chore(deps): bump the deps group with 8 updates by dependabot[bot] · Pull Request #7 · Edwards-Tech-Innovation/CAM-PROTOCOL

dependabot · 2025-05-19T22:37:11Z

Bumps the deps group with 8 updates:

Package	From	To
setuptools	`80.4.0`	`80.7.1`
cryptography	`44.0.3`	`45.0.2`
flask	`3.1.0`	`3.1.1`
jiter	`0.9.0`	`0.10.0`
multidict	`6.4.3`	`6.4.4`
openai	`1.78.1`	`1.79.0`
pluggy	`1.5.0`	`1.6.0`
prometheus-client	`0.21.1`	`0.22.0`

Updates setuptools from 80.4.0 to 80.7.1

Changelog

Sourced from setuptools's changelog.

v80.7.1

Bugfixes

Only attempt to fetch eggs for unsatisfied requirements. (#4998)

In installer, when discovering egg dists, let metadata discovery search each egg. (#4998)

v80.7.0

Features

Removed usage of pkg_resources from installer. Set an official deadline on the installer deprecation to 2025-10-31. (#4997)

Misc

#4996

v80.6.0

Features

Added a build dependency on coherent.licensed to inject the declared license text at build time. (#4981)

Misc

#4995

v80.5.0

Features

Replaced more references to pkg_resources with importlib equivalents. (#3085)

Misc

... (truncated)

Commits

12ca018 Bump version: 80.7.0 → 80.7.1
31f8cac Merge pull request #4999 from pypa/bugfix/4998-directory-not-empty
e6f9ee9 In installer, when discovering egg dists, let metadata discovery search each ...
76d2923 Only attempt to fetch eggs for unsatisfied requirements.
486081e Bump version: 80.6.0 → 80.7.0
f2748d1 Merge pull request #4997 from pypa/feature/remove-more-pkg_resources
1089223 Merge pull request #4996 from abravalheri/cleanup-distutils
00c16df Bump version: 80.5.0 → 80.6.0
89d3aef Add news fragment.
b74789e Merge https://github.com/jaraco/skeleton
Additional commits viewable in compare view

Updates cryptography from 44.0.3 to 45.0.2

Changelog

Sourced from cryptography's changelog.

45.0.2 - 2025-05-17

* Fixed using ``mypy`` with ``cryptography`` on older versions of Python. .. _v45-0-1:

45.0.1 - 2025-05-17

Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.5.0.

.. _v45-0-0:

45.0.0 - 2025-05-17 (YANKED)


* Support for Python 3.7 is deprecated and will be removed in the next
  ``cryptography`` release.
* Updated the minimum supported Rust version (MSRV) to 1.74.0, from 1.65.0.
* Added support for serialization of PKCS#12 Java truststores in
  :func:`~cryptography.hazmat.primitives.serialization.pkcs12.serialize_java_truststore`
* Added :meth:`~cryptography.hazmat.primitives.kdf.argon2.Argon2id.derive_phc_encoded` and
  :meth:`~cryptography.hazmat.primitives.kdf.argon2.Argon2id.verify_phc_encoded` methods
  to support password hashing in the PHC string format
* Added support for PKCS7 decryption and encryption using AES-256 as the
  content algorithm, in addition to AES-128.
* **BACKWARDS INCOMPATIBLE:** Made SSH private key loading more consistent with
  other private key loading:
  :func:`~cryptography.hazmat.primitives.serialization.load_ssh_private_key`
  now raises a ``TypeError`` if the key is unencrypted but a password is
  provided (previously no exception was raised), and raises a ``TypeError`` if
  the key is encrypted but no password is provided (previously a ``ValueError``
  was raised).
* Added ``__copy__`` to the
  :class:`~cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePrivateKey`,
  :class:`~cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePublicKey`,
  :class:`~cryptography.hazmat.primitives.asymmetric.ed25519.Ed25519PublicKey`,
  :class:`~cryptography.hazmat.primitives.asymmetric.ed25519.Ed25519PrivateKey`,
  :class:`~cryptography.hazmat.primitives.asymmetric.ed448.Ed448PublicKey`,
  :class:`~cryptography.hazmat.primitives.asymmetric.ed448.Ed448PrivateKey`,
  :class:`~cryptography.hazmat.primitives.asymmetric.x25519.X25519PublicKey`,
  :class:`~cryptography.hazmat.primitives.asymmetric.x25519.X25519PrivateKey`,
  :class:`~cryptography.hazmat.primitives.asymmetric.x448.X448PublicKey`,
  :class:`~cryptography.hazmat.primitives.asymmetric.x448.X448PrivateKey`,
  :class:`~cryptography.hazmat.primitives.asymmetric.rsa.RSAPrivateKey`,
  :class:`~cryptography.hazmat.primitives.asymmetric.rsa.RSAPublicKey`,
  :class:`~cryptography.hazmat.primitives.asymmetric.dsa.DSAPrivateKey`,
  :class:`~cryptography.hazmat.primitives.asymmetric.dsa.DSAPublicKey`,
  :class:`~cryptography.hazmat.primitives.asymmetric.dh.DHPrivateKey`, and
</tr></table>

... (truncated)

Commits

f81c075 Backport mypy fixes for release (#12930)
8ea28e0 bump for 45.0.1 (#12922)
6784097 bump for 45 release (#12886)
2d9c1c9 bump MSRV to 1.74 (#12919)
6c18874 Bump BoringSSL, OpenSSL, AWS-LC in CI (#12918)
43fd312 add test vectors for upcoming explicit curve loading (#12913)
6bfa0a3 chore(deps): bump asn1 from 0.21.2 to 0.21.3 (#12914)
a88dd66 chore(deps): bump cc from 1.2.22 to 1.2.23 (#12912)
e4e9840 chore(deps): bump uv from 0.7.3 to 0.7.4 in /.github/requirements (#12911)
e140233 chore(deps): bump uv from 0.7.3 to 0.7.4 (#12910)
Additional commits viewable in compare view

Updates flask from 3.1.0 to 3.1.1

Release notes

Sourced from flask's releases.

3.1.1

This is the Flask 3.1.1 fix release, which fixes bugs but does not otherwise change behavior and should not result in breaking changes compared to the latest feature release.

PyPI: https://pypi.org/project/Flask/3.1.1/ Changes: https://flask.palletsprojects.com/en/stable/changes/#version-3-1-1 Milestone https://github.com/pallets/flask/milestone/36?closed=1

Fix signing key selection order when key rotation is enabled via SECRET_KEY_FALLBACKS. GHSA-4grg-w6v8-c28g

Fix type hint for cli_runner.invoke. #5645

flask --help loads the app and plugins first to make sure all commands are shown. #5673

Mark sans-io base class as being able to handle views that return AsyncIterable. This is not accurate for Flask, but makes typing easier for Quart. #5659

Changelog

Sourced from flask's changelog.

Version 3.1.1

Released 2025-05-13

Fix signing key selection order when key rotation is enabled via SECRET_KEY_FALLBACKS. :ghsa:4grg-w6v8-c28g

Fix type hint for cli_runner.invoke. :issue:5645

flask --help loads the app and plugins first to make sure all commands are shown. :issue:5673

Mark sans-io base class as being able to handle views that return AsyncIterable. This is not accurate for Flask, but makes typing easier for Quart. :pr:5659

Commits

7fff56f release version 3.1.1
73d6504 Merge commit from fork
cbb6c36 update docs about fallback order
fb54159 secret key rotation: fix key list ordering
941efd4 use uv (#5727)
0109e49 use uv
e785166 Async Iterable Response (#5659)
410e5ab Accept AsyncIterable for responses
bfffe87 add ghsa links
73ce26c remove tests about deprecated pkgutil.get_loader (#5702)
Additional commits viewable in compare view

Updates jiter from 0.9.0 to 0.10.0

Commits

4f06514 ci: fix ability of job to upload wasm wheels (#204)
2f118b0 release: 0.10.0 (#203)
9abadb7 replace cached_py_string and pystring_fast_new with safe alternatives (#201)
37d62dd skip shipping windows 3.14 wheels for now (#200)
6e61983 Fix float_mode default value in from_json() stub definition (#199)
8b9f0a3 Bump pyo3 to 0.25, update supported Python versions (#198)
6ed1f88 Update Cargo.toml (#192)
890d622 fix clippy lints for Rust 1.86 (#193)
See full diff in compare view

Updates multidict from 6.4.3 to 6.4.4

Release notes

Sourced from multidict's releases.

6.4.4

Bug fixes

Fixed a segmentation fault when calling :py:meth:multidict.MultiDict.setdefault with a single argument -- by :user:bdraco.

Related issues and pull requests on GitHub: #1160.

Fixed a segmentation fault when attempting to directly instantiate view objects (multidict._ItemsView, multidict._KeysView, multidict._ValuesView) -- by :user:bdraco.

View objects now raise a proper :exc:TypeError with the message "cannot create '...' instances directly" when direct instantiation is attempted.

View objects should only be created through the proper methods: :py:meth:multidict.MultiDict.items, :py:meth:multidict.MultiDict.keys, and :py:meth:multidict.MultiDict.values.

Related issues and pull requests on GitHub: #1164.

Miscellaneous internal changes

:class:multidict.MultiDictProxy was refactored to rely only on :class:multidict.MultiDict public interface and don't touch any implementation details.

Related issues and pull requests on GitHub: #1150.

Multidict views were refactored to rely only on :class:multidict.MultiDict API and don't touch any implementation details.

Related issues and pull requests on GitHub: #1152.

Dropped internal _Impl class from pure Python implementation, both pure Python and C Extension follows the same design internally now.

Related issues and pull requests on GitHub: #1153.

Changelog

Sourced from multidict's changelog.

6.4.4

(2025-05-19)

Bug fixes

Fixed a segmentation fault when calling :py:meth:multidict.MultiDict.setdefault with a single argument -- by :user:bdraco.

Related issues and pull requests on GitHub: :issue:1160.

Fixed a segmentation fault when attempting to directly instantiate view objects (multidict._ItemsView, multidict._KeysView, multidict._ValuesView) -- by :user:bdraco.

View objects now raise a proper :exc:TypeError with the message "cannot create '...' instances directly" when direct instantiation is attempted.

View objects should only be created through the proper methods: :py:meth:multidict.MultiDict.items, :py:meth:multidict.MultiDict.keys, and :py:meth:multidict.MultiDict.values.

Related issues and pull requests on GitHub: :issue:1164.

Miscellaneous internal changes

:class:multidict.MultiDictProxy was refactored to rely only on :class:multidict.MultiDict public interface and don't touch any implementation details.

Related issues and pull requests on GitHub: :issue:1150.

Multidict views were refactored to rely only on :class:multidict.MultiDict API and don't touch any implementation details.

Related issues and pull requests on GitHub: :issue:1152.

Dropped internal _Impl class from pure Python implementation, both pure Python and C Extension follows the same design internally now.

Related issues and pull requests on GitHub: :issue:1153.

... (truncated)

Commits

e77793a Release 6.4.4 (#1164)
b5a24b7 Fix segfault creating view objects (#1163)
fea968f Fix segfault when a single arg is passed to setdefault (#1160)
7770ff2 Bump dependabot/fetch-metadata from 2.3.0 to 2.4.0 (#1162)
af42043 Bump pypa/cibuildwheel from 2.23.2 to 2.23.3 (#1158)
df93794 Fix wrong types in tests (#1156)
72f3fce Tune multidict benchmark (#1155)
99e3f3b Drop _Impl helper class, move all logic to MultiDict itself (#1153)
d476a03 Views don't rely in _Impl anymore (#1152)
1d72435 MultiDictProxy doesn't rely on '_impl' anymore (#1150)
Additional commits viewable in compare view

Updates openai from 1.78.1 to 1.79.0

Release notes

Sourced from openai's releases.

v1.79.0

1.79.0 (2025-05-16)

Full Changelog: v1.78.1...v1.79.0

Features

api: further updates for evals API (32c99a6)

api: manual updates (25245e5)

api: responses x eval api (fd586cb)

api: Updating Assistants and Evals API schemas (98ba7d3)

Bug Fixes

fix create audio transcription endpoint (e9a89ab)

Chores

ci: fix installation instructions (f26c5fc)

ci: upload sdks to package manager (861f105)

Changelog

Sourced from openai's changelog.

1.79.0 (2025-05-16)

Full Changelog: v1.78.1...v1.79.0

Features

api: further updates for evals API (32c99a6)

api: manual updates (25245e5)

api: responses x eval api (fd586cb)

api: Updating Assistants and Evals API schemas (98ba7d3)

Bug Fixes

fix create audio transcription endpoint (e9a89ab)

Chores

ci: fix installation instructions (f26c5fc)

ci: upload sdks to package manager (861f105)

Commits

5bc7307 release: 1.79.0
66a0b8d feat(api): further updates for evals API
e5de794 fix: fix create audio transcription endpoint
4ebfd51 feat(api): Updating Assistants and Evals API schemas
d776534 feat(api): manual updates
28d60d9 feat(api): responses x eval api
1701df1 chore(ci): fix installation instructions
98925ce chore(ci): upload sdks to package manager
See full diff in compare view

Updates pluggy from 1.5.0 to 1.6.0

Changelog

Sourced from pluggy's changelog.

pluggy 1.6.0 (2025-05-15)

Deprecations and Removals

[#556](https://github.com/pytest-dev/pluggy/issues/556) <https://github.com/pytest-dev/pluggy/issues/556>_: Python 3.8 is no longer supported.

Bug Fixes

[#504](https://github.com/pytest-dev/pluggy/issues/504) <https://github.com/pytest-dev/pluggy/issues/504>_: Fix a regression in pluggy 1.1.0 where using :func:result.get_result() <pluggy.Result.get_result> on the same failed :class:~pluggy.Result causes the exception's traceback to get longer and longer.

[#544](https://github.com/pytest-dev/pluggy/issues/544) <https://github.com/pytest-dev/pluggy/issues/544>_: Correctly pass :class:StopIteration through hook wrappers.

Raising a :class:StopIteration in a generator triggers a :class:RuntimeError.

If the :class:RuntimeError of a generator has the passed in :class:StopIteration as cause resume with that :class:StopIteration as normal exception instead of failing with the :class:RuntimeError.

[#573](https://github.com/pytest-dev/pluggy/issues/573) <https://github.com/pytest-dev/pluggy/issues/573>_: Fix python 3.14 SyntaxError by rearranging code.

Commits

fd08ab5 Preparing release 1.6.0
c240362 [pre-commit.ci] pre-commit autoupdate (#578)
0ceb558 Merge pull request #546 from RonnyPfannschmidt/ronny/hookwrapper-wrap-legacy
1f4872e [pre-commit.ci] auto fixes from pre-commit.com hooks
4be0c55 add changelog
615c6c5 Merge branch 'main' into hookwrapper-wrap-legacy
2acc644 [pre-commit.ci] pre-commit autoupdate (#577)
ea5ada0 [pre-commit.ci] pre-commit autoupdate (#576)
dfd250b [pre-commit.ci] pre-commit autoupdate (#575)
1e1862f [pre-commit.ci] pre-commit autoupdate (#574)
Additional commits viewable in compare view

Updates prometheus-client from 0.21.1 to 0.22.0

Release notes

Sourced from prometheus-client's releases.

v0.22.0

What's Changed

Add support for native histograms in OM parser by @vesari in prometheus/client_python#1040

Add exemplar support to CounterMetricFamily [Fix #1062] by @lod in prometheus/client_python#1063

Fix write_to_textfile leaves back temp files on errors by @ethanschen in prometheus/client_python#1066

Support UTF-8 in metric creation, parsing, and exposition by @ywwg in prometheus/client_python#1070

Fix incorrect use of reentrant locks by @suligap in prometheus/client_python#1076

Remove Python 3.8 support by @kajinamit in prometheus/client_python#1075

Check if labelvalues is in _metrics before deletion in MetricWrapperBase.remove() by @GlorifiedPig in prometheus/client_python#1077

Add support for Python 3.13 by @Pliner in prometheus/client_python#1080

Correct nh sample span structure and parsing by @vesari in prometheus/client_python#1082

Migrate from setup.py to pyproject.toml by @csmarchbanks in prometheus/client_python#1084

Changed pushgateway.md by @mallika-mur in prometheus/client_python#1083

Fix order-dependent flaky tests related to UTF-8 support by @dg98 in prometheus/client_python#1093

Update versions for docs Github actions by @csmarchbanks in prometheus/client_python#1096

Documentation Updates by @ethanschen in prometheus/client_python#1097

Add note on gauge.set_function not working with multiprocessing by @aapeliv in prometheus/client_python#1098

Don't send an empty HTTP header for /favicon.ico by @noselasd in prometheus/client_python#1101

Full Changelog: prometheus/client_python@v0.21.0...v0.22.0

Commits

8dfa10e Release 0.22.0
e3902ea Don't send an empty HTTP header. (#1101)
23ab826 Add note on gauge.set_function not working with mp, see #504 (#1098)
c1ff3b2 Update docs (#1097)
e3bfa1f Update versions for docs Github actions (#1096)
de8bb4a Fix order-dependent flaky tests related to UTF-8 support (#1093)
46eae7b Changed pushgateway.md (#1083)
b0a6f12 Migrate from setup.py to pyproject.toml (#1084)
ecf344b Correct nh sample span structure and parsing (#1082)
5926a7c Add support for Python 3.13 (#1080)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the deps group with 8 updates: | Package | From | To | | --- | --- | --- | | [setuptools](https://github.com/pypa/setuptools) | `80.4.0` | `80.7.1` | | [cryptography](https://github.com/pyca/cryptography) | `44.0.3` | `45.0.2` | | [flask](https://github.com/pallets/flask) | `3.1.0` | `3.1.1` | | [jiter](https://github.com/pydantic/jiter) | `0.9.0` | `0.10.0` | | [multidict](https://github.com/aio-libs/multidict) | `6.4.3` | `6.4.4` | | [openai](https://github.com/openai/openai-python) | `1.78.1` | `1.79.0` | | [pluggy](https://github.com/pytest-dev/pluggy) | `1.5.0` | `1.6.0` | | [prometheus-client](https://github.com/prometheus/client_python) | `0.21.1` | `0.22.0` | Updates `setuptools` from 80.4.0 to 80.7.1 - [Release notes](https://github.com/pypa/setuptools/releases) - [Changelog](https://github.com/pypa/setuptools/blob/main/NEWS.rst) - [Commits](pypa/setuptools@v80.4.0...v80.7.1) Updates `cryptography` from 44.0.3 to 45.0.2 - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](pyca/cryptography@44.0.3...45.0.2) Updates `flask` from 3.1.0 to 3.1.1 - [Release notes](https://github.com/pallets/flask/releases) - [Changelog](https://github.com/pallets/flask/blob/main/CHANGES.rst) - [Commits](pallets/flask@3.1.0...3.1.1) Updates `jiter` from 0.9.0 to 0.10.0 - [Release notes](https://github.com/pydantic/jiter/releases) - [Commits](pydantic/jiter@v0.9.0...v0.10.0) Updates `multidict` from 6.4.3 to 6.4.4 - [Release notes](https://github.com/aio-libs/multidict/releases) - [Changelog](https://github.com/aio-libs/multidict/blob/master/CHANGES.rst) - [Commits](aio-libs/multidict@v6.4.3...v6.4.4) Updates `openai` from 1.78.1 to 1.79.0 - [Release notes](https://github.com/openai/openai-python/releases) - [Changelog](https://github.com/openai/openai-python/blob/main/CHANGELOG.md) - [Commits](openai/openai-python@v1.78.1...v1.79.0) Updates `pluggy` from 1.5.0 to 1.6.0 - [Changelog](https://github.com/pytest-dev/pluggy/blob/main/CHANGELOG.rst) - [Commits](pytest-dev/pluggy@1.5.0...1.6.0) Updates `prometheus-client` from 0.21.1 to 0.22.0 - [Release notes](https://github.com/prometheus/client_python/releases) - [Commits](prometheus/client_python@v0.21.1...v0.22.0) --- updated-dependencies: - dependency-name: setuptools dependency-version: 80.7.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: deps - dependency-name: cryptography dependency-version: 45.0.2 dependency-type: direct:production update-type: version-update:semver-major dependency-group: deps - dependency-name: flask dependency-version: 3.1.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: deps - dependency-name: jiter dependency-version: 0.10.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: deps - dependency-name: multidict dependency-version: 6.4.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: deps - dependency-name: openai dependency-version: 1.79.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: deps - dependency-name: pluggy dependency-version: 1.6.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: deps - dependency-name: prometheus-client dependency-version: 0.22.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: deps ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot Bot added dependencies Pull requests that update a dependency file python Pull requests that update python code labels May 19, 2025

github-actions Bot merged commit 250fc19 into main May 19, 2025
2 of 7 checks passed

dependabot Bot deleted the dependabot/pip/deps-a9226746cb branch May 19, 2025 22:37

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): bump the deps group with 8 updates#7

chore(deps): bump the deps group with 8 updates#7
github-actions[bot] merged 1 commit into
mainfrom
dependabot/pip/deps-a9226746cb

dependabot Bot commented on behalf of github May 19, 2025

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot Bot commented on behalf of github May 19, 2025

v80.7.1

Bugfixes

v80.7.0

Features

Misc

v80.6.0

Features

Misc

v80.5.0

Features

3.1.1

Version 3.1.1

6.4.4

Bug fixes

Miscellaneous internal changes

6.4.4

Bug fixes

Miscellaneous internal changes

v1.79.0

1.79.0 (2025-05-16)

Features

Bug Fixes

Chores

1.79.0 (2025-05-16)

Features

Bug Fixes

Chores

pluggy 1.6.0 (2025-05-15)

Deprecations and Removals

Bug Fixes

v0.22.0

What's Changed

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants