Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump the pip group across 3 directories with 8 updates #928

Closed

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Apr 24, 2024

Bumps the pip group with 2 updates in the /portia_server directory: djangorestframework and marshmallow.
Bumps the pip group with 4 updates in the /slybot directory: numpy, scrapy, lxml and scrapy-splash.
Bumps the pip group with 2 updates in the /slyd directory: twisted and autobahn.

Updates djangorestframework from 3.7.7 to 3.11.2

Release notes

Sourced from djangorestframework's releases.

Version 3.9.3

This is the last Django REST Framework release that will support Python 2. Be sure to upgrade to Python 3 before upgrading to Django REST Framework 3.10.

  • Adjusted the compat check for django-guardian to allow the last guardian version (v1.4.9) compatible with Python 2. #6613

Version 3.9.2

See Release Notes for details.

Version 3.9.1

Change Notes: https://www.django-rest-framework.org/community/release-notes/#39x-series

Verision 3.9.0

Release announcement: https://www.django-rest-framework.org/community/3.9-announcement/

Change Notes: https://www.django-rest-framework.org/community/release-notes/#39x-series

Version 3.8.2

Point release for 3.8.x series

  • Fix read_only + default unique_together validation. #5922
  • authtoken.views import coreapi from rest_framework.compat, not directly. #5921
  • Docs: Add missing argument 'detail' to Route #5920

Version 3.8.1

  • Use old url_name behavior in route decorators #5915

    For list_route and detail_route maintain the old behavior of url_name, basing it on the url_path instead of the function name.

Version 3.8

  • Release Announcement

  • 3.8.0 Milestone

  • Breaking Change: Alter read_only plus default behaviour. #5886

    read_only fields will now always be excluded from writable fields.

    Previously read_only fields with a default value would use the default for create and update operations.

    In order to maintain the old behaviour you may need to pass the value of read_only fields when calling save() in the view:

      def perform_create(self, serializer):
          serializer.save(owner=self.request.user)
    

... (truncated)

Commits

Updates marshmallow from 2.8.0 to 2.15.1

Changelog

Sourced from marshmallow's changelog.

2.15.1 (2018-04-25) +++++++++++++++++++

Bug fixes:

  • :cve:CVE-2018-17175: Fix behavior when an empty list is passed as the only argument (:issue:772). Thanks :user:deckar01 for reporting and thanks :user:lafrech for the fix.

2.15.0 (2017-12-02) +++++++++++++++++++

Bug fixes:

  • Handle UnicodeDecodeError when deserializing bytes with a String field (:issue:650). Thanks :user:dan-blanchard for the suggestion and thanks :user:4lissonsilveira for the PR.

2.14.0 (2017-10-23) +++++++++++++++++++

Features:

  • Add require_tld parameter to validate.URL (:issue:664). Thanks :user:sduthil for the suggestion and the PR.

2.13.6 (2017-08-16) +++++++++++++++++++

Bug fixes:

  • Fix serialization of types that implement __getitem__ (:issue:669). Thanks :user:MichalKononenko.

2.13.5 (2017-04-12) +++++++++++++++++++

Bug fixes:

  • Fix validation of iso8601-formatted dates (:issue:556). Thanks :user:lafrech for reporting.

2.13.4 (2017-03-19) +++++++++++++++++++

Bug fixes:

  • Fix symmetry of serialization and deserialization behavior when passing a dot-delimited path to the attribute parameter of fields (:issue:450). Thanks :user:itajaja for reporting.

2.13.3 (2017-03-11) +++++++++++++++++++

... (truncated)

Commits
  • 251bff3 Bump version and update changelog
  • d5d9cb2 Merge pull request #782 from Nobatek/dev_2x_772_only_empty
  • e849fd8 Docs: BaseSchema docstring reword
  • 98f2b47 Don't serialize any field if only is empty.
  • 07cebb9 Merge pull request #719 from marshmallow-code/code-of-conduct
  • 2b94e65 Remove incorrect Nested documentation
  • fa91308 Add code of conduct and update contributing docs
  • 764f504 Remove unnecessary deps
  • 8a3b3ce Update license year and footer link
  • 1579398 Add missing @​post_load decorator in example
  • Additional commits viewable in compare view

Updates numpy from 1.16.4 to 1.22.0

Release notes

Sourced from numpy's releases.

v1.22.0

NumPy 1.22.0 Release Notes

NumPy 1.22.0 is a big release featuring the work of 153 contributors spread over 609 pull requests. There have been many improvements, highlights are:

  • Annotations of the main namespace are essentially complete. Upstream is a moving target, so there will likely be further improvements, but the major work is done. This is probably the most user visible enhancement in this release.
  • A preliminary version of the proposed Array-API is provided. This is a step in creating a standard collection of functions that can be used across application such as CuPy and JAX.
  • NumPy now has a DLPack backend. DLPack provides a common interchange format for array (tensor) data.
  • New methods for quantile, percentile, and related functions. The new methods provide a complete set of the methods commonly found in the literature.
  • A new configurable allocator for use by downstream projects.

These are in addition to the ongoing work to provide SIMD support for commonly used functions, improvements to F2PY, and better documentation.

The Python versions supported in this release are 3.8-3.10, Python 3.7 has been dropped. Note that 32 bit wheels are only provided for Python 3.8 and 3.9 on Windows, all other wheels are 64 bits on account of Ubuntu, Fedora, and other Linux distributions dropping 32 bit support. All 64 bit wheels are also linked with 64 bit integer OpenBLAS, which should fix the occasional problems encountered by folks using truly huge arrays.

Expired deprecations

Deprecated numeric style dtype strings have been removed

Using the strings "Bytes0", "Datetime64", "Str0", "Uint32", and "Uint64" as a dtype will now raise a TypeError.

(gh-19539)

Expired deprecations for loads, ndfromtxt, and mafromtxt in npyio

numpy.loads was deprecated in v1.15, with the recommendation that users use pickle.loads instead. ndfromtxt and mafromtxt were both deprecated in v1.17 - users should use numpy.genfromtxt instead with the appropriate value for the usemask parameter.

(gh-19615)

... (truncated)

Commits

Updates scrapy from 1.6.0 to 2.11.1

Release notes

Sourced from scrapy's releases.

2.11.1

  • Security bug fixes.
  • Support for Twisted >= 23.8.0.
  • Documentation improvements.

See the full changelog.

2.11.0

  • Spiders can now modify settings in their from_crawler methods, e.g. based on spider arguments.
  • Periodic logging of stats.
  • Bug fixes.

See the full changelog.

2.10.1

Marked Twisted >= 23.8.0 as unsupported.

2.10.0

  • Added Python 3.12 support, dropped Python 3.7 support.
  • The new add-ons framework simplifies configuring 3rd-party components that support it.
  • Exceptions to retry can now be configured.
  • Many fixes and improvements for feed exports.

See the full changelog.

2.9.0

  • Per-domain download settings.
  • Compatibility with new cryptography and new parsel.
  • JMESPath selectors from the new parsel.
  • Bug fixes.

See the full changelog.

2.8.0

This is a maintenance release, with minor features, bug fixes, and cleanups.

See the full changelog.

2.7.1

  • Relaxed the restriction introduced in 2.6.2 so that the Proxy-Authentication header can again be set explicitly in certain cases, restoring compatibility with scrapy-zyte-smartproxy 2.1.0 and older
  • Bug fixes

See the full changelog

2.7.0

... (truncated)

Changelog

Sourced from scrapy's changelog.

Scrapy 2.11.1 (2024-02-14)

Highlights:

  • Security bug fixes.

  • Support for Twisted >= 23.8.0.

  • Documentation improvements.

Security bug fixes


-   Addressed `ReDoS vulnerabilities`_:
-   ``scrapy.utils.iterators.xmliter`` is now deprecated in favor of
    :func:`~scrapy.utils.iterators.xmliter_lxml`, which
    :class:`~scrapy.spiders.XMLFeedSpider` now uses.
To minimize the impact of this change on existing code,
:func:`~scrapy.utils.iterators.xmliter_lxml` now supports indicating
the node namespace with a prefix in the node name, and big files with
highly nested trees when using libxml2 2.7+.
  • Fixed regular expressions in the implementation of the
    :func:~scrapy.utils.response.open_in_browser function.

Please, see the cc65-xxvf-f7r9 security advisory_ for more information.

.. _ReDoS vulnerabilities: https://owasp.org/www-community/attacks/Regular_expression_Denial_of_Service_-_ReDoS
.. _cc65-xxvf-f7r9 security advisory: GHSA-cc65-xxvf-f7r9

  • :setting:DOWNLOAD_MAXSIZE and :setting:DOWNLOAD_WARNSIZE now also apply to the decompressed response body. Please, see the 7j7m-v7m3-jqm7 security advisory_ for more information.

    .. _7j7m-v7m3-jqm7 security advisory: GHSA-7j7m-v7m3-jqm7

  • Also in relation with the 7j7m-v7m3-jqm7 security advisory_, the deprecated scrapy.downloadermiddlewares.decompression module has been removed.

  • The Authorization header is now dropped on redirects to a different domain. Please, see the cw9j-q3vf-hrrv security advisory_ for more information.

    .. _cw9j-q3vf-hrrv security advisory: GHSA-cw9j-q3vf-hrrv

Modified requirements </tr></table>

... (truncated)

Commits
  • 2f1d345 Solve test issues
  • 502addc Bump version: 2.11.0 → 2.11.1
  • 6b88b33 Set the release date of versions 2.11.1 and 1.8.4
  • 479619b Merge branch '2.11-redos' into 2.11
  • 809bfac Merge branch '2.11-compression-bomb' into 2.11
  • 5bcb8fd Merge branch '2.11-authorization' into 2.11
  • a55e933 Release notes for 2.11.1 (#6150)
  • 5e5a920 Remove slow leftovers
  • 810aaa6 Undo an unintended change
  • c5dad41 Speed up tests, remove comments without regexps
  • Additional commits viewable in compare view

Updates lxml from 4.3.4 to 4.9.1

Changelog

Sourced from lxml's changelog.

4.9.1 (2022-07-01)

Bugs fixed

  • A crash was resolved when using iterwalk() (or canonicalize()) after parsing certain incorrect input. Note that iterwalk() can crash on valid input parsed with the same parser after failing to parse the incorrect input.

4.9.0 (2022-06-01)

Bugs fixed

  • GH#341: The mixin inheritance order in lxml.html was corrected. Patch by xmo-odoo.

Other changes

  • Built with Cython 0.29.30 to adapt to changes in Python 3.11 and 3.12.

  • Wheels include zlib 1.2.12, libxml2 2.9.14 and libxslt 1.1.35 (libxml2 2.9.12+ and libxslt 1.1.34 on Windows).

  • GH#343: Windows-AArch64 build support in Visual Studio. Patch by Steve Dower.

4.8.0 (2022-02-17)

Features added

  • GH#337: Path-like objects are now supported throughout the API instead of just strings. Patch by Henning Janssen.

  • The ElementMaker now supports QName values as tags, which always override the default namespace of the factory.

Bugs fixed

  • GH#338: In lxml.objectify, the XSI float annotation "nan" and "inf" were spelled in lower case, whereas XML Schema datatypes define them as "NaN" and "INF" respectively.

... (truncated)

Commits
  • d01872c Prevent parse failure in new test from leaking into later test runs.
  • d65e632 Prepare release of lxml 4.9.1.
  • 86368e9 Fix a crash when incorrect parser input occurs together with usages of iterwa...
  • 50c2764 Delete unused Travis CI config and reference in docs (GH-345)
  • 8f0bf2d Try to speed up the musllinux AArch64 build by splitting the different CPytho...
  • b9f7074 Remove debug print from test.
  • b224e0f Try to install 'xz' in wheel builds, if available, since it's now needed to e...
  • 897ebfa Update macOS deployment target version from 10.14 to 10.15 since 10.14 starts...
  • 853c9e9 Prepare release of 4.9.0.
  • d3f77e6 Add a test for https://bugs.launchpad.net/lxml/+bug/1965070 leaving out the a...
  • Additional commits viewable in compare view

Updates scrapy-splash from 0.7.2 to 0.8.0

Release notes

Sourced from scrapy-splash's releases.

0.8.0

  • Security bug fix:

    If you use HttpAuthMiddleware (i.e. the http_user and http_pass spider attributes) for Splash authentication, any non-Splash request will expose your credentials to the request target. This includes robots.txt requests sent by Scrapy when the ROBOTSTXT_OBEY setting is set to True.

    Use the new SPLASH_USER and SPLASH_PASS settings instead to set your Splash authentication credentials safely.

  • Responses now expose the HTTP status code and headers from Splash as response.splash_response_status and response.splash_response_headers (#158)

  • The meta argument passed to the scrapy_splash.request.SplashRequest constructor is no longer modified (#164)

  • Website responses with 400 or 498 as HTTP status code are no longer handled as the equivalent Splash responses (#158)

  • Cookies are no longer sent to Splash itself (#156)

  • scrapy_splash.utils.dict_hash now also works with obj=None (225793b)

  • Our test suite now includes integration tests (#156) and tests can be run in parallel (6fb8c41)

  • There’s a new ‘Getting help’ section in the README.rst file (#161, #162), the documentation about SPLASH_SLOT_POLICY has been improved (#157) and a typo as been fixed (#121)

  • Made some internal improvements (ee5000d, 25de545, 2aaa79d)

Changelog

Sourced from scrapy-splash's changelog.

0.8.0 (2021-10-05)

  • Security bug fix:

    If you use HttpAuthMiddleware_ (i.e. the http_user and http_pass spider attributes) for Splash authentication, any non-Splash request will expose your credentials to the request target. This includes robots.txt requests sent by Scrapy when the ROBOTSTXT_OBEY setting is set to True.

    Use the new SPLASH_USER and SPLASH_PASS settings instead to set your Splash authentication credentials safely.

    .. _HttpAuthMiddleware: http://doc.scrapy.org/en/latest/topics/downloader-middleware.html#module-scrapy.downloadermiddlewares.httpauth

  • Responses now expose the HTTP status code and headers from Splash as response.splash_response_status and response.splash_response_headers (#158)

  • The meta argument passed to the scrapy_splash.request.SplashRequest constructor is no longer modified (#164)

  • Website responses with 400 or 498 as HTTP status code are no longer handled as the equivalent Splash responses (#158)

  • Cookies are no longer sent to Splash itself (#156)

  • scrapy_splash.utils.dict_hash now also works with obj=None (225793b)

  • Our test suite now includes integration tests (#156) and tests can be run in parallel (6fb8c41)

  • There’s a new ‘Getting help’ section in the README.rst file (#161, #162), the documentation about SPLASH_SLOT_POLICY has been improved (#157) and a typo as been fixed (#121)

  • Made some internal improvements (ee5000d, 25de545, 2aaa79d)

Commits

Updates twisted from 19.2.1 to 23.10.0

Release notes

Sourced from twisted's releases.

Twisted 23.10.0 (2023-10-31)

No changes since 23.10.0.rc1.

Features

  • twisted.python.filepath.FilePath and related classes (twisted.python.filepath.IFilepath, twisted.python.filepath.AbstractFilePath, twisted.python.zippath.ZipPath, and twisted.python.zippath.ZipArchive) now have type annotations. Additionally, FilePath is now generic, describing its mode, so you can annotate variables as FilePath[str] or FilePath[bytes] depending on the types that you wish to get back from the 'path' attribute and related methods like 'basename'. (#11822)
  • When using CPython, functions wrapped by twisted.internet.defer.inlineCallbacks can have their arguments and return values freed immediately after completion (due to there no longer being circular references). (#11885)

Bugfixes

  • Fix TypeError on t.i.cfreactor due to 3.10 type annotation syntax (#11965)
  • Fix the type annotations of DeferredLock.run, DeferredSemaphore.run, maybeDeferred, ensureDeferred, inlineCallbacks and fromCoroutine that used to return Deferred[Any] to return the result of the passed Coroutine/Coroutine function (#11985)
  • Fixed significant performance overhead (CPU and bandwidth) when doing small writes to a TLS transport. Specifically, small writes to a TLS transport are now buffered until the next reactor iteration. (#11989)
  • fix mypy due to hypothesis 6.85 (#11995)

Improved Documentation

  • The search and version navigation for the documentation hosted on Read The Docs was fixed. This was a regression introduced with 23.8.0. (#12012)

Deprecations and Removals

  • Drop support for Python 3.7. Remove twisted[contextvars] extra (contextvars are always available in Python 3.7+) (#11913)

Misc

Conch

No significant changes.

Web

... (truncated)

Changelog

Sourced from twisted's changelog.

Twisted 23.10.0 (2023-10-31)

No changes since 23.10.0.rc1.

Features

  • twisted.python.filepath.FilePath and related classes (twisted.python.filepath.IFilepath, twisted.python.filepath.AbstractFilePath, twisted.python.zippath.ZipPath, and twisted.python.zippath.ZipArchive) now have type annotations. Additionally, FilePath is now generic, describing its mode, so you can annotate variables as FilePath[str] or FilePath[bytes] depending on the types that you wish to get back from the 'path' attribute and related methods like 'basename'. (#11822)
  • When using CPython, functions wrapped by twisted.internet.defer.inlineCallbacks can have their arguments and return values freed immediately after completion (due to there no longer being circular references). (#11885)

Bugfixes

  • Fix TypeError on t.i.cfreactor due to 3.10 type annotation syntax (#11965)
  • Fix the type annotations of DeferredLock.run, DeferredSemaphore.run, maybeDeferred, ensureDeferred, inlineCallbacks and fromCoroutine that used to return Deferred[Any] to return the result of the passed Coroutine/Coroutine function (#11985)
  • Fixed significant performance overhead (CPU and bandwidth) when doing small writes to a TLS transport. Specifically, small writes to a TLS transport are now buffered until the next reactor iteration. (#11989)
  • fix mypy due to hypothesis 6.85 (#11995)

Improved Documentation

  • The search and version navigation for the documentation hosted on Read The Docs was fixed. This was a regression introduced with 23.8.0. (#12012)

Deprecations and Removals

  • Drop support for Python 3.7. Remove twisted[contextvars] extra (contextvars are always available in Python 3.7+) (#11913)

Misc

Conch

No significant changes.

Web

... (truncated)

Commits
  • f3f3389 python -m incremental.update Twisted --newversion
  • 2d15c00 Add CVE id to bug.
  • 61c46d4 tox -e towncrier
  • 650c59d python -m incremental.update Twisted --rc
  • 157cd8e #11985 fix DeferredLock.run/Semaphore.run/maybeDeferred/ensureDeferred/inline...
  • ed25d4a [pre-commit.ci] auto fixes from pre-commit.com hooks
  • 5eb2078 Merge branch 'trunk' into fix-concurrency-primative-type
  • 2df4c76 Update src/twisted/test/test_defer.py
  • 105a9f5 #11989 Lots of small writes to the TLS transport use a lot of cpu (#11996)
  • 524a2fa Fix lint
  • Additional commits viewable in compare view

Updates autobahn from 18.3.1 to 20.12.3

Changelog

Sourced from autobahn's changelog.

20.12.3

  • fix: URL must be re-encoded when doing redirect (#1439)
  • fix: update and migrate CI/CD pipeline to GitHub Actions
  • new: minimum supported Python (language) version is now 3.6 (on CPython and PyPy)

20.12.2

  • fix: derive_bip32childkey traceback (#1436)
  • fix: update and adjust docker files to upstream changes

20.12.1

  • new: CLI commands for WAMP IDL (xbrnetwork describe-schema / codegen-schema)
  • new: add eth address helpers (#1413)
  • new: cryptosign authextra allow arbitrary keys (#1411)
  • fix: adapt to planet api prefix change (#1408)
  • fix: Type check improve (#1405)

20.7.1

  • new: add market login eip. expose helpers (#1402)

20.6.2

  • fix: xbr fixes (#1396)
  • fix: use cpy 3.8 for running flake in CI
  • new: Ticket1392 internal attrs (#1394)
  • new: internal-only router attributes and hook for router to add custom information

20.6.1

  • new: massive expansion of XBR CLI and EIP712 helpers
  • new: more (exhaustive) serializer cross-tripping tests
  • fix: some code quality and bug-risk issues (#1379)
  • fix: removed externalPort assignment when not set (#1378)
  • fix: docs link in README (#1381)
  • fix: docs typo frameword -> framework (#1380)
  • fix: improve logging; track results on observable mixin
  • new: add environmental variable that strips xbr. (#1374)
  • fix: trollius is gone (#1373)
  • new: added ability to disable TLS channel binding (#1368)

20.4.3

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
    You can disable automated security fix PRs for this repo from the Security Alerts page.

Bumps the pip group with 2 updates in the /portia_server directory: [djangorestframework](https://github.com/encode/django-rest-framework) and [marshmallow](https://github.com/marshmallow-code/marshmallow).
Bumps the pip group with 4 updates in the /slybot directory: [numpy](https://github.com/numpy/numpy), [scrapy](https://github.com/scrapy/scrapy), [lxml](https://github.com/lxml/lxml) and [scrapy-splash](https://github.com/scrapy-plugins/scrapy-splash).
Bumps the pip group with 2 updates in the /slyd directory: [twisted](https://github.com/twisted/twisted) and [autobahn](https://github.com/crossbario/autobahn-python).


Updates `djangorestframework` from 3.7.7 to 3.11.2
- [Release notes](https://github.com/encode/django-rest-framework/releases)
- [Commits](encode/django-rest-framework@3.7.7...3.11.2)

Updates `marshmallow` from 2.8.0 to 2.15.1
- [Changelog](https://github.com/marshmallow-code/marshmallow/blob/dev/CHANGELOG.rst)
- [Commits](marshmallow-code/marshmallow@2.8.0...2.15.1)

Updates `numpy` from 1.16.4 to 1.22.0
- [Release notes](https://github.com/numpy/numpy/releases)
- [Changelog](https://github.com/numpy/numpy/blob/main/doc/RELEASE_WALKTHROUGH.rst)
- [Commits](numpy/numpy@v1.16.4...v1.22.0)

Updates `scrapy` from 1.6.0 to 2.11.1
- [Release notes](https://github.com/scrapy/scrapy/releases)
- [Changelog](https://github.com/scrapy/scrapy/blob/master/docs/news.rst)
- [Commits](scrapy/scrapy@1.6.0...2.11.1)

Updates `lxml` from 4.3.4 to 4.9.1
- [Release notes](https://github.com/lxml/lxml/releases)
- [Changelog](https://github.com/lxml/lxml/blob/master/CHANGES.txt)
- [Commits](lxml/lxml@lxml-4.3.4...lxml-4.9.1)

Updates `scrapy-splash` from 0.7.2 to 0.8.0
- [Release notes](https://github.com/scrapy-plugins/scrapy-splash/releases)
- [Changelog](https://github.com/scrapy-plugins/scrapy-splash/blob/master/CHANGES.rst)
- [Commits](scrapy-plugins/scrapy-splash@0.7.2...0.8.0)

Updates `twisted` from 19.2.1 to 23.10.0
- [Release notes](https://github.com/twisted/twisted/releases)
- [Changelog](https://github.com/twisted/twisted/blob/trunk/NEWS.rst)
- [Commits](twisted/twisted@twisted-19.2.1...twisted-23.10.0)

Updates `autobahn` from 18.3.1 to 20.12.3
- [Changelog](https://github.com/crossbario/autobahn-python/blob/master/docs/changelog.rst)
- [Commits](crossbario/autobahn-python@v18.3.1...v20.12.3)

---
updated-dependencies:
- dependency-name: djangorestframework
  dependency-type: direct:production
  dependency-group: pip
- dependency-name: marshmallow
  dependency-type: direct:production
  dependency-group: pip
- dependency-name: numpy
  dependency-type: direct:production
  dependency-group: pip
- dependency-name: scrapy
  dependency-type: direct:production
  dependency-group: pip
- dependency-name: lxml
  dependency-type: direct:production
  dependency-group: pip
- dependency-name: scrapy-splash
  dependency-type: direct:production
  dependency-group: pip
- dependency-name: twisted
  dependency-type: direct:production
  dependency-group: pip
- dependency-name: autobahn
  dependency-type: direct:production
  dependency-group: pip
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Apr 24, 2024
Copy link
Author

dependabot bot commented on behalf of github May 14, 2024

Superseded by #932.

@dependabot dependabot bot closed this May 14, 2024
@dependabot dependabot bot deleted the dependabot/pip/portia_server/pip-17b7c5825c branch May 14, 2024 22:19
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file python Pull requests that update Python code
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants