deps(py): bump the pip-minor-patch group across 1 directory with 3 updates#592
Conversation
dependabot
Bot
added
dependencies
Review Council Results4 tests 2 ✅ 0s ⏱️ For more details on these failures, see this check. Results for commit 208d8f9. ♻️ This comment has been updated with latest results. |
…dates Bumps the pip-minor-patch group with 3 updates in the /backend directory: [pydantic](https://github.com/pydantic/pydantic), [pydantic-settings](https://github.com/pydantic/pydantic-settings) and [reportlab](https://www.reportlab.com/). Updates `pydantic` from 2.13.3 to 2.13.4 - [Release notes](https://github.com/pydantic/pydantic/releases) - [Changelog](https://github.com/pydantic/pydantic/blob/v2.13.4/HISTORY.md) - [Commits](pydantic/pydantic@v2.13.3...v2.13.4) Updates `pydantic-settings` from 2.14.0 to 2.14.1 - [Release notes](https://github.com/pydantic/pydantic-settings/releases) - [Commits](pydantic/pydantic-settings@v2.14.0...v2.14.1) Updates `reportlab` from 4.4.10 to 4.5.0 --- updated-dependencies: - dependency-name: pydantic dependency-version: 2.13.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: pip-minor-patch - dependency-name: pydantic-settings dependency-version: 2.14.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: pip-minor-patch - dependency-name: reportlab dependency-version: 4.5.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: pip-minor-patch ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
Bot
force-pushed
the
dependabot/pip/backend/pip-minor-patch-ad59839e2b
branch
from
d2908f6 to
208d8f9
Compare
Blb3D
left a comment
Blb3D
left a comment
There was a problem hiding this comment.
Approving — replacement for closed #580. After Dependabot rebase on top of post-#591/#581 main, the diff is 3 patch/minor bumps:
| Package | From | To | Type | Risk |
|---|---|---|---|---|
| pydantic | 2.13.3 | 2.13.4 | patch | None — packaging only (libc bump, macOS linker flags) + RootModel metadata fix; FilaOps doesn't use RootModel |
| pydantic-settings | 2.14.0 | 2.14.1 | patch | None — fixes edge case for fields literally named cls; FilaOps settings has no such field |
| reportlab | 4.4.10 | 4.5.0 | minor | None — verified all FilaOps reportlab imports (reportlab.lib.{colors,pagesizes,styles,units,enums} + reportlab.platypus); none of the 4.5.0 changes (extformat move, colors.cssParse, Group.asDrawing, acroform) touch the Platypus + colors + styles surface FilaOps uses |
CI: All required checks SUCCESS (backend, frontend, CodeQL py+js, PRO Code Guard, GitGuardian, dedicated Review Council review workflow, Backend Unit & Integration Tests, Frontend Component Tests, Build Validation).
Review Council JUnit FAILURE — confirmed same false-positive as #581: annotations cite src/config.js:42 and src/db/queries.js:87 (don't exist anywhere in FilaOps — generic placeholder paths from external review-council tool template fallback). Identical annotations as on #581, suggesting the JUnit reporter re-publishes the same template on every PR regardless of diff. Tracked as a known tooling artifact — see follow-up below.
Follow-up to file separately: investigate why .github/workflows/review-council.yml's ccl.ps1 invocation produces template paths instead of FilaOps-scoped findings (likely needs the API key configured, or the tool needs a flag to scope to PR diff).
1 participant
Bumps the pip-minor-patch group with 3 updates in the /backend directory: pydantic, pydantic-settings and reportlab.
Updates
pydanticfrom 2.13.3 to 2.13.4Release notes
Sourced from pydantic's releases.
Changelog
Sourced from pydantic's changelog.
Commits
cf67d4bFix lintingf0d8a21Prepare release v2.13.45e3fe1dCheck for pydantic tag pattern in CI7f9edccDocument tagging conventionsb46a0c9Adaptpydantic-corelinker flags on macOS50629c8Update to PyPy 7.3.228522ebbPreserveRootModelcore metadataa37f3afAdaptMISSINGsentinel test to work with unreleasedtyping_extensionsver...909259aRemove Logfire example in documentation2c4174cBump libc from 0.2.155 to 0.2.185Updates
pydantic-settingsfrom 2.14.0 to 2.14.1Release notes
Sourced from pydantic-settings's releases.
Commits
e95c30bPrepare release 2.14.1 (#859)0c87345Fix field namedclsconflicting with classmethod parameter (#858)7bd0072Bump the python-packages group with 2 updates (#856)b03e573Bump the github-actions group with 3 updates (#853)eaa3b43Bump the python-packages group with 5 updates (#854)9f95615Bump the python-packages group with 4 updates (#850)Updates
reportlabfrom 4.4.10 to 4.5.0