Sourced from sphinx's releases.

v5.1.0

Changelog: https://www.sphinx-doc.org/en/master/changes.html

Sourced from sphinx's changelog.

Release 5.1.0 (released Jul 24, 2022)

Dependencies

• #10656: Support Docutils 0.19_. Patch by Adam Turner.

.. _Docutils 0.19: https://docutils.sourceforge.io/RELEASE-NOTES.html#release-0-19-2022-07-05

Deprecated

• #10467: Deprecated sphinx.util.stemmer in favour of snowballstemmer. Patch by Adam Turner.
• #9856: Deprecated sphinx.ext.napoleon.iterators.

Features added

• #10444: html theme: Allow specifying multiple CSS files through the stylesheet setting in theme.conf or by setting html_style to an iterable of strings.
• #10366: std domain: Add support for emphasising placeholders in :rst:dir:option directives through a new :confval:option_emphasise_placeholders configuration option.
• #10439: std domain: Use the repr of some variables when displaying warnings, making whitespace issues easier to identify.
• #10571: quickstart: Reduce content in the generated conf.py file. Patch by Pradyun Gedam.
• #10648: LaTeX: CSS-named-alike additional :ref:'sphinxsetup' <latexsphinxsetup> keys allow to configure four separate border-widths, four paddings, four corner radii, a shadow (possibly inset), colours for border, background, shadow for each of the code-block, topic, attention, caution, danger, error and warning directives.
• #10655: LaTeX: Explain non-standard encoding in LatinRules.xdy
• #10599: HTML Theme: Wrap consecutive footnotes in an <aside> element when using Docutils 0.18 or later, to allow for easier styling. This matches the behaviour introduced in Docutils 0.19. Patch by Adam Turner.
• #10518: config: Add include_patterns as the opposite of exclude_patterns. Patch by Adam Turner.

Bugs fixed

• #10594: HTML Theme: field term colons are doubled if using Docutils 0.18+
• #10596: Build failure if Docutils version is 0.18 (not 0.18.1) due to missing Node.findall()
• #10506: LaTeX: build error if highlighting inline code role in figure caption (refs: #10251)
• #10634: Make -P (pdb) option work better with exceptions triggered from events

... (truncated)

• cc1f6cb Bump to 5.1.0 final
• 8effd15 Update message catalogs (#10698)
• e3337c7 Update include_patterns implementation (#10680)
• 89db13d Merge pull request #10676 from AA-Turner/authors
• 40caf0c Merge pull request #10696 from jfbu/latex_fix_for_old_latex
• d1b4a75 LaTeX: fix another incompatibility with old pict2e LaTeX
• faccc21 Fix #10695: old LaTeX does not allow @​ifpackageloaded usage in body
• afac558 Merge branch '5.0.x' into 5.x
• 94f62e7 Merge pull request #10693 from tk0miya/mypy-0.971
• 5b89c39 Fix mypy violations (with mypy-0.971)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from sphinx's releases.

v5.1.1

Changelog: https://www.sphinx-doc.org/en/master/changes.html

Sourced from sphinx's changelog.

Release 5.1.1 (released Jul 26, 2022)

Bugs fixed

• #10701: Fix ValueError in the new deque based sphinx.ext.napolean iterator implementation.
• #10702: Restore compatability with third-party builders.

• e712eae Bump to 5.1.1 final
• 0555345 Fix ValueError popping out in sphinx.ext.napoleon (#10709)
• 9845500 Improve support for deprecated builders without env arg (#10702)
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from hypothesis's releases.

Hypothesis for Python - version 6.57.1

This patch updates some internal type annotations and fixes a formatting bug in the "explain" phase reporting.

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.57.0

Hypothesis now raises an error if you passed a strategy as the "alphabet=" argument to "text()", and it generated something which was not a length-one string. This has never been supported, we're just adding explicit validation to catch cases like this StackOverflow question.

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.56.4

This patch updates some docs, and depends on exceptiongroup 1.0.0 final to avoid a bug in the previous version.

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.56.3

This patch teaches "text()" to rewrite a few more filter predicates (issue #3134). You're unlikely to notice any change.

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.56.2

This patch updates our vendored list of top-level domains, which is used by the provisional "domains()" strategy, and fixes some incorrect examples in the docs for "mutually_broadcastable_shapes()".

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.56.1

This patch improves the error message when Hypothesis detects "flush to zero" mode for floating-point: we now report which package(s) enabled this, which can make debugging much easier. See issue #3458 for details.

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.56.0

This release defines "bool()" on "SearchStrategy". It always returns "True", like before, but also emits a warning to help with cases where you intended to draw a value (issue #3463).

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.55.0

... (truncated)

• 92fafe3 Bump hypothesis-python version to 6.57.1 and update changelog
• 1b2239b Merge pull request #3507 from HypothesisWorks/create-pull-request/patch
• b4a2eb1 Explict Pandas error message
• 6051b07 Report explain locations individually
• a031a3a Update type annotations
• 8524e77 Update pinned dependencies
• db48c3b Bump hypothesis-python version to 6.57.0 and update changelog
• 1f6bdc3 Merge pull request #3505 from Zac-HD/validate-alphabet
• 6760241 Finish fix and text for traceback error
• 7d1c3ec Fix reported error in traceback trimmer
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

• b71dc3d Remove +dev from version
• 719cef9 Add support for exception groups and except* (#14020)
• 91b6fc3 Fix crash on nested unions in recursive types (#14007)
• 42a4c69 Make TryStar not crash (#13991)
• 5fad1ac Warn on invalid *args and **kwargs with ParamSpec (#13892)
• 184add9 Revert sum literal integer change (#13961)
• 74e0dff Add hidden options to disable bytes promotion (#13952)
• ec6d9d9 [mypyc] Fix ircheck if register is initialized through LoadAddress (#13944)
• 8ef701d Use 3.11 instead of 3.11-dev (#13945)
• ec149da [mypyc] Fix glue methods with native int types (#13939)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from hypothesis's releases.

Hypothesis for Python - version 6.56.4

This patch updates some docs, and depends on exceptiongroup 1.0.0 final to avoid a bug in the previous version.

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.56.3

This patch teaches "text()" to rewrite a few more filter predicates (issue #3134). You're unlikely to notice any change.

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.56.2

This patch updates our vendored list of top-level domains, which is used by the provisional "domains()" strategy, and fixes some incorrect examples in the docs for "mutually_broadcastable_shapes()".

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.56.1

This patch improves the error message when Hypothesis detects "flush to zero" mode for floating-point: we now report which package(s) enabled this, which can make debugging much easier. See issue #3458 for details.

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.56.0

This release defines "bool()" on "SearchStrategy". It always returns "True", like before, but also emits a warning to help with cases where you intended to draw a value (issue #3463).

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.55.0

In preparation for future versions of the Array API standard, "make_strategies_namespace()" now accepts an optional "api_version" argument, which determines the version conformed to by the returned strategies namespace. If "None", the version of the passed array module "xp" is inferred.

This release also introduces "xps.real_dtypes()". This is currently equivalent to the existing "xps.numeric_dtypes()" strategy, but exists because the latter is expected to include complex numbers in the next version of the standard.

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.54.6

If multiple explicit examples (from "@​example()") raise a Skip

... (truncated)

• 47b35ce Bump hypothesis-python version to 6.56.4 and update changelog
• c9a1403 Merge pull request #3486 from Kludex/patch-1
• 97e575e Add release notes
• aaa1430 Clarify docs for max_examples
• f80df10 Require stable exceptiongroup backport
• 27b2982 Merge pull request #3494 from HypothesisWorks/use-3.11.0
• 2365d5b Use 3.11.0 instead of 3.11-dev
• 6fe7da6 Merge pull request #3492 from HypothesisWorks/create-pull-request/patch
• c9342c3 Update pinned dependencies
• fa6da16 Update core.py
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from hypothesis's releases.

Hypothesis for Python - version 6.56.3

This patch teaches "text()" to rewrite a few more filter predicates (issue #3134). You're unlikely to notice any change.

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.56.2

This patch updates our vendored list of top-level domains, which is used by the provisional "domains()" strategy, and fixes some incorrect examples in the docs for "mutually_broadcastable_shapes()".

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.56.1

This patch improves the error message when Hypothesis detects "flush to zero" mode for floating-point: we now report which package(s) enabled this, which can make debugging much easier. See issue #3458 for details.

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.56.0

This release defines "bool()" on "SearchStrategy". It always returns "True", like before, but also emits a warning to help with cases where you intended to draw a value (issue #3463).

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.55.0

In preparation for future versions of the Array API standard, "make_strategies_namespace()" now accepts an optional "api_version" argument, which determines the version conformed to by the returned strategies namespace. If "None", the version of the passed array module "xp" is inferred.

This release also introduces "xps.real_dtypes()". This is currently equivalent to the existing "xps.numeric_dtypes()" strategy, but exists because the latter is expected to include complex numbers in the next version of the standard.

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.54.6

If multiple explicit examples (from "@​example()") raise a Skip exception, for consistency with generated examples we now re-raise the first instead of collecting them into an ExceptionGroup (issue #3453).

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.54.5

... (truncated)

• bb6b55a Bump hypothesis-python version to 6.56.3 and update changelog
• 39ea2d2 Merge pull request #3481 from Zac-HD/efficient-strings
• ce8fe70 Disable deadline for flaky-slow test
• 07ff885 InferType -> EllipsesType
• bea95f0 More known-filter-predicates
• 945ee47 Merge pull request #3477 from HypothesisWorks/create-pull-request/patch
• e657779 Update pinned dependencies
• 4394167 Bump hypothesis-python version to 6.56.2 and update changelog
• e65a7ad Merge pull request #3476 from HypothesisWorks/fix-doc-example
• 8908469 Update pinned dependencies
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from sphinx's releases.

v5.3.0

Changelog: https://www.sphinx-doc.org/en/master/changes.html

v5.2.3

Changelog: https://www.sphinx-doc.org/en/master/changes.html

v5.2.2

Changelog: https://www.sphinx-doc.org/en/master/changes.html

v5.2.1

Changelog: https://www.sphinx-doc.org/en/master/changes.html

v5.2.0

Changelog: https://www.sphinx-doc.org/en/master/changes.html

v5.1.1

Changelog: https://www.sphinx-doc.org/en/master/changes.html

Sourced from sphinx's changelog.

Release 5.3.0 (released Oct 16, 2022)

• #10759: LaTeX: add :confval:latex_table_style and support the 'booktabs', 'borderless', and 'colorrows' styles. (thanks to Stefan Wiehler for initial pull requests #6666, #6671)
• #10840: One can cross-reference including an option value like :option:`--module=foobar```, :option:--module[=foobar]``` or ``:option:--module foobar```. Patch by Martin Liska.
• #10881: autosectionlabel: Record the generated section label to the debug log.
• #10268: Correctly URI-escape image filenames.
• #10887: domains: Allow sections in all the content of all object description directives (e.g. :rst:dir:py:function). Patch by Adam Turner

Release 5.2.3 (released Sep 30, 2022)

• #10878: Fix base64 image embedding in sphinx.ext.imgmath
• #10886: Add :nocontentsentry: flag and global domain table of contents entry control option. Patch by Adam Turner

Release 5.2.2 (released Sep 27, 2022)

• #10872: Restore link targets for autodoc modules to the top of content. Patch by Dominic Davis-Foster.

Release 5.2.1 (released Sep 25, 2022)

Bugs fixed

• #10861: Always normalise the pycon3 lexer to pycon.
• Fix using sphinx.ext.autosummary with modules containing titles in the module-level docstring.

Release 5.2.0.post0 (released Sep 24, 2022)

• Recreated source tarballs for Debian maintainers.

Release 5.2.0 (released Sep 24, 2022)

Dependencies

• #10356: Sphinx now uses declarative metadata with pyproject.toml to create packages, using PyPA's flit project as a build backend. Patch by

... (truncated)

• c1f2a52 Bump to 5.3.0 final
• 10db540 Allow sections in object description directives (#10919)
• 0fd4539 Simplify bug report template
• b58eb61 Update all GitHub actions workflows to Ubuntu latest
• 3e04952 Add sphinx-build --bug-report
• fa6d425 URI-escape image filenames (#10268)
• e008e16 Revert "Fix detection for out of date files (#9360)" (#10908)
• cef1a03 Update image for LaTeX job (#10916)
• b5ba1ed s/5.2.0/5.3.0 in various code comments as #10759 got merged in 5.3.0
• 3deb527 Update CHANGES for PR #10759
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from hypothesis's releases.

Hypothesis for Python - version 6.56.2

This patch updates our vendored list of top-level domains, which is used by the provisional "domains()" strategy, and fixes some incorrect examples in the docs for "mutually_broadcastable_shapes()".

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.56.1

This patch improves the error message when Hypothesis detects "flush to zero" mode for floating-point: we now report which package(s) enabled this, which can make debugging much easier. See issue #3458 for details.

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.56.0

This release defines "bool()" on "SearchStrategy". It always returns "True", like before, but also emits a warning to help with cases where you intended to draw a value (issue #3463).

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.55.0

In preparation for future versions of the Array API standard, "make_strategies_namespace()" now accepts an optional "api_version" argument, which determines the version conformed to by the returned strategies namespace. If "None", the version of the passed array module "xp" is inferred.

This release also introduces "xps.real_dtypes()". This is currently equivalent to the existing "xps.numeric_dtypes()" strategy, but exists because the latter is expected to include complex numbers in the next version of the standard.

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.54.6

If multiple explicit examples (from "@​example()") raise a Skip exception, for consistency with generated examples we now re-raise the first instead of collecting them into an ExceptionGroup (issue #3453).

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.54.5

This patch updates our autoformatting tools, improving our code style without any API changes.

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.54.4

... (truncated)

• 4394167 Bump hypothesis-python version to 6.56.2 and update changelog
• e65a7ad Merge pull request #3476 from HypothesisWorks/fix-doc-example
• 8908469 Update pinned dependencies
• 5b00b19 Merge pull request #3475 from CatB1t/patch-1
• e2327e3 fix bad doc examples in mutually_broadcastable_shapes
• 3abbcd6 Add Ivy to open source projects using Hypothesis
• fda07ec Bump hypothesis-python version to 6.56.1 and update changelog
• db07696 Merge pull request #3472 from Zac-HD/better-ftz-error
• e8c8932 Clarify manual-testing directions
• 2dd25f0 Identify FTZ-causing library
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from actions/setup-python's releases.

v4.3.0

• Update @​actions/core to 1.10.0 version #517
• Update @​actions/cache to 3.0.4 version #499
• Only use github.token on github.com #443
• Improvement of documentation #477 #479 #491 #492

Add check-latest input and bug fixes

In scope of this release we add the check-latest input. If check-latest is set to true, the action first checks if the cached version is the latest one. If the locally cached version is not the most up-to-date, the version will then be downloaded from python-versions repository. By default check-latest is set to false. For PyPy it will to try to reach https://downloads.python.org/pypy/versions.json

Example of usage:

steps:
  - uses: actions/[email protected]
  - uses: actions/[email protected]
    with:
      python-version: '3.9'
      check-latest: true
  - run: python --version

Besides, it includes such changes as

• Resolved logs for python-version and file inputs: actions/setup-python#465
• Added linux os release info to primary key: actions/setup-python#467
• Added fix to change Python versions for poetry: actions/setup-python#445
• Fix Tool Path handling for self-hosted runners: actions/setup-python#466

• 13ae5bb Merge pull request #517 from rentziass/rentziass/update-actions-core
• 0c4d7b8 Update @​actions/core to 1.10.0
• 13a464f Fix typo (#503)
• b4fe97e upgrade @​actions/cache so it respects SEGMENT_DOWNLOAD_TIMEOUT_MINS (#499)
• 434aeab Bump @​actions/core from 1.7.0 to 1.9.1 (#495)
• 98c991d Only use github.token on github.com (#443)
• 397a35f Merge pull request #492 from al-cheb/al-cheb/update-runner-link
• 48a0f00 Update runner links
• 978fd06 Merge pull request #491 from lkfortuna/patch-2
• 050e616 Update README.md
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from safety's releases.

2.3.1

No release notes provided.

2.3.0

What's Changed

• Safety Alerts: GitHub PRs and GitHub issues support by @​cb22 in pyupio/safety#411
• Safety 2.3.0 patch by @​cb22 in pyupio/safety#415

Full Changelog: https://github.com/pyupio/safety/compare/2.2.1...2.3.0

2.2.1

What's Changed

• Pull from Master by @​yeisonvargasf in pyupio/safety#410
• Common fixes for next release by @​yeisonvargasf in pyupio/safety#412
• 2.2.1 Patch by @​yeisonvargasf in pyupio/safety#414

Full Changelog: https://github.com/pyupio/safety/compare/2.2.0...2.2.1

2.2.0

What's Changed

• Eat stderr messages from git commands. by @​tarmack in pyupio/safety#399
• Update from master branch by @​yeisonvargasf in pyupio/safety#404
• Remove AppVeyor and Travis by @​yeisonvargasf in pyupio/safety#405
• Using dparse to read requirements and fixes for custom integrations by @​yeisonvargasf in pyupio/safety#406
• Safety 2.2.0 patch by @​yeisonvargasf in pyupio/safety#407

New Contributors

• @​tarmack made their first contribution in pyupio/safety#399

Full Changelog: https://github.com/pyupio/safety/compare/2.1.1...2.2.0

Sourced from safety's changelog.

[2.3.1] - 2022-10-05

• Add safety.alerts module to setup.cfg

[2.3.0] - 2022-10-05

• Safety can now create GitHub PRs and Issues for vulnerabilities directly, with the new safety alert subcommand.
• Support for GitHub PR and Issue alerting has been added to the GitHub Action.

[2.2.1] - 2022-10-04

• Fixed the use of the SAFETY_COLOR environment variable
• Fixed bug in the case of vulnerabilities without a CVE linked
• Fixed GitHub version in the README

[2.2.0] - 2022-09-19

• Safety starts to use dparse to parse files, now Safety supports mainly Poetry and Pipenv lock files plus other files supported by dparse.
• Added logic for custom integrations like pipenv check.
• The --db flag is compatible remote sources too.
• Added more logging
• Upgrade dparse dependency to avoid a possible ReDos security issue
• Removed Travis and Appveyor, the CI/CD was migrated to GitHub Actions

• 6631403 Fix bugged 2.3.0 release - safety.alerts module not included in setup.cfg
• 12cd289 Version 2.3.0
• 43dd831 Fix workflows for master -> main rename
• 40fb27a Merge pull request #415 from pyupio/develop
• 679cd54 Add dataclasses requirement to test_requirements.txt
• 1134fb9 Fix test case with expanded more_info_url
• 320aa5c Merge branch 'main' into develop
• 195aefc Merge pull request #411 from cb22/develop
• 1172ea6 Handle cvss3 score being None it utils too
• 5717d5a Handle when optional extras are not installed
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from hypothesis's releases.

Hypothesis for Python - version 6.56.1

This patch improves the error message when Hypothesis detects "flush to zero" mode for floating-point: we now report which package(s) enabled this, which can make debugging much easier. See issue #3458 for details.

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.56.0

This release defines "bool()" on "SearchStrategy". It always returns "True", like before, but also emits a warning to help with cases where you intended to draw a value (issue #3463).

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.55.0

In preparation for future versions of the Array API standard, "make_strategies_namespace()" now accepts an optional "api_version" argument, which determines the version conformed to by the returned strategies namespace. If "None", the version of the passed array module "xp" is inferred.

This release also introduces "xps.real_dtypes()". This is currently equivalent to the existing "xps.numeric_dtypes()" strategy, but exists because the latter is expected to include complex numbers in the next version of the standard.

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.54.6

If multiple explicit examples (from "@​example()") raise a Skip exception, for consistency with generated examples we now re-raise the first instead of collecting them into an ExceptionGroup (issue #3453).

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.54.5

This patch updates our autoformatting tools, improving our code style without any API changes.

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.54.4

This patch fixes some type annotations for Python 3.9 and earlier (issue #3397), and teaches explain mode about certain locations it should not bother reporting (issue #3439).

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.54.3

... (truncated)

• fda07ec Bump hypothesis-python version to 6.56.1 and update changelog
• db07696 Merge pull request #3472 from Zac-HD/better-ftz-error
• e8c8932 Clarify manual-testing directions
• 2dd25f0 Identify FTZ-causing library
• 35c228c Bump hypothesis-python version to 6.56.0 and update changelog
• 7839707 Merge pull request #3471 from HypothesisWorks/create-pull-request/patch
• 4c94bf4 Warn on bool(strategy)
• d85a647 Add pandas 1.5 to CI
• 43a1a8a Add target() example to docs
• b36c896 Fix type hints for new mypy
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from sphinx's releases.

v6.0.0

Changelog: https://www.sphinx-doc.org/en/master/changes.html

v6.0.0b2

Changelog: https://www.sphinx-doc.org/en/master/changes.html

v6.0.0b1

Changelog: https://www.sphinx-doc.org/en/master/changes.html

v5.3.0

Changelog: https://www.sphinx-doc.org/en/master/changes.html

v5.2.3

Changelog: https://www.sphinx-doc.org/en/master/changes.html

v5.2.2

Changelog: https://www.sphinx-doc.org/en/master/changes.html

v5.2.1

Changelog: https://www.sphinx-doc.org/en/master/changes.html

v5.2.0

Changelog: https://www.sphinx-doc.org/en/master/changes.html

v5.1.1

Changelog: https://www.sphinx-doc.org/en/master/changes.html

Sourced from sphinx's changelog.

Release 6.0.0 (released Dec 29, 2022)

Dependencies

• #10468: Drop Python 3.6 support
• #10470: Drop Python 3.7, Docutils 0.14, Docutils 0.15, Docutils 0.16, and Docutils 0.17 support. Patch by Adam Turner

Incompatible changes

• #7405: Removed the jQuery and underscore.js JavaScript frameworks.

  These frameworks are no longer be automatically injected into themes from Sphinx 6.0. If you develop a theme or extension that uses the jQuery, $, or $u global objects, you need to update your JavaScript to modern standards, or use the mitigation below.

  The first option is to use the sphinxcontrib.jquery_ extension, which has been developed by the Sphinx team and contributors. To use this, add sphinxcontrib.jquery to the extensions list in conf.py, or call app.setup_extension("sphinxcontrib.jquery") if you develop a Sphinx theme or extension.

  The second option is to manually ensure that the frameworks are present. To re-add jQuery and underscore.js, you will need to copy jquery.js and underscore.js from the Sphinx repository_ to your static directory, and add the following to your layout.html:

  .. code-block:: html+jinja

  {%- block scripts %} {{ super() }} {%- endblock %}

  .. _sphinxcontrib.jquery: https://github.com/sphinx-contrib/jquery/

  Patch by Adam Turner.

• #10471, #10565: Removed deprecated APIs scheduled for removal in Sphinx 6.0. See :ref:dev-deprecated-apis for details. Patch by Adam Turner.

• #10901: C Domain: Remove support for parsing pre-v3 style type directives and roles. Also remove associated configuration variables c_allow_pre_v3 and c_warn_on_allowed_pre_v3. Patch by Adam Turner.

Features added

... (truncated)

• 5b56a23 Bump to 6.0.0 final
• f1d1e9c Update coverage workflow for Tox 4
• 66a738c Update coverage workflow for new configuration location
• 041e5f8 Add test coverage for 'today_fmt' reference substitution (#10980)
• da25145 Remove unnecessary conditional import in sphinx.ext.napoleon (#11043)
• 45a0ea9 Migrate coveragepy config into pyproject.toml (#11025)
• 3ec54f1 Create a pydata_sphinx_theme section in usage examples (#11046)
• 32bce8f Copy edit the tutorial (#11049)
• 9844162 Fix example using add_config_value (#10937)
• bf4a626 RTD builder: add graphviz depedendency (#11040)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

• 9e9e840 2022.12.07
• b81bdb2 2022.09.24
• 939a28f 2022.09.14
• aca828a 2022.06.15.2
• de0eae1 Only use importlib.resources's new files() / Traversable API on Python ≥3.11 ...
• b8eb5e9 2022.06.15.1
• 47fb7ab Fix deprecation warning on Python 3.11 (#199)
• b0b48e0 fixes #198 -- update link in license
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the Security Alerts page.

Sourced from actions/setup-python's releases.

Improve error handling and messages

In scope of this release we added improved error message to put operating system and its version in the logs (actions/setup-python#559). Besides, the release

• fixes issue about specifying architecture for pypy-nightly on Windows with related pull request.
• improves error handling for Http Errors (actions/setup-python#511).
• updates minimatch (actions/setup-python#558).

v4.3.0

• Update @​actions/core to 1.10.0 version #517
• Update @​actions/cache to 3.0.4 version #499
• Only use github.token on github.com #443
• Improvement of documentation #477 #479 #491 #492

Add check-latest input and bug fixes

In scope of this release we add the check-latest input. If check-latest is set to true, the action first checks if the cached version is the latest one. If the locally cached version is not the most up-to-date, the version will then be downloaded from python-versions repository. By default check-latest is set to false. For PyPy it will to try to reach https://downloads.python.org/pypy/versions.json

Example of usage:

steps:
  - uses: actions/[email protected]
  - uses: actions/[email protected]
    with:
      python-version: '3.9'
      check-latest: true
  - run: python --version

Besides, it includes such changes as

• Resolved logs for python-version and file inputs: actions/setup-python#465
• Added linux os release info to primary key: actions/setup-python#467
• Added fix to change Python versions for poetry: actions/setup-python#445
• Fix Tool Path handling for self-hosted runners: actions/setup-python#466

• 2c3dd9e Add OS info to the error message (#559)
• 76bbdfa Update minimatch (#558)
• 1aafadc Caching projects that use setup.py (#549)
• b80efd6 Update to latest actions/publish-action (#546)
• 5cddb27 Recommend setting python-version (#545)
• 47c4a7a fix(ci): run .github/workflows/workflow.yml on ubuntu-20.04 (#535)
• af57b64 Extend docu regarding rate limit issues. (#510)
• 4818a5a Handle download HTTP error (#511)
• 8bcd256 Add architecture input check for PyPy for Windows platform (#520)
• 13ae5bb Merge pull request #517 from rentziass/rentziass/update-actions-core
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

• 9e9e840 2022.12.07
• b81bdb2 2022.09.24
• 939a28f 2022.09.14
• aca828a 2022.06.15.2
• de0eae1 Only use importlib.resources's new files() / Traversable API on Python ≥3.11 ...
• b8eb5e9 2022.06.15.1
• 47fb7ab Fix deprecation warning on Python 3.11 (#199)
• b0b48e0 fixes #198 -- update link in license
• 9d514b4 2022.06.15
• 4151e88 Add py.typed to MANIFEST.in to package in sdist (#196)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the Security Alerts page.

Sourced from safety's releases.

2.3.2

• Fixed #423: Bare output includes extra line in non-screen output with no vulnerabilities.
• Fixed #422: ResourceWarning (unclosed socket) in safety v.2.3.1.
• Fixed telemetry data missing when the CLI mode is used.
• Fixed wrong database fetching when the KEY and the database arguments are used at the same time.
• Added SAFETY_PURE_YAML env var, used for cases that require pure Python in the YAML parser.

2.3.1

No release notes provided.

2.3.0

What's Changed

• Safety Alerts: GitHub PRs and GitHub issues support by @​cb22 in pyupio/safety#411
• Safety 2.3.0 patch by @​cb22 in pyupio/safety#415

Full Changelog: https://github.com/pyupio/safety/compare/2.2.1...2.3.0

2.2.1

What's Changed

• Pull from Master by @​yeisonvargasf in pyupio/safety#410
• Common fixes for next release by @​yeisonvargasf in pyupio/safety#412
• 2.2.1 Patch by @​yeisonvargasf in pyupio/safety#414

Full Changelog: https://github.com/pyupio/safety/compare/2.2.0...2.2.1

2.2.0

What's Changed

• Eat stderr messages from git commands. by @​tarmack in pyupio/safety#399
• Update from master branch by @​yeisonvargasf in pyupio/safety#404
• Remove AppVeyor and Travis by @​yeisonvargasf in pyupio/safety#405
• Using dparse to read requirements and fixes for custom integrations by @​yeisonvargasf in pyupio/safety#406
• Safety 2.2.0 patch by @​yeisonvargasf in pyupio/safety#407

New Contributors

• @​tarmack made their first contribution in pyupio/safety#399

Full Changelog: https://github.com/pyupio/safety/compare/2.1.1...2.2.0

Sourced from safety's changelog.

[2.3.2] - 2022-11-21

• Fixed #423: Bare output includes extra line in non-screen output with no vulnerabilities.
• Fixed #422: ResourceWarning (unclosed socket) in safety v.2.3.1.
• Fixed telemetry data missing when the CLI mode is used.
• Fixed wrong database fetching when the KEY and the database arguments are used at the same time.
• Added SAFETY_PURE_YAML env var, used for cases that require pure Python in the YAML parser.

[2.3.1] - 2022-10-05

• Add safety.alerts module to setup.cfg

[2.3.0] - 2022-10-05

• Safety can now create GitHub PRs and Issues for vulnerabilities directly, with the new safety alert subcommand.
• Support for GitHub PR and Issue alerting has been added to the GitHub Action.

[2.2.1] - 2022-10-04

• Fixed the use of the SAFETY_COLOR environment variable
• Fixed bug in the case of vulnerabilities without a CVE linked
• Fixed GitHub version in the README

[2.2.0] - 2022-09-19

• Safety starts to use dparse to parse files, now Safety supports mainly Poetry and Pipenv lock files plus other files supported by dparse.
• Added logic for custom integrations like pipenv check.
• The --db flag is compatible remote sources too.
• Added more logging
• Upgrade dparse dependency to avoid a possible ReDos security issue
• Removed Travis and Appveyor, the CI/CD was migrated to GitHub Actions

• f55c927 Version 2.3.2
• a8c8c96 Merge pull request #429 from pyupio/develop
• d180854 Revert "Remove ignore flags in the CI config."
• 7eef5a4 Remove ignore flags in the CI config.
• 7171e3e Merge pull request #428 from pyupio/main
• e7b4c0c Merge pull request #427 from pyupio/fix/integrations
• 14db471 Fix announcements load and telemetry.
• be1a7a8 Send announcements to stderr when not isatty only when the type announcement ...
• 6cd1ae3 Fix logic output for integrations, resource warnings fixed, and ruamel fix.
• f1b86b8 Merge pull request #426 from pyupio/develop
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)