Skip to content

Bump the pip group with 7 updates#270

Open
dependabot[bot] wants to merge 1 commit intodevelopfrom
dependabot/pip/pip-a06c477bc2
Open

Bump the pip group with 7 updates#270
dependabot[bot] wants to merge 1 commit intodevelopfrom
dependabot/pip/pip-a06c477bc2

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 3, 2026

Bumps the pip group with 7 updates:

Package From To
boto3 1.35.99 1.42.59
botocore 1.35.99 1.42.59
fastapi 0.133.1 0.135.1
pydantic-core 2.41.5 2.42.0
python-dotenv 1.2.1 1.2.2
s3transfer 0.10.4 0.16.0
sentry-sdk 2.53.0 2.54.0

Updates boto3 from 1.35.99 to 1.42.59

Commits
  • cef3033 Merge branch 'release-1.42.59'
  • 463794a Bumping version to 1.42.59
  • 591d881 Add changelog entries from botocore
  • d327a89 Merge branch 'release-1.42.58'
  • 8727558 Merge branch 'release-1.42.58' into develop
  • 14eee00 Bumping version to 1.42.58
  • dbe54fa Add changelog entries from botocore
  • 1536571 Merge branch 'release-1.42.57'
  • 8108f80 Merge branch 'release-1.42.57' into develop
  • 20eb2f4 Bumping version to 1.42.57
  • Additional commits viewable in compare view

Updates botocore from 1.35.99 to 1.42.59

Commits
  • c204bb1 Merge branch 'release-1.42.59'
  • 7e59865 Bumping version to 1.42.59
  • b38a03c Update to latest models
  • 97336ff Merge customizations for ARC Region switch
  • f76046b Merge branch 'release-1.42.58'
  • be2689a Merge branch 'release-1.42.58' into develop
  • 47f8789 Bumping version to 1.42.58
  • 14bc74f Update to latest models
  • 8c0427a Add support for None values in list parsing (#3618)
  • 86d9ec3 Merge branch 'release-1.42.57'
  • Additional commits viewable in compare view

Updates fastapi from 0.133.1 to 0.135.1

Release notes

Sourced from fastapi's releases.

0.135.1

Fixes

  • 🐛 Fix, avoid yield from a TaskGroup, only as an async context manager, closed in the request async exit stack. PR #15038 by @​tiangolo.

Docs

Internal

0.135.0

Features

0.134.0

Features

  • ✨ Add support for streaming JSON Lines and binary data with yield. PR #15022 by @​tiangolo.
    • This also upgrades Starlette from >=0.40.0 to >=0.46.0, as it's needed to properly unrwap and re-raise exceptions from exception groups.
    • New docs: Stream JSON Lines.
    • And new docs: Stream Data.

Docs

  • 📝 Update Library Agent Skill with streaming responses. PR #15024 by @​tiangolo.
  • 📝 Update docs for responses and new stream with yield. PR #15023 by @​tiangolo.
  • 📝 Add await in StreamingResponse code example to allow cancellation. PR #14681 by @​casperdcl.
  • 📝 Rename docs_src/websockets to docs_src/websockets_ to avoid import errors. PR #14979 by @​YuriiMotov.

Internal

Commits
  • ca5f60e 🔖 Release version 0.135.1
  • 87f75aa 📝 Update release notes
  • 8a9258b 🐛 Fix, avoid yield from a TaskGroup, only as an async context manager, closed...
  • 6038507 📝 Update release notes
  • c796ba4 👥 Update FastAPI People - Experts (#15037)
  • b24aa03 📝 Update release notes
  • 2c61047 ✏️ Fix typo in docs/en/docs/_llm-test.md (#15007)
  • e3bbeef 📝 Update release notes
  • d726c8c 📝 Update release notes
  • cf514e6 👥 Update FastAPI People - Contributors and Translators (#15029)
  • Additional commits viewable in compare view

Updates pydantic-core from 2.41.5 to 2.42.0

Commits

Updates python-dotenv from 1.2.1 to 1.2.2

Release notes

Sourced from python-dotenv's releases.

v1.2.2

Added

  • Support for Python 3.14, including the free-threaded (3.14t) build. (#)

Changed

  • The dotenv run command now forwards flags directly to the specified command by @​bbc2 in theskumar/python-dotenv#607
  • Improved documentation clarity regarding override behavior and the reference page.
  • Updated PyPy support to version 3.11.
  • Documentation for FIFO file support.
  • Support for Python 3.9.

Fixed

Breaking Changes

  • dotenv.set_key and dotenv.unset_key used to follow symlinks in some situations. This is no longer the case. For that behavior to be restored in all cases, follow_symlinks=True should be used.

  • In the CLI, set and unset used to follow symlinks in some situations. This is no longer the case.

  • dotenv.set_key, dotenv.unset_key and the CLI commands set and unset used to reset the file mode of the modified .env file to 0o600 in some situations. This is no longer the case: The original mode of the file is now preserved. Is the file needed to be created or wasn't a regular file, mode 0o600 is used.

Misc

New Contributors

Full Changelog: theskumar/python-dotenv@v1.2.1...v1.2.2

Changelog

Sourced from python-dotenv's changelog.

[1.2.2] - 2026-03-01

Added

  • Support for Python 3.14, including the free-threaded (3.14t) build. (#588)

Changed

  • The dotenv run command now forwards flags directly to the specified command by [@​bbc2] in #607
  • Improved documentation clarity regarding override behavior and the reference page.
  • Updated PyPy support to version 3.11.
  • Documentation for FIFO file support.
  • Dropped Support for Python 3.9.

Fixed

  • Improved set_key and unset_key behavior when interacting with symlinks by [@​bbc2] in [790c5c0]
  • Corrected the license specifier and added missing Python 3.14 classifiers in package metadata by [@​JYOuyang] in #590

Breaking Changes

  • dotenv.set_key and dotenv.unset_key used to follow symlinks in some situations. This is no longer the case. For that behavior to be restored in all cases, follow_symlinks=True should be used.

  • In the CLI, set and unset used to follow symlinks in some situations. This is no longer the case.

  • dotenv.set_key, dotenv.unset_key and the CLI commands set and unset used to reset the file mode of the modified .env file to 0o600 in some situations. This is no longer the case: The original mode of the file is now preserved. Is the file needed to be created or wasn't a regular file, mode 0o600 is used.

Commits

Updates s3transfer from 0.10.4 to 0.16.0

Changelog

Sourced from s3transfer's changelog.

0.16.0

  • feature:awscrt: CRTTransferManager now supports the following TransferConfig options - multipart_threshold, multipart_chunksize, max_request_concurrency

0.15.0

  • feature:CopyPartTask: Validate ETag of stored object during multipart copies

0.14.0

  • feature:download: Validate requested range matches content range in response for multipart downloads

0.13.1

  • enhancement:Python: Added provisional support for the upcoming Python 3.14 release

0.13.0

  • feature:GetObjectTask: Validate ETag of stored object during multipart downloads

0.12.0

  • feature:Python: End of support for Python 3.8

0.11.5

  • enhancement:s3: Implement memory performance fixes for downloads to non-seekable streams

0.11.4

  • enhancement:Dependencies: Update the floor version of botocore to 1.37.4 to match imports.
  • enhancement:Tasks: Pass Botocore context from parent to child threads.

0.11.3

... (truncated)

Commits
  • 8ebcc1e Merge branch 'release-0.16.0'
  • cc4db16 Bumping version to 0.16.0
  • 3d60212 Merge pull request #361 from hssyoo/crt-mode
  • ee83a56 Add test for arg removal
  • 9363a53 Validate min CRT version for config options
  • ce2ea72 Use request_type to build CRT args
  • fa2d8e0 Edit changelog entry to feature type
  • 32137a7 Add support for max_request_concurrency
  • 6519e63 Add TransferConfig support for CRTTransferManager
  • e7d0e93 Merge branch 'release-0.15.0'
  • Additional commits viewable in compare view

Updates sentry-sdk from 2.53.0 to 2.54.0

Release notes

Sourced from sentry-sdk's releases.

2.54.0

New Features ✨

Bug Fixes 🐛

Openai

Other

Documentation 📚

Internal Changes 🔧

Agents

Openai

Openai Agents

Other

... (truncated)

Changelog

Sourced from sentry-sdk's changelog.

2.54.0

New Features ✨

Bug Fixes 🐛

Openai

Other

Documentation 📚

Internal Changes 🔧

Agents

Openai

Openai Agents

Other

... (truncated)

Commits
  • 0b31018 release: 2.54.0
  • 7a02bde fix(openai): Attach response model with streamed Completions API (#5557)
  • 09675e3 fix(openai): Attach response model with streamed Responses API (#5554)
  • 678e9a7 ref(openai): Only handle streamed results when applicable (#5553)
  • 087ec4d ref(openai): Extract input in API-specific functions (#5546)
  • 6837662 ref(openai): Separate output handling (#5543)
  • c11d1f2 ci: updated codecov.yml (#5571)
  • c56f1f7 fix(wsgi): Do not wrap file responses when uWSGI offload-threads is enabled (...
  • 8628732 feat: Add set_attribute, remove_attribute to global API (#5555)
  • a4e4c57 docs: Add troubleshooting note for editable installs with uWSGI (#5552)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the pip group with 7 updates
65633cf 
Bumps the pip group with 7 updates:

| Package | From | To |
| --- | --- | --- |
| [boto3](https://github.com/boto/boto3) | `1.35.99` | `1.42.59` |
| [botocore](https://github.com/boto/botocore) | `1.35.99` | `1.42.59` |
| [fastapi](https://github.com/fastapi/fastapi) | `0.133.1` | `0.135.1` |
| [pydantic-core](https://github.com/pydantic/pydantic-core) | `2.41.5` | `2.42.0` |
| [python-dotenv](https://github.com/theskumar/python-dotenv) | `1.2.1` | `1.2.2` |
| [s3transfer](https://github.com/boto/s3transfer) | `0.10.4` | `0.16.0` |
| [sentry-sdk](https://github.com/getsentry/sentry-python) | `2.53.0` | `2.54.0` |


Updates `boto3` from 1.35.99 to 1.42.59
- [Release notes](https://github.com/boto/boto3/releases)
- [Commits](boto/boto3@1.35.99...1.42.59)

Updates `botocore` from 1.35.99 to 1.42.59
- [Commits](boto/botocore@1.35.99...1.42.59)

Updates `fastapi` from 0.133.1 to 0.135.1
- [Release notes](https://github.com/fastapi/fastapi/releases)
- [Commits](fastapi/fastapi@0.133.1...0.135.1)

Updates `pydantic-core` from 2.41.5 to 2.42.0
- [Release notes](https://github.com/pydantic/pydantic-core/releases)
- [Commits](https://github.com/pydantic/pydantic-core/commits)

Updates `python-dotenv` from 1.2.1 to 1.2.2
- [Release notes](https://github.com/theskumar/python-dotenv/releases)
- [Changelog](https://github.com/theskumar/python-dotenv/blob/main/CHANGELOG.md)
- [Commits](theskumar/python-dotenv@v1.2.1...v1.2.2)

Updates `s3transfer` from 0.10.4 to 0.16.0
- [Changelog](https://github.com/boto/s3transfer/blob/develop/CHANGELOG.rst)
- [Commits](boto/s3transfer@0.10.4...0.16.0)

Updates `sentry-sdk` from 2.53.0 to 2.54.0
- [Release notes](https://github.com/getsentry/sentry-python/releases)
- [Changelog](https://github.com/getsentry/sentry-python/blob/master/CHANGELOG.md)
- [Commits](getsentry/sentry-python@2.53.0...2.54.0)

---
updated-dependencies:
- dependency-name: boto3
  dependency-version: 1.42.59
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: pip
- dependency-name: botocore
  dependency-version: 1.42.59
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: pip
- dependency-name: fastapi
  dependency-version: 0.135.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: pip
- dependency-name: pydantic-core
  dependency-version: 2.42.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: pip
- dependency-name: python-dotenv
  dependency-version: 1.2.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip
- dependency-name: s3transfer
  dependency-version: 0.16.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: pip
- dependency-name: sentry-sdk
  dependency-version: 2.54.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: pip
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Mar 3, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python Pull requests that update Python code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants