Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump the production-dependencies group across 1 directory with 2 updates #1585

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 20, 2025

Bumps the production-dependencies group with 2 updates in the / directory: structlog and boto3.

Updates structlog from 24.4.0 to 25.1.0

Release notes

Sourced from structlog's releases.

25.1.0

Highlights

Lots of updates to exception handling that I hope will stabilize a bit now.

Full changelog below!

Special Thanks

This release would not be possible without my generous sponsors! Thank you to all of you making sustainable maintenance possible! If you would like to join them, go to https://github.com/sponsors/hynek and check out the sweet perks!

Above and Beyond

Variomedia AG (@variomedia), Tidelift (@tidelift), Klaviyo (@klaviyo), FilePreviews (@filepreviews), Privacy Solutions GmbH (@privacy-solutions), Gedankenspieler (@Gedankenspieler), Daniel Fortunov (@asqui), Kevin P. Fleming (@kpfleming), and Polar (@polarsource).

Maintenance Sustainers

Buttondown (@buttondown), Christopher Dignam (@chdsbd), Stefan Hagen (@sthagen), Magnus Watn (@magnuswatn), David Cramer (@dcramer), Jesse Snyder (@jessesnyder), Rivo Laks (@rivol), Chris Withers (@cjw296), Mike Fiedler (@miketheman), Duncan Hill (@cricalix), Colin Marquardt (@cmarqu), Pieter Swinkels (@swinkels), Nick Libertini (@libertininick), Moving Content AG (@moving-content), ProteinQure (@ProteinQure), The Westervelt Company (@westerveltco), Sławomir Ehlert (@slafs), Mostafa Khalil (@khadrawy), Filip Mularczyk (@mukiblejlok), Thomas Klinger (@thmsklngr), Andreas Poehlmann (@ap--), August Bigelow (@atbigelow), Carlton Gibson (@carltongibson), and Roboflow (@roboflow).

Not to forget 11 more amazing humans who chose to be generous but anonymous!

Full Changelog

Added

  • Add structlog.stdlib.render_to_log_args_and_kwargs processor. Same as structlog.stdlib.render_to_log_kwargs, but also allows to pass positional arguments to logging. With it, you do not need to add structlog.stdlib.PositionalArgumentsFormatter processor to format positional arguments from structlog loggers. #668

  • Native loggers now have is_enabled_for() and get_effective_level() methods that mirror the behavior of the standard library's logging.Logger.isEnabledFor() and logging.Logger.getEffectiveLevel(). #689

Changed

  • structlog.typing.BindableLogger protocol now returns Self instead of BindableLogger. This adds a dependency on typing-extensions for Pythons older than 3.11. #642 #659

  • structlog.dev.ConsoleRenderer will quote string value with special characters. #647

  • structlog.stdlib.recreate_defaults() now also adds structlog.stdlib.PositionalArgumentsFormatter. In default native mode, this is done by the loggers at the edge.

  • structlog.make_filtering_bound_logger() now also accepts a string for min_level.

Fixed

  • Fix handling calls to {logger}.exception() outside of exception blocks. Depending on the structlog configuration, this either resulted in an event dict key exception: "MISSING" or lead to an error. Now, an invalid or missing exc_info will just be ignored. This means, that calling {logger}.exception() outside of an exception block is basically the same as calling {logger}.error(). #634 #680

  • Instantiating structlog.dev.ConsoleRenderer does not mutate the passed styles dict anymore. #669

  • The native FilteringBoundLogger.fatal() method now maps to the critical level, as it does in the standard library. Note that the level is discouraged to use there, so we recommend to stick to error() or critical(). #677

... (truncated)

Changelog

Sourced from structlog's changelog.

25.1.0 - 2025-01-16

Added

  • Add structlog.stdlib.render_to_log_args_and_kwargs processor. Same as structlog.stdlib.render_to_log_kwargs, but also allows to pass positional arguments to logging. With it, you do not need to add structlog.stdlib.PositionalArgumentsFormatter processor to format positional arguments from structlog loggers. #668

  • Native loggers now have is_enabled_for() and get_effective_level() methods that mirror the behavior of the standard library's logging.Logger.isEnabledFor() and logging.Logger.getEffectiveLevel(). #689

Changed

  • structlog.typing.BindableLogger protocol now returns Self instead of BindableLogger. This adds a dependency on typing-extensions for Pythons older than 3.11. #642 #659

  • structlog.dev.ConsoleRenderer will quote string value with special characters. #647

  • structlog.stdlib.recreate_defaults() now also adds structlog.stdlib.PositionalArgumentsFormatter. In default native mode, this is done by the loggers at the edge.

  • structlog.make_filtering_bound_logger() now also accepts a string for min_level.

Fixed

  • Fix handling calls to {logger}.exception() outside of exception blocks. Depending on the structlog configuration, this either resulted in an event dict key exception: "MISSING" or lead to an error. Now, an invalid or missing exc_info will just be ignored. This means, that calling {logger}.exception() outside of an exception block is basically the same as calling {logger}.error(). #634 #680

  • Instantiating structlog.dev.ConsoleRenderer does not mutate the passed styles dict anymore. #669

  • The native FilteringBoundLogger.fatal() method now maps to the critical level, as it does in the standard library. Note that the level is discouraged to use there, so we recommend to stick to error() or critical(). #677

  • structlog.tracebacks.ExceptionDictTransformer now actually accepts None for locals_max_length and locals_max_string. #675

Commits
  • a38a5ac Prepare 25.1.0
  • c5803e8 Consistency
  • 3eab3e9 Fix changelog headings
  • 02d072a Makes no difference
  • 4350cdd Try if test PyPI will deduct the correct license with lower 2.3 metadata
  • bc147a4 Only build in RTD and only doctests in CI (#691)
  • e97b839 native loggers: add is_enabled_for & get_effective_level (#689)
  • 8688c32 docs: use uv & 3.13 for build (#690)
  • c7a6a10 Allow make_filtering_bound_logger to receive a str for level
  • d43b2cb Inter is cliche now
  • Additional commits viewable in compare view

Updates boto3 from 1.35.98 to 1.36.2

Commits
  • 2d89f4d Merge branch 'release-1.36.2'
  • 3632dae Bumping version to 1.36.2
  • f47c6aa Add changelog entries from botocore
  • 9613882 Merge branch 'release-1.36.1'
  • 1753747 Merge branch 'release-1.36.1' into develop
  • b0198d1 Bumping version to 1.36.1
  • dd793dc Add changelog entries from botocore
  • e2b2df5 Merge branch 'release-1.36.0'
  • 2f9e01d Merge branch 'release-1.36.0' into develop
  • 80855f0 Bumping version to 1.36.0
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot requested a review from a team as a code owner January 20, 2025 08:06
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Jan 20, 2025
@ons-eq-team
Copy link
Contributor

Benchmark Results

Percentile Averages:
50th: 83ms
90th: 217ms
95th: 374ms
99th: 725ms
99.9th: 1326ms
GETs (99th): 921ms
POSTs (99th): 499ms

PDF: 7600ms
Session: 11000ms

Total Requests: 66,177
Total Failures: 0
Error Percentage: 0.0%

@dependabot dependabot bot force-pushed the dependabot/pip/main/production-dependencies-275b63b46c branch from b852167 to 315dc40 Compare January 21, 2025 09:06
Bumps the production-dependencies group with 2 updates in the / directory: [structlog](https://github.com/hynek/structlog) and [boto3](https://github.com/boto/boto3).


Updates `structlog` from 24.4.0 to 25.1.0
- [Release notes](https://github.com/hynek/structlog/releases)
- [Changelog](https://github.com/hynek/structlog/blob/main/CHANGELOG.md)
- [Commits](hynek/structlog@24.4.0...25.1.0)

Updates `boto3` from 1.35.98 to 1.36.2
- [Release notes](https://github.com/boto/boto3/releases)
- [Commits](boto/boto3@1.35.98...1.36.2)

---
updated-dependencies:
- dependency-name: structlog
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: production-dependencies
- dependency-name: boto3
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/pip/main/production-dependencies-275b63b46c branch from 315dc40 to e1a9051 Compare January 21, 2025 09:43
@ons-eq-team
Copy link
Contributor

Benchmark Results

Percentile Averages:
50th: 88ms
90th: 221ms
95th: 397ms
99th: 802ms
99.9th: 1612ms
GETs (99th): 996ms
POSTs (99th): 579ms

PDF: 7900ms
Session: 11000ms

Total Requests: 65,349
Total Failures: 0
Error Percentage: 0.0%

Copy link
Contributor Author

dependabot bot commented on behalf of github Jan 24, 2025

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Jan 24, 2025
@dependabot dependabot bot deleted the dependabot/pip/main/production-dependencies-275b63b46c branch January 24, 2025 08:52
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file python Pull requests that update Python code
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant