Skip to content

[py] Bump dev dependencies #16002

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Jul 6, 2025
Merged

[py] Bump dev dependencies #16002

merged 1 commit into from
Jul 6, 2025

Conversation

cgoldberg
Copy link
Member

@cgoldberg cgoldberg commented Jul 6, 2025
edited by qodo-merge-pro bot
Loading

User description

💥 What does this PR do?

This PR bumps the Python dependencies used for local development and CI. It updates py/requirements.txt and includes a new generated lock file py/requirements_lock.txt.

upgrading cryptography from 45.0.4 to 45.0.5 upgrading jaraco.functools from 4.1.0 to 4.2.1 upgrading multidict from 6.5.0 to 6.6.3 upgrading typing_extensions from 4.14.0 to 4.14.1

This was necessary because the version of multidict we specified was yanked from PyPI.

💡 Additional Considerations

This change is for Dev/CI dependencies only and does not affect the package dependencies we ship.

🔄 Types of changes

  • Development/CI

PR Type

Other

Description

  • Bump Python development dependencies to latest versions

  • Fix yanked multidict package version issue

  • Update cryptography, jaraco.functools, and typing_extensions

  • Generate new requirements lock file with updated hashes

Changes diagram

flowchart LR A["requirements.txt"] --> B["Update 4 dependencies"] B --> C["Generate lock file"] C --> D["requirements_lock.txt"]
Loading

Changes walkthrough 📝

Relevant files
Dependencies
requirements.txt
Bump four Python development dependencies                               

py/requirements.txt

  • Updated cryptography from 45.0.4 to 45.0.5
  • Updated jaraco.functools from 4.1.0 to 4.2.1
  • Updated multidict from 6.5.0 to 6.6.3 (fixing yanked version)
  • Updated typing_extensions from 4.14.0 to 4.14.1
    		• +4/-4     
    requirements_lock.txt
    Regenerate lock file with updated dependency hashes           

    py/requirements_lock.txt

  • Updated cryptography package hashes for version 45.0.5
  • Updated jaraco-functools package hashes for version 4.2.1
  • Updated multidict package hashes for version 6.6.3
  • Updated typing-extensions package hashes for version 4.14.1
    		• +155/-155
    Need help?
  • Type /help how to ... in the comments thread for any questions about Qodo Merge usage.
  • Check out the documentation for more information.
    •
    @selenium-ci selenium-ci added the C-py Python Bindings label Jul 6, 2025
    @qodo-merge-pro Qodo Merge Pro
    Copy link
    Contributor

    qodo-merge-pro bot commented Jul 6, 2025

    PR Reviewer Guide 🔍

    Here are some key observations to aid the review process:

    ⏱️ Estimated effort to review: 1 🔵⚪⚪⚪⚪
    🧪 No relevant tests
    🔒 No security concerns identified
    ⚡ No major issues detected
    @qodo-merge-pro Qodo Merge Pro
    Copy link
    Contributor

    qodo-merge-pro bot commented Jul 6, 2025

    PR Code Suggestions ✨

    No code suggestions found for the PR.
    @cgoldberg cgoldberg merged commit 7ace725 into SeleniumHQ:trunk Jul 6, 2025
    7 checks passed
    @cgoldberg cgoldberg deleted the py-bump-yanked-dependency branch July 6, 2025 21:06
    This was referenced Sep 12, 2025
    Closed
    Closed
    Merged
    This was referenced Sep 19, 2025
    Closed
    Closed
    Closed
    This was referenced Oct 1, 2025
    Closed
    Closed
    Closed
    Merged
    Closed
    Open
    Open
    Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

    Labels

    C-py Python Bindings Review effort 1/5

    2 participants

    @cgoldberg @selenium-ci