Merged
Conversation
Bumps the pip group with 4 updates: [aiohttp](https://github.com/aio-libs/aiohttp), [gradio](https://github.com/gradio-app/gradio), [starlette](https://github.com/encode/starlette) and [tornado](https://github.com/tornadoweb/tornado). Updates `aiohttp` from 3.10.2 to 3.10.11 - [Release notes](https://github.com/aio-libs/aiohttp/releases) - [Changelog](https://github.com/aio-libs/aiohttp/blob/master/CHANGES.rst) - [Commits](aio-libs/aiohttp@v3.10.2...v3.10.11) Updates `gradio` from 4.44.0 to 5.5.0 - [Release notes](https://github.com/gradio-app/gradio/releases) - [Changelog](https://github.com/gradio-app/gradio/blob/main/CHANGELOG.md) - [Commits](https://github.com/gradio-app/gradio/compare/gradio@4.44.0...gradio@5.5.0) Updates `starlette` from 0.36.2 to 0.40.0 - [Release notes](https://github.com/encode/starlette/releases) - [Changelog](https://github.com/encode/starlette/blob/master/docs/release-notes.md) - [Commits](Kludex/starlette@0.36.2...0.40.0) Updates `tornado` from 6.4.1 to 6.4.2 - [Changelog](https://github.com/tornadoweb/tornado/blob/v6.4.2/docs/releases.rst) - [Commits](tornadoweb/tornado@v6.4.1...v6.4.2) --- updated-dependencies: - dependency-name: aiohttp dependency-type: direct:production dependency-group: pip - dependency-name: gradio dependency-type: direct:production dependency-group: pip - dependency-name: starlette dependency-type: direct:production dependency-group: pip - dependency-name: tornado dependency-type: direct:production dependency-group: pip ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
bot
added
the
dependencies
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Bumps the pip group with 4 updates: aiohttp, gradio, starlette and tornado.
Updates
aiohttpfrom 3.10.2 to 3.10.11Release notes
Sourced from aiohttp's releases.
... (truncated)
Changelog
Sourced from aiohttp's changelog.
... (truncated)
Commits
3e09325Remove 3.10.11rc0 from 3.10 changelog (#9858)beb7b74Release 3.10.11 (#9857)259edc3[PR #9851/541d86d backport][3.10] Fix incorrect parsing of chunk extensions w...bc15db6[PR #9852/249855a backport][3.10] Fix system routes polluting the middleware ...158bf30Release 3.10.11rc0 (#9848)e5917cd[PR #9844/fabf3884 backport][3.10] Fix compressed get request benchmark paylo...68a1f42[PR #9840/cc5fa316 backport][3.10] Add benchmark for sending compressed paylo...4f4b90f[PR #9835/32ccfc9a backport][3.10] Adjust client payload benchmarks to better...f3dd0f9[PR #9832/006f4070 backport][3.10] Increase allowed import time for Python 3....f2aab2e[PR #9827/14fcfd4c backport][3.10] Adjust client GET read benchmarks to inclu...Updates
gradiofrom 4.44.0 to 5.5.0Changelog
Sourced from gradio's changelog.
... (truncated)
Commits
b5eaba1chore: update versions (#9874)fa5d433Do not load code in gr.NO_RELOAD in the reload mode watch thread (#9886)b6725cfLite auto-load imported modules withpyodide.loadPackagesFromImports(#9726)e10bbd2Fix live interfaces for audio/image streaming (#9883)dcfa7adEnforcemetakey present during preprocess in FileData payloads (#9898)7d77024Fix dataframe height increasing on scroll (#9892)4d90883Allows selection of directories in File Explorer (#9835)6c8a064Ensure non-form elements are correctly positioned when scale is applied (#9882)a1582a6Lite worker refactoring (#9424)f109497Fix frontend errors on ApiDocs and RecordingSnippet (#9786)Updates
starlettefrom 0.36.2 to 0.40.0Release notes
Sourced from starlette's releases.
... (truncated)
Changelog
Sourced from starlette's changelog.
... (truncated)
Commits
4ded4b7Version 0.40.0 (#2728)fd038f3Merge commit from forke116840Bump the python-packages group with 6 updates (#2713)0b50b9cVersion 0.39.2 (#2710)fe46d99Supportrequest.url_forwhen only "app" scope is avaialable (#2672)1a6018eSupport python-multipart 0.0.12 (#2708)fa7b382Version 0.39.1 (#2706)075efd0generate boundary with token_hex (#2702)b8139f9ConsiderFileResponse.chunk_sizewhen handling multiple ranges (#2703)4fbf766test: add tests intest_requests(#2677)Updates
tornadofrom 6.4.1 to 6.4.2Changelog
Sourced from tornado's changelog.
... (truncated)
Commits
a5ecfabBump version to 6.4.2bc7df6bFix tests with Twisted 24.7.0d5ba4a1httputil: Fix quadratic performance of cookie parsingDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>will remove the ignore condition of the specified dependency and ignore conditionsYou can disable automated security fix PRs for this repo from the Security Alerts page.