build(deps): bump build from 1.4.3 to 1.4.4 in the build-and-release-dependencies group by dependabot[bot] · Pull Request #2937 · theupdateframework/python-tuf

dependabot · 2026-05-05T01:13:48Z

Bumps the build-and-release-dependencies group with 1 update: build.

Updates build from 1.4.3 to 1.4.4

Release notes

1.4.4

What's Changed

🐛 fix(release): generate consistent CHANGELOG heading levels by @gaborbernat in pypa/build#1032

docs: move source links by @henryiii in pypa/build#1034

revert: drop PEP 660 change by @henryiii in pypa/build#1039

fix: ignore installed when running pip by @henryiii in pypa/build#1040

fix: revert part of #973 by @henryiii in pypa/build#1044

chore: report coverage failure lines by @henryiii in pypa/build#1046

tests: fix issue with uv run by @henryiii in pypa/build#1048

docs: reorganize testing docs for copy/paste by @abitrolly in pypa/build#1043

tests: keep environment from leaking in Python 3.15 by @henryiii in pypa/build#1049

docs: fix issue with changelog generation by @henryiii in pypa/build#1050

Full Changelog: pypa/build@1.4.3...1.4.4

Changelog

Sourced from build's changelog.

#################### 1.5.0 (2026-04-30) ####################

Features

Drop Python 3.9 support - by :user:henryiii (:issue:1036)

Bugfixes

Make --ignore-installed opt-in from the API via fresh=True - by :user:henryiii (:issue:1056)

Miscellaneous

:issue:1033

#################### 1.4.4 (2026-04-22) ####################

Bugfixes

Fix release pipeline generating CHANGELOG.rst entries with inconsistent heading levels, which broke sphinx -W and pinned Read the Docs stable at 1.4.0 - by :user:gaborbernat. (:issue:1031)

Revert :pr:1039 from build 1.4.3, no longer check direct_url (for now) - by :user:henryiii (:issue:1039)

Add --ignore-installed to pip install command to prevent issues with packages already present in the isolated build environment - by :user:henryiii (:issue:1037) (:issue:1040)

Partial revert of :pr:973, keeping log messages in one entry, multiple lines. (:issue:1044)

Miscellaneous

:issue:1048, :issue:1049

#################### 1.4.3 (2026-04-10) ####################

Features

... (truncated)

Commits

70666a2 chore: prepare for 1.4.4
653d865 docs: fix issue with changelog generation (#1050)
373b9ee tests: keep environment from leaking in Python 3.15 (#1049)
e37e2ae docs: reorganize testing docs for copy/paste (#1043)
e9c194a tests: fix issue with uv run (#1048)
03b7d70 chore: report coverage failure lines (#1046)
2afa3b5 fix: revert part of #973 (#1044)
b336f60 pre-commit: bump repositories (#1045)
6d8039a fix: ignore installed when running pip (#1040)
ebf6eba revert: drop PEP 660 change (#1039)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the build-and-release-dependencies group with 1 update: [build](https://github.com/pypa/build). Updates `build` from 1.4.3 to 1.4.4 - [Release notes](https://github.com/pypa/build/releases) - [Changelog](https://github.com/pypa/build/blob/main/CHANGELOG.rst) - [Commits](pypa/build@1.4.3...1.4.4) --- updated-dependencies: - dependency-name: build dependency-version: 1.4.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: build-and-release-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot Bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels May 5, 2026

dependabot Bot requested a review from a team as a code owner May 5, 2026 01:13

dependabot Bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels May 5, 2026

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

build(deps): bump build from 1.4.3 to 1.4.4 in the build-and-release-dependencies group#2937

build(deps): bump build from 1.4.3 to 1.4.4 in the build-and-release-dependencies group#2937
dependabot[bot] wants to merge 1 commit intodevelopfrom
dependabot/pip/build-and-release-dependencies-9e3f53043a

dependabot Bot commented on behalf of github May 5, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot Bot commented on behalf of github May 5, 2026

1.4.4

What's Changed

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants