Skip to content

Update all non-major dependencies #1092

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
clavedeluna merged 2 commits into from
Oct 3, 2025
Merged

Update all non-major dependencies #1092

clavedeluna merged 2 commits into from
Oct 3, 2025

Conversation

@renovate
Copy link
Contributor

@renovate renovate bot commented Sep 2, 2025
edited
Loading

Note

Mend has cancelled the proposed renaming of the Renovate GitHub app being renamed to mend[bot].

This notice will be removed on 2025-10-07.

This PR contains the following updates:

Package Change Age Confidence
isort (changelog) >=5.12,<6.1 -> >=6.1,<7 age confidence
openai >=1.102,<1.103 -> >=1.109,<1.110 age confidence
pytest-mock (changelog) >=3.12,<3.15 -> >=3.15,<3.16 age confidence
semgrep >=1.134,<1.135 -> >=1.139,<1.140 age confidence

Release Notes

PyCQA/isort (isort)

v6.1.0

Compare Source

Changes
👷 Continuous Integration
📦 Dependencies
openai/openai-python (openai)

v1.109.1

Compare Source

Full Changelog: v1.109.0...v1.109.1

Bug Fixes
  • compat: compat with pydantic&lt;2.8.0 when using additional fields (5d95ecf)

v1.109.0

Compare Source

Full Changelog: v1.109.0...v1.109.1

Bug Fixes
  • compat: compat with pydantic&lt;2.8.0 when using additional fields (5d95ecf)

v1.108.2

Compare Source

Full Changelog: v1.108.2...v1.109.0

Features

v1.108.1

Compare Source

Full Changelog: v1.108.1...v1.108.2

Bug Fixes
Chores
  • api: openapi updates for conversations (3224f6f)
  • do not install brew dependencies in ./scripts/bootstrap by default (6764b00)
  • improve example values (20b58e1)

v1.108.0

Compare Source

Full Changelog: v1.108.0...v1.108.1

Features
  • api: add reasoning_text (18d8e12)
Chores
  • types: change optional parameter type from NotGiven to Omit (acc190a)

v1.107.3

Compare Source

Full Changelog: v1.107.3...v1.108.0

Features
  • api: type updates for conversations, reasoning_effort and results for evals (c2ee28c)
Chores
  • internal: update pydantic dependency (369d10a)

v1.107.2

Compare Source

Full Changelog: v1.107.2...v1.107.3

Chores
  • api: docs and spec refactoring (9bab5da)
  • tests: simplify get_platform test (0b1f6a2)

v1.107.1

Compare Source

Full Changelog: v1.107.1...v1.107.2

Chores
  • api: Minor docs and type updates for realtime (ab6a10d)
  • tests: simplify get_platform test (01f03e0)

v1.107.0

Compare Source

Full Changelog: v1.107.0...v1.107.1

Chores
  • api: fix realtime GA types (570fc5a)

v1.106.1

Compare Source

Full Changelog: v1.106.1...v1.107.0

Features
  • api: ship the RealtimeGA API shape (dc319d8)
Chores
  • internal: codegen related update (b79b7ca)

v1.106.0

Compare Source

Full Changelog: v1.106.0...v1.106.1

Chores
  • internal: move mypy configurations to pyproject.toml file (ca413a2)

v1.105.0

Compare Source

Full Changelog: v1.105.0...v1.106.0

Features

v1.104.2

Compare Source

Full Changelog: v1.104.2...v1.105.0

Features
  • api: Add gpt-realtime models (8502041)

v1.104.1

Compare Source

Full Changelog: v1.104.1...v1.104.2

Bug Fixes
  • types: add aliases back for web search tool types (2521cd8)

v1.104.0

Compare Source

Full Changelog: v1.104.0...v1.104.1

Chores
  • api: manual updates for ResponseInputAudio (0db5061)

v1.103.0

Compare Source

Full Changelog: v1.103.0...v1.104.0

Features
  • types: replace List[str] with SequenceNotStr in params (bc00bda)
Bug Fixes
  • types: update more types to use SequenceNotStr (cff135c)
  • types: update some types to SequenceNotStr (03f8b88)
Chores
pytest-dev/pytest-mock (pytest-mock)

v3.15.1

Compare Source

2025-09-16

  • #&#8203;529 <https://github.com/pytest-dev/pytest-mock/issues/529>_: Fixed itertools._tee object has no attribute error -- now duplicate_iterators=True must be passed to mocker.spy to duplicate iterators.

v3.15.0

Compare Source

2025-09-04

  • Python 3.8 (EOL) is no longer supported.
  • #&#8203;524 <https://github.com/pytest-dev/pytest-mock/pull/524>_: Added spy_return_iter to mocker.spy, which contains a duplicate of the return value of the spied method if it is an Iterator.
returntocorp/semgrep (semgrep)

v1.139.0

Compare Source

Added
  • --pro-intrafile scans will now add built-in taint propagators, like --pro does,
    hence producing extra findings. For example, in Java, list.add(taint) will now
    make list tainted even if the rule does not explicitly request that. Scan times
    should not be generally affected in a significant way. (code-9103)
  • Scala: Enable pattern { ... } to match partial functions like { case 1 => "1" }. (code-9106)
  • Associate Containerfiles with the dockerfile language (gh-11091)
Changed
  • Rule parsing now happens solely in OCaml. This should have no change in the behavior of whether a rule successfully parses or not, but will change the parse errors emitted (#​4346, #​4269, #​4379) (gh-4379)
  • MCP: Removed the config parameter from the semgrep_scan tools, to prevent
    agents from inserting unwanted config files to scan with. (saf-2258)
Fixed
  • scala: Fixed matching of { case ... => ... } patterns. (code-9111)
  • Fixed a bug preventing metavariable-comparisons with more than two subsequent "and" or "or" conditions from producing findings. For example, the condition $X > 1 or $Y > 1 or $Z > 1 would previously always evaluate to false. Now, it will behave as expected. (gh-11209)
  • MCP: Fixed an issue where the semgrep_scan tool, when invoking the RPC-based
    scanning approach, would return JSON output not consistent with the CLI tool. (saf-2250)
  • MCP: The semgrep_findings tool now gives a suitable error message when erring due
    to insufficient permissions on standard semgrep login tokens. (saf-2254)
  • MCP: Fixed a bug where if the user is already logged in when running the setup flow,
    the Semgrep Pro Engine installation step would be ignored. (saf-2259)

v1.138.0

Added
  • pro: scala: Method dispatching through traits (code-9092)
Changed
  • Pro: additionally improved prefiltering for taint rules, especially when using
    taint labels. This allows for the generation of more specific conditions than
    the previously released version (v1.133.0). (code-9097)
Fixed
  • pro: python: Fix resolution of implicit namespace modules (code-9008)
  • We now filter SEMGREP_APP_TOKEN from any request made to non semgrep URLs
    passed to -f/-c/--config during config/rules fetching. (gh-11016)
  • Typescript: Made it so that the pattern var $X = $FUNC($REQ, $RES, ...) {...}
    no longer fails to parse. (saf-2159)
  • pro: improved performance of tsconfig.json matching for Typescript projects
    that contain multiple tsconfig.jsons. (saf-2163)
  • Semgrep no longer fails to validate a config when a rule lang is capitalized (Introduced 1.137.0) (saf-2247)

v1.137.0

Compare Source

Added
  • pro: typescript: Improved name resolution for destructuring parameters. (code-9088)
  • Added a new semgrep mcp subcommand, which runs the Semgrep MCP server, which previously
    used to live at https://github.com/semgrep/mcp. That repository will be deprecated
    as of this release, and future MCP contributions / issues should go into this repo. (saf-2239)
Changed
  • Update semgrep-interfaces to only accept valid lanugage keys for editor (PR-4600)
  • The minimum Python version for Semgrep is now 3.10. We are dropping support for Python 3.9.
Fixed
  • Fix incorrect interpretation of \# and \ in glob patterns found in
    Semgrepignore and included Gitignore files. (fix-glob-escape)
  • Removed pkg_resources is deprecated warning by bumping opentelemetry-*
    packages (gh-11069)
  • Fixes an issue in Dart language processing to return better results (gh-11173)

v1.136.0

Compare Source

No significant changes.

v1.135.0

Compare Source

No significant changes.

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot changed the title Update dependency openai to >=1.103,<1.104 Update dependency openai to >=1.104,<1.105 Sep 2, 2025
@renovate renovate bot force-pushed the renovate/all-minor-patch branch from a22a442 to 48254f3 Compare September 2, 2025 20:45
@renovate renovate bot changed the title Update dependency openai to >=1.104,<1.105 Update dependency openai to >=1.105,<1.106 Sep 3, 2025
@renovate renovate bot force-pushed the renovate/all-minor-patch branch from 48254f3 to de2e3a8 Compare September 3, 2025 16:41
@renovate renovate bot changed the title Update dependency openai to >=1.105,<1.106 Update all non-major dependencies Sep 3, 2025
@renovate renovate bot force-pushed the renovate/all-minor-patch branch 6 times, most recently from 645d40e to 009d380 Compare September 10, 2025 03:48
@renovate renovate bot force-pushed the renovate/all-minor-patch branch 3 times, most recently from 96d32b6 to 9062bbc Compare September 23, 2025 17:27
@renovate renovate bot force-pushed the renovate/all-minor-patch branch 5 times, most recently from 50f9f0a to 59d85c6 Compare October 1, 2025 21:44
@renovate renovate bot force-pushed the renovate/all-minor-patch branch from 59d85c6 to 0a703d7 Compare October 2, 2025 11:05
@renovate
Copy link
Contributor Author

renovate bot commented Oct 3, 2025

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.

@sonarqubecloud
Copy link

sonarqubecloud bot commented Oct 3, 2025

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@clavedeluna clavedeluna merged commit 7df9df7 into main Oct 3, 2025
13 checks passed
@clavedeluna clavedeluna deleted the renovate/all-minor-patch branch October 3, 2025 12:00
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@clavedeluna clavedeluna clavedeluna approved these changes

@drdavella drdavella Awaiting requested review from drdavella drdavella is a code owner

@andrecsilva andrecsilva Awaiting requested review from andrecsilva andrecsilva is a code owner

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@clavedeluna