Skip to content

Bump exabgp from 4.2.25 to 5.0.5#4778

Closed
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/pip/exabgp-5.0.5
Closed

Bump exabgp from 4.2.25 to 5.0.5#4778
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/pip/exabgp-5.0.5

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Mar 20, 2026

Bumps exabgp from 4.2.25 to 5.0.5.

Release notes

Sourced from exabgp's releases.

ExaBGP 'Saint Patrick' release

Version 5.0.5:

  • Fix: healthcheck --neighbor produced doubled neighbor prefix (#1366)
  • Fix: healthcheck crash when --ip-ifname not used (#1365)
  • Fix: Align column headers in show neighbor extensive
  • Fix: Route Refresh messages sent after new updates instead of before When flush adj-rib out and a new announce arrived in the same reactor cycle, the new route UPDATE was sent before the ROUTE_REFRESH start marker, violating the Enhanced Route Refresh sequence.
  • Fix: pytest collecting tests from wrong exabgp installation Added pythonpath to pyproject.toml so tests use local src/.

ExaBGP 'Alpine' release

Version 5.0.4:

  • Fix: Flaky test on slow CI runners (Alpine Linux) (#1359) Race condition in test_connection_lifecycle where client-side TCP handshake completes before server thread calls accept(). Added retry loop instead of bare assertion.
  • Fix: Release script no longer generates debian/changelog

ExaBGP 'Lancastrian' release

Version 5.0.3:

  • Fix: CLI hang on failing async commands ASYNC error handler now sends error response when callback fails, preventing the CLI from hanging indefinitely.
  • Fix: peer-id field in show neighbor extensive cli_data() now correctly uses peer['peer-id'] instead of peer['router-id'].
  • Fix: timedelta formatting error on Python 3.12+ Python 3.12+ timedelta.format rejects alignment specs like :>15. Wrapping in str() before formatting fixes the TypeError.

ExaBGP "A La French" Release

Version 5.0.2:

  • Fix: healthcheck (and other subcommands) not working when api.cli is enabled When exabgp.api.cli is true, the exabgp_cli_pipe environment variable was inherited by all child processes, causing 'python -m exabgp healthcheck' to run the CLI pipe code instead of the healthcheck subcommand. Only the internal CLI process now receives this variable.

ExaBGP 'Never trust 0.0 code' release

ExaBGP 5.0.1

This is a bug fix release addressing issues introduced in 5.0.0.

🚨 Critical Fixes

Container ImportError Fix

  • Fix: Container startup failure in 5.0.0 - The 5.0.0 Docker container (ghcr.io/exa-networks/exabgp:5.0.0) failed to start with ImportError: cannot import name 'get_root' from 'exabgp.version'
  • Added missing get_root() and get_zipapp() functions that were removed during 5.0.0 release but still required by application/version.py
  • All exabgp commands (--help, version, etc.) now work correctly

... (truncated)

Changelog

Sourced from exabgp's changelog.

Version explained:

  • major : codebase increase on incompatible changes
  • minor : increase on risk of code breakage during a major release
  • bug : increase on bug or incremental changes

Version 5.0.5:

  • Fix: healthcheck --neighbor produced doubled neighbor prefix (#1366)
  • Fix: healthcheck crash when --ip-ifname not used (#1365)
  • Fix: Align column headers in show neighbor extensive
  • Fix: Route Refresh messages sent after new updates instead of before When flush adj-rib out and a new announce arrived in the same reactor cycle, the new route UPDATE was sent before the ROUTE_REFRESH start marker, violating the Enhanced Route Refresh sequence.
  • Fix: pytest collecting tests from wrong exabgp installation Added pythonpath to pyproject.toml so tests use local src/.

Version 5.0.4:

  • Fix: Flaky test on slow CI runners (Alpine Linux) (#1359) Race condition in test_connection_lifecycle where client-side TCP handshake completes before server thread calls accept(). Added retry loop instead of bare assertion.
  • Fix: Release script no longer generates debian/changelog

Version 5.0.3:

  • Fix: CLI hang on failing async commands ASYNC error handler now sends error response when callback fails, preventing the CLI from hanging indefinitely.
  • Fix: peer-id field in show neighbor extensive cli_data() now correctly uses peer['peer-id'] instead of peer['router-id'].
  • Fix: timedelta formatting error on Python 3.12+ Python 3.12+ timedelta.format rejects alignment specs like :>15. Wrapping in str() before formatting fixes the TypeError.

Version 5.0.2:

  • Fix: healthcheck (and other subcommands) not working when api.cli is enabled When exabgp.api.cli is true, the exabgp_cli_pipe environment variable was inherited by all child processes, causing 'python -m exabgp healthcheck' to run the CLI pipe code instead of the healthcheck subcommand. Only the internal CLI process now receives this variable.

Version 5.0.1:

  • Fix: ImportError when running exabgp commands (--help, version, etc.) Missing get_root() and get_zipapp() functions in version.py that were removed during 5.0.0 release but still imported by application/version.py. This bug prevented the 5.0.0 container from starting.
  • Fix: Critical RIB iterator crash in delete_cached_family() (cache.py:37) Modified dictionary during iteration causing RuntimeError on configuration reload. Fixed by adding list() wrapper to snapshot keys before iteration. The list() wrapper prevents race condition when removing families from cache.
  • Fix: Critical RIB iterator safety in cached_changes() (cache.py:51)

... (truncated)

Commits
  • d84e98c updating version to 5.0.5
  • 6b2560a style: apply ruff formatting to 49 files
  • 4023856 fix: Route Refresh ordering and test infrastructure
  • 4471893 doc: add CHANGELOG entry for 5.0.5
  • 0c9965e fix: healthcheck --neighbor produced doubled neighbor prefix (#1366)
  • ebafc88 fix: healthcheck crash when --ip-ifname not used (#1365)
  • 062f7f8 fix: Align column headers in show neighbor extensive
  • 607093b updating version to 5.0.4
  • 0c56c28 fix: Add uv.lock to release script allowed files
  • 6d67cae chore: Prepare 5.0.4 release and disable debian changelog generation
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump exabgp from 4.2.25 to 5.0.5
1681505 
Bumps [exabgp](https://github.com/exa-networks/exabgp) from 4.2.25 to 5.0.5.
- [Release notes](https://github.com/exa-networks/exabgp/releases)
- [Changelog](https://github.com/Exa-Networks/exabgp/blob/5.0.5/doc/CHANGELOG.rst)
- [Commits](Exa-Networks/exabgp@4.2.25...5.0.5)

---
updated-dependencies:
- dependency-name: exabgp
  dependency-version: 5.0.5
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Mar 20, 2026
@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot bot commented on behalf of github Apr 9, 2026

Superseded by #4788.

@dependabot dependabot bot closed this Apr 9, 2026
@dependabot dependabot bot deleted the dependabot/pip/exabgp-5.0.5 branch April 9, 2026 06:04
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python Pull requests that update Python code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants