Skip to content

Bump the python-dependencies group with 7 updates#262

Merged
moonraker595 merged 10 commits into
mainfrom
dependabot/pip/python-dependencies-a001e9cd15
Jun 30, 2026
Merged

Bump the python-dependencies group with 7 updates#262
moonraker595 merged 10 commits into
mainfrom
dependabot/pip/python-dependencies-a001e9cd15

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 17, 2026

Copy link
Copy Markdown
Contributor

For context: we now have a Dependabot config file. It uses the default branch, so this was added directly to main. This then produced 25-odd updates, most of which were harmless and were merged in. The ones below needed code changes.

For reference ,this is how Dependabot works for updates and vulnerabilities:

Type Trigger Creates PRs? Controlled by
Version Updates New package versions available Yes .github/dependabot.yml
Security Updates Known vulnerability (CVE/GHSA) detected Yes Security settings.

During testing of the FastAPI dependency updates, the API began returning HTTP 500 responses from the /login endpoint. Turns out the issue was the Elastic APM middleware. Temporarily disabling:

app.add_middleware(ElasticAPM, client=apm)

immediately fixed the issue.

To restore functionality, FastAPI and Starlette have been pinned to the last known working versions

Other changes include linting fixes due to the bump in Flake version.

Other Updates:

Package From To
flake8 5.0.4 7.3.0
flake8-bugbear 22.12.6 25.11.29
flake8-builtins 1.5.3 3.1.0
pep8-naming 0.12.1 0.15.1
pytest-cov 5.0.0 7.1.0

Bumps the python-dependencies group with 7 updates:

| Package | From | To |
| --- | --- | --- |
| [fastapi](https://github.com/fastapi/fastapi) | `0.123.10` | `0.137.1` |
| [starlette](https://github.com/Kludex/starlette) | `0.49.3` | `1.3.1` |
| [flake8](https://github.com/pycqa/flake8) | `5.0.4` | `7.3.0` |
| [flake8-bugbear](https://github.com/PyCQA/flake8-bugbear) | `22.12.6` | `25.11.29` |
| [flake8-builtins](https://github.com/gforcada/flake8-builtins) | `1.5.3` | `3.1.0` |
| [pep8-naming](https://github.com/PyCQA/pep8-naming) | `0.12.1` | `0.15.1` |
| [pytest-cov](https://github.com/pytest-dev/pytest-cov) | `5.0.0` | `7.1.0` |


Updates `fastapi` from 0.123.10 to 0.137.1
- [Release notes](https://github.com/fastapi/fastapi/releases)
- [Commits](fastapi/fastapi@0.123.10...0.137.1)

Updates `starlette` from 0.49.3 to 1.3.1
- [Release notes](https://github.com/Kludex/starlette/releases)
- [Changelog](https://github.com/Kludex/starlette/blob/main/docs/release-notes.md)
- [Commits](Kludex/starlette@0.49.3...1.3.1)

Updates `flake8` from 5.0.4 to 7.3.0
- [Commits](PyCQA/flake8@5.0.4...7.3.0)

Updates `flake8-bugbear` from 22.12.6 to 25.11.29
- [Release notes](https://github.com/PyCQA/flake8-bugbear/releases)
- [Commits](PyCQA/flake8-bugbear@22.12.6...25.11.29)

Updates `flake8-builtins` from 1.5.3 to 3.1.0
- [Changelog](https://github.com/gforcada/flake8-builtins/blob/main/CHANGES.rst)
- [Commits](gforcada/flake8-builtins@1.5.3...3.1.0)

Updates `pep8-naming` from 0.12.1 to 0.15.1
- [Release notes](https://github.com/PyCQA/pep8-naming/releases)
- [Changelog](https://github.com/PyCQA/pep8-naming/blob/main/CHANGELOG.rst)
- [Commits](PyCQA/pep8-naming@0.12.1...0.15.1)

Updates `pytest-cov` from 5.0.0 to 7.1.0
- [Changelog](https://github.com/pytest-dev/pytest-cov/blob/master/CHANGELOG.rst)
- [Commits](pytest-dev/pytest-cov@v5.0.0...v7.1.0)

---
updated-dependencies:
- dependency-name: fastapi
  dependency-version: 0.137.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: python-dependencies
- dependency-name: starlette
  dependency-version: 1.3.1
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: python-dependencies
- dependency-name: flake8
  dependency-version: 7.3.0
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: python-dependencies
- dependency-name: flake8-bugbear
  dependency-version: 25.11.29
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: python-dependencies
- dependency-name: flake8-builtins
  dependency-version: 3.1.0
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: python-dependencies
- dependency-name: pep8-naming
  dependency-version: 0.15.1
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: python-dependencies
- dependency-name: pytest-cov
  dependency-version: 7.1.0
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: python-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python Pull requests that update python code labels Jun 17, 2026
@codecov

codecov Bot commented Jun 24, 2026

Copy link
Copy Markdown

Codecov Report

❌ Patch coverage is 80.00000% with 1 line in your changes missing coverage. Please review.
✅ Project coverage is 96.91%. Comparing base (29c34fa) to head (1d62913).
⚠️ Report is 2 commits behind head on main.

Files with missing lines Patch % Lines
operationsgateway_api/src/routes/export.py 50.00% 0 Missing and 1 partial ⚠️
Additional details and impacted files
@@           Coverage Diff           @@
##             main     #262   +/-   ##
=======================================
  Coverage   96.91%   96.91%           
=======================================
  Files          88       88           
  Lines        4928     4928           
  Branches      436      436           
=======================================
  Hits         4776     4776           
  Misses        104      104           
  Partials       48       48           

☔ View full report in Codecov by Harness.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

@dependabot @github

dependabot Bot commented on behalf of github Jun 25, 2026

Copy link
Copy Markdown
Contributor Author

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot Bot closed this Jun 25, 2026
@dependabot dependabot Bot deleted the dependabot/pip/python-dependencies-a001e9cd15 branch June 25, 2026 00:31
@moonraker595 moonraker595 restored the dependabot/pip/python-dependencies-a001e9cd15 branch June 30, 2026 08:48
@moonraker595 moonraker595 reopened this Jun 30, 2026
@moonraker595 moonraker595 merged commit 48b4ba5 into main Jun 30, 2026
6 checks passed
@moonraker595 moonraker595 deleted the dependabot/pip/python-dependencies-a001e9cd15 branch June 30, 2026 12:02
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file python Pull requests that update python code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant