Skip to content

Bump the production-dependencies group with 3 updates#24

Closed
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/pip/production-dependencies-8a13bf9d25
Closed

Bump the production-dependencies group with 3 updates#24
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/pip/production-dependencies-8a13bf9d25

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 10, 2025
edited
Loading

Bumps the production-dependencies group with 3 updates: boto3, botocore and graphql-core.

Updates boto3 from 1.40.55 to 1.40.69

Commits
  • aecb2bb Merge branch 'release-1.40.69'
  • ac7646e Bumping version to 1.40.69
  • f16254e Add changelog entries from botocore
  • 17eb004 Merge branch 'release-1.40.68'
  • 6a34b30 Merge branch 'release-1.40.68' into develop
  • 3dc1e85 Bumping version to 1.40.68
  • 014e41e Add changelog entries from botocore
  • 6a72deb Merge branch 'release-1.40.67'
  • f9c8320 Merge branch 'release-1.40.67' into develop
  • 4a88e50 Bumping version to 1.40.67
  • Additional commits viewable in compare view

Updates botocore from 1.40.55 to 1.40.69

Commits
  • f420535 Merge branch 'release-1.40.69'
  • 2a48ccd Bumping version to 1.40.69
  • cd7c35c Update to latest models
  • c6c184d Merge branch 'release-1.40.68'
  • e4060eb Merge branch 'release-1.40.68' into develop
  • 7b303f4 Bumping version to 1.40.68
  • 1639ac8 Update endpoints model
  • b1e7fa0 Update to latest models
  • 51ab00a Merge branch 'release-1.40.67'
  • bd2672c Merge branch 'release-1.40.67' into develop
  • Additional commits viewable in compare view

Updates graphql-core from 3.2.5 to 3.2.7

Release notes

Sourced from graphql-core's releases.

v3.2.7

Patch-release GraphQL-core v3.2.7, based on GraphQL.js v16.9.0.

This patch-release supports Python 3.7 to 3.14.

The following changes have been backported from the v3.3 branch:

  • Keep extensions when sorting schemas
  • Introduce "recommended" validation rules
  • Implement OneOf Input Objects via @​oneOf directive
  • Values can now be passed to GraphQLEnumType as a thunk
  • Solved issues with pickled schemas

Thanks to all who are sponsoring me (@​Cito) for maintaining this project.

v3.2.6

Patch-release GraphQL-core v3.2.6, based on GraphQL.js v16.8.2.

This patch-release supports Python 3.6 to 3.13. Notable fixes:

  • Transform input objects used as default values (#206)
  • Allow deep copy of schema with directive with args of custom type (#210)

Thanks to all who are sponsoring me (@​Cito) for maintaining this project.

Commits
  • 42328a6 backport: Solve issues with pickled schemas (#173)
  • dd4d5a1 Bump JavaScript version
  • ba6b6e4 backport: Enable passing values configuration to GraphQLEnumType as a thunk
  • 6687245 backport: Add @​oneOf support to introspection query (#241)
  • 18df18e backport: Implement OneOf Input Objects via @​oneOf directive
  • a4d66f5 backport: Introduce "recommended" validation rules
  • c25eee4 De-support Python 3.6
  • b1a0d7c Support Python 3.14
  • 4af4286 fix: don't loose extensions when sorting schemas
  • e1ccf45 Fix typo
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the production-dependencies group with 3 updates
14be6a6 
Bumps the production-dependencies group with 3 updates: [boto3](https://github.com/boto/boto3), [botocore](https://github.com/boto/botocore) and [graphql-core](https://github.com/graphql-python/graphql-core).


Updates `boto3` from 1.40.55 to 1.40.69
- [Release notes](https://github.com/boto/boto3/releases)
- [Commits](boto/boto3@1.40.55...1.40.69)

Updates `botocore` from 1.40.55 to 1.40.69
- [Commits](boto/botocore@1.40.55...1.40.69)

Updates `graphql-core` from 3.2.5 to 3.2.7
- [Release notes](https://github.com/graphql-python/graphql-core/releases)
- [Commits](graphql-python/graphql-core@v3.2.5...v3.2.7)

---
updated-dependencies:
- dependency-name: boto3
  dependency-version: 1.40.69
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: botocore
  dependency-version: 1.40.69
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: graphql-core
  dependency-version: 3.2.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update python code labels Nov 10, 2025
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Nov 17, 2025

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Nov 17, 2025
@dependabot dependabot bot deleted the dependabot/pip/production-dependencies-8a13bf9d25 branch November 17, 2025 09:43
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python Pull requests that update python code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants