Skip to content

Bump the prod-dependencies group across 1 directory with 5 updates#134

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/uv/prod-dependencies-b5594da246
Open

Bump the prod-dependencies group across 1 directory with 5 updates#134
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/uv/prod-dependencies-b5594da246

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 1, 2026
edited
Loading

Bumps the prod-dependencies group with 5 updates in the / directory:

Package From To
asyncio 3.4.3 4.0.0
flask 3.1.1 3.1.2
functions-framework 3.9.2 3.10.0
google-cloud-logging 3.12.1 3.13.0
setuptools 80.9.0 80.10.2

Updates asyncio from 3.4.3 to 4.0.0

Commits

Updates flask from 3.1.1 to 3.1.2

Release notes

Sourced from flask's releases.

3.1.2

This is the Flask 3.1.2 fix release, which fixes bugs but does not otherwise change behavior and should not result in breaking changes compared to the latest feature release.

PyPI: https://pypi.org/project/Flask/3.1.2/ Changes: https://flask.palletsprojects.com/page/changes/#version-3-1-2 Milestone: https://github.com/pallets/flask/milestone/38?closed=1

  • stream_with_context does not fail inside async views. #5774
  • When using follow_redirects in the test client, the final state of session is correct. #5786
  • Relax type hint for passing bytes IO to send_file. #5776
Changelog

Sourced from flask's changelog.

Version 3.1.2

Released 2025-08-19

  • stream_with_context does not fail inside async views. :issue:5774
  • When using follow_redirects in the test client, the final state of session is correct. :issue:5786
  • Relax type hint for passing bytes IO to send_file. :issue:5776
Commits
  • 2c1b30d release version 3.1.2
  • 1292419 Update GitHub Actions workflow for artifact handling (#5795)
  • 4dd52ca Update GitHub Actions workflow for artifact handling
  • 55c6255 update dev dependencies
  • d8259eb use Jinja name consistently
  • 38b4c1e refactor stream_with_context for async views (#5799)
  • 9822a03 refactor stream_with_context for async views
  • 49b7e7b security docs for TRUSTED_HOSTS (#5798)
  • b228ca3 security docs for TRUSTED_HOSTS
  • ff64079 update flask-talisman link
  • Additional commits viewable in compare view

Updates functions-framework from 3.9.2 to 3.10.0

Release notes

Sourced from functions-framework's releases.

v3.10.0

3.10.0 (2025-11-10)

Features

Bug Fixes

  • ci: Add release-assets.githubusercontent.com to allowed endpoints (#394) (9b37f85)
  • remove Python 3.7 test execution (#402) (ef45fae)
Changelog

Sourced from functions-framework's changelog.

3.10.0 (2025-11-10)

Features

Bug Fixes

  • ci: Add release-assets.githubusercontent.com to allowed endpoints (#394) (9b37f85)
  • remove Python 3.7 test execution (#402) (ef45fae)
Commits

Updates google-cloud-logging from 3.12.1 to 3.13.0

Release notes

Sourced from google-cloud-logging's releases.

google-cloud-logging 3.13.0

3.13.0 (2025-12-15)

Features

Bug Fixes

  • remove setup.cfg configuration for creating universal wheels (#981) (70f612c3)
Changelog

Sourced from google-cloud-logging's changelog.

3.13.0 (2025-12-15)

Features

Bug Fixes

Commits
  • 1415883 chore: librarian release pull request: 20251215T134006Z (#1066)
  • 6be3df6 feat: Add support for python 3.14 (#1065)
  • 36fb427 chore(librarian): onboard to librarian (#1061)
  • eb189bf chore: update Python generator version to 1.25.1 (#1003)
  • a7a28d1 test: ignore DeprecationWarning for credentials_file argument and Python ve...
  • 70f612c fix: remove setup.cfg configuration for creating universal wheels (#981)
  • e4c445a chore: Update gapic-generator-python to 1.25.0 (#985)
  • 14364a5 test: Added cleanup of old sink storage buckets (#991)
  • See full diff in compare view

Updates setuptools from 80.9.0 to 80.10.2

Changelog

Sourced from setuptools's changelog.

v80.10.2

Bugfixes

  • Update vendored dependencies. (#5159)

Misc

v80.10.1

Misc

v80.10.0

Features

  • Remove post-release tags on setuptools' own build. (#4530)
  • Refreshed vendored dependencies. (#5139)

Misc

Commits
  • 5cf2d08 Bump version: 80.10.1 → 80.10.2
  • 852cd5e Merge pull request #5166 from pypa/bugfix/5159-vendor-bin-free
  • 11115ee Suppress deprecation warning.
  • 5cf9185 Update vendored dependencies.
  • cf59f41 Delete all binaries generated by vendored package install.
  • 89a5981 Add missing newsfragments
  • c0114af Postpone deprecation warnings related to PEP 639 to 2027-Feb-18 (#5115)
  • de07603 Revert "[CI] Constraint transient test dependency on pyobjc" (#5128)
  • 3afd5d6 Revert "[CI] Constraint transient test dependency on pyobjc"
  • adfb0c9 Bump version: 80.10.0 → 80.10.1
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the prod-dependencies group across 1 directory with 5 updates
6238d58 
Bumps the prod-dependencies group with 5 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [asyncio](https://github.com/python/asyncio) | `3.4.3` | `4.0.0` |
| [flask](https://github.com/pallets/flask) | `3.1.1` | `3.1.2` |
| [functions-framework](https://github.com/googlecloudplatform/functions-framework-python) | `3.9.2` | `3.10.0` |
| [google-cloud-logging](https://github.com/googleapis/python-logging) | `3.12.1` | `3.13.0` |
| [setuptools](https://github.com/pypa/setuptools) | `80.9.0` | `80.10.2` |



Updates `asyncio` from 3.4.3 to 4.0.0
- [Commits](https://github.com/python/asyncio/commits)

Updates `flask` from 3.1.1 to 3.1.2
- [Release notes](https://github.com/pallets/flask/releases)
- [Changelog](https://github.com/pallets/flask/blob/main/CHANGES.rst)
- [Commits](pallets/flask@3.1.1...3.1.2)

Updates `functions-framework` from 3.9.2 to 3.10.0
- [Release notes](https://github.com/googlecloudplatform/functions-framework-python/releases)
- [Changelog](https://github.com/GoogleCloudPlatform/functions-framework-python/blob/main/CHANGELOG.md)
- [Commits](GoogleCloudPlatform/functions-framework-python@v3.9.2...v3.10.0)

Updates `google-cloud-logging` from 3.12.1 to 3.13.0
- [Release notes](https://github.com/googleapis/python-logging/releases)
- [Changelog](https://github.com/googleapis/python-logging/blob/main/CHANGELOG.md)
- [Commits](googleapis/python-logging@v3.12.1...v3.13.0)

Updates `setuptools` from 80.9.0 to 80.10.2
- [Release notes](https://github.com/pypa/setuptools/releases)
- [Changelog](https://github.com/pypa/setuptools/blob/main/NEWS.rst)
- [Commits](pypa/setuptools@v80.9.0...v80.10.2)

---
updated-dependencies:
- dependency-name: asyncio
  dependency-version: 4.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: prod-dependencies
- dependency-name: flask
  dependency-version: 3.1.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod-dependencies
- dependency-name: functions-framework
  dependency-version: 3.10.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: prod-dependencies
- dependency-name: google-cloud-logging
  dependency-version: 3.13.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: prod-dependencies
- dependency-name: setuptools
  dependency-version: 80.10.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: prod-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code labels Feb 1, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants