
  ],
  )

• Use operation name as transaction name in Strawberry (#3294) by @​sentrivana

• WSGI integrations respect SCRIPT_NAME env variable (#2622) by @​sarvaSanjay

• Make Django DB spans have origin auto.db.django (#3319) by @​antonpirker

• Sort breadcrumbs by time before sending (#3307) by @​antonpirker

• Fix KeyError('sentry-monitor-start-timestamp-s') (#3278) by @​Mohsen-Khodabakhshi

... (truncated)

Commits

• 441c0f7 Updated changelog
• ab3eb1f release: 2.12.0
• f8e5d2f Add span data to the transactions trace context (#3374)
• 0f3e5db ci: Remove Django setuptools pin
• b658e4b feat(integrations): Add async support for ai_track decorator
• fc5db4f ref(otel): Remove experimental autoinstrumentation (#3239)
• 6bb2081 build(deps): bump checkouts/data-schemas from 0feb234 to 6d2c435 (#3369)
• 2ce6677 tests: Test with Django 5.1 RC (#3370)
• bd293e5 Expose the scope getters to top level API and use them everywhere (#3357)
• c9765cd ci: Workaround bug preventing Django test runs (#3371)
• Additional commits viewable in compare view

Updates alembic from 1.13.1 to 1.13.2

Release notes

Sourced from alembic's releases.

1.13.2

Released: June 26, 2024

usecase

• [usecase] [autogenerate] Improve computed column compare function to support multi-line expressions. Pull request courtesy of Georg Wicke-Arndt.

  References: #1391

bug

• [bug] [commands] Fixed bug in alembic command stdout where long messages were not properly wrapping at the terminal width. Pull request courtesy Saif Hakim.

  References: #1384

• [bug] [execution] Fixed internal issue where Alembic would call connection.execute() sending an empty tuple to indicate "no params". In SQLAlchemy 2.1 this case will be deprecated as "empty sequence" is ambiguous as to its intent.

  References: #1394

• [bug] [tests] Fixes to support pytest 8.1 for the test suite.

  References: #1435

• [bug] [autogenerate] [postgresql] Fixed the detection of serial column in autogenerate with tables not under default schema on PostgreSQL

  References: #1479

Commits

• See full diff in compare view

Updates icalendar from 5.0.12 to 5.0.13

Changelog

Sourced from icalendar's changelog.

5.0.13 (2024-06-20)

Minor changes:

• Guide to delete the build folder before running tests
• Add funding information
• Make documentation build with Python 3.12
• Update windows to olson conversion for Greenland Standard Time
• Extend examples in Usage with alarm and recurrence
• Document how to serve the built documentation to view with the browser
• Improve test coverage

New features:

• Create GitHub releases for each tag.

Bug fixes:

• Parse calendars with X-COMMENT properties at the end the file by ignoring these properites

Commits

• f97722e Merge pull request #632 from niccokunzmann/release
• 39b0494 version 5.0.13
• e7ec88d Merge pull request #622 from niccokunzmann/docs-error
• 4484608 Merge pull request #621 from niccokunzmann/docs-py-12
• 9862fd1 Merge pull request #628 from raffifu/test/unit_prop
• d3e432d add test case for unit prop
• 3a54fe7 Merge pull request #625 from niccokunzmann/docs-http-server
• f9dad10 log changes
• 95ccf64 Document how to access the documentation in the browser
• 4b5cb00 Guide to delete the build folder before testing
• Additional commits viewable in compare view

Updates aiosmtplib from 3.0.1 to 3.0.2

Release notes

Sourced from aiosmtplib's releases.

v3.0.2

• Bugfix: Type of "send" is partially unknown with pyright
• Bugfix: Fix asyncio deadlock trying to reconnect after error (thanks @​Voldemat)
• Change: Switched from Poetry to build/hatch/twine for packaging.

Full Changelog: cole/aiosmtplib@v3.0.1...v3.0.2

Changelog

Sourced from aiosmtplib's changelog.

3.0.2

• Bugfix: Type of "send" is partially unknown with pyright
• Bugfix: Fix asyncio deadlock trying to reconnect after error (thanks @​Voldemat)
• Change: Switched from Poetry to build/hatch/twine for packaging.

Commits

• edc9f99 chore: 3.0.2 release
• b4b3164 ci: add pyright check
• 9d7bb35 fix: unknown socket path type
• 97b35f9 [pre-commit.ci] pre-commit autoupdate
• 1e9bdff Revert "fix: unknown socket path type"
• cfac3de fix: unknown socket path type
• ec371fb docs: fix module linking on sphinx 7.2+
• 80d444f [pre-commit.ci] pre-commit autoupdate
• ae56ef2 [pre-commit.ci] pre-commit autoupdate
• 1bb9556 [pre-commit.ci] pre-commit autoupdate
• Additional commits viewable in compare view

Updates email-validator from 2.1.1 to 2.2.0

Release notes

Sourced from email-validator's releases.

2.2.0 (June 20, 2024)

• Email addresses with internationalized local parts could, with rare Unicode characters, be returned as valid but actually be invalid in their normalized form (returned in the normalized field). Local parts now re-validated after Unicode NFC normalization to ensure that invalid characters cannot be injected into the normalized address and that characters with length-increasing NFC normalizations cannot cause a local part to exceed the maximum length after normalization.
• The length check for email addresses with internationalized local parts is now also applied to the original address string prior to Unicode NFC normalization, which may be longer and could exceed the maximum email address length, to protect callers who do not use the returned normalized address.
• Improved error message for IDNA domains that are too long or have invalid characters after Unicode normalization.
• A new option to parse My Name <address@domain> strings, i.e. a display name plus an email address in angle brackets, is now available. It is off by default.
• Improvements to Python typing.
• Some additional tests added.

v2.1.2

2.1.2 (June 16, 2024)

• The domain name length limit is corrected from 255 to 253 IDNA ASCII characters. I misread the RFCs.
• When a domain name has no MX record but does have an A or AAAA record, if none of the IP addresses in the response are globally reachable (i.e. not Private-Use, Loopback, etc.), the response is treated as if there was no A/AAAA response and the email address will fail the deliverability check.
• When a domain name has no MX record but does have an A or AAAA record, the mx field in the object returned by validate_email incorrectly held the IP addresses rather than the domain itself.
• Fixes in tests.

Changelog

Sourced from email-validator's changelog.

2.2.0 (June 20, 2024)

• Email addresses with internationalized local parts could, with rare Unicode characters, be returned as valid but actually be invalid in their normalized form (returned in the normalized field). In particular, it is possible to get a normalized address with a ";" character, which is not valid and could change the interpretation of the address. Local parts now re-validated after Unicode NFC normalization to ensure that invalid characters cannot be injected into the normalized address and that characters with length-increasing NFC normalizations cannot cause a local part to exceed the maximum length after normalization. Thanks to khanh@calif.io from https://calif.io for reporting the issue.
• The length check for email addresses with internationalized local parts is now also applied to the original address string prior to Unicode NFC normalization, which may be longer and could exceed the maximum email address length, to protect callers who do not use the returned normalized address.
• Improved error message for IDNA domains that are too long or have invalid characters after Unicode normalization.
• A new option to parse My Name <address@domain> strings, i.e. a display name plus an email address in angle brackets, is now available. It is off by default.
• Improvements to Python typing.
• Some additional tests added.

2.1.2 (June 16, 2024)

• The domain name length limit is corrected from 255 to 253 IDNA ASCII characters. I misread the RFCs.
• When a domain name has no MX record but does have an A or AAAA record, if none of the IP addresses in the response are globally reachable (i.e. not Private-Use, Loopback, etc.), the response is treated as if there was no A/AAAA response and the email address will fail the deliverability check.
• When a domain name has no MX record but does have an A or AAAA record, the mx field in the object returned by validate_email incorrectly held the IP addresses rather than the domain itself.
• Fixes in tests.

Commits

• 6589b1e Version 2.2.0
• 8051347 Improve the error message for invalid characters in domain names after Unicod...
• 7f1f281 Check domain syntax after normalization to internationalized characters as a ...
• c23c0d6 Improve the error message for IDNA domains being too long by handling the len...
• 452e0ca Add tests for domain label length
• f8709e8 Check that email address length is valid on the original email address string...
• 9ef1f82 Check that the local part is valid after Unicode NFC normalization to prevent...
• 1fb55d4 Add a test that shows that the local part is returned with Unicode NFC normal...
• 3426885 Several fixes for parsing display names
• 0b22c13 Merge point release branch for version 2.1.2
• Additional commits viewable in compare view

Updates jinja2 from 3.1.3 to 3.1.4

Release notes

Sourced from jinja2's releases.

3.1.4

This is the Jinja 3.1.4 security release, which fixes security issues and bugs but does not otherwise change behavior and should not result in breaking changes.

PyPI: https://pypi.org/project/Jinja2/3.1.4/ Changes: https://jinja.palletsprojects.com/en/3.1.x/changes/#version-3-1-4

• The xmlattr filter does not allow keys with / solidus, > greater-than sign, or = equals sign, in addition to disallowing spaces. Regardless of any validation done by Jinja, user input should never be used as keys to this filter, or must be separately validated first. GHSA-h75v-3vvj-5mfj

Changelog

Sourced from jinja2's changelog.

Version 3.1.4

Released 2024-05-05

• The xmlattr filter does not allow keys with / solidus, > greater-than sign, or = equals sign, in addition to disallowing spaces. Regardless of any validation done by Jinja, user input should never be used as keys to this filter, or must be separately validated first. :ghsa:h75v-3vvj-5mfj

Commits

• dd4a8b5 release version 3.1.4
• 0668239 Merge pull request from GHSA-h75v-3vvj-5mfj
• d655030 disallow invalid characters in keys to xmlattr filter
• a7863ba add ghsa links
• b5c98e7 start version 3.1.4
• da3a9f0 update project files (#1968)
• 0ee5eb4 satisfy formatter, linter, and strict mypy
• 20477c6 update project files (#5457)
• e491223 update pyyaml dev dependency
• 36f9885 fix pr link
• Additional commits viewable in compare view

Updates redis from 5.0.4 to 5.0.8

Release notes

Sourced from redis's releases.

5.0.8

Changes

• Resolve some docs warnings (#3322)
• Add missing type hints for retry.py (#3250)

🔥 Breaking Changes

• Timeseries insertion filters for close samples (#3228)

🚀 New Features

• Hash field expiration commands (#3218)
• Support the MAXAGE option for CLIENT KILL (#3187)
• Support NOVALUES parameter for HSCAN (#3157)
• Document XREAD of last message (+) (#3187)
• Support missing/empty values in search (#3231)
• Timeseries insertion filters for close samples (#3228)

🧰 Maintenance

• Add extra tests for GEO search (#3244)
• Test special characters escaping in search (#3276)

🐛 Bug Fixes

• Decode search results at field level (#3309)

5.0.7

Changes

🐛 Bug Fixes

• None UnixDomainSocket timeout (#3293)

🧰 Maintenance

• Updated redis version to represent latest available build (#3296)

Contributors

We'd like to thank all the contributors who worked on this release!

@​vladvildanov @​dmaier-redislabs

5.0.6

Changes

🐛 Bug Fixes

• Handle lists in the response of INFO

... (truncated)

Commits

• 6a2a636 Decode search results at field level (#3309)
• e7ef54a Fix bug: client side caching causes unexpected disconnections (async version)...
• 0cd0c5d Format connection errors in the same way everywhere (#3305)
• 6fedfef Prepare for Redis 7.4 RC2 (#3303)
• ed1680f Add details to the asyncio connection error message (#3211)
• 511fda0 Add missing type hints for retry.py (#3250)
• c1a6ff7 Bump rojopolis/spellcheck-github-actions from 0.37.0 to 0.38.0 (#3301)
• 338cbfd Re-enable Graph tests (#3287)
• 532bc02 Do not restrict pytest dependencies versions (#3286)
• b6a0f96 Add CODECOV token to CI (#3285)
• Additional commits viewable in compare view

Updates flake8 from 7.0.0 to 7.1.0

Commits

• 65a38c4 Release 7.1.0
• 34c97e0 Merge pull request #1939 from PyCQA/new-pycodestyle
• defd315 latest pycodestyle
• 408d4d6 Merge pull request #1930 from mzagol/patch-1
• 866ad72 Add --extend-exclude to the TOC
• 33e5083 Merge pull request #1923 from Viicos/entry-points-docs
• 6659b21 Fix toctree ordering in index
• ba0f566 Use explicit external references
• 350f254 Use explicit external references
• 49f52a8 Update documentation regarding entry points
• Additional commits viewable in compare view

Updates mypy from 1.10.0 to 1.11.1

Changelog

Sourced from mypy's changelog.

Mypy Release Notes

Next release

Mypy 1.11

We’ve just uploaded mypy 1.11 to the Python Package Index (PyPI). Mypy is a static type checker for Python. This release includes new features, performance improvements and bug fixes. You can install it as follows:

python3 -m pip install -U mypy

You can read the full documentation for this release on Read the Docs.

Support Python 3.12 Syntax for Generics (PEP 695)

Mypy now supports the new type parameter syntax introduced in Python 3.12 (PEP 695). This feature is still experimental and must be enabled with the --enable-incomplete-feature=NewGenericSyntax flag, or with enable_incomplete_feature = NewGenericSyntax in the mypy configuration file. We plan to enable this by default in the next mypy feature release.

This example demonstrates the new syntax:

# Generic function
def f[T](https://github.com/python/mypy/blob/master/x: T) -> T: ...
reveal_type(f(1))  # Revealed type is 'int'
Generic class
class C[T]:
def init(self, x: T) -> None:
self.x = x
c = C('a')
reveal_type(c.x)  # Revealed type is 'str'
Type alias
type A[T] = C[list[T]]

This feature was contributed by Jukka Lehtosalo.

Support for functools.partial

Mypy now type checks uses of functools.partial. Previously mypy would accept arbitrary arguments.

This example will now produce an error:

from functools import partial
</tr></table> 

... (truncated)

Commits

• 570b90a Bump version to 1.11
• b3a102e Fix RawExpressionType.accept crash with --cache-fine-grained (#17588)
• aec04c7 Fix PEP 604 isinstance caching (#17563)
• cb44e4d Fix typing.TypeAliasType being undefined on python < 3.12 (#17558)
• 6cf9180 Fix types.GenericAlias lookup crash (#17543)
• 64c1ebf Bump version to 1.11.1+dev
• dbd5f5c Remove +dev from version for 1.11 release
• f0a8c69 Update CHANGELOG for mypy 1.11 (#17540)
• 371f780 CHANGELOG.md update for 1.11 (#17539)
• 2563da0 Fix daemon crash on invalid type in TypedDict (#17495)
• Additional commits viewable in compare view

Updates pytest from 8.2.0 to 8.3.2

Release notes

Sourced from pytest's releases.

8.3.2

pytest 8.3.2 (2024-07-24)

Bug fixes

• #12652: Resolve regression [conda]{.title-ref} environments where no longer being automatically detected.

  -- by RonnyPfannschmidt{.interpreted-text role="user"}

8.3.1

pytest 8.3.1 (2024-07-20)

The 8.3.0 release failed to include the change notes and docs for the release. This patch release remedies this. There are no other changes.

8.3.0

pytest 8.3.0 (2024-07-20)

New features

• #12231: Added [--xfail-tb]{.title-ref} flag, which turns on traceback output for XFAIL results.

  • If the [--xfail-tb]{.title-ref} flag is not given, tracebacks for XFAIL results are NOT shown.
  • The style of traceback for XFAIL is set with [--tb]{.title-ref}, and can be [auto|long|short|line|native|no]{.title-ref}.
  • Note: Even if you have [--xfail-tb]{.title-ref} set, you won't see them if [--tb=no]{.title-ref}.

  Some history:

  With pytest 8.0, [-rx]{.title-ref} or [-ra]{.title-ref} would not only turn on summary reports for xfail, but also report the tracebacks for xfail results. This caused issues with some projects that utilize xfail, but don't want to see all of the xfail tracebacks.

  This change detaches xfail tracebacks from [-rx]{.title-ref}, and now we turn on xfail tracebacks with [--xfail-tb]{.title-ref}. With this, the default [-rx]{.title-ref}/ [-ra]{.title-ref} behavior is identical to pre-8.0 with respect to xfail tracebacks. While this is a beha...

  Description has been truncated

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.