Skip to content

Bump attrs from 23.2.0 to 25.3.0#444

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/pip/attrs-25.3.0
Open

Bump attrs from 23.2.0 to 25.3.0#444
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/pip/attrs-25.3.0

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Apr 1, 2026

Bumps attrs from 23.2.0 to 25.3.0.

Release notes

Sourced from attrs's releases.

25.3.0

Highlights

Quick regression fix for generator-based field_transformers.

Full changelog below!

Special Thanks

This release would not be possible without my generous sponsors! Thank you to all of you making sustainable maintenance possible! If you would like to join them, go to https://github.com/sponsors/hynek and check out the sweet perks!

Above and Beyond

Variomedia AG (@variomedia), Tidelift (@tidelift), Ecosystems (@ecosyste-ms), Klaviyo (@klaviyo), Privacy Solutions GmbH (@privacy-solutions), FilePreviews (@filepreviews), nate nowack (@zzstoatzz), Daniel Fortunov (@asqui), and Kevin P. Fleming (@kpfleming).

Maintenance Sustainers

Buttondown (@buttondown), Christopher Dignam (@chdsbd), Magnus Watn (@magnuswatn), David Cramer (@dcramer), Jesse Snyder (@jessesnyder), Rivo Laks (@rivol), Polar (@polarsource), Mike Fiedler (@miketheman), Duncan Hill (@cricalix), Colin Marquardt (@cmarqu), Pieter Swinkels (@swinkels), Nick Libertini (@libertininick), Brian M. Dennis (@crossjam), Moving Content AG (@moving-content), ProteinQure (@ProteinQure), The Westervelt Company (@westerveltco), Sławomir Ehlert (@slafs), Mostafa Khalil (@khadrawy), Filip Mularczyk (@mukiblejlok), Thomas Klinger (@thmsklngr), Andreas Poehlmann (@ap--), August Trapper Bigelow (@atbigelow), Carlton Gibson (@carltongibson), and Roboflow (@roboflow).

Not to forget 14 more amazing humans who chose to be generous but anonymous!

Full Changelog

Changes

  • Restore support for generator-based field_transformers. #1417

This release contains contributions from @​ashb, and @​hynek.

Artifact Attestations

You can verify this release's artifact attestions using GitHub's CLI tool by downloading the sdist and wheel from PyPI and running:

$ gh attestation verify --owner python-attrs attrs-25.3.0.tar.gz

and

$ gh attestation verify --owner python-attrs attrs-25.3.0-py3-none-any.whl

... (truncated)

Changelog

Sourced from attrs's changelog.

25.3.0 - 2025-03-13

Changes

  • Restore support for generator-based field_transformers. #1417

25.2.0 - 2025-03-12

Changes

  • Checking mandatory vs non-mandatory attribute order is now performed after the field transformer, since the field transformer may change attributes and/or their order. #1147
  • attrs.make_class() now allows for Unicode class names. #1406
  • Speed up class creation by 30%-50% by compiling methods only once and using a variety of other techniques. #1407
  • The error message if an attribute has both an annotation and a type argument will now disclose what attribute seems to be the problem. #1410

25.1.0 - 2025-01-25

Changes

  • This release only ensures correct PyPI licensing metadata. #1386

24.3.0 - 2024-12-16

Backwards-incompatible Changes

  • Python 3.7 has been dropped. #1340

Changes

  • Introduce attrs.NothingType, for annotating types consistent with attrs.NOTHING. #1358
  • Allow mutating __suppress_context__ and __notes__ on frozen exceptions. #1365
  • attrs.converters.optional() works again when taking attrs.converters.pipe() or another Converter as its argument. #1372
  • attrs instances now support copy.replace(). #1383
  • attrs.validators.instance_of()'s type hints now allow for union types. For example: instance_of(str | int)

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump attrs from 23.2.0 to 25.3.0
1b63a0c 
Bumps [attrs](https://github.com/python-attrs/attrs) from 23.2.0 to 25.3.0.
- [Release notes](https://github.com/python-attrs/attrs/releases)
- [Changelog](https://github.com/python-attrs/attrs/blob/main/CHANGELOG.md)
- [Commits](python-attrs/attrs@23.2.0...25.3.0)

---
updated-dependencies:
- dependency-name: attrs
  dependency-version: 25.3.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot requested a review from a team as a code owner April 1, 2026 16:04
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies python

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants