chore(libs/deps): bump the production-dependencies group across 1 directory with 8 updates

[dependabot]

Bumps the production-dependencies group with 8 updates in the /autogpt_platform/autogpt_libs directory:

Package	From	To
fastapi	0.116.1	0.128.0
google-cloud-logging	3.12.1	3.13.0
launchdarkly-server-sdk	9.12.0	9.14.1
pydantic	2.11.7	2.12.5
pydantic-settings	2.10.1	2.12.0
pyjwt	2.10.1	2.11.0
supabase	2.16.0	2.27.2
uvicorn	0.35.0	0.40.0

Updates fastapi from 0.116.1 to 0.128.0

Release notes

Sourced from fastapi's releases.

0.128.0

Breaking Changes

• ➖ Drop support for pydantic.v1. PR #14609 by @​tiangolo.

Internal

• ✅ Run performance tests only on Pydantic v2. PR #14608 by @​tiangolo.

0.127.1

Refactors

• 🔊 Add a custom FastAPIDeprecationWarning. PR #14605 by @​tiangolo.

Docs

• 📝 Add documentary to website. PR #14600 by @​tiangolo.

Translations

• 🌐 Update translations for de (update-outdated). PR #14602 by @​nilslindemann.
• 🌐 Update translations for de (update-outdated). PR #14581 by @​nilslindemann.

Internal

• 🔧 Update pre-commit to use local Ruff instead of hook. PR #14604 by @​tiangolo.
• ✅ Add missing tests for code examples. PR #14569 by @​YuriiMotov.
• 👷 Remove lint job from test CI workflow. PR #14593 by @​YuriiMotov.
• 👷 Update secrets check. PR #14592 by @​tiangolo.
• 👷 Run CodSpeed tests in parallel to other tests to speed up CI. PR #14586 by @​tiangolo.
• 🔨 Update scripts and pre-commit to autofix files. PR #14585 by @​tiangolo.

0.127.0

Breaking Changes

• 🔊 Add deprecation warnings when using pydantic.v1. PR #14583 by @​tiangolo.

Translations

• 🔧 Add LLM prompt file for Korean, generated from the existing translations. PR #14546 by @​tiangolo.
• 🔧 Add LLM prompt file for Japanese, generated from the existing translations. PR #14545 by @​tiangolo.

Internal

• ⬆️ Upgrade OpenAI model for translations to gpt-5.2. PR #14579 by @​tiangolo.

0.126.0

Upgrades

• ➖ Drop support for Pydantic v1, keeping short temporary support for Pydantic v2's pydantic.v1. PR #14575 by @​tiangolo.

... (truncated)

Commits

• 8322a44 🔖 Release version 0.128.0
• 4b2cfcf 📝 Update release notes
• e300630 ➖ Drop support for pydantic.v1 (#14609)
• 1b3bea8 📝 Update release notes
• 34e8841 ✅ Run performance tests only on Pydantic v2 (#14608)
• cd90c78 🔖 Release version 0.127.1
• 93f4dfd 📝 Update release notes
• 535b5da 🔊 Add a custom FastAPIDeprecationWarning (#14605)
• 6b53786 📝 Update release notes
• d98f4eb 🔧 Update pre-commit to use local Ruff instead of hook (#14604)
• Additional commits viewable in compare view

Updates google-cloud-logging from 3.12.1 to 3.13.0

Release notes

Sourced from google-cloud-logging's releases.

google-cloud-logging 3.13.0

3.13.0 (2025-12-15)

Features

• Add support for python 3.14 (#1065) (6be3df6a)

Bug Fixes

• remove setup.cfg configuration for creating universal wheels (#981) (70f612c3)

Changelog

Sourced from google-cloud-logging's changelog.

3.13.0 (2025-12-15)

Features

• Add support for python 3.14 (#1065) (6be3df6aa94539cd2ab22a4fac55b343862228b2)

Bug Fixes

• remove setup.cfg configuration for creating universal wheels (#981) (70f612c3281f1df13f3aba6b19bc4e9397297f3d)

Commits

• 1415883 chore: librarian release pull request: 20251215T134006Z (#1066)
• 6be3df6 feat: Add support for python 3.14 (#1065)
• 36fb427 chore(librarian): onboard to librarian (#1061)
• eb189bf chore: update Python generator version to 1.25.1 (#1003)
• a7a28d1 test: ignore DeprecationWarning for credentials_file argument and Python ve...
• 70f612c fix: remove setup.cfg configuration for creating universal wheels (#981)
• e4c445a chore: Update gapic-generator-python to 1.25.0 (#985)
• 14364a5 test: Added cleanup of old sink storage buckets (#991)
• See full diff in compare view

Updates launchdarkly-server-sdk from 9.12.0 to 9.14.1

Release notes

Sourced from launchdarkly-server-sdk's releases.

v9.14.1

9.14.1 (2025-12-15)

Bug Fixes

• Remove all synchronizers in daemon mode (#388) (441a5ec)

---

This PR was generated with Release Please. See documentation.

v9.14.0

9.14.0 (2025-12-04)

Features

• adding data system option to create file datasource intializer (e5b121f)
• adding file data source as an intializer (#381) (3700d1d)

Bug Fixes

• Add warning if relying on Redis max_connections parameter (#387) (e6395fa), closes #386
• modified initializer behavior to spec (064f65c)

---

This PR was generated with Release Please. See documentation.

v9.13.1

9.13.1 (2025-11-19)

Bug Fixes

• Include ldclient.datasystem in docs (#379) (318c6fe)

---

This PR was generated with Release Please. See documentation.

v9.13.0

9.13.0 (2025-11-19)

... (truncated)

Changelog

Sourced from launchdarkly-server-sdk's changelog.

9.14.1 (2025-12-15)

Bug Fixes

• Remove all synchronizers in daemon mode (#388) (441a5ec)

9.14.0 (2025-12-04)

Features

• adding data system option to create file datasource intializer (e5b121f)
• adding file data source as an intializer (#381) (3700d1d)

Bug Fixes

• Add warning if relying on Redis max_connections parameter (#387) (e6395fa), closes #386
• modified initializer behavior to spec (064f65c)

9.13.1 (2025-11-19)

Bug Fixes

• Include ldclient.datasystem in docs (#379) (318c6fe)

9.13.0 (2025-11-19)

Features

• experimental: Release EAP support for FDv2 data system (#376) (0e7c32b)

9.12.3 (2025-10-30)

Bug Fixes

• Fix overly generic type hint on File data source (#365) (52a7499), closes #364

9.12.2 (2025-10-27)

Bug Fixes

• Fix incorrect event count in failure message (#359) (91f4163)

9.12.1 (2025-09-30)

... (truncated)

Commits

• 54e62cc chore(main): release 9.14.1 (#389)
• 441a5ec fix: Remove all synchronizers in daemon mode (#388)
• 7bb5378 chore(main): release 9.14.0 (#382)
• e6395fa fix: Add warning if relying on Redis max_connections parameter (#387)
• 45786a9 chore: Expose flag change listeners from data system (#384)
• 2b7eedc chore: Clean up unused _data_availability (#383)
• 3700d1d feat: adding file data source as an intializer (#381)
• 04a2c53 chore: PR comments
• 064f65c fix: modified initializer behavior to spec
• e5b121f feat: adding data system option to create file datasource intializer
• Additional commits viewable in compare view

Updates pydantic from 2.11.7 to 2.12.5

Release notes

Sourced from pydantic's releases.

v2.12.5 2025-11-26

v2.12.5 (2025-11-26)

This is the fifth 2.12 patch release, addressing an issue with the MISSING sentinel and providing several documentation improvements.

The next 2.13 minor release will be published in a couple weeks, and will include a new polymorphic serialization feature addressing the remaining unexpected changes to the serialize as any behavior.

• Fix pickle error when using model_construct() on a model with MISSING as a default value by @​ornariece in #12522.
• Several updates to the documentation by @​Viicos.

Full Changelog: pydantic/pydantic@v2.12.4...v2.12.5

v2.12.4 2025-11-05

v2.12.4 (2025-11-05)

This is the fourth 2.12 patch release, fixing more regressions, and reverting a change in the build() method of the AnyUrl and Dsn types.

This patch release also fixes an issue with the serialization of IP address types, when serialize_as_any is used. The next patch release will try to address the remaining issues with serialize as any behavior by introducing a new polymorphic serialization feature, that should be used in most cases in place of serialize as any.

• Fix issue with forward references in parent TypedDict classes by @​Viicos in #12427.

  This issue is only relevant on Python 3.14 and greater.

• Exclude fields with exclude_if from JSON Schema required fields by @​Viicos in #12430

• Revert URL percent-encoding of credentials in the build() method of the AnyUrl and Dsn types by @​davidhewitt in pydantic-core#1833.

  This was initially considered as a bugfix, but caused regressions and as such was fully reverted. The next release will include an opt-in option to percent-encode components of the URL.

• Add type inference for IP address types by @​davidhewitt in pydantic-core#1868.

  The 2.12 changes to the serialize_as_any behavior made it so that IP address types could not properly serialize to JSON.

• Avoid getting default values from defaultdict by @​davidhewitt in pydantic-core#1853.

  This fixes a subtle regression in the validation behavior of the collections.defaultdict type.

• Fix issue with field serializers on nested typed dictionaries by @​davidhewitt in pydantic-core#1879.

• Add more pydantic-core builds for the three-threaded version of Python 3.14 by @​davidhewitt in pydantic-core#1864.

Full Changelog: pydantic/pydantic@v2.12.3...v2.12.4

v2.12.3 2025-10-17

v2.12.3 (2025-10-17)

What's Changed

This is the third 2.13 patch release, fixing issues related to the FieldInfo class, and reverting a change to the supported after model validator function signatures.

... (truncated)

Changelog

Sourced from pydantic's changelog.

v2.12.5 (2025-11-26)

GitHub release

This is the fifth 2.12 patch release, addressing an issue with the MISSING sentinel and providing several documentation improvements.

The next 2.13 minor release will be published in a couple weeks, and will include a new polymorphic serialization feature addressing the remaining unexpected changes to the serialize as any behavior.

• Fix pickle error when using model_construct() on a model with MISSING as a default value by @​ornariece in #12522.
• Several updates to the documentation by @​Viicos.

v2.12.4 (2025-11-05)

GitHub release

This is the fourth 2.12 patch release, fixing more regressions, and reverting a change in the build() method of the AnyUrl and Dsn types.

This patch release also fixes an issue with the serialization of IP address types, when serialize_as_any is used. The next patch release will try to address the remaining issues with serialize as any behavior by introducing a new polymorphic serialization feature, that should be used in most cases in place of serialize as any.

• Fix issue with forward references in parent TypedDict classes by @​Viicos in #12427.

  This issue is only relevant on Python 3.14 and greater.

• Exclude fields with exclude_if from JSON Schema required fields by @​Viicos in #12430

• Revert URL percent-encoding of credentials in the build() method of the AnyUrl and Dsn types by @​davidhewitt in pydantic-core#1833.

  This was initially considered as a bugfix, but caused regressions and as such was fully reverted. The next release will include an opt-in option to percent-encode components of the URL.

• Add type inference for IP address types by @​davidhewitt in pydantic-core#1868.

  The 2.12 changes to the serialize_as_any behavior made it so that IP address types could not properly serialize to JSON.

• Avoid getting default values from defaultdict by @​davidhewitt in pydantic-core#1853.

  This fixes a subtle regression in the validation behavior of the collections.defaultdict type.

• Fix issue with field serializers on nested typed dictionaries by @​davidhewitt in pydantic-core#1879.

• Add more pydantic-core builds for the three-threaded version of Python 3.14 by @​davidhewitt in pydantic-core#1864.

v2.12.3 (2025-10-17)

GitHub release

... (truncated)

Commits

• bd2d0dd Prepare release v2.12.5
• 7d0302e Document security implications when using create_model()
• e9ef980 Fix typo in Standard Library Types documentation
• f2c20c0 Add pydantic-docs dev dependency, make use of versioning blocks
• a76c1aa Update documentation about JSON Schema
• 8cbc72c Add documentation about custom __init__()
• 99eba59 Add additional test for FieldInfo.get_default()
• c710769 Special case MISSING sentinel in smart_deepcopy()
• 20a9d77 Do not delete mock validator/serializer in rebuild_dataclass()
• c86515a Update parts of the model and revalidate_instances documentation
• Additional commits viewable in compare view

Updates pydantic-settings from 2.10.1 to 2.12.0

Release notes

Sourced from pydantic-settings's releases.

v2.12.0

What's Changed

• Support for enum kebab case. by @​kschwab in pydantic/pydantic-settings#686
• Apply source order: init > env > dotenv > secrets > defaults and pres… by @​chbndrhnns in pydantic/pydantic-settings#688
• Add NestedSecretsSettings source by @​makukha in pydantic/pydantic-settings#690
• Strip non-explicit default values. by @​kschwab in pydantic/pydantic-settings#692
• Coerce env vars if strict is True. by @​kschwab in pydantic/pydantic-settings#693
• Restore init kwarg names before returning final state dictionary. by @​kschwab in pydantic/pydantic-settings#700
• Drop Python3.9 support by @​hramezani in pydantic/pydantic-settings#699
• Adapt test_protected_namespace_defaults for dev. Pydantic by @​musicinmybrain in pydantic/pydantic-settings#637
• Add Python 3.14 by @​hramezani in pydantic/pydantic-settings#704
• Prepare release 2.12 by @​hramezani in pydantic/pydantic-settings#705

New Contributors

• @​chbndrhnns made their first contribution in pydantic/pydantic-settings#688

Full Changelog: pydantic/pydantic-settings@v2.11.0...v2.12.0

v2.11.0

What's Changed

• CLI Serialize Support by @​kschwab in pydantic/pydantic-settings#643
• Inspect type aliases to determine if an annotation is complex by @​tselepakis in pydantic/pydantic-settings#644
• Revert "fix: Respect 'cli_parse_args' from model_config with settings_customise_sources (#611)" by @​hramezani in pydantic/pydantic-settings#655
• Remove parsing of command line arguments from CliSettingsSource.__init__. by @​trygve-baerland in pydantic/pydantic-settings#656
• turn off allow_abbrev on subparsers by @​mroch in pydantic/pydantic-settings#658
• CLI Serialization Fixes by @​kschwab in pydantic/pydantic-settings#649
• Fix PydanticModel type checking. by @​kschwab in pydantic/pydantic-settings#659
• Avoid env_prefix falling back to env vars without prefix by @​tselepakis in pydantic/pydantic-settings#648
• Warn if model_config sets unused keys for missing settings sources by @​HomerusJa in pydantic/pydantic-settings#663
• Included endpoint_url kwarg in AWSSecretsManagerSettingsSource class by @​adrianohrl in pydantic/pydantic-settings#664
• Fix typo ("Accesing") in the "Adding sources" docs by @​deepyaman in pydantic/pydantic-settings#668
• CLI Windows Path Fix by @​kschwab in pydantic/pydantic-settings#669
• Cli root model support by @​kschwab in pydantic/pydantic-settings#677
• Snake case conversion in Azure Key Vault by @​AndreuCodina in pydantic/pydantic-settings#680
• Make InitSettingsSource resolution deterministic by @​enrico-stauss in pydantic/pydantic-settings#681
• Update deps by @​hramezani in pydantic/pydantic-settings#683

New Contributors

• @​tselepakis made their first contribution in pydantic/pydantic-settings#644
• @​trygve-baerland made their first contribution in pydantic/pydantic-settings#656
• @​mroch made their first contribution in pydantic/pydantic-settings#658
• @​HomerusJa made their first contribution in pydantic/pydantic-settings#663
• @​adrianohrl made their first contribution in pydantic/pydantic-settings#664
• @​deepyaman made their first contribution in pydantic/pydantic-settings#668
• @​enrico-stauss made their first contribution in pydantic/pydantic-settings#681

Full Changelog: pydantic/pydantic-settings@2.10.1...v2.11.0

Commits

• 584983d Prepare release 2.12 (#705)
• 6b4d87e Add Python 3.14 (#704)
• 02de5b6 Adapt test_protected_namespace_defaults for dev. Pydantic (#637)
• 4239ea4 Drop Python3.9 support (#699)
• 5008c69 Restore init kwarg names before returning final state dictionary. (#700)
• 4433101 Coerce env vars if strict is True. (#693)
• 4d2ebfd Strip non-explicit default values. (#692)
• 4a6ffca Add NestedSecretsSettings source (#690)
• 7a6e96e Apply source order: init > env > dotenv > secrets > defaults and pres… (#688)
• 68563ed Support for enum kebab case. (#686)
• Additional commits viewable in compare view

Updates pyjwt from 2.10.1 to 2.11.0

Release notes

Sourced from pyjwt's releases.

2.11.0

What's Changed

• Fixed type error in comment by @​shuhaib-aot in jpadilla/pyjwt#1026
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci[bot] in jpadilla/pyjwt#1018
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci[bot] in jpadilla/pyjwt#1033
• Make note of use of leeway with nbf by @​djw8605 in jpadilla/pyjwt#1034
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci[bot] in jpadilla/pyjwt#1035
• Fixes #964: Validate key against allowed types for Algorithm family by @​pachewise in jpadilla/pyjwt#985
• Feat #1024: Add iterator for PyJWKSet by @​pachewise in jpadilla/pyjwt#1041
• Fixes #1039: Add iss, issuer type checks by @​pachewise in jpadilla/pyjwt#1040
• Fixes #660: Improve typing/logic for options in decode, decode_complete; Improve docs by @​pachewise in jpadilla/pyjwt#1045
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci[bot] in jpadilla/pyjwt#1042
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci[bot] in jpadilla/pyjwt#1052
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci[bot] in jpadilla/pyjwt#1053
• Fix #1022: Map algorithm=None to "none" by @​qqii in jpadilla/pyjwt#1056
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci[bot] in jpadilla/pyjwt#1055
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci[bot] in jpadilla/pyjwt#1058
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci[bot] in jpadilla/pyjwt#1060
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci[bot] in jpadilla/pyjwt#1061
• Fixes #1047: Correct PyJWKClient.get_signing_key_from_jwt annotation by @​khvn26 in jpadilla/pyjwt#1048
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci[bot] in jpadilla/pyjwt#1062
• Fixed doc string typo in _validate_jti() function #1063 by @​kuldeepkhatke in jpadilla/pyjwt#1064
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci[bot] in jpadilla/pyjwt#1065
• Update SECURITY.md by @​auvipy in jpadilla/pyjwt#1057
• Typing fix: use float instead of int for lifespan and timeout by @​nikitagashkov in jpadilla/pyjwt#1068
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci[bot] in jpadilla/pyjwt#1067
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci[bot] in jpadilla/pyjwt#1071
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci[bot] in jpadilla/pyjwt#1076
• Fix TYP header documentation by @​fobiasmog in jpadilla/pyjwt#1046
• doc: Document claims sub and jti by @​cleder in jpadilla/pyjwt#1088
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci[bot] in jpadilla/pyjwt#1077
• Bump actions/setup-python from 5 to 6 by @​dependabot[bot] in jpadilla/pyjwt#1089
• Bump actions/stale from 8 to 10 by @​dependabot[bot] in jpadilla/pyjwt#1090
• Bump actions/checkout from 4 to 5 by @​dependabot[bot] in jpadilla/pyjwt#1083
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci[bot] in jpadilla/pyjwt#1091
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci[bot] in jpadilla/pyjwt#1093
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci[bot] in jpadilla/pyjwt#1096
• Resolve package build warnings by @​kurtmckee in jpadilla/pyjwt#1105
• Support Python 3.14, and test against PyPy 3.10+ by @​kurtmckee in jpadilla/pyjwt#1104
• Fix a SyntaxWarning caused by invalid escape sequences by @​kurtmckee in jpadilla/pyjwt#1103
• Standardize CHANGELOG links to PRs by @​kurtmckee in jpadilla/pyjwt#1110
• Migrate from pep517, which is deprecated, to build by @​kurtmckee in jpadilla/pyjwt#1108
• Fix incorrectly-named test suite function by @​kurtmckee in jpadilla/pyjwt#1116
• Fix Read the Docs builds by @​kurtmckee in jpadilla/pyjwt#1111
• Bump actions/download-artifact from 4 to 6 by @​dependabot[bot] in jpadilla/pyjwt#1118
• Escalate test suite warnings to errors by @​kurtmckee in jpadilla/pyjwt#1107
• Add pyupgrade as a pre-commit hook by @​kurtmckee in jpadilla/pyjwt#1109
• Simplify the test suite decorators by @​kurtmckee in jpadilla/pyjwt#1113
• Improve coverage config and eliminate unused test suite code by @​kurtmckee in jpadilla/pyjwt#1115
• Build a shared wheel once in the test suite by @​kurtmckee in jpadilla/pyjwt#1114

... (truncated)

Changelog

Sourced from pyjwt's changelog.

v2.11.0 <https://github.com/jpadilla/pyjwt/compare/2.10.1...2.11.0>__

Fixed

- Enforce ECDSA curve validation per RFC 7518 Section 3.4.
- Fix build system warnings by @kurtmckee in `[#1105](https://github.com/jpadilla/pyjwt/issues/1105) <https://github.com/jpadilla/pyjwt/pull/1105>`__
- Validate key against allowed types for Algorithm family in `[#964](https://github.com/jpadilla/pyjwt/issues/964) <https://github.com/jpadilla/pyjwt/pull/964>`__
- Add iterator for JWKSet in `[#1041](https://github.com/jpadilla/pyjwt/issues/1041) <https://github.com/jpadilla/pyjwt/pull/1041>`__
- Validate `iss` claim is a string during encoding and decoding by @pachewise in `[#1040](https://github.com/jpadilla/pyjwt/issues/1040) <https://github.com/jpadilla/pyjwt/pull/1040>`__
- Improve typing/logic for `options` in decode, decode_complete by @pachewise in `[#1045](https://github.com/jpadilla/pyjwt/issues/1045) <https://github.com/jpadilla/pyjwt/pull/1045>`__
- Declare float supported type for lifespan and timeout by @nikitagashkov in `[#1068](https://github.com/jpadilla/pyjwt/issues/1068) <https://github.com/jpadilla/pyjwt/pull/1068>`__
- Fix ``SyntaxWarning``\s/``DeprecationWarning``\s caused by invalid escape sequences by @kurtmckee in `[#1103](https://github.com/jpadilla/pyjwt/issues/1103) <https://github.com/jpadilla/pyjwt/pull/1103>`__
- Development: Build a shared wheel once to speed up test suite setup times by @kurtmckee in `[#1114](https://github.com/jpadilla/pyjwt/issues/1114) <https://github.com/jpadilla/pyjwt/pull/1114>`__
- Development: Test type annotations across all supported Python versions,
  increase the strictness of the type checking, and remove the mypy pre-commit hook
  by @kurtmckee in `[#1112](https://github.com/jpadilla/pyjwt/issues/1112) <https://github.com/jpadilla/pyjwt/pull/1112>`__
Added

• Support Python 3.14, and test against PyPy 3.10 and 3.11 by @​kurtmckee in [#1104](https://github.com/jpadilla/pyjwt/issues/1104) <https://github.com/jpadilla/pyjwt/pull/1104>__
• Development: Migrate to build to test package building in CI by @​kurtmckee in [#1108](https://github.com/jpadilla/pyjwt/issues/1108) <https://github.com/jpadilla/pyjwt/pull/1108>__
• Development: Improve coverage config and eliminate unused test suite code by @​kurtmckee in [#1115](https://github.com/jpadilla/pyjwt/issues/1115) <https://github.com/jpadilla/pyjwt/pull/1115>__
• Docs: Standardize CHANGELOG links to PRs by @​kurtmckee in [#1110](https://github.com/jpadilla/pyjwt/issues/1110) <https://github.com/jpadilla/pyjwt/pull/1110>__
• Docs: Fix Read the Docs builds by @​kurtmckee in [#1111](https://github.com/jpadilla/pyjwt/issues/1111) <https://github.com/jpadilla/pyjwt/pull/1111>__
• Docs: Add example of using leeway with nbf by @​djw8605 in [#1034](https://github.com/jpadilla/pyjwt/issues/1034) <https://github.com/jpadilla/pyjwt/pull/1034>__
• Docs: Refactored docs with autodoc; added PyJWS and jwt.algorithms docs by @​pachewise in [#1045](https://github.com/jpadilla/pyjwt/issues/1045) <https://github.com/jpadilla/pyjwt/pull/1045>__
• Docs: Documentation improvements for "sub" and "jti" claims by @​cleder in [#1088](https://github.com/jpadilla/pyjwt/issues/1088) <https://github.com/jpadilla/pyjwt/pull/1088>__
• Development: Add pyupgrade as a pre-commit hook by @​kurtmckee in [#1109](https://github.com/jpadilla/pyjwt/issues/1109) <https://github.com/jpadilla/pyjwt/pull/1109>__
• Add minimum key length validation for HMAC and RSA keys (CWE-326). Warns by default via InsecureKeyLengthWarning when keys are below minimum recommended lengths per RFC 7518 Section 3.2 (HMAC) and NIST SP 800-131A (RSA). Pass enforce_minimum_key_length=True in options to PyJWT or PyJWS to raise InvalidKeyError instead.
• Refactor PyJWT to own an internal PyJWS instance instead of calling global api_jws functions.

Commits

• 697344d bump up version
• e4d0aec fix: pre-commit
• df9a6a0 fix: failing test
• 2b2e53c fix: docs
• 635c8d8 fix: failing mypy
• 96ae356 feat: add minimum key length validation for HMAC and RSA
• 5b86227 fix: enforce ECDSA curve validation per RFC 7518 Section 3.4
• 04947d7 Bump actions/download-artifact from 6 to 7 (#1125)
• dd44834 Fix leeway value in usage documentation (#1124)
• 407f0bd Thoroughly test type annotations, and resolve errors (#1112)
• Additional commits viewable in compare view

Updates supabase from 2.16.0 to 2.27.2

Release notes

Sourced from supabase's releases.

v2.27.2

2.27.2 (2026-01-14)

Bug Fixes

• ci: generate new token for release-please (#1348) (c2ad37f)
• ci: run CI when .github files change (#1349) (a221aac)
• realtime: ammend reconnect logic to not unsubscribe (#1346) (cfbe594)

v2.27.1

2.27.1 (2026-01-06)

Bug Fixes

• realtime: use 'event' instead of 'events' in postgres_changes protocol (#1339) (c1e7986)
• storage: catch bad responses from server (#1344) (ddb5054)

v2.27.0

2.27.0 (2025-12-16)

Features

• auth: add X (OAuth 2.0) provider (#1335) (f600f96)

Bug Fixes

• storage: replace deprecated pydantic Extra with literal values (#1334) (6df3545)

v2.26....

Description has been truncated

[coderabbitai]

Important

Review skipped

Ignore keyword(s) in the title.

⛔ Ignored keywords (1)

• chore

Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository. To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

• 🔍 Trigger a full review

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[ntindle]

@claude re-lock this

[claude]

Claude finished @ntindle's task in 1m 13s —— View job

---

Re-locked poetry.lock

• Read repo setup instructions (CLAUDE.md)
• Re-lock poetry dependencies in autogpt_platform/autogpt_libs
• Commit and push changes

Re-ran poetry lock in autogpt_platform/autogpt_libs/ and pushed the updated lock file (4 lines changed - minor hash/metadata updates).
|

[ntindle]

@claude update supabase here too. you'll need to relock it too i bet
Because autogpt-platform-backend depends on autogpt-libs (0.2.0) @ file:///home/runner/work/AutoGPT/AutoGPT/autogpt_platform/autogpt_libs which depends on supabase (^2.27.2), supabase is required.
So, because autogpt-platform-backend depends on supabase (2.17.0), version solving failed.

[claude]

Claude finished @ntindle's task in 1m 59s —— View job

---

Updated backend dependencies to match autogpt_libs

• Read repo setup instructions (CLAUDE.md)
• Update supabase version in backend's pyproject.toml (2.17.0 → 2.27.2)
• Update other conflicting dependencies in backend to match autogpt_libs requirements:
  • fastapi ^0.116.1 → ^0.128.0
  • pydantic ^2.11.7 → ^2.12.5
  • pydantic-settings ^2.10.1 → ^2.12.0
  • uvicorn ^0.35.0 → ^0.40.0
  • launchdarkly-server-sdk ^9.12.0 → ^9.14.1
• Re-lock poetry dependencies in backend
• Commit and push changes

Updated autogpt_platform/backend/pyproject.toml and re-locked poetry.lock to resolve the version solving failure. The backend's dependency versions now satisfy the constraints from the updated autogpt_libs.

View job

[github-actions]

This pull request has conflicts with the base branch, please resolve those so we can evaluate the pull request.

[github-actions]

Conflicts have been resolved! 🎉 A maintainer will review the pull request shortly.

[ntindle]

@claude re-lock the backend and redo the fastapi update -- i fucked it sorry

[claude]

Claude finished @ntindle's task in 1m 44s —— View job

---

Re-locked backend and fixed fastapi update

• Read repo setup instructions (CLAUDE.md)
• Check current state of backend and libs pyproject.toml
• Fix fastapi version in backend pyproject.toml (^0.116.1 → ^0.128.0)
• Re-lock backend poetry.lock (removed corrupted lock file and regenerated)
• Commit and push changes

Updated fastapi in autogpt_platform/backend/pyproject.toml from ^0.116.1 to ^0.128.0 to match the autogpt_libs requirement. The previous lock file was corrupted so it was regenerated from scratch.

View job