Skip to content

deps: bump hatchling from 1.27.0 to 1.31.0#12

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/pip/hatchling-1.31.0
Closed

deps: bump hatchling from 1.27.0 to 1.31.0#12
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/pip/hatchling-1.31.0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 10, 2026

Copy link
Copy Markdown
Contributor

Bumps hatchling from 1.27.0 to 1.31.0.

Release notes

Sourced from hatchling's releases.

Hatchling v1.31.0

Fixed

  • Only rewrite the shebang of a shared script when a Python shebang is present on the first line, preserving binary files and other content verbatim instead of dropping leading bytes.

Hatchling v1.30.1

Fixed

  • Default core metadata version kept at 2.4 until more tools support 2.5

Hatchling v1.29.0

Fixed:

  • Source Date Epoch no longer fails when set to date before 1980.

Hatchling v1.28.0

Changed:

  • Drop support for Python 3.9

Added:

  • Add sbom-files option and sbom_files build data to the wheel build target for including Software Bill of Materials files.
Commits
  • 4b3fd7d release Hatchling v1.31.0
  • 19ced89 Fix env-dependency extras being dropped when a metadata hook is configured (#...
  • 3b45c75 Prepare hatchling for release 1.31.0 (#2330)
  • e3d9b95 Addresses bug where blank lines are dropped when there is no shebang (#2328)
  • 9bc573c Prepare for 1.17.1 hatch release (#2329)
  • bbb12bb Pass --no-header to uv pip compile for deterministic lockfiles (#2327)
  • 8c06373 Fix uv lock check header comparison (#2317)
  • 5cfbb54 fix: skip extend injection if already present in ruff config (#2305)
  • cf85971 fix: use TemporaryDirectory + pylock*.toml for temp lock files (#2303)
  • 40c471c Docs: Add hatch-calver to version scheme plugins (#1725)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [hatchling](https://github.com/pypa/hatch) from 1.27.0 to 1.31.0.
- [Release notes](https://github.com/pypa/hatch/releases)
- [Commits](pypa/hatch@hatchling-v1.27.0...hatchling-v1.31.0)

---
updated-dependencies:
- dependency-name: hatchling
  dependency-version: 1.31.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python Pull requests that update python code labels Jul 10, 2026
stelioszach03 added a commit that referenced this pull request Jul 11, 2026
Dependabot PR #12 only bumped the build-system pin in the root
pyproject.toml, but CI installs hatchling from
.github/requirements-ci.lock (via requirements-ci.in), leaving 1.27.0
installed and failing `python -m build --no-isolation` with an
unmet-dependency error. tools/vlabs-prm-eval/pyproject.toml carries
the same build-system pin and is built with --no-build-isolation too.

Bump hatchling to 1.31.0 in all four locations (root pyproject.toml,
tools/vlabs-prm-eval/pyproject.toml, requirements-ci.in,
requirements-ci.lock with official PyPI sha256 hashes). Dependency
set is unchanged between 1.27.0 and 1.31.0, so no other lock entries
need to move. Verified locally on Python 3.12: hash-locked install,
editable prm-eval install, and `python -m build --no-isolation` for
both packages all succeed.

Co-authored-by: stelioszach03 <stelioszach03@users.noreply.github.com>
Co-authored-by: Claude Opus 4.8 <noreply@anthropic.com>
@stelioszach03

Copy link
Copy Markdown
Contributor

Superseded by the complete bump (updates the CI-side pin too).

@dependabot @github

dependabot Bot commented on behalf of github Jul 11, 2026

Copy link
Copy Markdown
Contributor Author

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

@dependabot dependabot Bot deleted the dependabot/pip/hatchling-1.31.0 branch July 11, 2026 16:28
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file python Pull requests that update python code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant