chore(deps): bump the pip group across 1 directory with 9 updates#133
Open
dependabot[bot] wants to merge 1 commit into
Open
chore(deps): bump the pip group across 1 directory with 9 updates#133dependabot[bot] wants to merge 1 commit into
dependabot[bot] wants to merge 1 commit into
Conversation
Bumps the pip group with 9 updates in the /WHartTest_Django directory: | Package | From | To | | --- | --- | --- | | [django](https://github.com/django/django) | `5.2` | `5.2.14` | | [python-dotenv](https://github.com/theskumar/python-dotenv) | `1.1.1` | `1.2.2` | | [langgraph](https://github.com/langchain-ai/langgraph) | `1.0.6` | `1.0.10rc1` | | [langchain](https://github.com/langchain-ai/langchain) | `1.2.3` | `1.3.9` | | [langchain-openai](https://github.com/langchain-ai/langchain) | `1.1.7` | `1.1.14` | | [langchain-core](https://github.com/langchain-ai/langchain) | `1.2.7` | `1.3.3` | | [langgraph-checkpoint](https://github.com/langchain-ai/langgraph) | `4.0.0` | `4.1.1` | | [langchain-text-splitters](https://github.com/langchain-ai/langchain) | `1.1.0` | `1.1.2` | | [pypdf](https://github.com/py-pdf/pypdf) | `5.6.0` | `6.13.3` | Updates `django` from 5.2 to 5.2.14 - [Commits](django/django@5.2...5.2.14) Updates `python-dotenv` from 1.1.1 to 1.2.2 - [Release notes](https://github.com/theskumar/python-dotenv/releases) - [Changelog](https://github.com/theskumar/python-dotenv/blob/main/CHANGELOG.md) - [Commits](theskumar/python-dotenv@v1.1.1...v1.2.2) Updates `langgraph` from 1.0.6 to 1.0.10rc1 - [Release notes](https://github.com/langchain-ai/langgraph/releases) - [Commits](langchain-ai/langgraph@1.0.6...1.0.10rc1) Updates `langchain` from 1.2.3 to 1.3.9 - [Release notes](https://github.com/langchain-ai/langchain/releases) - [Commits](langchain-ai/langchain@langchain==1.2.3...langchain==1.3.9) Updates `langchain-openai` from 1.1.7 to 1.1.14 - [Release notes](https://github.com/langchain-ai/langchain/releases) - [Commits](langchain-ai/langchain@langchain-openai==1.1.7...langchain-openai==1.1.14) Updates `langchain-core` from 1.2.7 to 1.3.3 - [Release notes](https://github.com/langchain-ai/langchain/releases) - [Commits](langchain-ai/langchain@langchain-core==1.2.7...langchain-core==1.3.3) Updates `langgraph-checkpoint` from 4.0.0 to 4.1.1 - [Release notes](https://github.com/langchain-ai/langgraph/releases) - [Commits](langchain-ai/langgraph@checkpoint==4.0.0...checkpoint==4.1.1) Updates `langchain-text-splitters` from 1.1.0 to 1.1.2 - [Release notes](https://github.com/langchain-ai/langchain/releases) - [Commits](langchain-ai/langchain@langchain-text-splitters==1.1.0...langchain-text-splitters==1.1.2) Updates `pypdf` from 5.6.0 to 6.13.3 - [Release notes](https://github.com/py-pdf/pypdf/releases) - [Changelog](https://github.com/py-pdf/pypdf/blob/main/CHANGELOG.md) - [Commits](py-pdf/pypdf@5.6.0...6.13.3) --- updated-dependencies: - dependency-name: django dependency-version: 5.2.14 dependency-type: direct:production dependency-group: pip - dependency-name: python-dotenv dependency-version: 1.2.2 dependency-type: direct:production dependency-group: pip - dependency-name: langgraph dependency-version: 1.0.10rc1 dependency-type: direct:production dependency-group: pip - dependency-name: langchain dependency-version: 1.3.9 dependency-type: direct:production dependency-group: pip - dependency-name: langchain-openai dependency-version: 1.1.14 dependency-type: direct:production dependency-group: pip - dependency-name: langchain-core dependency-version: 1.3.3 dependency-type: direct:production dependency-group: pip - dependency-name: langgraph-checkpoint dependency-version: 4.1.1 dependency-type: direct:production dependency-group: pip - dependency-name: langchain-text-splitters dependency-version: 1.1.2 dependency-type: direct:production dependency-group: pip - dependency-name: pypdf dependency-version: 6.13.3 dependency-type: direct:production dependency-group: pip ... Signed-off-by: dependabot[bot] <support@github.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Bumps the pip group with 9 updates in the /WHartTest_Django directory:
5.25.2.141.1.11.2.21.0.61.0.10rc11.2.31.3.91.1.71.1.141.2.71.3.34.0.04.1.11.1.01.1.25.6.06.13.3Updates
djangofrom 5.2 to 5.2.14Commits
024c26b[5.2.x] Bumped version for 5.2.14 release.2115d4e[5.2.x] Fixed CVE-2026-6907 -- Prevented caching of requests when Vary header...47cf968[5.2.x] Fixed CVE-2026-35192 -- Ensured Vary header is sent when setting sess...2ec27ed[5.2.x] Fixed CVE-2026-5766 -- Enforced DATA_UPLOAD_MAX_MEMORY_SIZE in Memory...ed18840[5.2.x] Fixed typo in stub release notes for 5.2.14.de3f622[5.2.x] Added stub release notes and release date for 5.2.14.fb61c8a[5.2.x] Refs CVE-2026-4292 -- Isolated new test in AdminViewListEditable.bd1a758[5.2.x] Fixed two issues in release helper scripts/verify_release.sh.da57aaa[5.2.x] Added CVE-2026-3902, CVE-2026-4277, CVE-2026-4292, CVE-2026-33033, an...c9a8bdb[5.2.x] Post-release version bump.Updates
python-dotenvfrom 1.1.1 to 1.2.2Release notes
Sourced from python-dotenv's releases.
... (truncated)
Changelog
Sourced from python-dotenv's changelog.
Commits
36004e0Bump version: 1.2.1 → 1.2.2eb20252docs: update changelog for v1.2.2790c5c0Merge commit from fork43340daRemove the use ofshin tests (#612)09d7ceedocs: clarify override behavior and document FIFO support (#610)c8de288ci: improve workflow efficiency with best practices (#609)7bd9e3dAdd Windows testing to CI (#604)1baaf04Drop Python 3.9 support and update to PyPy 3.11 (#608)4a22cf8ci: enable testing on Python 3.14t (free-threaded) (#588)e2e8e77Fix license specifier (#597)Updates
langgraphfrom 1.0.6 to 1.0.10rc1Release notes
Sourced from langgraph's releases.
... (truncated)
Commits
a04ec5drelease: Candidate (#6947)50df7d4Merge commit from forkc4a4a46chore: add tests to confirm expected subgraph persistence behavior (#6943)f178eb8fix(langgraph): correct ParentCommand bubbling when checkpoint_ns includes nu...48167d7chore(deps): bump the all-dependencies group in /libs/cli with 2 updates (#6920)806878achore(deps): bump the all-dependencies group in /libs/checkpoint-postgres wit...8087e6adocs(sdk-py): update auth docstrings to default-deny pattern (#6933)8fbdb14release(sdk-py): 0.3.9 (#6932)5093802chore(deps): bump the all-dependencies group in /libs/checkpoint with 2 updat...b89ef60feat(sdk-py): add extract parameter to threads.search() (#6880)Updates
langchainfrom 1.2.3 to 1.3.9Release notes
Sourced from langchain's releases.
... (truncated)
Commits
3bfb6a3release(langchain): 1.3.9 (#38104)dcaf779fix(langchain,anthropic): confine file-search results and tighten anthropic `...0392b6bfix(core): fix Pydantic v1 support in tools/runnable (#33698)f6d63bcrelease(langchain): 1.3.8 (#38096)5d20596style(core,langchain,langchain-classic,partners): replace double backticks in...fb55c66chore: bump langsmith from 0.8.9 to 0.8.14 in /libs/partners/huggingface (#38...51daae5chore: bump langsmith from 0.8.9 to 0.8.14 in /libs/partners/chroma (#38092)70e9579chore: bump langsmith from 0.8.9 to 0.8.14 in /libs/partners/fireworks (#38093)6c0e9afchore: bump langsmith from 0.8.9 to 0.8.14 in /libs/partners/xai (#38094)222dc84ci(infra): clarify early PR auto-close guidance (#38090)Updates
langchain-openaifrom 1.1.7 to 1.1.14Release notes
Sourced from langchain-openai's releases.
Commits
b7447c6fix(infra): skip serdes tests in min-version release step (#36818)41c0cc5release(openai): 1.1.14 (#36820)0516156fix(openai): use SSRF-safe transport for image token counting (#36819)338aa81fix(core): restore cloud metadata IPs and link-local range in SSRF policy (#3...51e9548chore: bump langsmith from 0.6.3 to 0.7.31 in /libs/text-splitters (#36797)e85c418chore: bump langsmith from 0.6.3 to 0.7.31 in /libs/model-profiles (#36798)789126echore: bump langsmith from 0.6.3 to 0.7.31 in /libs/standard-tests (#36799)937b3ebchore: bump langsmith from 0.6.3 to 0.7.31 in /libs/langchain_v1 (#36800)a06c205ci(infra): validate issue checkboxes by section (#36811)aa33b06fix(langchain-classic): suppress mypy errors in compat code (#36806)Updates
langchain-corefrom 1.2.7 to 1.3.3Release notes
Sourced from langchain-core's releases.
... (truncated)
Commits
5039dferelease(core): 1.3.3 (#37198)55a7707fix(core): set deprecationsinceto 1.3.3 to match release (#37200)c979c61fix(core, langchain): hardenload()against untrusted manifests (#37197)d703110docs: update README.md (#37190)4d50a2aci(infra): run pre-release checks before TestPyPI publish (#37194)9bd730efix(fireworks): requireapi_keyinFireworksEmbeddings(#37193)f475f41release(mistralai): 1.1.4 (#37191)7dbff48fix(mistralai): strip non-wire keys fromToolMessage(#37188)913816crelease(fireworks): 1.3.1 (#37189)4498d3dfix(fireworks): strip non-wire keys fromToolMessagetext content blocks (#...Updates
langgraph-checkpointfrom 4.0.0 to 4.1.1Release notes
Sourced from langgraph-checkpoint's releases.
... (truncated)
Commits
d1e2ff0release(checkpoint): 4.1.1 (#7890)e787af2release(sdk-py): 0.3.15 (#7891)604534efix(sdk-py): percent-encode caller-supplied identifiers in URL paths (#7893)346aa97fix(checkpoint): restrict lc:2 envelope revival to default constructor (#7892)82b3872chore(deps): bump the uv group across 2 directories with 1 update (#7853)fcc4ab8chore(deps): bump idna from 3.11 to 3.15 in /libs/checkpoint (#7860)701d344chore(deps): bump idna from 3.11 to 3.15 in /libs/checkpoint-postgres (#7861)2c7967cchore(deps): bump idna from 3.11 to 3.15 in /libs/cli (#7865)bf7fec0release(langgraph): 1.2.1 (#7883)8215a9dfeat(langgraph): addbefore_builtinsopt-in for stream transformers (#7882)Updates
langchain-text-splittersfrom 1.1.0 to 1.1.2Release notes
Sourced from langchain-text-splitters's releases.
Commits
58c4e5brelease(text-splitters): 1.1.2 (#36822)c289bf1fix(text-splitters): deprecate and use SSRF-safe transport in split_text_from...b7447c6fix(infra): skip serdes tests in min-version release step (#36818)41c0cc5release(openai): 1.1.14 (#36820)0516156fix(openai): use SSRF-safe transport for image token counting (#36819)338aa81fix(core): restore cloud metadata IPs and link-local range in SSRF policy (#3...51e9548chore: bump langsmith from 0.6.3 to 0.7.31 in /libs/text-splitters (#36797)e85c418chore: bump langsmith from 0.6.3 to 0.7.31 in /libs/model-profiles (#36798)789126echore: bump langsmith from 0.6.3 to 0.7.31 in /libs/standard-tests (#36799)937b3ebchore: bump langsmith from 0.6.3 to 0.7.31 in /libs/langchain_v1 (#36800)Updates
pypdffrom 5.6.0 to 6.13.3Release notes
Sourced from pypdf's releases.
... (truncated)
Changelog
Sourced from pypdf's changelog.