Bump the python-dependencies group with 7 updates#262
Merged
moonraker595 merged 10 commits intoJun 30, 2026
Conversation
Bumps the python-dependencies group with 7 updates: | Package | From | To | | --- | --- | --- | | [fastapi](https://github.com/fastapi/fastapi) | `0.123.10` | `0.137.1` | | [starlette](https://github.com/Kludex/starlette) | `0.49.3` | `1.3.1` | | [flake8](https://github.com/pycqa/flake8) | `5.0.4` | `7.3.0` | | [flake8-bugbear](https://github.com/PyCQA/flake8-bugbear) | `22.12.6` | `25.11.29` | | [flake8-builtins](https://github.com/gforcada/flake8-builtins) | `1.5.3` | `3.1.0` | | [pep8-naming](https://github.com/PyCQA/pep8-naming) | `0.12.1` | `0.15.1` | | [pytest-cov](https://github.com/pytest-dev/pytest-cov) | `5.0.0` | `7.1.0` | Updates `fastapi` from 0.123.10 to 0.137.1 - [Release notes](https://github.com/fastapi/fastapi/releases) - [Commits](fastapi/fastapi@0.123.10...0.137.1) Updates `starlette` from 0.49.3 to 1.3.1 - [Release notes](https://github.com/Kludex/starlette/releases) - [Changelog](https://github.com/Kludex/starlette/blob/main/docs/release-notes.md) - [Commits](Kludex/starlette@0.49.3...1.3.1) Updates `flake8` from 5.0.4 to 7.3.0 - [Commits](PyCQA/flake8@5.0.4...7.3.0) Updates `flake8-bugbear` from 22.12.6 to 25.11.29 - [Release notes](https://github.com/PyCQA/flake8-bugbear/releases) - [Commits](PyCQA/flake8-bugbear@22.12.6...25.11.29) Updates `flake8-builtins` from 1.5.3 to 3.1.0 - [Changelog](https://github.com/gforcada/flake8-builtins/blob/main/CHANGES.rst) - [Commits](gforcada/flake8-builtins@1.5.3...3.1.0) Updates `pep8-naming` from 0.12.1 to 0.15.1 - [Release notes](https://github.com/PyCQA/pep8-naming/releases) - [Changelog](https://github.com/PyCQA/pep8-naming/blob/main/CHANGELOG.rst) - [Commits](PyCQA/pep8-naming@0.12.1...0.15.1) Updates `pytest-cov` from 5.0.0 to 7.1.0 - [Changelog](https://github.com/pytest-dev/pytest-cov/blob/master/CHANGELOG.rst) - [Commits](pytest-dev/pytest-cov@v5.0.0...v7.1.0) --- updated-dependencies: - dependency-name: fastapi dependency-version: 0.137.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: python-dependencies - dependency-name: starlette dependency-version: 1.3.1 dependency-type: direct:production update-type: version-update:semver-major dependency-group: python-dependencies - dependency-name: flake8 dependency-version: 7.3.0 dependency-type: direct:development update-type: version-update:semver-major dependency-group: python-dependencies - dependency-name: flake8-bugbear dependency-version: 25.11.29 dependency-type: direct:development update-type: version-update:semver-major dependency-group: python-dependencies - dependency-name: flake8-builtins dependency-version: 3.1.0 dependency-type: direct:development update-type: version-update:semver-major dependency-group: python-dependencies - dependency-name: pep8-naming dependency-version: 0.15.1 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: python-dependencies - dependency-name: pytest-cov dependency-version: 7.1.0 dependency-type: direct:development update-type: version-update:semver-major dependency-group: python-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>
Codecov Report❌ Patch coverage is
Additional details and impacted files@@ Coverage Diff @@
## main #262 +/- ##
=======================================
Coverage 96.91% 96.91%
=======================================
Files 88 88
Lines 4928 4928
Branches 436 436
=======================================
Hits 4776 4776
Misses 104 104
Partials 48 48 ☔ View full report in Codecov by Harness. 🚀 New features to boost your workflow:
|
Contributor
Author
|
Looks like these dependencies are updatable in another way, so this is no longer needed. |
moonraker595
approved these changes
Jun 30, 2026
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
For context: we now have a Dependabot config file. It uses the default branch, so this was added directly to main. This then produced 25-odd updates, most of which were harmless and were merged in. The ones below needed code changes.
For reference ,this is how Dependabot works for updates and vulnerabilities:
During testing of the FastAPI dependency updates, the API began returning HTTP 500 responses from the
/loginendpoint. Turns out the issue was the Elastic APM middleware. Temporarily disabling:immediately fixed the issue.
To restore functionality, FastAPI and Starlette have been pinned to the last known working versions
Other changes include linting fixes due to the bump in Flake version.
Other Updates:
5.0.47.3.022.12.625.11.291.5.33.1.00.12.10.15.15.0.07.1.0