Skip to content

deps(py): bump the uv-prod-minor-patch group across 1 directory with 3 updates#69

Merged
ekassos merged 1 commit intomainfrom
dependabot/uv/uv-prod-minor-patch-d7dfac07c1
Apr 6, 2026
Merged

deps(py): bump the uv-prod-minor-patch group across 1 directory with 3 updates#69
ekassos merged 1 commit intomainfrom
dependabot/uv/uv-prod-minor-patch-d7dfac07c1

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Apr 6, 2026
edited
Loading

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

Bumps the uv-prod-minor-patch group with 3 updates in the / directory: click, sentry-sdk and uvicorn.

Updates click from 8.3.1 to 8.3.2

Release notes

Sourced from click's releases.

8.3.2

This is the Click 8.3.2 fix release, which fixes bugs but does not otherwise change behavior and should not result in breaking changes compared to the latest feature release.

PyPI: https://pypi.org/project/click/8.3.2/ Changes: https://click.palletsprojects.com/page/changes/#version-8-3-2 Milestone: https://github.com/pallets/click/milestone/29

  • Fix handling of flag_value when is_flag=False to allow such options to be used without an explicit value. #3084 #3152
  • Hide Sentinel.UNSET values as None when using lookup_default(). #3136 #3199 #3202 #3209 #3212 #3224
  • Prevent _NamedTextIOWrapper from closing streams owned by StreamMixer. #824 #2991 #2993 #3110 #3139 #3140
  • Add comprehensive tests for CliRunner stream lifecycle, covering logging interaction, multi-threaded safety, and sequential invocation isolation. Add high-iteration stress tests behind a stress marker with a dedicated CI job. #3139
  • Fix callable flag_value being instantiated when used as a default via default=True. #3121 #3201 #3213 #3225
Changelog

Sourced from click's changelog.

Version 8.3.2

Released 2026-04-02

  • Fix handling of flag_value when is_flag=False to allow such options to be used without an explicit value. :issue:3084 :pr:3152
  • Hide Sentinel.UNSET values as None when using lookup_default(). :issue:3136 :pr:3199 :pr:3202 :pr:3209 :pr:3212 :pr:3224
  • Prevent _NamedTextIOWrapper from closing streams owned by StreamMixer. :issue:824 :issue:2991 :issue:2993 :issue:3110 :pr:3139 :pr:3140
  • Add comprehensive tests for CliRunner stream lifecycle, covering logging interaction, multi-threaded safety, and sequential invocation isolation. Add high-iteration stress tests behind a stress marker with a dedicated CI job. :pr:3139
  • Fix callable flag_value being instantiated when used as a default via default=True. :issue:3121 :pr:3201 :pr:3213 :pr:3225
Commits

Updates sentry-sdk from 2.53.0 to 2.57.0

Release notes

Sourced from sentry-sdk's releases.

2.57.0

New Features ✨

Langchain

Other

Bug Fixes 🐛

Openai

Other

Internal Changes 🔧

Ai

Langchain

Openai

... (truncated)

Changelog

Sourced from sentry-sdk's changelog.

2.57.0

New Features ✨

Langchain

Other

Bug Fixes 🐛

Openai

Other

Internal Changes 🔧

Ai

Langchain

Openai

... (truncated)

Commits
  • 9790785 Update CHANGELOG.md
  • 21f5dc3 release: 2.57.0
  • ae28669 fix(openai): Only wrap types with _iterator for streamed responses (#5917)
  • 2d91800 build(deps): bump getsentry/craft/.github/workflows/changelog-preview.yml fro...
  • 9c97dac build(deps): bump getsentry/craft from 2.25.0 to 2.25.2 (#5911)
  • 7516309 fix: Add cycle detection to exceptions_from_error (#5880)
  • 2604409 feat: Add experimental async transport (port of PR #4572) (#5646)
  • 49a5978 fix(ci): Update validate-pr action to remove draft enforcement (#5918)
  • b8a4945 ref(ai): Remove unused GEN_AI_PIPELINE operation constant (#5886)
  • e231708 ci: 🤖 Update test matrix with new releases (03/30) (#5912)
  • Additional commits viewable in compare view

Updates uvicorn from 0.41.0 to 0.43.0

Release notes

Sourced from uvicorn's releases.

Version 0.43.0

Changed

  • Emit http.disconnect ASGI receive() event on server shutting down for streaming responses (#2829)
  • Use native context parameter for create_task on Python 3.11+ (#2859)
  • Drop cast in ASGI types (#2875)

Full Changelog: Kludex/uvicorn@0.42.0...0.43.0

Version 0.42.0

Changed

  • Use bytearray for request body accumulation to avoid O(n^2) allocation on fragmented bodies (#2845)

Fixed

  • Escape brackets and backslash in httptools HEADER_RE regex (#2824)
  • Fix multiple issues in websockets sans-io implementation (#2825)

New Contributors

Full Changelog: Kludex/uvicorn@0.41.0...0.42.0

Changelog

Sourced from uvicorn's changelog.

0.43.0 (April 3, 2026)

You can quit Uvicorn now. We heard you, @​pamelafox - all 47 of your Ctrl+C's (thanks for flagging it, and thanks to @​tiangolo for the fix 🙏). See the tweet.

Changed

  • Emit http.disconnect ASGI receive() event on server shutting down for streaming responses (#2829)
  • Use native context parameter for create_task on Python 3.11+ (#2859)
  • Drop cast in ASGI types (#2875)

0.42.0 (March 16, 2026)

Changed

  • Use bytearray for request body accumulation to avoid O(n^2) allocation on fragmented bodies (#2845)

Fixed

  • Escape brackets and backslash in httptools HEADER_RE regex (#2824)
  • Fix multiple issues in websockets sans-io implementation (#2825)
Commits
  • 8d397c7 Version 0.43.0 (#2885)
  • 587042d 🐛 Emit http.disconnect ASGI receive() event on server shutting down for s...
  • c9a75fb chore(deps): bump the github-actions group with 3 updates (#2878)
  • 84fd578 chore(deps): bump pygments from 2.19.2 to 2.20.0 (#2877)
  • cd52d34 Use native context parameter for create_task on Python 3.11+ (#2859)
  • 5211880 Drop cast in ASGI types (#2875)
  • 1cb8e74 Add websocket 500 fallback header test (#2874)
  • 28efbb2 chore(deps-dev): bump cryptography from 46.0.5 to 46.0.6 (#2873)
  • 042ffeb ci: add zizmor (#2872)
  • c61f9d4 chore(deps): bump requests from 2.32.5 to 2.33.0 (#2871)
  • Additional commits viewable in compare view

@dependabot dependabot bot added dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code labels Apr 6, 2026
@greptile-apps
Copy link
Copy Markdown

greptile-apps bot commented Apr 6, 2026

PR author is in the excluded authors list.

@socket-security
Copy link
Copy Markdown

socket-security bot commented Apr 6, 2026
edited
Loading

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security		 Vulnerability Quality Maintenance License
Updatedpypi/​click@​8.3.1 ⏵ 8.3.296 +1100100100100

View full report

@dependabot
deps(py): bump the uv-prod-minor-patch group with 3 updates
798a10a 
Bumps the uv-prod-minor-patch group with 3 updates: [click](https://github.com/pallets/click), [sentry-sdk](https://github.com/getsentry/sentry-python) and [uvicorn](https://github.com/Kludex/uvicorn).


Updates `click` from 8.3.1 to 8.3.2
- [Release notes](https://github.com/pallets/click/releases)
- [Changelog](https://github.com/pallets/click/blob/main/CHANGES.rst)
- [Commits](pallets/click@8.3.1...8.3.2)

Updates `sentry-sdk` from 2.53.0 to 2.57.0
- [Release notes](https://github.com/getsentry/sentry-python/releases)
- [Changelog](https://github.com/getsentry/sentry-python/blob/master/CHANGELOG.md)
- [Commits](getsentry/sentry-python@2.53.0...2.57.0)

Updates `uvicorn` from 0.41.0 to 0.43.0
- [Release notes](https://github.com/Kludex/uvicorn/releases)
- [Changelog](https://github.com/Kludex/uvicorn/blob/main/docs/release-notes.md)
- [Commits](Kludex/uvicorn@0.41.0...0.43.0)

---
updated-dependencies:
- dependency-name: click
  dependency-version: 8.3.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: uv-prod-minor-patch
- dependency-name: sentry-sdk
  dependency-version: 2.57.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: uv-prod-minor-patch
- dependency-name: uvicorn
  dependency-version: 0.43.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: uv-prod-minor-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot changed the title deps(py): bump the uv-prod-minor-patch group with 3 updates deps(py): bump the uv-prod-minor-patch group across 1 directory with 3 updates Apr 6, 2026
@dependabot dependabot bot force-pushed the dependabot/uv/uv-prod-minor-patch-d7dfac07c1 branch from cab618e to 798a10a Compare April 6, 2026 22:10
@ekassos ekassos merged commit 07bbd20 into main Apr 6, 2026
5 checks passed
@ekassos ekassos deleted the dependabot/uv/uv-prod-minor-patch-d7dfac07c1 branch April 6, 2026 22:16
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@ekassos ekassos ekassos approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@ekassos