Skip to content

Bump pipenv from 2026.0.3 to 2026.2.1#2057

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/pip/pipenv-2026.2.1
Open

Bump pipenv from 2026.0.3 to 2026.2.1#2057
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/pip/pipenv-2026.2.1

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 23, 2026

Bumps pipenv from 2026.0.3 to 2026.2.1.

Release notes

Sourced from pipenv's releases.

Release v2026.2.1

🤖 AI-Generated Changelog

Fixed

  • Always restore PTY echo state via try/finally in fork_compat, ensuring terminal echo is reliably re-enabled even if an error occurs during subprocess execution

🔗 Full Changelog: pypa/pipenv@v2026.2.0...v2026.2.1

Release v2026.2.0

🤖 AI-Generated Changelog

Added

  • Support sequential script execution via TOML array syntax in [scripts] section
  • Add --all flag to install and sync commands to install all Pipfile categories
  • Support PIPENV_DEFAULT_CATEGORIES environment variable for configuring default package categories
  • Allow venv_in_project to be set in the [pipenv] section of Pipfile
  • Support inline environment variable assignments in pipenv run
  • Add support for Python Install Manager (pymanager) on Windows

Fixed

  • Respect extra-index-url and fix trusted-host handling in pip.conf
  • Show download progress during locking phase
  • Fix atomic writes for lockfile cache path in bad lock situations
  • Fix --no-binary option not being stored in Pipfile
  • Fix lockfile storing file URLs instead of version strings for index-resolved packages
  • Fix resolver to use Pipfile Python version for marker evaluation
  • Fix --dry-run help text for the update command
  • Preserve environment variable references in credentials during update
  • Fix pipenv --rm removing the wrong virtualenv when .venv directory coexists with WORKON_HOME venv
  • Recreate virtualenv when --python version differs from the existing virtual environment
  • Fix subdependency local file path resolution
  • Fix outdated checks for file-locked packages
  • Respect environment markers in install -r to match sync behavior
  • Fix PermissionError on Windows when scanning restricted PATH entries
  • Preserve file:// URL in Pipfile and fix local editable path/file key handling
  • Fix uninstall --all no longer wiping Pipfile.lock
  • Use path key for local dependencies and file key for remote URLs in Pipfile entries
  • Fix broken version comparison in system Python version compatibility check
  • Fix PowerShell full .exe path recognition in pipenv activate on Windows
  • Suppress PTY echo of setup commands in fork_compat
  • Improve dependency conflict error messages
  • Clean up orphaned virtualenvs after integration tests
  • Fix inline env var Pipfile quoting for shlex compatibility

Changed

  • Update pythonfinder vendored dependency to version 3.0.2
  • Expand platform marker support documentation with platform_machine examples

... (truncated)

Changelog

Sourced from pipenv's changelog.

2026.2.1 (2026-03-19)

pipenv 2026.2.1 (2026-03-19)

No significant changes.

2026.2.0 (2026-03-18)

pipenv 2026.2.0 (2026-03-18)

No significant changes.

2026.1.0 (2026-03-13)

pipenv 2026.1.0 (2026-03-13)

No significant changes.

Commits
  • 295d104 Release v2026.2.1
  • f415832 Bumped version to 2026.2.1.
  • 28d58a3 Merge pull request #6562 from pypa/fix/pty-echo-restore-finally
  • ae029a1 fix: always restore PTY echo via try/finally in fork_compat (#6531 followup)
  • 6665744 Release v2026.2.0
  • 009dadb Bumped version to 2026.2.0.
  • 10a7a69 Merge pull request #6559 from pypa/fix/pip-conf-extra-index-url-5710
  • 8c36622 Merge pull request #6560 from pypa/fix/show-download-progress-5718
  • eacc556 Show download progress during locking phase (fixes #5718)
  • 0ec84bf fix: respect extra-index-url and fix trusted-host in pip.conf (#5710)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump pipenv from 2026.0.3 to 2026.2.1
5238f6c 
Bumps [pipenv](https://github.com/pypa/pipenv) from 2026.0.3 to 2026.2.1.
- [Release notes](https://github.com/pypa/pipenv/releases)
- [Changelog](https://github.com/pypa/pipenv/blob/main/CHANGELOG.md)
- [Commits](pypa/pipenv@v2026.0.3...v2026.2.1)

---
updated-dependencies:
- dependency-name: pipenv
  dependency-version: 2026.2.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Dependabot pull requests that update Python dependencies labels Mar 23, 2026
@dependabot dependabot bot requested a review from edmorley as a code owner March 23, 2026 15:12
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Dependabot pull requests that update Python dependencies labels Mar 23, 2026
@dependabot dependabot bot mentioned this pull request Mar 23, 2026
Closed
edmorley
edmorley reviewed Mar 24, 2026
View reviewed changes
Copy link
Member

@edmorley edmorley left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Waiting longer to ensure there aren't any regressions in v2026.2.x

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@edmorley edmorley edmorley left review comments

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python Dependabot pull requests that update Python dependencies

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@edmorley