Open
Conversation
…ty#12351) ### Why is this Change Important & Necessary? Fixes Submitty#12281 -- When instructors tried to create more than 1 new response in a single edit for a Submini Poll, only the last response was saved and the rest were lost. ### What is the New Behavior? Each new response is now given a unique ID, preventing the previous behavior where every new response had the same ID, so the last created response overwrote all the prior responses. ### What steps should a reviewer take to reproduce or test the bug or new feature? 1) Log in as instructor 2) Create a new SubminiPoll with at least 1 response 3) Edit poll and add at least 2 new responses 4) Save poll and check it again to see if all new responses saved ### Automated Testing & Documentation Cypress tests do not currently cover specifically adding multiple responses in a single edit ### Other information Change is a minor JavaScript change - no breaking changes were made
### Why is this Change Important & Necessary? We want to keep the tests passing as much as we can, recently a couple of PRs caused tests to fail on main (and every PR). ### What is the New Behavior? The JavaScript tests, and the Cypress tests now pass. ### What steps should a reviewer take to reproduce or test the bug or new feature? See that the tests pass in CI, and if you want to, run `submitty_test js` in your VM, and run the Cypress tests --------- Co-authored-by: JManion32 <jmanion32@gmail.com>
… in the composer group across 1 directory (Submitty#12356) Bumps the composer group with 1 update in the /site directory: [phpunit/phpunit](https://github.com/sebastianbergmann/phpunit). Updates `phpunit/phpunit` from 10.5.46 to 10.5.62 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/sebastianbergmann/phpunit/releases">phpunit/phpunit's releases</a>.</em></p> <blockquote> <h2>PHPUnit 10.5.62</h2> <h3>Changed</h3> <ul> <li>To prevent Poisoned Pipeline Execution (PPE) attacks using prepared <code>.coverage</code> files in pull requests, a PHPT test will no longer be run if the temporary file for writing code coverage information already exists before the test runs</li> </ul> <hr /> <p>Learn how to install or update PHPUnit 10.5 in the <a href="https://docs.phpunit.de/en/10.5/installation.html">documentation</a>.</p> <h4>Keep up to date with PHPUnit:</h4> <ul> <li>You can follow <a href="https://phpc.social/@phpunit"><code>@phpunit@phpc.social</code></a> to stay up to date with PHPUnit's development.</li> <li>You can subscribe to the <a href="https://phpunit.de/newsletter">PHPUnit Updates</a> newsletter to receive updates about and tips for PHPUnit.</li> </ul> <h2>PHPUnit 10.5.61</h2> <h3>Changed</h3> <ul> <li><code>PHPUnit\Framework\MockObject</code> exceptions are now subtypes of <code>PHPUnit\Exception</code></li> </ul> <hr /> <p>Learn how to install or update PHPUnit 10.5 in the <a href="https://docs.phpunit.de/en/10.5/installation.html">documentation</a>.</p> <h4>Keep up to date with PHPUnit:</h4> <ul> <li>You can follow <a href="https://phpc.social/@phpunit"><code>@phpunit@phpc.social</code></a> to stay up to date with PHPUnit's development.</li> <li>You can subscribe to the <a href="https://phpunit.de/newsletter">PHPUnit Updates</a> newsletter to receive updates about and tips for PHPUnit.</li> </ul> <h2>PHPUnit 10.5.60</h2> <ul> <li>No changes; <code>phpunit.phar</code> rebuilt with PHP 8.4 to work around PHP-Scoper issue <a href="https://redirect.github.com/humbug/php-scoper/issues/1139">#1139</a></li> </ul> <hr /> <p>Learn how to install or update PHPUnit 10.5 in the <a href="https://docs.phpunit.de/en/10.5/installation.html">documentation</a>.</p> <h4>Keep up to date with PHPUnit:</h4> <ul> <li>You can follow <a href="https://phpc.social/@phpunit"><code>@phpunit@phpc.social</code></a> to stay up to date with PHPUnit's development.</li> <li>You can subscribe to the <a href="https://phpunit.de/newsletter">PHPUnit Updates</a> newsletter to receive updates about and tips for PHPUnit.</li> </ul> <h2>PHPUnit 10.5.59</h2> <h3>Changed</h3> <ul> <li><a href="https://redirect.github.com/sebastianbergmann/phpunit/pull/6338">#6338</a>: Removed code from <code>PHPUnit\Runner\TestSuiteSorter</code> that was only used in the tests for this class</li> <li>Updated list of deprecated PHP configuration settings for PHP 8.4, PHP 8.5, and PHP 8.6</li> </ul> <hr /> <p>Learn how to install or update PHPUnit 10.5 in the <a href="https://docs.phpunit.de/en/10.5/installation.html">documentation</a>.</p> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/sebastianbergmann/phpunit/blob/10.5.62/ChangeLog-10.5.md">phpunit/phpunit's changelog</a>.</em></p> <blockquote> <h2>[10.5.62] - 2026-01-27</h2> <h3>Changed</h3> <ul> <li>To prevent Poisoned Pipeline Execution (PPE) attacks using prepared <code>.coverage</code> files in pull requests, a PHPT test will no longer be run if the temporary file for writing code coverage information already exists before the test runs</li> </ul> <h2>[10.5.61] - 2026-01-24</h2> <h3>Changed</h3> <ul> <li><code>PHPUnit\Framework\MockObject</code> exceptions are now subtypes of <code>PHPUnit\Exception</code></li> </ul> <h2>[10.5.60] - 2025-12-06</h2> <ul> <li>No changes; <code>phpunit.phar</code> rebuilt with PHP 8.4 to work around PHP-Scoper issue <a href="https://redirect.github.com/humbug/php-scoper/issues/1139">#1139</a></li> </ul> <h2>[10.5.59] - 2025-12-01</h2> <h3>Changed</h3> <ul> <li><a href="https://redirect.github.com/sebastianbergmann/phpunit/pull/6338">#6338</a>: Removed code from <code>PHPUnit\Runner\TestSuiteSorter</code> that was only used in the tests for this class</li> <li>Updated list of deprecated PHP configuration settings for PHP 8.4, PHP 8.5, and PHP 8.6</li> </ul> <h2>[10.5.58] - 2025-09-28</h2> <h3>Fixed</h3> <ul> <li><a href="https://redirect.github.com/sebastianbergmann/phpunit/issues/6368">#6368</a>: <code>failOnPhpunitWarning="false"</code> has no effect</li> </ul> <h2>[10.5.57] - 2025-09-24</h2> <ul> <li>No changes; <code>phpunit.phar</code> rebuilt with updated dependencies</li> </ul> <h2>[10.5.56] - 2025-09-23</h2> <ul> <li>No changes; <code>phpunit.phar</code> rebuilt with updated dependencies</li> </ul> <h2>[10.5.55] - 2025-09-14</h2> <h3>Changed</h3> <ul> <li><a href="https://redirect.github.com/sebastianbergmann/phpunit/issues/6366">#6366</a>: Exclude <code>__sleep()</code> and <code>__wakeup()</code> from test double code generation on PHP >= 8.5</li> </ul> <h2>[10.5.54] - 2025-09-11</h2> <h3>Changed</h3> <ul> <li>Do not use <code>__sleep()</code> method (which will be deprecated in PHP 8.5)</li> </ul> <h2>[10.5.53] - 2025-08-20</h2> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/sebastianbergmann/phpunit/commit/3f7dd5066ebde5809296a81f0b19e8b00e5aab49"><code>3f7dd50</code></a> Prepare release</li> <li><a href="https://github.com/sebastianbergmann/phpunit/commit/9c95cf0cdfdc72e74597aa0cf3c4769ed32b83f0"><code>9c95cf0</code></a> Merge branch '9.6' into 10.5</li> <li><a href="https://github.com/sebastianbergmann/phpunit/commit/fea06253ecc0a32faf787bd31b261f56f351d049"><code>fea0625</code></a> Prepare release</li> <li><a href="https://github.com/sebastianbergmann/phpunit/commit/1a677f663f09de85b97e1a7d03823890594cdba9"><code>1a677f6</code></a> Merge branch '8.5' into 9.6</li> <li><a href="https://github.com/sebastianbergmann/phpunit/commit/1015741814413c156abb0f53d7db7bbd03c6e858"><code>1015741</code></a> Prepare release</li> <li><a href="https://github.com/sebastianbergmann/phpunit/commit/e5cda18b342c4e346d47c6e6cc5c51c0e681c8fd"><code>e5cda18</code></a> Fix bad merge</li> <li><a href="https://github.com/sebastianbergmann/phpunit/commit/a8b932bd41c5a6d689b2751f1be68406c97ea55c"><code>a8b932b</code></a> Merge branch '9.6' into 10.5</li> <li><a href="https://github.com/sebastianbergmann/phpunit/commit/1cce5f3ac2eec234cc0ce2f90ab9d5b80b240bea"><code>1cce5f3</code></a> Merge branch '8.5' into 9.6</li> <li><a href="https://github.com/sebastianbergmann/phpunit/commit/3141742e00620e2968d3d2e732d320de76685fda"><code>3141742</code></a> Do not run PHPT test when its temporary file for code coverage information ex...</li> <li><a href="https://github.com/sebastianbergmann/phpunit/commit/0b3170aaebeb461133937cfd92e5beb0348c0a2b"><code>0b3170a</code></a> We do not need to unserialize() objects here</li> <li>Additional commits viewable in <a href="https://github.com/sebastianbergmann/phpunit/compare/10.5.46...10.5.62">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore <dependency name> major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore <dependency name> minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore <dependency name>` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore <dependency name>` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore <dependency name> <ignore condition>` will remove the ignore condition of the specified dependency and ignore conditions You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Submitty/Submitty/network/alerts). </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…#12364) Bumps [doctrine/orm](https://github.com/doctrine/orm) from 3.6.0 to 3.6.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/doctrine/orm/releases">doctrine/orm's releases</a>.</em></p> <blockquote> <h2>3.6.2</h2> <h3>Release Notes for <a href="https://github.com/doctrine/orm/milestone/204">3.6.2</a></h3> <p>3.6.x bugfix release (patch)</p> <h3>3.6.2</h3> <ul> <li>Total issues resolved: <strong>0</strong></li> <li>Total pull requests resolved: <strong>2</strong></li> <li>Total contributors: <strong>2</strong></li> </ul> <h4>Bugfix</h4> <ul> <li>[12366: fix: update index to be serialized in &<a href="https://redirect.github.com/doctrine/orm/issues/95">#95</a>;&<a href="https://redirect.github.com/doctrine/orm/issues/95">#95</a>;sleep()](<a href="https://redirect.github.com/doctrine/orm/pull/12366">doctrine/orm#12366</a>) thanks to <a href="https://github.com/vvaswani"><code>@vvaswani</code></a></li> </ul> <h4>Improvement</h4> <ul> <li><a href="https://redirect.github.com/doctrine/orm/pull/12343">12343: Update phpstan-dbal2 to phpstan-dbal3 in .gitattributes</a> thanks to <a href="https://github.com/sasezaki"><code>@sasezaki</code></a></li> </ul> <h2>3.6.1</h2> <h3>Release Notes for <a href="https://github.com/doctrine/orm/milestone/202">3.6.1</a></h3> <p>3.6.x bugfix release (patch)</p> <h3>3.6.1</h3> <ul> <li>Total issues resolved: <strong>0</strong></li> <li>Total pull requests resolved: <strong>5</strong></li> <li>Total contributors: <strong>4</strong></li> </ul> <h4>Bugfixes</h4> <ul> <li><a href="https://redirect.github.com/doctrine/orm/pull/12335">12335: Avoid lazy object initialization when initializing read-only property</a> thanks to <a href="https://github.com/greg0ire"><code>@greg0ire</code></a></li> <li><a href="https://redirect.github.com/doctrine/orm/pull/12275">12275: FIX: Handle int-backed enums for values stored as string values in MySQL ENUM columns</a> thanks to <a href="https://github.com/TheBreaken"><code>@TheBreaken</code></a></li> </ul> <h4>Documentation</h4> <ul> <li><a href="https://redirect.github.com/doctrine/orm/pull/12329">12329: Fix result cache examples in docs</a> thanks to <a href="https://github.com/HypeMC"><code>@HypeMC</code></a></li> <li><a href="https://redirect.github.com/doctrine/orm/pull/12328">12328: Fix docs regarding query hints</a> thanks to <a href="https://github.com/HypeMC"><code>@HypeMC</code></a></li> <li><a href="https://redirect.github.com/doctrine/orm/pull/12060">12060: Update doc <code>dql-custom-walkers.rst</code> with an output walker to interpolate parameters into SQL</a> thanks to <a href="https://github.com/n0099"><code>@n0099</code></a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/doctrine/orm/commit/4262eb495b4d2a53b45de1ac58881e0091f2970f"><code>4262eb4</code></a> fix: update index to be serialized in __sleep() (<a href="https://redirect.github.com/doctrine/orm/issues/12366">#12366</a>)</li> <li><a href="https://github.com/doctrine/orm/commit/d3b47d2cbb273de0ad123ca6dd76087b80f2a23e"><code>d3b47d2</code></a> Merge pull request <a href="https://redirect.github.com/doctrine/orm/issues/12355">#12355</a> from doctrine/2.20.x</li> <li><a href="https://github.com/doctrine/orm/commit/026f5bfe1baafd86e216feb2e84d88b4a5fe2355"><code>026f5bf</code></a> Merge pull request <a href="https://redirect.github.com/doctrine/orm/issues/12350">#12350</a> from greg0ire/missing-order-by</li> <li><a href="https://github.com/doctrine/orm/commit/0b0f2f4d8617f305ee2ffdf86c665f27f1a13c16"><code>0b0f2f4</code></a> Add missing ORDER BY clause</li> <li><a href="https://github.com/doctrine/orm/commit/0bd839a720fb8d08502ae879bf485b9b56e45708"><code>0bd839a</code></a> Merge pull request <a href="https://redirect.github.com/doctrine/orm/issues/12345">#12345</a> from greg0ire/3.6.x</li> <li><a href="https://github.com/doctrine/orm/commit/b65004fc263d566964e4a84a90d657ab0c6f6b1a"><code>b65004f</code></a> Merge remote-tracking branch 'origin/2.20.x' into 3.6.x</li> <li><a href="https://github.com/doctrine/orm/commit/d2418ab07468981e64ff7ede42664d3093318e87"><code>d2418ab</code></a> Merge pull request <a href="https://redirect.github.com/doctrine/orm/issues/12344">#12344</a> from greg0ire/update-baseline</li> <li><a href="https://github.com/doctrine/orm/commit/39a05e31c929c346caca58200971b1694016d994"><code>39a05e3</code></a> Update PHPStan baseline</li> <li><a href="https://github.com/doctrine/orm/commit/ab156a551c0c721da564d3d785fd1539e34f3d01"><code>ab156a5</code></a> Update phpstan-dbal2 to phpstan-dbal3 in .gitattributes (<a href="https://redirect.github.com/doctrine/orm/issues/12343">#12343</a>)</li> <li><a href="https://github.com/doctrine/orm/commit/2148940290e4c44b9101095707e71fb590832fa5"><code>2148940</code></a> Merge pull request <a href="https://redirect.github.com/doctrine/orm/issues/12335">#12335</a> from greg0ire/<a href="https://redirect.github.com/doctrine/orm/issues/12166">gh-12166</a></li> <li>Additional commits viewable in <a href="https://github.com/doctrine/orm/compare/3.6.0...3.6.2">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
… in /site (Submitty#12368) Bumps [phpstan/phpstan-strict-rules](https://github.com/phpstan/phpstan-strict-rules) from 2.0.6 to 2.0.8. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/phpstan/phpstan-strict-rules/releases">phpstan/phpstan-strict-rules's releases</a>.</em></p> <blockquote> <h2>2.0.8</h2> <ul> <li><a href="http://github.com/phpstan/phpstan-strict-rules/commit/1ed9e626a37f7067b594422411539aa807190573">1ed9e62</a> - Allow literal string dynamic property</li> <li><a href="http://github.com/phpstan/phpstan-strict-rules/commit/7493a9f2f13a46a6dbb4359e274832c750468bd1">7493a9f</a> - Update dessant/lock-threads action to v6</li> <li><a href="http://github.com/phpstan/phpstan-strict-rules/commit/796f9c95eb7db03054d1ac1fd522372588497e25">796f9c9</a> - Update actions/checkout action to v6</li> <li><a href="http://github.com/phpstan/phpstan-strict-rules/commit/3dcd0b82568f5196e60f1cce64eb975d8d0c43a5">3dcd0b8</a> - Remove duplicate rules in Readme</li> </ul> <h2>2.0.7</h2> <ul> <li><a href="http://github.com/phpstan/phpstan-strict-rules/commit/d6211c46213d4181054b3d77b10a5c5cb0d59538">d6211c4</a> - enable checkStrictPrintfPlaceholderTypes</li> <li><a href="http://github.com/phpstan/phpstan-strict-rules/commit/6b78d53a0717a5c86f450206034c32a143362134">6b78d53</a> - Update README.md</li> <li><a href="http://github.com/phpstan/phpstan-strict-rules/commit/0435aeb14498aad63f2d62cbe246d86b9b006f10">0435aeb</a> - Consolidate overwriteVariablesWithLoop rule details</li> <li><a href="http://github.com/phpstan/phpstan-strict-rules/commit/e8616380171ea0b85a98d3dabbbf9cfdc461f47d">e861638</a> - Simplify tests in which checkNullables is always true</li> <li><a href="http://github.com/phpstan/phpstan-strict-rules/commit/11b6403a78ed8ed3f461782289d27904c148d24c">11b6403</a> - Simplify tests in which treatPhpDocTypesAsCertain is always true</li> <li><a href="http://github.com/phpstan/phpstan-strict-rules/commit/b043bd81404b8e4e4783c8b348c05bc08fafeb02">b043bd8</a> - Simplify RequireParentConstructCallRule</li> <li><a href="http://github.com/phpstan/phpstan-strict-rules/commit/9f76a17302d9ec42ff790ff9bf1cb3cda7e64490">9f76a17</a> - Update actions/checkout action to v5</li> <li><a href="http://github.com/phpstan/phpstan-strict-rules/commit/2b69ec56d11dca6480f9b40ffd7d2b5baec3f817">2b69ec5</a> - Update Eomm/why-don-t-you-tweet action to v2</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/phpstan/phpstan-strict-rules/commit/1ed9e626a37f7067b594422411539aa807190573"><code>1ed9e62</code></a> Allow literal string dynamic property</li> <li><a href="https://github.com/phpstan/phpstan-strict-rules/commit/7493a9f2f13a46a6dbb4359e274832c750468bd1"><code>7493a9f</code></a> Update dessant/lock-threads action to v6</li> <li><a href="https://github.com/phpstan/phpstan-strict-rules/commit/796f9c95eb7db03054d1ac1fd522372588497e25"><code>796f9c9</code></a> Update actions/checkout action to v6</li> <li><a href="https://github.com/phpstan/phpstan-strict-rules/commit/3dcd0b82568f5196e60f1cce64eb975d8d0c43a5"><code>3dcd0b8</code></a> Remove duplicate rules in Readme</li> <li><a href="https://github.com/phpstan/phpstan-strict-rules/commit/d6211c46213d4181054b3d77b10a5c5cb0d59538"><code>d6211c4</code></a> enable checkStrictPrintfPlaceholderTypes</li> <li><a href="https://github.com/phpstan/phpstan-strict-rules/commit/6b78d53a0717a5c86f450206034c32a143362134"><code>6b78d53</code></a> Update README.md</li> <li><a href="https://github.com/phpstan/phpstan-strict-rules/commit/0435aeb14498aad63f2d62cbe246d86b9b006f10"><code>0435aeb</code></a> Consolidate overwriteVariablesWithLoop rule details</li> <li><a href="https://github.com/phpstan/phpstan-strict-rules/commit/e8616380171ea0b85a98d3dabbbf9cfdc461f47d"><code>e861638</code></a> Simplify tests in which checkNullables is always true</li> <li><a href="https://github.com/phpstan/phpstan-strict-rules/commit/11b6403a78ed8ed3f461782289d27904c148d24c"><code>11b6403</code></a> Simplify tests in which treatPhpDocTypesAsCertain is always true</li> <li><a href="https://github.com/phpstan/phpstan-strict-rules/commit/b043bd81404b8e4e4783c8b348c05bc08fafeb02"><code>b043bd8</code></a> Simplify RequireParentConstructCallRule</li> <li>Additional commits viewable in <a href="https://github.com/phpstan/phpstan-strict-rules/compare/2.0.6...2.0.8">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Chris Reed <55092742+cjreed121@users.noreply.github.com>
…#12367) Bumps [cypress](https://github.com/cypress-io/cypress) from 15.8.1 to 15.9.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/cypress-io/cypress/releases">cypress's releases</a>.</em></p> <blockquote> <h2>v15.9.0</h2> <p>Changelog: <a href="https://docs.cypress.io/app/references/changelog#15-9-0">https://docs.cypress.io/app/references/changelog#15-9-0</a></p> <h2>v15.8.2</h2> <p>Changelog: <a href="https://docs.cypress.io/app/references/changelog#15-8-2">https://docs.cypress.io/app/references/changelog#15-8-2</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/cypress-io/cypress/commit/2b07fd10b0b4899893346b8da834cac1f2eb3eea"><code>2b07fd1</code></a> chore: prepare 15.9.0 release (<a href="https://redirect.github.com/cypress-io/cypress/issues/33227">#33227</a>)</li> <li><a href="https://github.com/cypress-io/cypress/commit/9a8e52ec6a02124daa754099f67b1383885ce87a"><code>9a8e52e</code></a> chore: correct grammar & typos in CHANGELOG linting (<a href="https://redirect.github.com/cypress-io/cypress/issues/33225">#33225</a>)</li> <li><a href="https://github.com/cypress-io/cypress/commit/e0a7eec4328b4052b3b5953c52d84427c5f54f8d"><code>e0a7eec</code></a> chore: enforce CHANGELOG release date MM/DD/YYYY format (<a href="https://redirect.github.com/cypress-io/cypress/issues/33224">#33224</a>)</li> <li><a href="https://github.com/cypress-io/cypress/commit/3de32cfbdfef287526f514a26fc68ade4d0b190f"><code>3de32cf</code></a> chore: Remove unused exports/type exports + remove export from internal types...</li> <li><a href="https://github.com/cypress-io/cypress/commit/b6ccf4031b992f415e55343e864347f4c7a26e62"><code>b6ccf40</code></a> chore: Update v8 snapshot cache - darwin (<a href="https://redirect.github.com/cypress-io/cypress/issues/33223">#33223</a>)</li> <li><a href="https://github.com/cypress-io/cypress/commit/562be948b9c4a10687e18911a92dc769e1fafb96"><code>562be94</code></a> chore: Update v8 snapshot cache - windows (<a href="https://redirect.github.com/cypress-io/cypress/issues/33222">#33222</a>)</li> <li><a href="https://github.com/cypress-io/cypress/commit/a478a87d705ea0bcd1125689a9b40566974d66d5"><code>a478a87</code></a> chore: Update v8 snapshot cache - linux (<a href="https://redirect.github.com/cypress-io/cypress/issues/33221">#33221</a>)</li> <li><a href="https://github.com/cypress-io/cypress/commit/5ea6549d757ebb2bbaad5c0b56c38cf387281df5"><code>5ea6549</code></a> chore(deps): update dependency fast-xml-parser to ^4.5.3 (<a href="https://redirect.github.com/cypress-io/cypress/issues/33216">#33216</a>)</li> <li><a href="https://github.com/cypress-io/cypress/commit/f25153a58347d4ffffa354270d7e5277c7cdab1d"><code>f25153a</code></a> feat: experimentalRunAllSpecs for component testing (<a href="https://redirect.github.com/cypress-io/cypress/issues/32926">#32926</a>)</li> <li><a href="https://github.com/cypress-io/cypress/commit/530b0dd3e2f7aacc8b9133f25e703073c1c42e20"><code>530b0dd</code></a> chore: Remove unused exports + remove 'export' from internal functions + fix ...</li> <li>Additional commits viewable in <a href="https://github.com/cypress-io/cypress/compare/v15.8.1...v15.9.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…ubmitty#12365) [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…#12400) Bumps [psutil](https://github.com/giampaolo/psutil) from 7.2.1 to 7.2.2. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/giampaolo/psutil/blob/master/HISTORY.rst">psutil's changelog</a>.</em></p> <blockquote> <h1>7.2.2</h1> <p>2026-01-28</p> <p><strong>Enhancements</strong></p> <ul> <li>2705_: [Linux]: <code>Process.wait()</code>_ now uses <code>pidfd_open()</code> + <code>poll()</code> for waiting, resulting in no busy loop and faster response times. Requires Linux >= 5.3 and Python >= 3.9. Falls back to traditional polling if unavailable.</li> <li>2705_: [macOS], [BSD]: <code>Process.wait()</code>_ now uses <code>kqueue()</code> for waiting, resulting in no busy loop and faster response times.</li> </ul> <p><strong>Bug fixes</strong></p> <ul> <li>2701_, [macOS]: fix compilation error on macOS < 10.7. (patch by Sergey Fedorov)</li> <li>2707_, [macOS]: fix potential memory leaks in error paths of <code>Process.memory_full_info()</code> and <code>Process.threads()</code>.</li> <li>2708_, [macOS]: Process.cmdline()<code>_ and </code>Process.environ()<code>_ may fail with ``OSError: [Errno 0] Undefined error`` (from ``sysctl(KERN_PROCARGS2)``). They now raise </code>AccessDenied`_ instead.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/giampaolo/psutil/commit/9eea97dd6f1d16ea33f5144c8925f1ce7a0688e1"><code>9eea97d</code></a> Pre-release</li> <li><a href="https://github.com/giampaolo/psutil/commit/938ac647418f09e4e610b2c755741316713c5592"><code>938ac64</code></a> Rm sphinxcontrib.googleanalytics; override layout.html</li> <li><a href="https://github.com/giampaolo/psutil/commit/9dcbb7e60e650f0ab0cb52154b0a12c70f6a1e4c"><code>9dcbb7e</code></a> Add sphinxcontrib-googleanalytics to requirements.txt</li> <li><a href="https://github.com/giampaolo/psutil/commit/76eaf9ae0f2868569c14b46f4165310885a40a15"><code>76eaf9a</code></a> Try to add google analytics to doc</li> <li><a href="https://github.com/giampaolo/psutil/commit/de1cafa56f54e97ca557993155e76dd98877e136"><code>de1cafa</code></a> Update doc mentioning Process.wait() internal details</li> <li><a href="https://github.com/giampaolo/psutil/commit/bb30943b0336a16f28437ec549c15a8ad2830cca"><code>bb30943</code></a> Refact can_use_pidfd_open() and can_use_kqueue()</li> <li><a href="https://github.com/giampaolo/psutil/commit/a571717d6520d436273c8cb34ca871db4bfa508a"><code>a571717</code></a> <a href="https://redirect.github.com/giampaolo/psutil/issues/2708">#2708</a>, macos / cmdline / environ; raise AD instead of OSError(0) (<a href="https://redirect.github.com/giampaolo/psutil/issues/2709">#2709</a>)</li> <li><a href="https://github.com/giampaolo/psutil/commit/8b98c3effc20dcc4ed08c8f3d33e11ec0f5445b1"><code>8b98c3e</code></a> Pre-release</li> <li><a href="https://github.com/giampaolo/psutil/commit/700b7e6a4171ae7c775679217205f1d97568ae00"><code>700b7e6</code></a> [macOS] fix potential leaks in error paths (<a href="https://redirect.github.com/giampaolo/psutil/issues/2707">#2707</a>)</li> <li><a href="https://github.com/giampaolo/psutil/commit/7cc7923a1479fb1d32bb25d3e78b465e2695fbf7"><code>7cc7923</code></a> Windows / cmdline(): be more defensive in free()ing in case of error</li> <li>Additional commits viewable in <a href="https://github.com/giampaolo/psutil/compare/release-7.2.1...release-7.2.2">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…y_utils (Submitty#12401) Bumps [jsonschema](https://github.com/python-jsonschema/jsonschema) from 4.25.1 to 4.26.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/python-jsonschema/jsonschema/releases">jsonschema's releases</a>.</em></p> <blockquote> <h2>v4.26.0</h2> <!-- raw HTML omitted --> <h2>What's Changed</h2> <ul> <li>[pre-commit.ci] pre-commit autoupdate by <a href="https://github.com/pre-commit-ci"><code>@pre-commit-ci</code></a>[bot] in <a href="https://redirect.github.com/python-jsonschema/jsonschema/pull/1400">python-jsonschema/jsonschema#1400</a></li> <li>[pre-commit.ci] pre-commit autoupdate by <a href="https://github.com/pre-commit-ci"><code>@pre-commit-ci</code></a>[bot] in <a href="https://redirect.github.com/python-jsonschema/jsonschema/pull/1405">python-jsonschema/jsonschema#1405</a></li> <li>Bump astral-sh/setup-uv from 6.5.0 to 6.6.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/python-jsonschema/jsonschema/pull/1406">python-jsonschema/jsonschema#1406</a></li> <li>[pre-commit.ci] pre-commit autoupdate by <a href="https://github.com/pre-commit-ci"><code>@pre-commit-ci</code></a>[bot] in <a href="https://redirect.github.com/python-jsonschema/jsonschema/pull/1407">python-jsonschema/jsonschema#1407</a></li> <li>[pre-commit.ci] pre-commit autoupdate by <a href="https://github.com/pre-commit-ci"><code>@pre-commit-ci</code></a>[bot] in <a href="https://redirect.github.com/python-jsonschema/jsonschema/pull/1413">python-jsonschema/jsonschema#1413</a></li> <li>Bump astral-sh/setup-uv from 6.6.0 to 6.6.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/python-jsonschema/jsonschema/pull/1412">python-jsonschema/jsonschema#1412</a></li> <li>Bump pypa/gh-action-pypi-publish from 1.12.4 to 1.13.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/python-jsonschema/jsonschema/pull/1410">python-jsonschema/jsonschema#1410</a></li> <li>Bump softprops/action-gh-release from 2.3.2 to 2.3.3 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/python-jsonschema/jsonschema/pull/1409">python-jsonschema/jsonschema#1409</a></li> <li>Bump actions/setup-python from 5 to 6 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/python-jsonschema/jsonschema/pull/1411">python-jsonschema/jsonschema#1411</a></li> <li>validators: avoid <code>urllib.request</code> at import-time by <a href="https://github.com/gudnimg"><code>@gudnimg</code></a> in <a href="https://redirect.github.com/python-jsonschema/jsonschema/pull/1416">python-jsonschema/jsonschema#1416</a></li> <li>Bump astral-sh/setup-uv from 6.6.1 to 6.8.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/python-jsonschema/jsonschema/pull/1417">python-jsonschema/jsonschema#1417</a></li> <li>Bump softprops/action-gh-release from 2.3.3 to 2.3.4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/python-jsonschema/jsonschema/pull/1418">python-jsonschema/jsonschema#1418</a></li> <li>[pre-commit.ci] pre-commit autoupdate by <a href="https://github.com/pre-commit-ci"><code>@pre-commit-ci</code></a>[bot] in <a href="https://redirect.github.com/python-jsonschema/jsonschema/pull/1415">python-jsonschema/jsonschema#1415</a></li> <li>Bump softprops/action-gh-release from 2.3.4 to 2.4.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/python-jsonschema/jsonschema/pull/1419">python-jsonschema/jsonschema#1419</a></li> <li>Bump github/codeql-action from 3 to 4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/python-jsonschema/jsonschema/pull/1420">python-jsonschema/jsonschema#1420</a></li> <li>Bump astral-sh/setup-uv from 6.8.0 to 7.1.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/python-jsonschema/jsonschema/pull/1421">python-jsonschema/jsonschema#1421</a></li> <li>[pre-commit.ci] pre-commit autoupdate by <a href="https://github.com/pre-commit-ci"><code>@pre-commit-ci</code></a>[bot] in <a href="https://redirect.github.com/python-jsonschema/jsonschema/pull/1424">python-jsonschema/jsonschema#1424</a></li> <li>Bump astral-sh/setup-uv from 7.1.0 to 7.1.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/python-jsonschema/jsonschema/pull/1423">python-jsonschema/jsonschema#1423</a></li> <li>[pre-commit.ci] pre-commit autoupdate by <a href="https://github.com/pre-commit-ci"><code>@pre-commit-ci</code></a>[bot] in <a href="https://redirect.github.com/python-jsonschema/jsonschema/pull/1425">python-jsonschema/jsonschema#1425</a></li> <li>[pre-commit.ci] pre-commit autoupdate by <a href="https://github.com/pre-commit-ci"><code>@pre-commit-ci</code></a>[bot] in <a href="https://redirect.github.com/python-jsonschema/jsonschema/pull/1429">python-jsonschema/jsonschema#1429</a></li> <li>[pre-commit.ci] pre-commit autoupdate by <a href="https://github.com/pre-commit-ci"><code>@pre-commit-ci</code></a>[bot] in <a href="https://redirect.github.com/python-jsonschema/jsonschema/pull/1431">python-jsonschema/jsonschema#1431</a></li> <li>Bump softprops/action-gh-release from 2.4.1 to 2.4.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/python-jsonschema/jsonschema/pull/1432">python-jsonschema/jsonschema#1432</a></li> <li>Bump astral-sh/setup-uv from 7.1.1 to 7.1.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/python-jsonschema/jsonschema/pull/1430">python-jsonschema/jsonschema#1430</a></li> <li>[pre-commit.ci] pre-commit autoupdate by <a href="https://github.com/pre-commit-ci"><code>@pre-commit-ci</code></a>[bot] in <a href="https://redirect.github.com/python-jsonschema/jsonschema/pull/1434">python-jsonschema/jsonschema#1434</a></li> <li>Bump astral-sh/setup-uv from 7.1.2 to 7.1.4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/python-jsonschema/jsonschema/pull/1435">python-jsonschema/jsonschema#1435</a></li> <li>Bump actions/checkout from 5 to 6 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/python-jsonschema/jsonschema/pull/1436">python-jsonschema/jsonschema#1436</a></li> <li>[pre-commit.ci] pre-commit autoupdate by <a href="https://github.com/pre-commit-ci"><code>@pre-commit-ci</code></a>[bot] in <a href="https://redirect.github.com/python-jsonschema/jsonschema/pull/1437">python-jsonschema/jsonschema#1437</a></li> <li>Bump softprops/action-gh-release from 2.4.2 to 2.5.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/python-jsonschema/jsonschema/pull/1438">python-jsonschema/jsonschema#1438</a></li> <li>[pre-commit.ci] pre-commit autoupdate by <a href="https://github.com/pre-commit-ci"><code>@pre-commit-ci</code></a>[bot] in <a href="https://redirect.github.com/python-jsonschema/jsonschema/pull/1439">python-jsonschema/jsonschema#1439</a></li> <li>Document <code>uuid</code> format by <a href="https://github.com/sim642"><code>@sim642</code></a> in <a href="https://redirect.github.com/python-jsonschema/jsonschema/pull/1440">python-jsonschema/jsonschema#1440</a></li> <li>[pre-commit.ci] pre-commit autoupdate by <a href="https://github.com/pre-commit-ci"><code>@pre-commit-ci</code></a>[bot] in <a href="https://redirect.github.com/python-jsonschema/jsonschema/pull/1441">python-jsonschema/jsonschema#1441</a></li> <li>Bump astral-sh/setup-uv from 7.1.4 to 7.1.6 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/python-jsonschema/jsonschema/pull/1442">python-jsonschema/jsonschema#1442</a></li> <li>[pre-commit.ci] pre-commit autoupdate by <a href="https://github.com/pre-commit-ci"><code>@pre-commit-ci</code></a>[bot] in <a href="https://redirect.github.com/python-jsonschema/jsonschema/pull/1443">python-jsonschema/jsonschema#1443</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/gudnimg"><code>@gudnimg</code></a> made their first contribution in <a href="https://redirect.github.com/python-jsonschema/jsonschema/pull/1416">python-jsonschema/jsonschema#1416</a></li> <li><a href="https://github.com/sim642"><code>@sim642</code></a> made their first contribution in <a href="https://redirect.github.com/python-jsonschema/jsonschema/pull/1440">python-jsonschema/jsonschema#1440</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/python-jsonschema/jsonschema/compare/v4.25.1...v4.26.0">https://github.com/python-jsonschema/jsonschema/compare/v4.25.1...v4.26.0</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/python-jsonschema/jsonschema/blob/main/CHANGELOG.rst">jsonschema's changelog</a>.</em></p> <blockquote> <h1>v4.26.0</h1> <ul> <li>Decrease import time by delaying importing of <code>urllib.request</code> (<a href="https://redirect.github.com/python-jsonschema/jsonschema/issues/1416">#1416</a>).</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/python-jsonschema/jsonschema/commit/a7277432b0f7bcd0551f6e589d30457017125df4"><code>a727743</code></a> Add a changelog entry for 4.26.</li> <li><a href="https://github.com/python-jsonschema/jsonschema/commit/6d28c13efbbd6cf136143fdbb18f79d4476091f6"><code>6d28c13</code></a> Update the lockfile.</li> <li><a href="https://github.com/python-jsonschema/jsonschema/commit/739499edc33c007ff62180c9fef61dbf5480bb7b"><code>739499e</code></a> Update pre-commit hooks.</li> <li><a href="https://github.com/python-jsonschema/jsonschema/commit/cb2d77980713577f65cc7e7c7c115932206393fd"><code>cb2d779</code></a> Merge pull request <a href="https://redirect.github.com/python-jsonschema/jsonschema/issues/1443">#1443</a> from python-jsonschema/pre-commit-ci-update-config</li> <li><a href="https://github.com/python-jsonschema/jsonschema/commit/e6bbbb7c5bcdb32a654572d17bfce264aefd1f9d"><code>e6bbbb7</code></a> [pre-commit.ci] pre-commit autoupdate</li> <li><a href="https://github.com/python-jsonschema/jsonschema/commit/d56037a88faac4881214c6674a785b4abd428617"><code>d56037a</code></a> Merge pull request <a href="https://redirect.github.com/python-jsonschema/jsonschema/issues/1442">#1442</a> from python-jsonschema/dependabot/github_actions/ast...</li> <li><a href="https://github.com/python-jsonschema/jsonschema/commit/e54ce13fb590a5c17fb702431598a382de6e68f9"><code>e54ce13</code></a> Bump astral-sh/setup-uv from 7.1.4 to 7.1.6</li> <li><a href="https://github.com/python-jsonschema/jsonschema/commit/1f7c9fbd01d9c2f8ddd98065324062f7e122dbe1"><code>1f7c9fb</code></a> Partially update docs requirements.</li> <li><a href="https://github.com/python-jsonschema/jsonschema/commit/241aec982bc8c867f276779faf20d49d9774532f"><code>241aec9</code></a> Merge pull request <a href="https://redirect.github.com/python-jsonschema/jsonschema/issues/1441">#1441</a> from python-jsonschema/pre-commit-ci-update-config</li> <li><a href="https://github.com/python-jsonschema/jsonschema/commit/2818efb4fa446ed4fa7815b4e09a7b4b7c633852"><code>2818efb</code></a> Apache-2.0 -> nongpl</li> <li>Additional commits viewable in <a href="https://github.com/python-jsonschema/jsonschema/compare/v4.25.1...v4.26.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…2392) Bumps [cypress-io/github-action](https://github.com/cypress-io/github-action) from 6 to 7. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/cypress-io/github-action/releases">cypress-io/github-action's releases</a>.</em></p> <blockquote> <h2>v7.0.0</h2> <h1><a href="https://github.com/cypress-io/github-action/compare/v6.10.9...v7.0.0">7.0.0</a> (2026-01-21)</h1> <h3>Features</h3> <ul> <li><strong>deps:</strong> update action from node20 to node24 (<a href="https://redirect.github.com/cypress-io/github-action/issues/1639">#1639</a>) (<a href="https://github.com/cypress-io/github-action/commit/dca986193e4336cb32820819b07e9ecacacaaaf6">dca9861</a>)</li> </ul> <h3>BREAKING CHANGES</h3> <ul> <li><strong>deps:</strong> Update action from node20 to node24 cypress-io/github-action@v6, using node20, is deprecated</li> </ul> <h2>v6.10.9</h2> <h2><a href="https://github.com/cypress-io/github-action/compare/v6.10.8...v6.10.9">6.10.9</a> (2026-01-20)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>deps:</strong> update @actions/* and debug (<a href="https://redirect.github.com/cypress-io/github-action/issues/1638">#1638</a>) (<a href="https://github.com/cypress-io/github-action/commit/f790eee7a50d9505912f50c2095510be7de06aa7">f790eee</a>)</li> </ul> <h2>v6.10.8</h2> <h2><a href="https://github.com/cypress-io/github-action/compare/v6.10.7...v6.10.8">6.10.8</a> (2025-12-15)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>deps:</strong> update <code>@octokit/core</code> to 7.0.6 (<a href="https://redirect.github.com/cypress-io/github-action/issues/1615">#1615</a>) (<a href="https://github.com/cypress-io/github-action/commit/2ad32e649e4db26c07674ebae31a297601dbcbaf">2ad32e6</a>)</li> </ul> <h2>v6.10.7</h2> <h2><a href="https://github.com/cypress-io/github-action/compare/v6.10.6...v6.10.7">6.10.7</a> (2025-12-15)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>deps:</strong> update GitHub actions/toolkit dependencies (<a href="https://redirect.github.com/cypress-io/github-action/issues/1612">#1612</a>) (<a href="https://github.com/cypress-io/github-action/commit/fa1d27aacdc8fa155253766c3728f6ddc81f8a99">fa1d27a</a>)</li> </ul> <h2>v6.10.6</h2> <h2><a href="https://github.com/cypress-io/github-action/compare/v6.10.5...v6.10.6">6.10.6</a> (2025-12-12)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>deps:</strong> update next to 16.0.10 (<a href="https://redirect.github.com/cypress-io/github-action/issues/1607">#1607</a>) (<a href="https://github.com/cypress-io/github-action/commit/d842ab15a88774cf1311cc07f0e7112024c3dbd7">d842ab1</a>)</li> </ul> <h2>v6.10.5</h2> <h2><a href="https://github.com/cypress-io/github-action/compare/v6.10.4...v6.10.5">6.10.5</a> (2025-12-10)</h2> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/cypress-io/github-action/blob/master/CHANGELOG.md">cypress-io/github-action's changelog</a>.</em></p> <blockquote> <h1>Changelog</h1> <p>This document gives an overview of changes to the Cypress GitHub JavaScript Action <a href="https://github.com/cypress-io/github-action">cypress-io/github-action</a>.</p> <p>See <a href="https://github.com/cypress-io/github-action/releases">Releases</a> for full details of changes.</p> <table> <thead> <tr> <th>Version</th> <th>Changes</th> </tr> </thead> <tbody> <tr> <td>v7.1.0</td> <td>Add parameter <code>package-manager-cache</code></td> </tr> <tr> <td>v7.0.0</td> <td>Action runs under Node.js 24 instead of Node.js 20</td> </tr> <tr> <td>v6.10.0</td> <td>Examples remove Node.js 23. End of support for Node.js 23.</td> </tr> <tr> <td>v6.9.0</td> <td>Add parameter validation for <code>command</code></td> </tr> <tr> <td>v6.8.0</td> <td>Examples remove Node.js 18. End of support for Node.js 18.</td> </tr> <tr> <td>v6.7.10</td> <td>Examples updated to Cypress 14</td> </tr> <tr> <td>v6.7.9</td> <td>Migrate to <code>@actions/cache@4.0.0</code> for continued access to GitHub Actions caching services</td> </tr> <tr> <td>v6.7.0</td> <td>Examples remove Node.js 21. End of support for Node.js 21.</td> </tr> <tr> <td>v6.6.0</td> <td>Add parameter <code>summary-title</code></td> </tr> <tr> <td>v6.5.0</td> <td>Examples remove Node.js 16. End of support for Node.js 16.</td> </tr> <tr> <td>v6.4.0</td> <td>Action adds PR number and URL if available when recording</td> </tr> <tr> <td>v6.3.0</td> <td>v6 is recommended action version</td> </tr> <tr> <td>v6.2.0</td> <td>Examples updated to Cypress 13</td> </tr> <tr> <td>v6.1.0</td> <td>Examples for Cypress 9 archived in action's <a href="https://github.com/cypress-io/github-action/tree/v5">v5</a> branch</td> </tr> <tr> <td>v6.0.0</td> <td>Action runs under Node.js 20 instead of Node.js 16</td> </tr> <tr> <td>v5.8.1</td> <td>Examples remove Node.js 19. End of support for Node.js 19</td> </tr> <tr> <td>v5.8.0</td> <td>Add GitHub step output <code>resultsUrl</code>. Deprecate <code>dashboardUrl</code>.</td> </tr> <tr> <td>v5.7.0</td> <td>Add basic Yarn Modern Plug'n'Play support</td> </tr> <tr> <td>v5.6.2</td> <td>Examples add Node.js 20. End of support and removal of Node.js 14 examples.</td> </tr> <tr> <td>v5.6.0</td> <td>Add check for lockfile presence</td> </tr> <tr> <td>v5.5.0</td> <td>Examples add Yarn Modern</td> </tr> <tr> <td>v5.4.0</td> <td>Examples add Yarn Classic</td> </tr> <tr> <td>v5.3.0</td> <td>Add parameter <code>publish-summary</code> (default <code>true</code>)</td> </tr> <tr> <td>v5.2.0</td> <td>Examples add Node.js 19</td> </tr> <tr> <td>v5.1.0</td> <td>Add parameter <code>auto-cancel-after-failures</code></td> </tr> <tr> <td>v5.0.0</td> <td>Examples add Node.js 18 and remove Node.js 12</td> </tr> <tr> <td>v4.2.2</td> <td>Dependency on GitHub <code>set-output</code> workflow command removed</td> </tr> <tr> <td>v4.2.0</td> <td>Support for <code>pnpm</code> added</td> </tr> <tr> <td>v4.0.0</td> <td>Support for Cypress 10 and later versions added</td> </tr> <tr> <td>v3</td> <td>Action runs under Node.js 16 instead of Node.js 12</td> </tr> <tr> <td>v2</td> <td>Cypress runs using the <a href="https://on.cypress.io/module-api">Module API</a></td> </tr> <tr> <td>v1</td> <td><em>This version is no longer runnable in GitHub due to security changes.</em></td> </tr> </tbody> </table> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/cypress-io/github-action/commit/0f330ebf0d60f87608ed72f1d6232e5644aa3171"><code>0f330eb</code></a> fix(deps): update @actions/* (<a href="https://redirect.github.com/cypress-io/github-action/issues/1645">#1645</a>)</li> <li><a href="https://github.com/cypress-io/github-action/commit/8a35f965fbd13e3b18d9fb3bdc5f50ae2f4a5e76"><code>8a35f96</code></a> feat: add boolean option package-manager-cache (<a href="https://redirect.github.com/cypress-io/github-action/issues/1641">#1641</a>)</li> <li><a href="https://github.com/cypress-io/github-action/commit/dca986193e4336cb32820819b07e9ecacacaaaf6"><code>dca9861</code></a> feat(deps): update action from node20 to node24 (<a href="https://redirect.github.com/cypress-io/github-action/issues/1639">#1639</a>)</li> <li><a href="https://github.com/cypress-io/github-action/commit/e768e6ddaa1b0b5c78f4f4da36de06b189a64c86"><code>e768e6d</code></a> chore(deps): update dependency node to v20.20.0 (<a href="https://redirect.github.com/cypress-io/github-action/issues/1630">#1630</a>)</li> <li>See full diff in <a href="https://github.com/cypress-io/github-action/compare/v6...v7">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…ubmitty#12374) Bumps [@codemirror/view](https://github.com/codemirror/view) from 6.39.8 to 6.39.12. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/codemirror/view/blob/main/CHANGELOG.md"><code>@codemirror/view</code>'s changelog</a>.</em></p> <blockquote> <h2>6.39.12 (2026-01-30)</h2> <h3>Bug fixes</h3> <p>Fix a bug where the visual selection drawn by <code>drawSelection</code> could fail to update properly in some circumstances.</p> <p>Fix a bug where PageUp/PageDown near the edge of the viewport might completely skip to the start/end of the document.</p> <p>Fix a regression that caused mark decorations to be split on text node chunk boundaries again.</p> <h2>6.39.11 (2026-01-14)</h2> <h3>Bug fixes</h3> <p>Avoid handling copy events for parent editors.</p> <h2>6.39.10 (2026-01-13)</h2> <h3>Bug fixes</h3> <p>Fix a regression in the way widget are reused when content next to them changes.</p> <p>Make sure font metrics get recomputed on <code>fonts.ready</code> even if the line height doesn't change.</p> <p>Fix an issue where compositions next to a widget that create a new text node could get needlessly interrupted during an editor update.</p> <h2>6.39.9 (2026-01-06)</h2> <h3>Bug fixes</h3> <p>Fix a bug where <code>EditorSelection.cursor()</code> with a non-zero <code>assoc</code> value would not be visually respected at soft-wrap boundaries on initial view creation.</p> <p>Fix error caused by hover tooltips running a scheduled timeout after their editor has been destroyed.</p> <p>Fix a bug that caused <code>EditorView.outerDecorations</code> to not affect the content height map.</p> <p>Fix an issue where composition near a widget could get unnecessarily interrupted.</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/codemirror/view/commit/f14dcd52653ea80e8994484727217bd251e46bf7"><code>f14dcd5</code></a> Mark version 6.39.12</li> <li><a href="https://github.com/codemirror/view/commit/16a0c29a896c2e6cd6de9f2d16f7659589de7a86"><code>16a0c29</code></a> Fix another issue around chunked large text nodes</li> <li><a href="https://github.com/codemirror/view/commit/4b908ab4403af6418290a3c87367b7d6b5e785fe"><code>4b908ab</code></a> Fix poor handling of vertical motion exiting the viewport</li> <li><a href="https://github.com/codemirror/view/commit/e1476261c0e287f9b32705b27bde61a0677c40e9"><code>e147626</code></a> Fix negative computed width in RectangleMarker.forRange</li> <li><a href="https://github.com/codemirror/view/commit/6fcf2e1bd95094a47f646e6b7d0eff1f893a9e4b"><code>6fcf2e1</code></a> Mark version 6.39.11</li> <li><a href="https://github.com/codemirror/view/commit/95fd57080464af585d6711b62b2f79b1efd81e9b"><code>95fd570</code></a> Use a custom selection comparison when only the position should be compared</li> <li><a href="https://github.com/codemirror/view/commit/4c56500aa994009f4d6a38d8097dee231d842c13"><code>4c56500</code></a> Remove a loop that never loops anymore</li> <li><a href="https://github.com/codemirror/view/commit/01fbc4214a359ec6bf9ff73340e0fca556800e92"><code>01fbc42</code></a> Avoid handling copy events for parent elements</li> <li><a href="https://github.com/codemirror/view/commit/74c9e9b5319f8a6d24a191e8251a9b35179e25f7"><code>74c9e9b</code></a> Mark version 6.39.10</li> <li><a href="https://github.com/codemirror/view/commit/96566415a2355e7706a12f9c2504b8ae84d2cf5c"><code>9656641</code></a> Fix another way widgets could be reused across a composition</li> <li>Additional commits viewable in <a href="https://github.com/codemirror/view/compare/6.39.8...6.39.12">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…#12376) Bumps [globals](https://github.com/sindresorhus/globals) from 17.0.0 to 17.3.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/sindresorhus/globals/releases">globals's releases</a>.</em></p> <blockquote> <h2>v17.3.0</h2> <ul> <li>Update globals (2026-02-01) (<a href="https://redirect.github.com/sindresorhus/globals/issues/336">#336</a>) 295fba9</li> </ul> <hr /> <p><a href="https://github.com/sindresorhus/globals/compare/v17.2.0...v17.3.0">https://github.com/sindresorhus/globals/compare/v17.2.0...v17.3.0</a></p> <h2>v17.2.0</h2> <ul> <li><code>jasmine</code>: Add <code>throwUnless</code> and <code>throwUnlessAsync</code> globals (<a href="https://redirect.github.com/sindresorhus/globals/issues/335">#335</a>) 97f23a7</li> </ul> <hr /> <p><a href="https://github.com/sindresorhus/globals/compare/v17.1.0...v17.2.0">https://github.com/sindresorhus/globals/compare/v17.1.0...v17.2.0</a></p> <h2>v17.1.0</h2> <ul> <li>Add <code>webpack</code> and <code>rspack</code> globals (<a href="https://redirect.github.com/sindresorhus/globals/issues/333">#333</a>) 65cae73</li> </ul> <hr /> <p><a href="https://github.com/sindresorhus/globals/compare/v17.0.0...v17.1.0">https://github.com/sindresorhus/globals/compare/v17.0.0...v17.1.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/sindresorhus/globals/commit/5edc6020698a76964b0fa17cb604f4484451143b"><code>5edc602</code></a> 17.3.0</li> <li><a href="https://github.com/sindresorhus/globals/commit/295fba929adf8b44f945688233778a57ff754368"><code>295fba9</code></a> Update globals (2026-02-01) (<a href="https://redirect.github.com/sindresorhus/globals/issues/336">#336</a>)</li> <li><a href="https://github.com/sindresorhus/globals/commit/8176ac7290e6eb0be1403b80a4184651c4cd95f6"><code>8176ac7</code></a> 17.2.0</li> <li><a href="https://github.com/sindresorhus/globals/commit/97f23a759b37c2b6c30845cdc5172fd862d5c5e2"><code>97f23a7</code></a> <code>jasmine</code>: Add <code>throwUnless</code> and <code>throwUnlessAsync</code> globals (<a href="https://redirect.github.com/sindresorhus/globals/issues/335">#335</a>)</li> <li><a href="https://github.com/sindresorhus/globals/commit/7a2f3546a195b67ee07d76acce39499d34b4c8fe"><code>7a2f354</code></a> 17.1.0</li> <li><a href="https://github.com/sindresorhus/globals/commit/65cae7345cd365d2b0ea26958b545644aea5a6df"><code>65cae73</code></a> Add <code>webpack</code> and <code>rspack</code> globals (<a href="https://redirect.github.com/sindresorhus/globals/issues/333">#333</a>)</li> <li><a href="https://github.com/sindresorhus/globals/commit/3efe5aad90231cee41c8caea7b987706390f889b"><code>3efe5aa</code></a> Remove script transform (<a href="https://redirect.github.com/sindresorhus/globals/issues/332">#332</a>)</li> <li>See full diff in <a href="https://github.com/sindresorhus/globals/compare/v17.0.0...v17.3.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…ubmitty#12366) Bumps [twig/markdown-extra](https://github.com/twigphp/markdown-extra) from 3.22.0 to 3.23.0. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/twigphp/markdown-extra/commit/faf069b259e2d3930c73c2f53e2dec8440bd90a2"><code>faf069b</code></a> Add .gitignore & .gitattributes to all .gitattributes</li> <li>See full diff in <a href="https://github.com/twigphp/markdown-extra/compare/v3.22.0...v3.23.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…bmitty#12397) Bumps [sqlalchemy](https://github.com/sqlalchemy/sqlalchemy) from 2.0.45 to 2.0.46. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/sqlalchemy/sqlalchemy/releases">sqlalchemy's releases</a>.</em></p> <blockquote> <h1>2.0.46</h1> <p>Released: January 21, 2026</p> <h2>typing</h2> <ul> <li> <p><strong>[typing] [bug]</strong> Fixed typing issues where ORM mapped classes and aliased entities could not be used as keys in result row mappings or as join targets in select statements. Patterns such as <code>row._mapping[User]</code>, <code>row._mapping[aliased(User)]</code>, <code>row._mapping[with_polymorphic(...)]</code> (rejected by both mypy and Pylance), and <code>.join(aliased(User))</code> (rejected by Pylance) are documented and fully supported at runtime but were previously rejected by type checkers. The type definitions for <code>_KeyType</code> and <code>_FromClauseArgument</code> have been updated to accept these ORM entity types.</p> <p>References: <a href="https://www.sqlalchemy.org/trac/ticket/13075">#13075</a></p> </li> </ul> <h2>postgresql</h2> <ul> <li> <p><strong>[postgresql] [bug]</strong> Fixed issue where PostgreSQL JSONB operators <code>_postgresql.JSONB.Comparator.path_match()</code> and <code>_postgresql.JSONB.Comparator.path_exists()</code> were applying incorrect <code>VARCHAR</code> casts to the right-hand side operand when used with newer PostgreSQL drivers such as psycopg. The operators now indicate the right-hand type as <code>JSONPATH</code>, which currently results in no casting taking place, but is also compatible with explicit casts if the implementation were require it at a later point.</p> <p>References: <a href="https://www.sqlalchemy.org/trac/ticket/13059">#13059</a></p> </li> <li> <p><strong>[postgresql] [bug]</strong> Fixed regression in PostgreSQL dialect where JSONB subscription syntax would generate incorrect SQL for <code>cast()</code> expressions returning JSONB, causing syntax errors. The dialect now properly wraps cast expressions in parentheses when using the <code>[]</code> subscription syntax, generating <code>(CAST(...))[index]</code> instead of <code>CAST(...)[index]</code> to comply with PostgreSQL syntax requirements. This extends the fix from <a href="https://www.sqlalchemy.org/trac/ticket/12778">#12778</a> which addressed the same issue for function calls.</p> <p>References: <a href="https://www.sqlalchemy.org/trac/ticket/13067">#13067</a></p> </li> <li> <p><strong>[postgresql] [bug]</strong> Improved the foreign key reflection regular expression pattern used by the PostgreSQL dialect to be more permissive in matching identifier characters, allowing it to correctly handle unicode characters in table and column names. This change improves compatibility with PostgreSQL variants such as CockroachDB that may use different quoting patterns in combination with unicode characters in their identifiers. Pull request courtesy Gord Thompson.</p> </li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/sqlalchemy/sqlalchemy/commits">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…mitty#12371) Bumps [@codemirror/state](https://github.com/codemirror/state) from 6.5.3 to 6.5.4. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/codemirror/state/blob/main/CHANGELOG.md"><code>@codemirror/state</code>'s changelog</a>.</em></p> <blockquote> <h2>6.5.4 (2026-01-14)</h2> <h3>Bug fixes</h3> <p>Make <code>SelectionRange.eq</code> return false when the ranges have different goal columns.</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/codemirror/state/commit/8897323ba799eb7a5a10c4fafac4f1223a72b60a"><code>8897323</code></a> Mark version 6.5.4</li> <li><a href="https://github.com/codemirror/state/commit/75518c016a009a9b2dbf9a860e29b44eb41c53f5"><code>75518c0</code></a> Include goal column when comparing selection ranges</li> <li><a href="https://github.com/codemirror/state/commit/a0889f8a0a11732449989e89d652de8edbe464ba"><code>a0889f8</code></a> Use git+https format for package.json repository field</li> <li>See full diff in <a href="https://github.com/codemirror/state/compare/6.5.3...6.5.4">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Why is this Change Important & Necessary?
What is the New Behavior?
What steps should a reviewer take to reproduce or test the bug or new feature?
Automated Testing & Documentation
Other information